IT Risk and Controls Testing Analyst
Salary: Circa £45,000 Per Annum
Location: Remote with two monthly visits to the office in Dudley.
Job Description
I am working with a long standing client who are a n established, global business with a fantastic reputation in their field. Furthermore, they have a fantastic reputation for delivering major investment in technology, governan e and compliance. This is an exciting opportunity to play a vital role in strengthening IT risk and controls across a complex global estate.
This is a key role focused on IT General Controls (ITGC), SOx compliance, audit readiness and controls assurance across the wider IT function.
You will take ownership of planning and delivering control testing, supporting audit activity and helping ensure compliance frameworks remain robust, effective and audit-ready. This would suit someone with a background in IT audit, SOx controls or IT risk who enjoys detail, structure and working closely with both internal stakeholders and external auditors.
Responsibilities
Deliver ITGC and SOx control testing across the annual compliance plan
Conduct walkthroughs and assess control effectiveness
Produce and maintain testing documentation, working papers and audit evidence
Identify control gaps, deficiencies and remediation actions
Support quarterly controls self-assessments and ongoing compliance reporting
Work closely with control owners, IT leadership and external auditors
Track testing timelines and ensure audit deliverables are met
Support wider risk, governance and compliance initiatives across IT
Risk and Issue Management
Identify, assess, and manage risks and issues.
Escalation to stakeholders for support and decisions where appropriate
Collaboration with External Auditors
Work closely with external auditors to align on testing timelines and requirements.
Facilitate and accelerate the testing process wherever possible.
Address auditor queries and provide and ensure that the evidence documentation is provided in a timely manner
Experience Required
Previous experience in IT audit, SOx compliance, IT risk or controls testing
Strong understanding of IT General Controls and audit frameworks
Experience working with external auditors and compliance programmes
Knowledge of SOx, SOC1 / SSAE 18 and wider governance requirements
Experience with GRC platforms or compliance tooling would be beneficial
Strong stakeholder engagement and communication skills
Professional certifications such as CISA or CRISC would be advantageous.
Qualifications
Professional certification such as CISA, CRISC, CPA or willingness to pursue professional qualification.
4 to 7 Years of hands-on experience with various aspects of IT SOx including application scoping, flowcharts, risk-control matrix, testing, evaluation of deficiencies and remediation testing
ECS Recruitment Group Ltd is acting as an Employment Agency in relation to this vacancy