IT Auditor, GRC-A

We're seeking an IT Auditor, GRC-A to join our team at SAS. As a key member of our organization, you will be responsible for conducting audits to ensure internal controls are in place that align with various regulations, including ISO 27001, PCI, FISMA, IRS 1075, and NIST. You will also operate in a compliance role, assist in the risk program, and facilitate remediation of continuous improvement efforts across the business.

Key Responsibilities:

• Lead internal audits by benchmarking security policies against best practices and standards
• Create and execute on audit test cases and manage work papers and evidence
• Develop and present Audit Reports
• Lead efforts to formalize and mature the Audit Program at SAS
• Use the ServiceNow GRC tool to create and manage continuous monitoring indicators, build reporting dashboards, document electronic work papers, and manage audit documentation
• Perform issue remediation tasks such as analysis, documentation, follow-up and retesting in response to audit findings

Requirements:

• Bachelor's degree in Business, IT, Computer Science or related field
• 4-8 years of experience in an audit, compliance, risk or governance-related functions
• Knowledge of IT, project management, compliance or quality auditor procedures and tools
• Auditor certification strongly preferred, such as CISA

About SAS:

SAS is a leader in data and AI, inspiring customers around the world to transform data into intelligence. We're a debt-free multi-billion-dollar organization on our path to IPO-readiness, offering a dynamic, fulfilling career coupled with flexibility and world-class employee experience.