Overview
The IT Security Analyst will be a key support role in all aspects of IT risk management, IT general controls, and SOX compliance activities, including planning, assessments, documentation, and execution. This role will assist in ensuring that our IT control environments are effectively managed and audited to meet regulatory standards.
Responsibilities
The essential functions in this job description are not all-inclusive of this position’s duties and responsibilities. Reliable and dependable attendance is required.
- Assist in coordinating IT SOX compliance efforts, including monthly reviews, quarterly testing, and audits
- Gather and compile audit evidence and/or information systems and analyze gaps with documentation to IT policies and procedures.
- Supports internal audit activities and remediation requirements related to ITGCs as well as other SOX compliance activities.
- Examine and evaluate key IT practices based on various security and privacy standards (PCI, SOC, CCPA, etc.).
- Perform periodic reviews of security controls.
- Assist with internal and external audits; requesting and reviewing necessary evidence; remediation efforts and tracking exceptions.
- Participate in tracking completion of user access reviews.
- Work with control owners to gather and provide evidence.
- Align policies, standards, and procedures with compliance objectives.
- Assist in the creation and maintenance of IT security policies.
- Prepare metrics and reports for management on the status of compliance objectives.
- Remain up to date on current security and privacy-related laws, regulations, and standards.
- Act as a subject matter expert with projects and provide guidance, requirements, and documentation for security-related purposes, risks, and controls.
- Evaluate, document, and maintain standards, processes, and procedures relative to security and privacy.
- Participate in the evaluation of third-party vendors which data is being shared or access to systems is being provided.
Qualifications
- Bachelor’s degree in a related field
- 5+ years of experience in an IT Security Compliance role
- Experience with security and privacy standards (PCI, SOC, CCPA, etc.)
- Working knowledge of IT-related disciplines such as networking, security, operations, etc.
- Demonstrate understanding of SOX principles, including process flows, risk and control matrices (RACMs), and narratives for business processes and IT Platforms
Who We Are
First Watch is an award-winning Daytime Dining concept serving made-to-order breakfast, brunch and lunch using fresh ingredients. A recipient of hundreds of local “Best Breakfast” and “Best Brunch” accolades, First Watch’s chef-driven menu includes elevated executions of classic favorites along with First Watch specialties such as the Quinoa Power Bowl®, Farm Stand Breakfast Tacos, Avocado Toast, Chickichanga, Morning Meditation (juiced in-house daily), Spiked Lavender Lemonade and its signature Million Dollar Bacon. In 2023, First Watch was named the top restaurant brand in Yelp’s inaugural list of the 50 most loved brands in the U.S. In 2023 and 2022, First Watch was named a Top 100 Most Loved Workplace® in Newsweek by the Best Practice Institute. In 2022, First Watch was awarded a sought-after MenuMasters honor by Nation’s Restaurant News for its seasonal Braised Short Rib Omelet and recognized with ADP’s coveted Culture at Work Award. First Watch operates more than 530 First Watch restaurants in 29 states. For more information, visit www.firstwatch.com.
First Watch is an equal-opportunity employer. In compliance with the Americans with Disabilities Act, First Watch will provide reasonable accommodations to qualified individuals with disabilities and encourages both prospective and current employees to discuss potential accommodations with the employer.