Downers Grove, IL, USCategory: Information Technology Description:
Donnelley Financial Solutions (DFIN) is a leader in risk and compliance solutions, providing insightful technology, industry expertise and data insights to clients across the globe. Were here to help you make smarter decisions with insightful technology, industry expertise and data insights at every stage of your business and investment lifecycles. As markets fluctuate, regulations evolve and technology advances, were there. And through it all, we deliver confidence with the right solutions in moments that matter.Position Description
This position is responsible for performing and supporting role in the IT Governance managed SSAE-18 SOC2, SOX 404, HiTrust, and other audit programs. This position has several principle accountabilities as outlined below. This position reports directly to the IT Governance Manager.Principal Responsibilities
Directly responsible for providing supporting role in our annual IT audit programs including SSAE-18 SOC2, SOX 404 and HiTrust initiatives.
Support of our SOC2 IT controls assessment program including key testing controls such as patch management, backup process, vulnerability management and network related controls.
Interprets regulations affecting control standards and suggests methods of updating policies and practices that address any risk concerns
Remediation scope of work: Identifies areas to monitor and escalate issues and finding to appropriate stakeholders
Plan re-mediations with proper stakeholders
Liaise with application, IT operations, IT Infrastructure and IT security teams to provide accurate and timely responses to internal and external audit requests and related activities.
Provide timely and accurate status and metrics.
Ability to work independently with or without direction and/or supervision.
Ability to prioritize and multitask. Flexibility and adaptability in work approach.
Ability to work directly with internal and external audit partners.
Calmness, clarity and due diligence process oriented and does not sink under pressure and ability to maintain confidentially.
Strong written, pays attention to detail, and verbal communication skills.
Demonstrated leader with team-oriented interpersonal skills; ability to effectively interface with a broad range of people and roles.
In-depth understanding of IT Service Delivery, ITIL and Project Management.
Proven experience in SSAE18 SOC, SOX or HiTrust audits for medium to large enterprises
Risk frameworks and ISO27001 knowledgeable
Experience in Financial Services industry is preferred.
Working knowledge and experience with MS Office products including Word, Excel, PowerPoint & Visio. MS Sharepoint or Google experience preferred and confluence.
Expert in documentation and assisting with standard procedures
Knowledge of Data Center Operations, IT Governance, security, risk and compliance standards and process.
Technical proficiency in UNIX, DNS, Windows Server, Internet routing, TCP/IP protocols, Network technologies, and other foundational technology concepts
Knowledge of risk assessment procedures, policy formation, role-based authorization methodologies, authentication technologies and cyber-attack techniques
Ability to relate business requirements & risks to technology implementation for security-related issues
5 or more years of Information Technology related work experience.
3 years of Identity Access Management experience
3 or more years experience in SOC2/SOX related audits.
3 or more years experience with Risk Framework
3 or more year experience with Vulnerability Management
3 years of experience with Cloud Governance, cloud applications and Infrastructure
Experience working in the Financial Services Industry.
Experience leading projects and service delivery initiatives.
Customer facing experience preferred.
It is the policy of Donnelley Financial Solutions to select, place and manage all its employees without discrimination based on race, color, national origin, gender, age, religion, actual or perceived disability, veteran's status, actual or perceived sexual orientation, genetic information or any other protected status.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access as a result of your disability. You can request a reasonable accommodation by sending an email to .
Nearest Major Market: Chicago
Job Segment: Developer, System Administrator, Unix, Sharepoint, Project Manager, Technology