More jobs:
IT Internal Controls Analyst
Job in
Harrisburg, Dauphin County, Pennsylvania, 17124, USA
Listed on 2026-07-10
Listing for:
Scorpion Therapeutics
Full Time
position Listed on 2026-07-10
Job specializations:
-
IT/Tech
IT Business Analyst, Cybersecurity, Information Security
Job Description & How to Apply Below
Role Summary
- Supports IT SOX compliance, audit readiness, and access governance across enterprise systems in a regulated environment.
- Partners with IT, IT Application Security, and Audit teams to support IT General Controls (ITGCs), user access reviews, and audit support.
- Support IT SOX and ITGC audits (evidence coordination, auditor inquiries, remediation tracking).
- Execute periodic user access reviews (access validation, Active Directory checks, segregation of duties considerations, remediation follow‑ups).
- Support SAP Change Management and SAP GRC (transport reviews, CAB approval validation, sensitive access reviews, audit evidence preparation).
- Support SDLC controls (pre‑implementation risk/scope assessments and post‑implementation audits).
- Support third‑party/SaaS audit requests (SOC report coordination, complementary user entity control validation, control confirmations).
- Administer/coordinate Audit Board (Optro) (or similar GRC) access for internal teams and external auditors.
- Maintain audit‑ready ITGC documentation and evidence artifacts for access controls, change management, and incident response.
- Identify opportunities for control automation and process improvement.
- Provide audit status, remediation, and project reporting.
- Bachelor’s degree in IT/computer science/information systems/related field.
- 1–3 years hands‑on experience in IT SOX, ITGCs, or technology risk/compliance.
- Strong understanding of user access controls, identity lifecycle management, and segregation of duties.
- Experience with SDLC controls (pre/post implementation reviews).
- ERP experience (SAP preferred), including access/change‑related controls.
- Working knowledge of GRC platforms (Audit Board, SAP GRC, or Service Now GRC).
- Experience interfacing with external auditors; strong documentation and written communication.
- Ability to work independently and collaborate with U.S. and EU stakeholders.
- CISA (completed or pursuing).
- Experience with Big 4 or large public accounting firm audits.
- Experience in regulated industries (life sciences, pharmaceuticals, healthcare, or financial services).
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×