1 to 25 of 33 COSO Jobs

experience in IT internal/external audit or other IT/Finance related roles, including experience in assessing risk and recommending mitigating internal controls, applying internal control principles (e.g., COSO, CobIT, ITIL, and/or NIST), understanding cybersecurity principles and data protection regulations, and identifying opportunities for automation. Minimum of 8 years of experience in roles (including SAP More ❯

in IT internal audits and IT SOX compliance Around 3 years forged in public accounting Battle-tested experience in agile platform IT organisations Mastery of frameworks including SOX, COSO, COBIT, NIST, ISO, ITIL and IIA Professional certification such as CIA, CISA, CISSA or equivalent Burning intellectual curiosity about AI applications in audit and risk management - you'll lead the More ❯

IT, including databases, operating systems, and applications Able to travel up to 25% (domestic travel quarterly) Ability to work remotely is an option Desired Characteristics: Understanding of the COSO/COBIT frameworks, SOX, ISO, internal controls & test plan development Strong ability to give attention to detail in addition to organization and project management skills Possess sound judgment, business risk More ❯

or risk management, ideally in a multinational public company or Big 4/public accounting firm. Strong understanding of ITGCs, financial systems architecture, and internal control frameworks (e.g., COSO, COBIT). Experience with enterprise systems such as Oracle, SAP, or Workday, and GRC platforms. Proven ability to work across departments and regions, balancing technical, regulatory, and business needs. Excellent More ❯

Information Security -Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams -Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2 -Awareness of ISO 27001, GDPR, and other relevant standards -Effective analytical and critical thinking abilities -Entrepreneurial nature, self-motivated, ethical, and dependable #J More ❯

Security collaboration. -Strong understanding of regulatory requirements (e.g., FFIEC, ISO 27001, NIST, GDPR, etc.). -Familiarity with IT governance frameworks such as COBIT, ITIL, and risk frameworks like COSO or ISO 31000. -Experience conducting or supporting internal audits, control testing, or compliance reviews. -Excellent communication and stakeholder engagement skills across technical and business teams. -Ability to interpret complex IT More ❯

Security collaboration. -Strong understanding of regulatory requirements (e.g., FFIEC, ISO 27001, NIST, GDPR, etc.). -Familiarity with IT governance frameworks such as COBIT, ITIL, and risk frameworks like COSO or ISO 31000. -Experience conducting or supporting internal audits, control testing, or compliance reviews. -Excellent communication and stakeholder engagement skills across technical and business teams. -Ability to interpret complex IT More ❯

Information Security Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2 Awareness of ISO 27001, NIST standards, HIPAA, FAIR, and other relevant standards Effective analytical and critical thinking abilities Entrepreneurial nature, self-motivated, ethical, and More ❯

or CISO role . Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with More ❯

or CISO role . Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with More ❯

or CISO role . Demonstrable experience building and scaling a GRC function in a complex environment. Deep knowledge of information security standards (ISO 27001, NIST, CIS), risk frameworks (COSO, FAIR), and regulatory obligations (GDPR, PCI-DSS, SOX). Proven track record of managing enterprise-level security programs, including incident response and business continuity. Excellent stakeholder management skills, with More ❯

stakeholders on initiatives as assigned. Supporting the Privacy, Cybersecurity and Information Security teams with projects to include compliance readiness for new laws, regulations (e.g. GDPR and CCPA), frameworks (e.g. COSO and NIST cybersecurity frameworks) and standards (e.g, DORA, PCI standards). Supporting regulatory, internal or external audits or certifications. Provide knowledge and operational input on our Third-Party Risk Management More ❯

experience. Strong and broad understanding of IT methodologies, frameworks and best practices. A strong understanding of operational risk and risk-related control frameworks and practices such (COCO, COSO, ISO, ITIL, CMM, COBIT, etc.) Good technical background in a range of infrastructure technologies, specifically within a virtualized and standardised environment. Experience working in a regulated environment. Experience working More ❯

