Application Manager, Controls - Menlo Park, United States - META

Description

Enterprise Products is seeking an experienced, process and technically hands-on Application manager to lead and manage SOX and Security compliance across the Enterprise Products (EP) organization. This role is an execution-focused technology lead who can build, monitor, and enforce the Company's compliance standards and processes for the organization. This will require working around 200+ Enterprise Products across different Team Groups to enable the execution of their product-build roadmaps in a compliant manner. This includes evaluating, providing guidance, and managing org-level compliance exercises related to SOX and security compliance, as well as building working relationships across our internal and external audit teams.

Application Manager, Controls Responsibilities

• Identify and assess SOX and security compliance risks and advise controls to stakeholders.
• Evaluate upcoming releases and work with engineering and product leads, guiding them to ensure building compliant products.
• Manage and direct the work streams related to IT SOX compliance and application controls.
• Provide technical support in the assessment, design, and implementation of ITGC and application control requirements.
• Work with control owners and operators to ensure the quality, consistency, and operability of new and existing controls.
• Collaborate and build long-term relationships with key stakeholders in a fast-paced and matrixed work environment.
• Promote thought leadership for new ideas and new ways of executing compliance initiatives across EP's products and infrastructure, driving continuous improvements with the delivery of audit-compliant services.
• Stay current on industry trends and security events that impact Meta and EP environment.
• Promote automation and data analytics-based audit testing, innovation around the execution of projects to drive continuous monitoring and auditing (e.g. monitoring/alerting)

• Bachelor's degree in Computer Science, Computer Engineering, relevant technical field, or equivalent practical experience.
• 10+ years of experience with IT Audit Advisory, Risk or Compliance program management.
• Experience in conducting risk assessment and implementing security control frameworks or standards following COBIT and NIST frameworks.
• Experience with project management practices, tooling, and managing audit or compliance projects through their lifecycle.
• Understanding of IT Operations and application controls, including SDLC, change management, user management, data protection, incident management and vulnerability management across the application, database and OS tiers.
• Experience working in a team environment and across all organization.
• Analytical and problem-solving experience.

• B.S. in Accounting, Finance, Computer Science or a related field.
• CISA, CISSP, CISM, CRISC or other relevant professional certification.