The Internal Control IT Analyst plays a key role in executing the Company's Sarbanes-Oxley compliance program by applying sound auditing standards and professional judgment to the design and effectiveness of primary internal controls with an emphasis on the company's IT and overall systems environment. This role will also assist in developing the annual testing plan of IT internal control activities, will perform the testing procedures to validate the effectiveness of the IT control environment and document the results. The Internal Control Analyst serves as a key point of contact with external auditors including extracting and providing data requested and preparing internal control documentation.
Coordinates periodic walk-throughs of significant IT business processes that support the internal control environment of the consolidated company with the respective process owner(s). Ensures narrative documentation for these significant IT business processes is updated and maintains process flow charts and risk control matrices that map control activities to control objectives.
Coordinates certain quarterly financial activities such as system access reviews, journal entry analytics/analysis, revenue by product category, compilation of financial disclosures, etc.
Performs testing of primary internal control activities, with a primary focus on the company's IT and overall systems environment. Applies professional judgment to test results in order to assess significance.
Works closely and collaboratively with the Hibbett IT Department to develop and/or modify primary controls related to new IT initiatives or system implementations.
Analyzes data and business processes for evidence of deficiencies in controls, duplication of effort, fraud or lack of compliance with laws, government regulations, management policies and procedures.
Helps maintain Master Gap List of identified control deficiencies. Collaborates with business process owners and Hibbett IT to identify internal control improvements and applies judgment to coordinate remediation of deficiencies.
Communicates the status, results, and impacts of IT internal control corrective actions to the appropriate stakeholders.
Participates in the annual Enterprise Risk Assessment and Fraud Risk Assessment processes, summarization of results and preparation of overviews for Executive Management and the Audit Committee of the Board of Directors.
Performs assessments and prepares required documentation on critical outside service providers in accordance with SAS 70 and SAS 73.
Participates in Internal Audit projects and other special projects.
Serves as key point of contact with external auditors, specifically their IT audit team, on information requested in conjunction with the SOX and integrated audits.
Protects the company's assets and financial information by ensuring the accuracy and effectiveness of internal control procedures and informs management and/or appropriate business process owners of potential fraud risk.
Bachelor's Degree in Accounting or Finance with a minor in Information Systems/Technology or a Bachelor's Degree in Information Systems/Technology with a minor in Accounting or Finance.
Two plus years of work experience in an IT audit/compliance role or experience as a financial auditor, staff accountant or financial analyst with direct exposure to IT.
Any suitable combination of education and experience will be considered.
CPA, CIA, CISA, CRISC, CFE, etc. designation or candidate strongly preferred.
Knowledge of national regulatory compliance frameworks such as ISO, BASEL II, EU DPD, HIPAA and PCI DSS a plus.
Retail experience preferred.
Public accounting experience preferred.
Hands-on experience with large ERP systems preferred.
Advanced user of Microsoft Office products.
Knowledge of database query tools (SQL, Business Objects, etc.) a plus.
Knowledge of IT system controls and an aptitude for understanding how data flows between disparate systems.
Technical proficiency in GAAP.
Hibbett Sports, Inc.