Senior Info Security Analyst - SOX
Description: About us:Target is an iconic brand, a Fortune 50 company and one of America's
leading retailers.Target as a tech company? Absolutely. We're the behind-the-scenes
powerhouse that fuels Target's passion and commitment to cutting-edge
innovation. We anchor every facet of one of the world's best-loved retailers
with a strong technology framework that relies on the latest tools and
technologies—and the brightest people—to deliver incredible value to guests
online and in stores. Target Technology Services is on a mission to offer the
systems, tools and support that guests and team members need and deserve. Our
high-performing teams balance independence with collaboration, and we pride
ourselves on being versatile, agile and creative. We drive industry-leading
technologies in support of every angle of the business, and help ensure that
Target operates smoothly, securely and reliably from the inside out.As a Sr. Info Security Analyst you will facilitate proactive engagement
in company initiatives across the enterprise to identify and prioritize
information protection risks, facilitate mitigation of risk and where needed,
escalate and communicate open risks and recommendations to executive
leadership. Core responsibilities of
this job are described within this job description. Job duties may change at any time due to
business needs.Use your skills, experience and talents to be a part of groundbreaking
thinking and visionary goals. As a
Senior Information Security Analyst, you will take the lead as you provide
support to the security and privacy work streams for a variety of enterprise
projects and initiatives. You will
identify and prioritize information security risks, advise business partners on
security/privacy requirements and solutions to ensure compliance. You will
conduct analysis and trends on internal/external progress and establish
relationships to working closely with cross-functional teams. You will align
initiatives with business objectives of the company and provide support to a
variety of enterprise projects. As a security
professional, you will be responsible for ensuring the SOX compliance of
people, process, and technology at Target. As a member of the Information
Security team you will be providing input on design of controls, help identify
new and improved ways to leverage technology to maintain SOX compliance, assist
with remediation efforts, as needed, and support the overall testing
activities.Use your skills, experience
and talents to be a part of forward thinking compliance team as you support the
following activities:
Qualifications:
- Support management's IT control environment
- Consult with leadership to improve control efficiencies and operating effectiveness
- Develop strong liaison relationships with cross functional teams
- Partner with key teams to obtain and review evidence of compliance to support technical SOX requirements
- Support the completion of the annual SOX and SSAE 16 conclusions
- Scope, interpret, and prioritize both application and infrastructure testing scripts
- Manage and communicate key compliance milestones for critical systems and complex processes
- Facilitate interaction between the business and Target's internal and external financial statement auditors
- Interpret and document complex technology statement processes
- Implement established IT SOX criteria
- Bachelor's BA/BS degree in Engineering, Management Information Systems, Business or Accounting or equivalent practical work experience
- 4-8 years IT background; experience with compliance or regulatory issues preferred
- 2+ years prior experience supporting a management internal IT control environment
- 3-6 years IT audit experience
- Big 4 / Public Accounting experienced preferred
- Experience in cloud, technology infrastructure auditing, system auditing, financial systems (e.g. fixed Assets, Inventory, payroll, HR, etc.), ERP systems (e.g. Oracle), system administration, major system implementations, e-commerce, online payments, software development, or cyber security
- Intermediate knowledge of the following technical areas: network security, operating system security, database security, secure system development, identity and access management, physical access controls, backup and critical job execution/monitoring, and information security policy
- Experience with project management (planning, organizing, and managing resources to bring about the successful completion of specific project goals and objectives)
- Ability to identify problems, analyze data and present conclusions effectively
- Strong verbal, written and presentations skills
- Excellent PC skills (Ms Access, Excel, Word, Adobe, SharePoint)
- An industry certification such as CISSP/CISA/CISM required
Qualifications:
You need to sign in or create an account to save a job.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert