Job Description
Job Summary:
The Quality Controls & Internal Audits Lead Associate reports to the Senior Manager, Quality and is responsible for working cross-functionally to understand each department’s operations and creating strong, effective, and auditable controls. Notably this includes controls designed to ensure I-CAR is aligned with the latest SOC 2 standard. The Lead Associate will perform internal audits to verify those controls are being met and continually monitor I-CAR’s adherence to the controls & SOC 2 requirements.
The Lead Associate will have significant responsibilities in helping departments understand non-conformances found during audits and providing assistance in performing root cause analysis and resolving corrective actions.
The Lead Associate will work especially closely with the IT department. Therefore the Lead Associate needs a solid understanding of concepts regarding IT security & operation, and the ability to interpret how policies & SOPs are intended to align to SOC 2 requirements.
The Lead Associate does not need to be a programmer but must understand how software systems work well enough to perform in-depth audits on IT systems with assistance from those systems’ daily users. This is a compliance and audit role. This is not an IT, system administration, or programming role.
Essential Duties and Responsibilities:
-
Develop and execute internal audits and control tests based on I-CAR’s policies, SOPs, key controls document, and the SOC 2 standard
-
Function as a subject matter expert on SOC 2
-
Ensure that all SOC 2-relevant policies are aligned with each other
-
Spearhead collecting evidence to support SOC 2 Type 2 external audits/accreditations
-
Continuously monitor and report on the effectiveness of I-CAR’s controls over time
-
Understand departmental objectives and risks to continually update key controls document and audit templates