Location: Milpitas, CA or San Jose, CA
Duration: minimum 9 Months and can be extended further as well
Qualifications
Basic
• CISA (Certified Information Systems Audit) Qualified
• Bachelor's degree or foreign equivalent required from an accredited institution. Will also consider three years of progressive experience in the specialty in lieu of every year of education.
• t least 10+ years of experience with IT with experience in implementing Oracle GRC or Equivalent tool set
• Extensive experience with SOD Analysis/Resolution/Mitigation, Sensitive Access identification/mitigation, Identification of Finance controls in a cross functional ERP implementation in Manufacturing environment
• bility to connect with Security and Controls team with in IT, Internal Audit and Finance control group with in customer organization
Preferred
• bility to assess, plan and execute Security and Compliance requirements for ERP implementation
• Consulting experience around analysis/resolution/mitigation of Segregation of Duties (SODs), Identification and mitigation of Sensitive Access.
• Designing SOD risk libraries by conducting workshops with business process owners and optimization of the same on a long term basis
• Resolving client risk management issues leveraging continuous control monitoring, SOD preventive checks, access provisioning & other functionality of GRC suites and defining of SOP's.
• Defining the Standard Operating Processes (SOP's) around GRC for effective compliance on an ongoing basis
• Excellent analytical skills which have been used to develop multiple templates for optimizing risk libraries, quick win SOD remediation templates, responsibility mining activities
• Prior Preventive Enforcement Agent (PEA) functionality implementation experience
• bility to work in cross-functional team involving technical and functional consultants and the end user.
• In-depth knowledge of Oracle GRC tools (Optional): Access Controls Governor (ACG), Configuration Controls Governor (CCG), Transaction Controls Governor (TCG) and Preventive Controls Governor (PCG) with end to end implementation experience of all the four modules
• Past experience with understanding and implementing SDLC audit requirements and working with customer internal audit team to get audit clearance
• Excellent understanding of the Oracle EBS Application controls that are incorporated in various business processes.