Job Description
Hybrid role - *3 days per week in our Newcastle Office
The IT Compliance Auditor is a mid to senior level position within the Global IT controls compliance team. The Compliance Auditor, as part of a team, will conduct compliance and operational reviews of Information Systems policies, procedures, and control frameworks used by IT operational teams to validate the accuracy, effectiveness and relevance of Sage’s IT policies governing System Security, Data Governance, Operational Controls, and Change Control to ensure compliance with Sage internal controls framework and industry best practice. The Compliance Auditor will interact with IT Application development teams, IT Technology Infrastructure teams, and IT Operational support personnel across the company and will be exposed to all levels of Information Technology and Systems used in Sage’s business operations.
Develop audit plans for new audits and improve audit plans for existing audits.
* Execute audits and provide high-level documentation for review and reliance by external auditors.
* Assist with the implementations and upgrades of audit systems, including Global GRC.
* Ensures compliance with policies and controls by examining and analyzing records, reports, operating practices, and documentation; recommending opportunities to strengthen the internal control structure.
* Document and deliver audit reports and findings to executive management and external auditors.
* Identify, and clearly define, audit issues and root causes, recommend improved internal controls and business processes, and ensure that corrective action plans are developed and implemented.
* Provide guidance or consulting on the development of applicable procedures and policies, and the remediation of known issues.
* Work directly with internal and external auditors to coordinate annual IT General Computing Controls compliance audit testing and the review of findings.
Key Skills Required -
* Knowledge and experience of control frameworks, risk management, SOX, and ITGC compliance.
* Familiarity with GRC platforms and audit tools.
* Ability to influence, drive accountability and successful outcomes.
* Ability to work collaboratively across teams and with auditors to ensure compliance.
* Proven track record of successful delivery autonomously.
* Strong ability to influence stakeholders and manage competing priorities with a hands-on, results-oriented approach.
* Excellent written and verbal communication skills, with the ability to communicate complex risk and control details to non-technical stakeholders.
* Strong analytical and problem-solving skills, with the ability to identify risks, propose solutions, and drive continuous improvement.
* Demonstrated ability to work collaboratively across teams and with senior leadership. Skilled at building relationships and influencing others and driving accountability.