Digital Compliance & Assurance Specialist

Save
You need to sign in or
create an account to save a job.
Job Description

Position Summary
WGL, a subsidiary of AltaGas, is seeking a Digital Compliance & Assurance Specialist. This role will report into the Manager, Digital Compliance & Assurance and be based at our Washington, DC (Wharf) location.

Responsibilities

  • Performs walkthrough and creates processes and controls documentation
  • Performs risk assessment and exposure analysis based on established risk framework and standards.
  • Ensures that Digital processes and controls have been designed and implemented.
  • Designs and implements segregation of duties within business-critical applications
  • Be involved in projects to ensure that project development methodology and Digital policies and standards are followed
  • Performs self-audits and testing of systems and related processes to ensure compliance with Digital security policies and standards.
  • Performs self-audits of industrial controls systems (ICS) based on operational technology (OT) policies and standards
  • Develops and maintains productive relationships with process owners and audit teams through individual contacts and group meetings
  • Pursues professional development opportunities, including external and internal training and professional association memberships, and shares information gained with co-workers
  • Creates integrity reports and other monitoring controls to ensure continuous compliance with Digital controls
  • Works collaboratively with control owners to identify required actions needed to remediate audit findings
  • Performs additional duties as assigned


Qualifications, Skills and Abilities

  • Bachelor's Degree with minimum three (3) years experience in Digital governance risk & compliance (GRC), IT auditing or industrial controls systems (ICS) or operational technology (OT) auditing
  • Experience in reviewing/auditing business resiliency plans
  • Considerable knowledge of and skill in applying internal auditing and technology principles and practices, and management principles and preferred business practices
  • Considerable knowledge of and skills in applying COBIT (Control Objectives for Information and Related Technologies) and industrial controls systems including regulatory compliance requirements
  • Skill in assessing and providing recommendations on the effectiveness of internal controls over key business process/IT risks, identifying significant exposures, analyzing transactions and other management information, and detecting changes in key risks and/or control effectiveness


Preferred Qualifications

  • CISCO Certifications (CISA, CISSP, CRISC or CISM)


WGL is an EO employer - M/F/Vets/Disabled

EOE AA M/F/Vet/Disability

R1573