Skip to main content
Portrait of a young businessman working at his desk in a modern officePortrait of a young businessman working at his desk in a modern office

IT Governance Risk/Controls Specialist

Apply Now
Apply Now

Description

The IT Governance Risk & Controls Specialist is responsible for evaluating information technology control design and effectiveness to support Freedom Mortgage Corporation's information technology objectives. Embedding IT controls and monitoring control performance metrics is a key function of this position. Responsibilities include coordinating control design, authoring documentation and implementing remediation plans in conjunction with process owners. 

Responsibilities include:

  • Execute control evaluation and validation for internal technology controls.
  • Participate in design and operating effectiveness testing of in-scope processes/systems.
  • Proactively identify existing and emerging IT risks.
  • Aid in the performance of IT risk and control self-assessments.
  • May provide counsel on common methods to address gaps. Identify internal control weaknesses and recommend remediation to strengthen control environment.
  • Communicate project status, concerns, or issues to Management in a timely manner.
  • Develop business and technology team knowledge to better understand processes, metrics, and required controls.
  • Perform monitoring and testing of IT controls at the application, database, operating system, and process levels.
  • Develop and maintain strong working relationships with process owners through continuous and proactive communications.
  • Review control descriptions, process narratives and testing strategies for reasonableness and accuracy. Make recommendations and implement updates to documentation.
  • Maintain regular and punctual attendance. Comply with all company policies and procedures.

Requirements:
  • Minimum 2 yrs. experience in IT, Information Security, Compliance, or Data Privacy.
  • Able to articulate both inherent and residual risk, and communicate control requirements.
  • Familiarity with various IT controls frameworks, such as COBIT, ISO 27001, NIST
  • Problem solving and critical thinking with strong focus on detail; ability to identify root cause and proper solution.
  • Strong research and analytical skills.

Desired:

  • Risk certification (CISSP, CISA or CRISC) preferred.
  • SOX/SOC 1 experience highly desirable.
  • Ability to multi-task while working in a fast-paced environment. 
  • Expert written and verbal communication skills, including strong interpersonal management skills.

#CB
#LI-TD1
#LI-REMOTE