Lamb Weston

Manager, Information Security

Lamb Weston

full-time

Posted on:

Location Type: Remote

Location: Remote • Alaska, Hawaii, Maryland, Pennsylvania • 🇺🇸 United States

Visit company website
AI Apply
Apply

Salary

💰 $127,620 - $191,400 per year

Job Level

SeniorLead

Tech Stack

Cyber Security

About the role

  • Own and maintain the SAP Risk Management rule set, ensuring alignment with SOX control requirements, segregation of duties principles, and evolving business processes to support compliant and efficient access governance
  • Able to handle multiple concurrent projects, including work paper review, workload balancing, defining, and monitoring progress against key milestones
  • Able to handle a complex and rapidly changing IT and business environment and respond accordingly to ensure successful completion of assigned workflow control deliverables in the IT SOX program
  • Serve as the Subject Matter Expert and Technical Process Innovator for all IT General Control (ITGC) (SOX controls), acting as a unification point between process owners and control stakeholders to align on requirements, interpret testing results, and drive timely remediation of any identified deficiencies
  • Performing risk assessment to defined systems and working with Internal/External Audit, identify which IT General Controls are to be in scope (Key Controls)
  • Working with process owners to achieve successful implementation of IT controls for systems and applications newly added to scope
  • Identifying opportunities for continuous improvement in the quality and efficiency of our IT General Controls (SOX) program
  • Communicating with GRC Compliance and Internal Audit management regarding testing status, control issues and deadlines
  • Building and maintaining effective relationships with the business areas, including understanding changes to IT processes and potential impact to the IT General Control environment
  • Collaborating across the GRC, and Internal Audit team to achieve department goals beyond IT General controls, such as teambuilding efforts or cross-department initiatives
  • Maintaining sufficient IT-based knowledge, awareness of emerging trends and professional certifications to meet the requirements of the Cyber Security and Internal Audit Charter
  • Function as a Technical Process Innovator and Subject Matter Expert for SAP Risk Management and IT General Controls monitoring, optimizing monitoring processes, strengthening control reliability, and advancing compliance efficiency
  • Oversee SAP GRC Risk Management rule set integrity through continuous review and auditing of segregation of duties and sensitive access risks, ensuring documentation accuracy and sustainable governance practices
  • Build and maintain crosswalks across frameworks (SOX, ISO 27001/2, NIST CSF/800-53, SOC 2, GLBA, as applicable) to enable control reuse and reduce audit duplication

Requirements

  • 3-5 relevant years experience with SAP GRC Modules
  • A relevant bachelor’s degree is required
  • Professional certifications such as Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA) or Certified Public Accountant (CPA) are preferred
  • Minimum of 7 years of relevant experience in internal audit, external audit, and/or risk consulting
  • Minimum of 5 years of experience performing IT General Control (SOX) work in a management role, including supervision of team members
Benefits
  • Health Insurance Benefits - Medical, Dental, Vision
  • Flexible Spending Accounts for Health and Dependent Care, and Health Reimbursement Accounts
  • Well-being programs including companywide events and a wellness incentive program
  • Paid Time Off
  • Financial Wellness – Industry leading 401(k) plan with generous company contributions, Financial Planning Services, Employee Stock purchase program, and Health Savings Accounts
  • Life and Accident insurance
  • Family-Friendly Employee events
  • Employee Assistance Program services – mental health and other concierge type services

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
SAP GRCIT General Controlsrisk assessmentSOX compliancecontrol testingmonitoring processessegregation of dutiesauditcontinuous improvementdocumentation accuracy
Soft skills
project managementworkload balancingcommunicationrelationship buildingcollaborationproblem-solvingleadershipadaptabilityteam buildingprocess innovation
Certifications
Certified Information Systems Auditor (CISA)Certified Internal Auditor (CIA)Certified Public Accountant (CPA)