IT Compliance Analyst

📋 Description

• Execute and document ITGC control testing across Owlet's essential systems and platforms.

• Gather, organize, and maintain control evidence in compliance with audit standards.

• Monitor control deficiencies and remediation items until resolution under the guidance of the IT Director.

• Assist in SOX readiness initiatives and auditor walkthroughs, which include preparing materials and addressing auditor inquiries.

• Facilitate evidence collection and auditor access for internal audits, external financial audits, and SOC report engagements.

• Keep the audit evidence repository updated and ensure documentation is organized, current, and prepared for audits throughout the year.

• Act as a reliable contact for auditor information requests, escalating matters to the IT Director when necessary.

• Oversee Owlet's IT policy library: managing version control, review tracking, and coordinating attestations.

• Aid in annual policy review cycles by identifying outdated content and drafting suggested updates for IT Director review and approval.

• Help communicate policy updates and awareness initiatives throughout the organization.

• Maintain the IT compliance risk register: ensuring entries are up to date, tracking their status, and highlighting items requiring IT Director attention.

• Support IT change management processes to maintain the integrity of audit trails and controls over separation of duties.

• Assist with the IT component of compliance documentation for third-party vendors as directed.

⛳️ Requirements

• 2-4 years of experience in IT compliance, IT audit, internal audit, or a GRC-related role.

• Foundational knowledge of SOX ITGC principles: access management, change management, computer operations, and logical security.

• Experience in executing or supporting ITGC control testing and evidence collection.

• Strong written communication skills: you create clear, well-organized documentation that withstands audit scrutiny.

• Detail-oriented and reliable: you monitor your own tasks, adhere to deadlines, and identify issues before they escalate.

Preferred

• Experience in a regulated industry such as medical devices, healthcare, financial services, or similar fields.

• Familiarity with SOC 1 or SOC 2 engagements (as a participant or evidence coordinator).

• Knowledge of ERP environments from a controls perspective (NetSuite experience is a plus).

• Relevant certifications or training: CISA, CRISC, or an academic background focused on audit.

• Comfort in a lean team environment where you contribute to process development as well as follow established protocols.

🏝️ Benefits

• Owlet offers a comprehensive benefits package that promotes your health, financial well-being, and work-life balance:

• **Health & Wellness**: Multiple medical plan options (PPO and High-Deductible with HSA), in addition to dental, vision, life, and disability coverage. Wellness resources include mental health support, EAP access, and fitness incentives.

• **Financial Benefits**: A competitive 401(k) plan with company match, employee stock purchase program, and potential equity grants.

• **Work-Life Balance**: Generous flexible PTO policy, including Flex Fridays, paid parental leave (up to 14 weeks), and remote/hybrid work options.