IT Business Analyst- Governance

At Kraton, we make a Positive Difference, and we are looking for individuals who are also looking to make a difference in their jobs, for our customers and to the world.  We are looking to hire a key member of our IT Governance team in Jacksonville, Florida.

The IT Governance Analyst will be responsible for compliance testing for all Kraton IT operations - Conducting all weekly, monthly, quarterly, and annual SOX testing and control effectiveness of IT General Controls (ITGC); perform various ITGC reviews; including (but not limited to) access, SOD, privileged access and SAP access; act as liaison between external/internal auditors and IT.

• Establish processes to support the controls and ensure that control self-assessments are conducted in a timely manner ensuring completeness and accuracy
• Works with key stakeholders on other security and compliance initiatives
• Support the Risk & Compliance team to implement processes and controls to ensure the Company’s compliance with other regulatory and industry mandates such as SOX, GDPR, and CCPA
• Participate in identifying and validating key controls to address IT and business risks and work with various teams to address identified deficiencies
• Participate in audits of third parties such as vendors, services providers, consulting organizations
• Facilitate and support assessments and audits by internal/external auditors and assessors
• Ensure that appropriate documentation in the form of policies, standards and procedures is created and managed to support the various security, compliance and audit requirements
• Provide guidance and support to IT and business to ensure continued compliance with the various mandates
• Endorse and support a compliance culture whereby employees are encouraged to seek clarifications and support for the company’s compliance initiatives
• Exhibit ownership, follow-through, initiative, awareness and effective communication with IT teams and management
• Provides support for system access escalations as needed

Required:

• 1-2 years of experience in the areas of coordination/project management, compliance/audit, business analysis or software quality assurance
• Experience with SAP GRC Tools (Access Request, Fire Fighter, Process Controls)
• Strong analytical and problem-solving skills with the ability to function as a change agent.
• Strong skills with intermediate to advanced level expertise with Microsoft Office Suite
• Ability to justify, plan and track multiple projects working in a fast-paced environment
• Strong problem solving, decision-making, reporting, communication, and management skills
• Strong research and technical writing skills of project plans, spreadsheets, and versioning documents

Preferred:

• SOX-404
• NIST (CSF & RMF)
• EU-GDPR, CCPA
• SSAE-16 [SOC-1 and SOC-2]
• Experience with developing and implementing automation for controls and compliance 
• Experience testing or auditing technical controls
• Knowledge of Identity and Access Management processes and experience using associated tools (Active Directory tools)
• Knowledge of, and experience in, operating systems (Microsoft, Linux, Mainframe, etc.) and core ERP systems (JDE, SAP, etc.).
• Experience with Governance, Risk and Compliance (GRC) tools such as RSA Archer, ServiceNow, etc.

Bachelor’s degree in Information Technology, Finance, Business or equivalent experience

The statements above are intended to describe the general nature and level of work performed by employees assigned to this classification.  Statements are not intended to be construed as an exhaustive list of all duties, responsibilities and skills required for this position.

Kraton’s internal talent acquisition team manages our recruiting efforts and from time to time works with pre-selected/pre-approved external staffing agencies. We do NOT accept unsolicited resumes or candidate referrals from recruiters and/or agencies who are not pre-selected/pre-approved.

Kraton is proud to be an Equal Opportunity Employer.