Lead IT GRC Analyst (SOX)

This position will be accountable for NBCUniversal’s SOX IT Compliance Program including supporting the development, implementation, and continuous enhancement of the Cyber Control framework and its associated controls and reporting. Responsibilities also include the integration of risk and compliance concepts into broader strategic planning and risk identification and mitigation activities. Responsibilities: Act as the second line of defense for IT compliance activities such as IT SOX 404, SOC, PCI, Privacy, Technology Internal audits and other technology assurance activities. Maintain and build efficiencies into the IT compliance program in collaboration with multiple internal and external stakeholders, assess existing controls and identify new controls that need to be designed and implemented. Assist control owners and executives to remediate control weaknesses and address audit action plans for their groups and prepare for future audits. Monitor IT compliance posture relevant to each group and report monthly and quarterly (to various governance bodies). Understand unified control catalog, develop control guidance and deliver training to control owners. Support groups and enterprise initiatives with IT compliance requirements. Stay abreast of current and emerging information risks that could impact NBCU, including current or proposed cyber and privacy legislation. Educate teams and key stakeholders. Lean into automation and modernization to answer compliance questions at a broader scale through tools and technology.