It Controls Architect Jobs

Career Area:

Information Technology

:

The IT Controls Architect acts as the primary subject matter expert of IT governance, risk, and compliance. Individuals in this position are expected to lead interactions with internal customers at all levels from staff to senior management across Global Information Services and Caterpillar Corporate Governing bodies such as Corporate Risks & Controls, Corporate Legal, Corporate Ethics & Compliance, and Corporate Internal Auditing & Advisory Services. Incumbent may also interact externally with Caterpillar’s external auditors. Incumbent supports global geographic regions.

Provide Guidance on Remediation of IT Controls

• Understand all compliance and regulatory requirements and coordinate appropriate schedules of assessment and audits.
• Own relationships and manages team members’ relationships with key Process Owners and Execution Owners.
• Provide oversight and consultation and/or remediation on issues/potential issues that arise within execution of controls within the IT Control Framework.
• Challenge stakeholders on root causes of risk and effectiveness of remediation activities.

Consult on IT Control and Framework Design

• Work with the business and other control functions to provide valuable input into mitigating risk and improving the design and operating effectiveness of internal control. Recommends workable solutions for their areas.
• Work effectively in new areas and learns new technical concepts, applying internal control practices.
• Sought out by team members and staff in other departments for expertise on rules, and policies related to risk and controls.
• Interacts effectively with the business and other control functions to understand risk, business processes and controls.
• Work with the ITCG division for development and maintenance of an IT risk taxonomy (e.g., risk criteria such as impact, likelihood, inherent and residual risk).
• Analyzes policies and procedures to determine risk, identify internal controls to achieve control objectives, recommend control improvements.
• Supports key projects and/or initiatives to ensure that risk and internal control issues are being addressed on a timely basis.
• Work with the business and other control functions to conclude on the root cause of issues and provide guidance and advice on the design and implementation of effective internal control to appropriately mitigate risk.
• Ensure the IT Control Framework covers the relevant risk standards, policies, control procedures and regulations to maintain an effective control environment.

Sustain Control Environment

• Proactive in driving improvements to internal control activities performed by the ITCG division.
• Collaborates with the business and other control functions to review the results of monitoring and testing activities to identify internal control issues and potential improvements.
• Coordinate team activities for the sustainment of the control environment.
• Assists in the maintaining of the IT Control Framework (e.g., policy mapping, control objectives, control statements, business considerations, etc.), including a periodic review of the IT Control Framework
• Utilize external research to continually evolve control framework and validate relevance.

Reporting

• Engage with the ITCG division and GIS stakeholders to identify control reporting needs. This includes metric identification, dashboard views, report frequency, use and distribution.
• Provide data expertise support for existing reports, dashboards, measures or other tools.

Conduct External Research

• Proactively researches best practices and learns new technologies and systems to Identify emerging risk, and advance knowledge of reporting and analysis.
• Analyzes regulatory requirements and contributes to the design of effective controls.
• Performs complex research and analysis on global rules, policy mapping and control.

Basic Qualifications

• Preference for an auditing, compliance, cybersecurity, or risk management background and/or experience in managing risk through identification, assessment, and mitigation.
• Experience analyzing and providing recommendations for governance and risk compliance.
• A Bachelor’s degree or 6-8 years of progressively complex IT experience, generally gained through staff assignments in Information Services and related areas (e.g., Digital, Accounting, Engineering, Finance & Financial Products, Human Resources, Legal, Logistics, Manufacturing & Supply Chain, Marketing & Product Support, Purchasing & Procurement, etc.).
• A deep level of understanding and experience from more than one IT business operation and/or process including but not limited to application development and support, infrastructure implementations, and consolidations and support.
• Familiarity with industry standard control frameworks (e.g., ITIL, COBIT, NIST, ISO).

Top Candidates Will Also Have

• Provides project leadership, expert advice, and counsel to IT personnel, management, and project teams.
• Independently performs non-routine and complex analysis and solves problems with limited supervision.
• Manages multiple complex tasks simultaneously, adjusting priorities as needed.
• Strategically acts on opportunities for improvement in quality or core processes.
• Strong attention to detail in analysis and deliverables.
• Determines the best course of action from among alternatives by leveraging data and experience.
• Motivated and resourceful learner.
• Clear and concise in oral and written communication.
• Leads organization to increased process maturity and develops departmental standard practices for the execution of business processes across functional organizations.
• Industry and professional certification(s) (e.g., CRISC, CISA, CISM, CISSP, CIA, CPA, CSCP, etc.).
• Understands and effectively communicates the enterprise vision to different audiences.

Relocation is available for this position.

EEO/AA Employer. All qualified individuals - Including minorities, females, veterans and individuals with disabilities - are encouraged to apply.

Not ready to apply? Submit your information to our Talent Network here .