Description

SOX ITGC Program Analyst (GRC)

< View All Jobs

Location: Costa Rica

Department: InfoSec & IT

Region: Americas

About Us:

SentinelOne is defining the future of cybersecurity through our XDR platform that automatically prevents, detects, and responds to threats in real-time. Singularity XDR ingests data and leverages our patented AI models to deliver autonomous protection. With SentinelOne, organizations gain full transparency into everything happening across the network at machine speed – to defeat every attack, at every stage of the threat lifecycle. 

We are a values-driven team where names are known, results are rewarded, and friendships are formed. Trust, accountability, relentlessness, ingenuity, and OneSentinel define the pillars of our collaborative and unified global culture. We're looking for people that will drive team success and collaboration across SentinelOne. If you’re enthusiastic about innovative approaches to problem-solving, we would love to speak with you about joining our team!

What are we looking for?

We are seeking an Analyst with IT General Control (ITGC) experience to join the SentinelOne SOX ITGC Program. This role will have the primary responsibility of supporting the SOX ITGC Program’s objective of ensuring effective controls across the enterprises applications supporting financial reporting. 

This position will support the program as it acts as the point of contact between IT and internal / external auditors and to provide leadership in managing auditing activities, requests and developing responses to audit findings, and leading remediation of audit findings.

What will you do?

  • Providing quality assurance of all IT General Controls through the performance of internal assessments, walkthroughs, and audits to ensure design and operational effectiveness. 
  • Monitoring the control environment and ensuring that controls are operational and in-line with established policies and procedures, and controls methodology.
  • Supporting the SOx ITGC Program in proactively identifying risks and gaps and facilitating remediation efforts to timely address observations identified during the annual 404 audit.
  • Supporting annual scoping efforts by performing risk based analyses over system roles, permissions, configurations and changes. 
  • Staying up to date on changes to processes, systems and applications and providing guidance on related controls.
  • Reviewing third-party vendor attestation and audit reports, and providing feedback to business leaders and risk owners 
  • Providing relevant controls requirement awareness training to control owners and promoting a culture of internal control excellence.
  • Maintaining and ensuring that audit related documentation/records are current and accurate.

What skills and knowledge should you bring?

  • 2+ years of audit/assessment experience in working with SOX, IcFR, and internal control design and operations from a Finance and Business Technology perspective.
  • Bachelor’s Degree in Business, Accounting, Information Technology, or other quantitative discipline preferred.
  • Familiarity with IT General Controls (Logical Access, Change Management and Computer Operations).
  • Familiarity with financial reporting and accounting concepts. 
  • Familiarity with GRC tools such as AuditBoard, Workiva, RSA Archer.
  • Familiarity with SaaS applications such as NetSuite, Salesforce and Workday and hosting platforms such as AWS and GCP.
  • Industry certifications such as CISSP, CISA, CISM, CPA, PMI, Project Management Professional (PMP), ISO 27001 LA, QSA.
  • Excellent written and verbal communication skills.
  • Strong analytical and time management skills.
  • Ability to maintain a high degree of confidentiality.

SentinelOne is proud to be an Equal Employment Opportunity and Affirmative Action employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

SentinelOne participates in the E-Verify Program for all U.S. based roles. 

Education

Any Graduate