Sr. InfoSec Governance Analyst, Hybrid
Alliant Credit Union
Cyber Security
Job Level
SeniorLead
Tech Stack
Cyber Security
About the role
- Reports to the Director of Compliance
- Conducts in-depth internal audits assessing effectiveness of internal controls, accuracy of operational processes, and efficiency across finance, procurement, human resources, and technology
- Performs rigorous vendor audits for contractual adherence, conflicts of interest and regulatory requirements
- Performs audits of Employee and Board of Manager files ensuring privacy, conflicts of interest, and regulatory compliance
- Leads internal audits related to Fraud, Waste, and Abuse (FWA) and analyzes delegated oversight policies
- Analyzes complex operational and financial data to identify and report patterns indicative of fraud, waste, and/or abuse; evaluates results from prior audits to discern FWA trends
- Translates complex FWA information into clear communications for diverse stakeholders, verbally and in writing
- Monitors changes in relevant laws, regulations, and industry standards; maintains up-to-date audit best practices
- Contributes to development and implementation of the organization's annual audit plan and risk management strategies
- Develops and recommends improvements to policies, procedures, and systems to enhance internal control environment
- Prepares comprehensive monthly reports detailing audit findings, activities, and recommendations for executive leadership
- Performs other duties as assigned to support auditing functions and organizational objectives
Requirements
- Bachelor's Degree (higher degree accepted) in accounting, finance, public administration, business or related field
- 7 years Progressive and comprehensive audit experience, preferably in internal audit or public accounting
- Thorough familiarity with Sarbanes-Oxley Act (SOX) requirements and other relevant regulatory frameworks (e.g., HIPAA, state public information acts)
- Comprehensive knowledge of audit methodologies, including risk assessment, sampling methods, and internal control testing
- Solid understanding of both internal and external audit processes
- Knowledge of industry-specific regulations (healthcare, finance, government)
- Understanding of IT systems, databases, and software relevant to financial reporting and auditing
- Strong analytical skills; root cause analysis and corrective action formulation
- Knowledge of cybersecurity risks and controls, data privacy regulations, and IT governance frameworks
- Knowledge of common fraud schemes and red flags
- Skilled at managing interdisciplinary teams
- Excellent organizational skills and ability to manage multiple priorities
- Ability to take initiative, meet deadlines, exercise sound judgment, and maintain objectivity and integrity
- Proficient with Microsoft Office 365 (SharePoint, Visio, Excel, Microsoft Project)
- Ability to use audit software and tools (ACL, IDEA, Excel) for data analysis and testing
- Exceptional written and verbal communication skills
- Maintain attendance and positive work relationships
