Support other security and privacy compliance requirements such as ISO / SOC2, NIS2, DORA, EO 14117, EU CRA, EU AI Act, GDPR, etc + Support Shift-Left and Agentic AI efforts to improve the SDLC by moving testing and security earlier in the lifecycle and automating processes to reduce manual development and compliance efforts **Qualifications** + Strong understanding of internal control over financial reporting (ICOFR), risk assessment, IT General Controls (ITGC), and PCAOB expectations + Demonstrated experience testing ITGCs for applications, operating systems, and databases and reviewing / validating the completeness and accuracy of audit evidence + Experience in constructively challenging internal and external auditors when appropriate, ensuring audit requests and findings are risk based, practical, and aligned with regulatory guidanceAttention to detail and quality, balanced with the ability to see the big picture and identify areas for process simplification + Ability to proactively look ahead, anticipate questions, independently assess risk, think critically and creatively to achieve the best outcome, and elevate issues to the right level internally and externally to resolve + Proven ability to work in a deadline-driven environment and handle multiple projects simultaneously + Excellent interpersonal, written and verbal communications, presentation and influencing skills + Strong planning and project management skills **Education & Experience** + 8+ years of experience in IT Audit, IT Compliance, or a related discipline, with direct SOX IT compliance experience + Bachelor's degree in Business Administration, Accounting, Management Information Systems (MIS), Computer Science or related field + Preferred certifications: CISA, CISM, CRISC, CISSP or similar certifications **Required Knowledge & Skills** + Business Processes + ICOFR + IT General Controls + IT Audit + System and Organization Controls (SOC) reports **Preferred Knowledge & Skills** + Auditing Github or similar source code repositories + Automating compliance efforts to reduce manual burden + Cybersecurity Governance, Risk & Compliance + Control frameworks such as NIST CSF, NIST AI RMF, ISO 27001, SOC2, etc + Familiarity with AI risk management **Impact & Scope** * Impacts function and leads and/or provides expertise to functional project teams and may participate in cross-functional initiatives. **Benefits:** HP offers a comprehensive benefits package for this position, including: + Health insurance + Dental insurance + Vision insurance + Long term/short term disability insurance + Employee assistance program + Flexible spending account + Life insurance + Generous time off policies, including; + 4-12 weeks fully paid parental leave based on tenure + 11 paid holidays + Additional flexible paid vacation and sick leave (US benefits overview (https://hpbenefits.ce.alight.com/) ) The compensation and benefits information is accurate as of the date of this posting.