Sign Up Sign Up Log In Sign Up

Sr. IT Compliance and Risk Analyst II or Principal IT Compliance and Risk Analyst

Qualified candidate may be able to telecommute at management discretion.

This is a multi-level position Sr. IT Compliance and Risk Analyst II G09 or Principal IT Compliance and Risk Analyst G10 based on the candidate’s qualifications as they relate to the skills, experience, and requirements for this position.

Empowering a global business. Providing affordable solutions. Delivering competitive discriminators by unleashing deep expertise. These are just some of the many ways the Information Technology team at Missile Systems creates success for our customers. Joining our IT team will allow you to partner with Missile Systems' organizations to enable business growth, speed, and agility through business innovation, technical proficiency, and operational excellence

The IT Compliance and Risk Analyst candidate:
  • Participates in the completion of the overall strategic roadmap for RMS IT compliance and risk management
  • Identifies and supports reporting of financial and operational risks to projects, controls, and strategic goals within IT and in the Business
  • Leads audits, reviews work papers and communications the deliverables for all internal GRC reviews
  • Performs internal control assessments at various business sites, and for special topic audits
  • Ensures IT controls are compliant with Missile Systems policies and all external regulations
  • Evaluates the design effectiveness of IT controls based upon industry best practice models (e.g. NIST, DFARS, COBIT, ITIL, etc.), and recommends remediation’s in accordance with Raytheon standards
  • Performs operational effectiveness testing of IT controls at network, server, application, database, and interface levels
  • Coordinates compliance remediation activities and maintains accurate list of open and closed compliance issues for the organization.
  • Negotiates beneficial business improvements while maintaining a high level of customer trust that is based on the customer's confidence in IT business knowledge and rapid and affordable business process execution
  • Serves as a subject matter expert for policy and internal controls questions
  • Analyzes business processes to determine compliance, performance, and sustainability
  • Identifies, updates, and communicates compliance, integration, and IT business risks to leadership on a regular basis
  • Coordinates assessment and compliance planning with IT Security to efficiently use resources in IT and at affected sites.
Do you meet these minimum requirements?
  • Bachelor in Computer Science or IT or a related STEM degree, minimum of 6 years of recent primary applicable experience with:
    - IT internal controls auditing; including test design, planning, fieldwork management
  • IT internal controls design effectiveness assessment
  • IT internal controls operational effectiveness testing in accordance with PCAOB and best practice test requirements and statistical sampling methods
  • Business process analysis, process maturity, and IT process design based on established IT models (e.g. COBIT, ITIL)
  • knowledge of Information Technology product development and service deployment methodologies
  • IT Security controls assessment and remediation
  • Must have current CISA certification
  • 6+ years project management experience,
  • Experience of controls and testing methods for IT application development/change management lifecycle, IT security controls for business systems, data center operations, business continuity, and asset management lifecycle,
  • Ability to identify internal control and process gaps and recommend appropriate remediation’s,
  • Experience conducting supplier cybersecurity risk assessments
  • Experience conducting supplier audits
  • Experience building audit plans to measure specific risks
  • Process maturity measurements (metrics) development and reporting
  • Experience negotiation and executive-level presentation skills
  • Must be able to travel up 25%
  • Must be able to obtain a DoD secret clearance

Highly Desired Skills:
Experience in the following areas is desired:

  • CISSP certification
  • Big4 Audit Firm experience, CFA
  • Excellent writing, editing, and documentation and evidence management skills

  • Project Management Professional (PMP)
  • MBA with Finance or Accounting background a plus


Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.

Company Name:
Security Clearance:
Tucson, Arizona
United States
Not Specified
Job Number:

Send me email alerts for similar jobs