Information Security; Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams; Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2; Awareness of ISO 27001, NIST standards, HIPAA, FAIR, and other relevant standards; Effective analytical and critical thinking abilities; Entrepreneurial nature, self-motivated, ethical, and More ❯

simplifying existing processes Experience with multiple financial accounting systems (preferably NetSuite) and rapid iteration/agile working would also be highly desirable Familiarity with the implementation of COSO/SOX-compliant control framework & US GAAP (nice to have) Skills: Excellent planning, organisation and time-management skills, as well as ability to multitask and lead several projects in a More ❯

experience. Strong and broad understanding of IT methodologies, frameworks and best practices. A strong understanding of operational risk and risk-related control frameworks and practices such (COCO, COSO, ISO, ITIL, CMM, COBIT, etc.) Good technical background in a range of infrastructure technologies, specifically within a virtualized and standardised environment. Experience working in a regulated environment. Experience working More ❯

SOX testing either within BIG 4 servicing Financial Services clients or IT Audit experience within Financial Services industry. Strong experience in using a risk based approach such as COBIT, COSO, Risk IT, NIST, ITIL, etc. Professional certifications such as CISA, CISM, or ITIL Must have strong communication skills. Hybrid role - 3 days in office. Must be eligible to work in More ❯

/or assurance roles • Proven track record of leading and scaling risk or assurance functions • Experience in function integration and transformation initiatives • Strong understanding of control frameworks (COSO, SOX, COBIT) • Professional certification required (CIA, CISA, CRISC) • Bachelor's degree required, advanced degree preferred PREFERRED QUALIFICATIONS Preferred Qualifications: • Big 4 consulting or audit background • Experience in regulated industries • Track More ❯

GRC tools and control testing platforms. Strong data analysis skills, including proficiency in Excel and visualization tools like Tableau or Power BI. Familiarity with risk management frameworks such as COSO, NIST, ISO 31000, and control testing methodologies. Exceptional communication and interpersonal skills, capable of influencing stakeholders at all levels. Experience managing regulatory audits. Ability to collaborate with regional and More ❯

Controls Transformation: Operational and Financial Reporting Risk Types – Manager Base Location: London The KPMG Enterprise Risk function is a cornerstone of our business. We do work that matters to our local business and communities – supporting technical innovation and adoption More ❯

Controls Transformation: Operational and Financial Reporting Risk Types – Manager Base Location: London The KPMG Enterprise Risk function is a cornerstone of our business. We do work that matters to our local business and communities – supporting technical innovation and adoption More ❯

Social network you want to login/join with: Controls Transformation - Manager - Operational and Financial Reporting Risk, slough col-narrow-left Client: KPMG UK Location: slough, United Kingdom Job Category: Other - EU work permit required: Yes col-narrow-right Job More ❯

cryptography and operational controls (such as back-ups, resilient design, anti-virus) are essential * Knowledge of Threat modelling, control frameworks and Risk assessment techniques (such as ISO2700x, COBIT, COSO, ITIL and NIST Cyber Security Framework) is desirable * Knowledge of Cloud Security practices is desirable Experience in the following areas would be beneficial- * Security Design in projects (setting requirements More ❯

project management Project Management Expertise: Proven leadership in project delivery, ideally with PMP, PRINCE2, or similar certification Risk Management Knowledge: Strong understanding of risk frameworks (e.g., ISO 31000, COSO, Basel, JSP892) and regulatory compliance Technical & Analytical Skills: Proficiency in risk assessment tools, data analysis & modelling, and scenario planning Consulting & Communication Skills: Ability to operate in a fast-paced consultancy More ❯

experience. Strong and broad understanding of IT methodologies, frameworks and best practices. A strong understanding of operational risk and risk-related control frameworks and practices such (COCO, COSO, ISO, ITIL, CMM, COBIT, etc.) Good technical background in a range of infrastructure technologies, specifically within a virtualized and standardised environment. Experience working in a regulated environment. Experience working More ❯