Sr. IT Controls Consultant - Piracicaba, Brasil - Caterpillar

Caterpillar

Empresa verificada

Piracicaba, Brasil

há 4 semanas

Postado por:

Ana Silva

beBee Recruiter

Descrição

Career Area:

Information Technology**:

IT IS YOUR TIME
Caterpillar Inc.

is the world's leading manufacturer of construction and mining equipment, off-highway diesel and natural gas engines, industrial gas turbines and diesel-electric locomotives.

For nearly 100 years, we've been helping customers build a better, more sustainable world and are committed and contributing to a reduced-carbon future.

Our innovative products and services, backed by our global dealer network, provide exceptional value that helps customers succeed.

When you join Caterpillar, you're joining a global team who cares not just about the work we do - but also about each other.

We are the makers, problem solvers and future world builders who are creating stronger, more sustainable communities.

We don't just talk about progress and innovation here - we make it happen, with our customers, where we work and live.

Together, we are building a better world, so we can all enjoy living in it.

Important:

-
Don't forget to include a resumé in English in your profile in Workday

Job Profile / Activities**:

Provide Guidance on Execution of IT Controls

Provide guidance and train teams on ownership, implementation, and execution of IT controls.
Communicate, implement, and manage organizational change of IT control changes and ownership.
Coordinate and lead training of Process Owners, Execution Owners, and Execution teams on IT Controls requirements.
Develop strong relationships with Process Owners and Execution Owners
Overall key contact for IT controls and governance compliance.

Provide Guidance on Remediation of IT Controls

Provide enterprise governance and consultation on IT controls policies, processes, deadlines, and testing.
Ensure IT Control Assessment participants understand results and make recommendations based upon implications.
Provide guidance to execution teams to help ensure control issues are remediated timely.
Challenge stakeholders on root causes of risk and effectiveness of remediation activities.
Coordinate with Information Security to streamline the Risk Awareness Process for selfidentified issues to IT Controls Compliance.

Sustain Control Environment

Coordinate the scheduling, monitoring and management of internal selfassessments collaborating with Process Owners, Execution Owners and Execution teams across the enterprise.
Train impacted Process Owners, Execution Owners and Execution Team Members on how to complete selfassessments.
Lead risk assessment reviews of processes to ensure compliance, proactively manage risk, and contribute to the annual risk management process.
Escalate noncompliance to controls or deadlines to IT Management.
Ensure IT controls and governance tools and artifacts remain in alignment with the current organization and responsibilities.
Engage with Process Owners to understand compliance for their process(es) and make process improvement recommendations.
Lead teams in continuous improvement activities within the IT Control framework.
Execute User Acceptance Testing (UAT) for changes/enhancements of the ServiceNow GRC module for the selfassessment process.
Lead projects on the continuous improvement of the IT Controls methodology.

Reporting

Identify and document reporting requirements to ensure relevant risk and compliance reporting to IT management.
Communicate relevant risk and compliance status to appropriate Process Owners and/or Execution Owners.

B asic Qualifications**
Education:A Bachelor's degree or 5-7 years of progressively complex experience, generally gained through assignments in Information Services and related areas (e.g., Digital, Accounting, Engineering, Finance & Financial Products, Human Resources, Legal, Logistics, Manufacturing & Supply Chain, Marketing & Product Support, Purchasing & Procurement, etc.).

Preference for an auditing, compliance, cybersecurity, or risk management background and/or experience in managing risk through identification, assessment, and mitigation

Language:
Pre-Advanced English

Behavioral skills**:

Initiative, accountability, process focus, and communication skills.

Ability to understand multiple perspectives, evaluate effectiveness and efficiency of process(es), communicate appropriately, and make recommendation(s) with a strategic enterprise perspective.

Experience in delivering difficult issues and messages to business partners and/or IT leadership while maintaining composure.

Desirable Qualifications
Industry and professional certification(s) (e.g., CRISC, CISA, CISM, CISSP, CIA, CPA, CSCP, etc.).

Some of
the offered
benefits: