Sr. Analyst IT Risk & Compliance

Clearance Level
Information Security
Remote, Based in the USA

REQ#: RQ111150

Travel Required: None
Public Trust: None
Requisition Type: Regular

The Senior Analyst, IT Risk & Compliance is responsible for supporting GDIT’s Sarbanes-Oxley (SOX) program along with other audit and compliance processes. This position will report directly to the Manager IT Risk & Compliance and work closely with General Dynamics internal audit, external auditors, and key process/control owners throughout the organization to maintain effective, consistent and cost-efficient IT control processes across multiple regulatory requirements. This position has the possibility of being 100% remote.

Specific responsibilities include:

  • Partner with internal and external auditors to support IT control assessments and help facilitate testing plans and support initiatives related to internal controls, compliance requirements, privacy, and cyber initiatives.
  • Prepare for and assist with internal and external audits by managing audit requests, coordinating walkthroughs reviewing deliverables, and managing document repository.
  • Provide relevant awareness training to control and process owners.
  • Execute and monitor quarterly IT CSA process and maintain control and process owner matrix
  • Revamp IT Narratives format, partner with control and process owners to enhance process information for in-scope applications and tools
  • Conduct IT remediation plans through completion
  • Prepare and present updates to IT Risk & Compliance team, including IT control deficiencies and remediation plans
  • Perform ad-hoc special projects, as deemed necessary

Education Requirements:

  • Bachelor's Degree or a related technical discipline, or the equivalent combination of education, professional training or additional work experience

Qualifications in order to be considered:

  • Minimum Three (3) years’ experience in IT internal controls testing, SOX documentation, and compliance audits
  • Experience in cyber security and privacy regulatory controls frameworks such as CMMC, NIST 800-53, NIST Risk Management Framework, and General Data Protection Regulation
  • Strong knowledge of Sarbanes Oxley, IT general controls, audit methodologies and IT compliance issues
  • Strong data analysis experience and skills; must be able to dive deep into data, call out trends, and make recommendations to influence results
  • Experience independently evaluating controls over IT processes

Preferred Qualifications, but not required:

  • Experience in defense contract industry highly preferred
  • Previous experience executing IT Risk & Compliance initiatives at a Big 4 accounting firm
  • CISSP, CISA and/or CISM
  • Able to assert own ideas and actively demonstrate influencing skills to persuade others at all levels in the company
  • Excellent written and verbal communication skills; must be able to succinctly and accurately articulate information and data

The likely salary range for this position is $80,000 - $120,000, this is not, however, a guarantee of compensation or salary; rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

View information about benefits and our total rewards program.

About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.