Costa Rica-Coyol
Key responsibilities:
- Plan, design and execute controls testing, controls assessment and documentation across all domains for IT SOX ITGCs, (PCI DSS) Payment Card Industry, Data Privacy, (HIPAA) Health Insurance Portability and Accountability and other GRC requirements, as appropriate.
- Serve as trusted advisor and cyber security controls subject matter expert; partner with business and IT leaders to ensure the design and effectiveness of the control environment, both operational and technical.
- Support compliance and cyber security audit activities with external auditors and internal control owners to ensure timely and successful completion of audit requirements.
- Coordinate with external auditors on the annual SOX testing plan and the delivery of PBCs and support their efforts as needed.
- Assess, document, and report cyber security risks and control gaps.
- Coordinate remediation efforts, and document exceptions, as necessary.
- Create and execute SOX documentation, including risk and controls matrices and process flowcharts, and evaluate controls as new systems are developed or processes change.
- Responsible for reviewing work papers for quality and to ensure they meet internal and external SOX requirements.
- Provide technical guidance and advice to control owners for remediation of IT-related internal control gaps.
- Track and monitor overall ITGC SOX assessment status for monthly and quarterly reporting to senior management. Ensure all ITGC SOX deliverables are completed, and deadlines are met.
What we're looking for:
- Bachelor’s degree or equivalent work experience
- 5+ years related experience in Internal Controls.
- Experience with SOX Audit (internal/external)
- Experience with IAM solutions such as Saviynt
- English level 90% or more
- Please submit Resume in English
Preferred qualifications:
- CISA or related Industry Certification
- Experience performing SOC 1 attestations across all control domains.
Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status. Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment. Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements. As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.