IT Compliance Analyst

CFT Group · Parma, Emilia romagna, Italia · · 50€ - 70€

Descrizione dell'offerta

Job Description

We are looking for a motivated IT Compliance Analyst to support our IT Governance, Risk and Compliance framework, focusing on IT General Controls (SOX), SAP authorization governance, Segregation of Duties (SoD), user access management and audit support. The role involves close collaboration with IT teams, SAP specialists, business owners and auditors to ensure IT controls are properly designed, documented, tested and improved. An excellent opportunity for professionals experienced in IT compliance, audit, risk management or SAP security.

Key Responsibilities

  • Maintain and improve documentation for IT controls, policies, risk assessments and compliance activities.
  • Support design, testing and enhancement of ITGCs (access, change management, IT operations and monitoring).
  • Perform control testing, identifying gaps, risks and process weaknesses.
  • Support remediation plans and prepare reports and evidence for audits.
  • Contribute to IT risk assessments and mitigation actions.
  • Promote compliance awareness across IT and business teams.
  • Support automation of compliance processes, access reviews and monitoring.
  • Use and evaluate GRC tools for access governance, SoD analysis and reporting.
  • Improve access recertification, privileged access monitoring and documentation.
  • Apply frameworks such as ITIL, ISO 27001, SOX/ITGC and internal control standards.
  • Support SAP authorization governance (roles, provisioning, workflows, access reviews).
  • Monitor joiner/mover/leaver processes, privileged and emergency access.
  • Analyze SoD conflicts and support mitigation actions.
  • Collaborate with SAP teams to ensure least privilege principle.
  • Prepare SAP audit documentation using tools such as PFCG, SU01 and SUIM.

Requirements

  • Degree in IT, Computer Science, Business Administration, Engineering or related field.
  • 3–5 years of experience in IT compliance, audit, risk management, internal controls or SAP security.
  • Good knowledge of ITGCs, audit methodologies and control testing.
  • Understanding of SoD and authorization risk analysis.
  • Knowledge of IAM, change/incident management and IT operations.
  • Familiarity with ITIL, ISO 27001, SOX or similar frameworks.
  • Experience with SAP authorizations, roles and user administration. Strong analytical, documentation and communication skills; detail-oriented and well-organized.

Nice to Have

  • Certifications (CISA, CRISC, ISO 27001, SAP Security/GRC).
  • Experience with Pathlock or similar tools.
  • Background in multinational or manufacturing environments.
  • Knowledge of compliance requirements for listed companies.
  • Experience in audit remediation or IT control improvement projects.

Work Conditions

Full-time position in Italy with hybrid model. Occasional availability outside standard hours and travel depending on business or audit needs.

#J-18808-Ljbffr
Candidati ora Torna all'elenco

Azioni

Candidati ora Salva nei preferiti Torna all'elenco