IT Audit & Compliance Specialist (Global)

The IT Audit & Compliance Specialist will support the Senior Manager of IT Audit & Compliance to ensure that Global IT is delivering programs, projects, and services that meet quality and technical standards and comply with Olympus policies, processes, and procedures. They will be responsible for assisting the execution of IT controls and IT audit/compliance-related activities, including General Data Protection Requests (GDPR).

The IT Audit & Compliance Specialist will support the creation of the IT audit and compliance policies, processes, and procedures. They will assist in monitoring, assessing, and evaluating the risk against the set IT audit and compliance standards. They will execute proactive compliance monitoring against applicable GxP legislations and the Global IT organization's quality standards and requirements in collaboration with corporate management and business units.

They will also be responsible for assisting in both internal and external audits as well as managing the relationship with the internal audit department and external audit partners, in addition to assisting the Global IT Functions through both internal and external audits. They will develop the findings as well as share and present findings to Global IT of all audits. They will support the Senior Manager of IT Audit & Compliance in managing requirements for internal IT controls over financial reporting to ensure set standards are being adhered to. They will also work closely with the Finance domain to perform annual risk assessments and prepare and submit internal control reports for J-SOX on an annual basis. In addition to this, they will also be responsible for processing, supporting, and coordinating GDPR requests and activities in relation to Global IT.

IT Audit

• Conduct day-to-day operations of internal and external audit engagements.
• Engage in accounting, auditing, and other issues while using audit tools and technology in line with the audit strategy and roadmaps for execution.
• Input into both internal and external audit strategies and roadmaps for execution.
• Create process flow automation to perform data analysis of auditing data.
• Monitor and report on the progress of remediation actions resulting from audit assessments.
• Create assessment results (control design adequacy, operating effectiveness, and remediation/corrective recommendations) for both internal and external audits.
• Manage remediation actions resulting from audit assessments.
• Identify and articulate key risks to the Senior Manager of IT Audit & Compliance.
• Support engagement of initiatives that increase the risk culture and awareness in Global IT and embed the IT control framework across the full Global IT organization.
• Assist in the identification and articulation of the key risks to Global IT, communicating information on the current Global IT-related exposures to all required IT and Olympus business stakeholders in a timely manner.
• Support the facilitation of relationships with audit partners, providing governance and closely managing the requirements for all internal and external IT-related audits with partners/stakeholders.
• Assist in the execution of governance and manage the requirements for internal controls over financial reporting and monitor adherence to the controls set.
• Conduct annual risk assessments, prepare, and submit internal control reports for J-SOX on an annual basis, working alongside the Finance domain.

IT Compliance Management

• Monitor all IT activities to ensure compliance with the applicable GxP legislation, internal policies, and procedures, including periodical account and activity reviews.
• Perform pre- and post-implementation reviews of system implementations or enhancements to ensure compliance.
• Execute required testing activities by internal and external parties, leading to successful certification of the company on an ongoing basis.
• Input into providing recommendations on improving compliance-related processes and/or procedures.

Management of GDPR in IT

• Ensure GDPR request processes and procedures are adhered to across Global IT in alignment with the data protection/compliance department.
• Assist the efforts to educate and champion the adherence and execution of the GDPR requests process across Global IT.
• Support and coordinate GDPR requests/activities as well as evaluate each request based on cost and resource allocation, in addition to adhering to data protection and privacy standards.
• Support in monitoring the implementation of and compliance with Technical and Organizational Measures (TOMs).
• Work collaboratively with security and legal teams to identify and manage privacy, data protection risks, and compliance requirements to help meet stakeholder expectations.
• Ensure GDPR requests are processed in accordance with legal requirements.
• Coordinate and input into the GDPR requests complaints process, effectively solving and communicating to each complainant with a response.

Other responsibilities/duties as assigned.

Why work at Olympus

At Olympus, we are committed to fostering a high-performing culture, a collaborative environment, and empowering everyone to shine. Our shared values-integrity, empathy, long-term view, agility, and unity-form the foundation of our culture and guide our behavior. These values ensure that our people feel they are making a meaningful difference every single day.

Joining Olympus means embarking on a meaningful, rewarding, and challenging career. In addition, you will enjoy access to a range of benefits, including

• A competitive salary package: inclusive of AWS (Annual Wage Supplement) and a variable bonus.
• Hybrid work arrangements: Supporting flexibility and work-life balance.
• Health and Wellbeing Initiatives: Including annual medical checkups, dental benefits, and access to Employee Assistance Programs (EAP).

What we are looking for:

Education:

• Bachelor's degree or higher in computer science, information systems, business administration, or another related field (or equivalent and related experience preferred).
• Active Certified Information Systems Auditor (CISA) (or equivalent and related experience preferred).

Experience:

• Minimum 2-3 years experience as an IT Compliance Manager in an environment similar in size and complexity to Olympus.
• Minimum 2 years of experience in technology audits.
• Knowledge of technology solutions and technical capabilities as well as operations, people, and processes.
• Experience with IT risk management disciplines and understanding of the broader IT risk exposure.
• Thorough knowledge of GxP standards, technology/security-focused regulations, IT general controls, and application controls.
• Familiarity with auditing widely used server, platform, database, and endpoint technologies.

Apply Now:

To submit your interest in this opportunity, select Apply for this job.

Want to know more

Confidential discussions are welcome; contact our Regional Talent Acquisition Specialist.

Olympus is an Equal Opportunity Employer.

We are deeply committed to fostering a respectful, fair, and welcoming workplace for all individuals, perspectives, and lifestyles. We believe in fostering a nondiscriminatory, inclusive work environment where everyone feels a sense of belonging, in full compliance with legal standards. Empathy and unity are core to our company culture, empowering employees to contribute fully and flourish. We warmly encourage all who wish to bring their talents to Olympus to apply.