At Weyerhaeuser, we are the world's premier timber, land, and forest products company. Sustainability is the founding concept of our business and our values drive every decision to ensure we continue to lead the forestry industry in sustainability practices. And we know about sustainability we invented it for the forestry industry when we planted our first seedling by hand in 1938. We recognize that our success is dependent on the success of our people. For over 100 years, our Weyerhaeuser team has been making a difference in the world from the seedlings we plant, to the forests and trees we nurture, we ensure every acre is managed with diligence, patience and pride. That's the Weyerhaeuser way.
We are on a mission to transform the timber industry. We are building value through innovation utilizing new IIoT, drone, and mobile devices, and transforming our presence in the cloud. Our connected forests and mills rely on the culture of sustainability and safety that permeates everything we do including the safety and security of our business systems and data.
Our Information Technology Governance team focuses on managing our IT policies, controls and governance across the company. We enable safe, compliant systems and processes in our business environment that are dynamic, global, and always on. Come help us shape our digital future further as we innovate with new technologies and simplify processes to align with business demands. If you want to be part of a world-class technology team changing the world we live in come grow with us!
We're looking for a talented IT Governance Risk and Controls Analyst who is highly motivated, team oriented, and will be a key contributor of our IT Governance team. We are a passionate, service-oriented group of dedicated professionals highly focused on delivering secure, compliant technology solutions to enable our business. This role is located in Occidental Square in the heart of Seattle just blocks from light rail, ferry, and train stations, and in the middle of the booming arts, restaurant, and gallery scene.
Drive compliance of IT Controls and Sarbanes-Oxley requirements, particularly for IT general controls, and application controls
Educate and consult with process and control owners on an effective IT control environment, evidence required for audit purposes, and remediation activities
Communicate and translate risk and controls between the system and the financial controls environments across Weyerhaeuser's systems landscape
Identify compliance objectives and map program deliverables to the requirements
Perform regular audits of internal IT control effectiveness and process compliance
Create and maintain dynamic dashboards for visibility of compliance activities
Work effectively across teams and with internal and external auditors to facilitate audit performance
Assist project teams to evaluate IT Risk and Compliance considerations for projects
Bachelor's degree in Information Technology or related field preferred
Big 4 experience in the IT Audit and Advisory domain
Background in IT Audit, IT Security, or IT Risk Management
Experience with GRC tools and policy/procedure development
Minimum three (3) years of experience delivering Information Technology compliance programs to achieve regulatory, certification, or compliance requirements
Knowledge of industry standard security and control frameworks such as NIST, COBIT, and ISO
Proven experience in proactively identifying potential IT controls risks, issues and opportunities through analytical thinking and offering meaningful sustainable recommendations that address the root cause rather than symptoms
Knowledge of, or experience working with, Cloud technologies/environments is a plus
Proven experience in successfully managing SOX IT General Controls in a complex technology environment
Experience with basic SQL/PowerShell scripting, Excel, and Power BI
Knowledge of Software Delivery Lifecycle, Agile, DevOps, and Change Control principles
Self-starter that actively displays a commitment to quality and a passion for operational excellence
Innate curiosity and ability to dig into details without losing sight of the overall objective
Able to multi-task and manage multiple priorities concurrently
Ability to communicate effectively, orally and in writing, to all levels of technical and non-technical owners
Highly effective at influencing at all levels of an organization in a collaborative environment to implement effective compliance measures and policies
CISA, CRISC, GCCC, or GSEC
When you join our team, you'll earn competitive pay, a generous retirement plan contribution/match and comprehensive health benefits. We also support personal volunteerism, sponsor a host of diversity networks, promote mentoring, and provide training and development opportunities to help you chart your path to a fulfilling career.
For more than a century, Weyerhaeuser has grown and harvested trees to make innovative forestry products that meet the needs of the world we live in. We're serious about safety, focused on performance and proud of what we do. In every corner of our company, you'll find talented people who care about each other, the communities where we operate, and the planet we all share.
We know you have a choice in your career. We want you to choose us.
Weyerhaeuser is an equal opportunity employer. We are committed to taking affirmative action to employ and advance in employment women, minorities, qualified individuals with disabilities and protected veterans.