Control Compliance Management

Job Description

• Work closely with business and IT team leads, peers, development teams, business analysts, and end users to implement and maintain appropriate controls.
• Regularly participate in projects to onboard new technologies, apply existing or develop new controls.
• Support Information Security programs which include governance (policy & standards), security enhancements, new security technology evaluation and testing.
• Other key elements of the role include client communications, documentation, and security awareness.
• Maintaining MI for relevant governance forums.
• Raising and overseeing escalations for control failures.
• Facilitation of internal and external audit for related controls.
• Maintenance of the Control CI library.
• Participating in client audit representing control domains.
• Support management of IT audit points.
• Drive efficiency and automation of Compliance process
• Facilitate periodic reviews of controls to enable recertification processes to be completed and recorded.
• IT Service Assurance - Control Compliance
• Project: Supporting the delivery and implementation of controls
• Continuous improvement of processes and technology
• Compliance of processes and controls with requirements of IT strategic risks
• Deliver education and group training sessions in relation to control processes.
• To carry out any other duties which are within the employee's skills and abilities whenever reasonably instructed.
• To exercise due care and diligence, ensuring the areas the role is responsible for are organised and controlled.
• To uphold responsibilities for risk and business continuity practices as appropriate to the position the role holds within the organisation.
• To comply with the regulatory regimes in which SS&C operates, with particular consideration given to relevant Client Asset,
• Data Protection and Financial Crime Prevention regulations, as appropriate to the above role

All employees are accountable for the delivery of a Quality service, driving for excellence in all their work activities:

• To be quality driven, aiming for 100% accuracy and timeliness of delivery
• To effectively plan the way services are delivered so that all activity is directly related to providing quality services and meeting the expectations of the customer (internal and external)
• To continuously review processes and practices relating to the role and act as a catalyst for change and improvement in individual and team performance
• To observe proper standards of market, business and personal conduct, demonstrating integrity in the execution of duties
• To communicate and promote the values which reinforce and support a consistent quality culture

Qualifications:

• Experiencing with creating/managing groups/user accounts within Active Directory
• Experience with a regulatory risk and control framework (General IT Controls, COBIT, ISO27001, AAF, CASS, SOX)
• Comfortable working in a fast-paced, customer-focused organisation, undergoing continued change. Flexible and able to adapt to new situations as the business\IT demands
• A consistent attitude and respect for high quality standards and maintains this despite competing pressures
• Hands on Access Management experience for hosted and cloud based systems ITSM/ITIL Experience/Qualification
• Experience in documenting, developing, or implementing control processes
• Experience of working with senior Information Security, Compliance and Audit professionals
• Experience in IT project delivery
• Knowledge with IAM and PAM processes and controls
• Knowledge of identity management systems including Active Directory and AWS Experience with tools (ie SQL, Powershell )
• Work closely with business and IT team leads, peers, development teams, business analysts, and end users to implement and maintain appropriate controls.
• Regularly participate in projects to onboard new technologies, apply existing or develop new controls.
• Support Information Security programs which include governance (policy & standards), security enhancements, new security technology evaluation and testing.
• Other key elements of the role include client communications, documentation, and security awareness.
• Maintaining MI for relevant governance forums.
• Raising and overseeing escalations for control failures.
• Facilitation of internal and external audit for related controls.
• Maintenance of the Control CI library.
• Participating in client audit representing control domains.
• Support management of IT audit points.
• Drive efficiency and automation of Compliance process
• Facilitate periodic reviews of controls to enable recertification processes to be completed and recorded.
• IT Service Assurance - Control Compliance
• Project: Supporting the delivery and implementation of controls
• Continuous improvement of processes and technology
• Compliance of processes and controls with requirements of IT strategic risks
• Deliver education and group training sessions in relation to control processes.
• To carry out any other duties which are within the employee's skills and abilities whenever reasonably instructed.
• To exercise due care and diligence, ensuring the areas the role is responsible for are organised and controlled.
• To uphold responsibilities for risk and business continuity practices as appropriate to the position the role holds within the organisation.
• To comply with the regulatory regimes in which SS&C operates, with particular consideration given to relevant Client Asset,
• Data Protection and Financial Crime Prevention regulations, as appropriate to the above role