Remote Sr Analyst, IT Internal Control

Job Description

Position Summary

One of our financial technology clients that specializes in payment processing and data security solutions for enterprises is seeking a Senior Analyst, IT Internal Control to further develop and maintain the company's IT system of internal controls, following internal control framework guidance, regulatory requirements, and industry best practices. The Senior Analyst, IT Internal Control will work with functional area leadership to identify and assess key process risks and evaluate internal control effectiveness.

Essential Duties and Responsibilities

Include the following and other duties may be assigned:

• Facilitate and review IT process risk assessments conducted by functional area leadership.
• Evaluate and test IT internal controls design and operational effectiveness, including ITGCs.
• Identify, report, and monitor remediation of IT internal control gaps.
• Ensure compliance with regulatory requirements (e.g., PCI-DSS, PCI-P2PE, GDPR, etc.).
• Identify opportunities for process improvements to enhance IT internal controls.
• Version 08.26.2025
• Conduct internal audits of the information security management system (ISMS) for ISO 27001 certification.
• Support internally built tool, Risk and Control (RAC) Salesforce application enhancement project.
• Assume business owner duties for RAC application, including management and monitoring of application fixes and improvements.
• Generate and/or maintain RAC application user guides.
• Perform analysis to determine proper data validation for all data elements used in projects.
• Analyze existing data and database schema.
• Generate process flow maps as needed for process improvement projects.

Skills and Requirements

The ideal candidate will have experience in the following areas:

• Facilitating and conducting IT process risk assessments, testing internal control design and operational effectiveness, and identifying control gaps.
• Conducting information security management systems (ISMS) reviews/audits.
• Experience in the payment/data security and/or payment processing environments, familiarity with the PCI-DSS and PCI-P2PE, and a working knowledge of SOC 2 and ISO 27001 certification.

Skills and Qualifications

To perform this job successfully, the individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required.

• Strong knowledge and experience with internal control and security compliance frameworks (e.g., COSO, COBIT, NIST, SOC 2, ISO 27001, etc.).
• Experience / strong working knowledge of relational databases.
• Experience working multiple concurrent projects.
• Meticulous attention to detail to ensure accuracy and completeness of documentation.
• Ability to demonstrate the Bluefin Leadership Model of high integrity, customer focus, relationship building, innovation, accountability, and communication.
• Strong interpersonal skills, including verbal and written skills.
• Demonstrated ability to facilitate collaborative discussions.
• Ability to work independently, take initiative, and contribute to new ideas required in a diverse, fast-paced, deadline-driven team environment.
• Experience discussing and presenting ideas to technical and non-technical audiences.
• Organizational and analytic skills, with strong problem-solving ability.
• Advanced computer skills in Word, Excel, Outlook, and Salesforce with the ability to multi-task.
• Understanding developer logic, ability to think logically, and understanding of software limitations.
• Working knowledge of user acceptance testing.

Education/Experience

• Bachelor's degree or equivalent (e.g., Information Technology, Information Systems, Accounting, Finance, or related field).
• 5+ years’ progressive experience in IT audit (internal/external), internal control, or related areas.
• Professional certifications (e.g., CISA, CIA, CRISC, CRMA) are a plus.
• Knowledge of payment/data security and/or payment processing industries (preferred).
• Strong knowledge of Microsoft Visio.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected]. To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: