Job Description
Known as “The Abnormal Beauty Company”, DECIEM is the parent company of The Ordinary, NIOD, and other beauty brands & is an industry disruptor with a science-first approach to innovation. DECIEM was Co-Founded in 2013 by the late Brandon Truaxe, a visionary who set out to change the beauty industry through authenticity and transparency. He developed DECIEM to be a happy family (of people and beauty brands), rooted in kindness, creativity, diversity, and respect, alongside Co-Founder and CEO, Nicola Kilner.We are growing rapidly and we’re looking for someone who shares this vision and wants to grow with us!WHAT WE’RE LOOKING FORWe are looking for an experienced Senior IT Compliance Analyst to support and maintain DECIEM’s IT governance, risk management, processes & controls and overall compliance.This hybrid role will be based out of our Fraser Head Office in Toronto.WHAT YOU’D BE DOING IN THIS ROLEParticipating in the continued transformation of the SOX IT and controls maturation program and play a critical roleLeading, executing, and / or supporting critical processes and controls for key SOX application systems, including but not limited to, access provisioning and de-provisioning, periodic user access reviews, and change controls.Maintaining a high level of visibility across the Brand with various levels of Management and serve as a key point of contact for lines of business. Manage communications with key partners, including messaging of SOX IT objectives and requirements, managing request lists, and facilitating discussions on risk & controls.Facilitating the walkthrough process with Management and various audit team. Collaborate with IT partners to review SOX documentation (risk control matrices, narratives, flowcharts) and identify areas where control enhancements and/or documentation improvements are needed. Ensure SOX documentation is accurate and reflects current process.Completing and/or reviewing SOX assurance testing for key general IT controls (GITCs/ITGCs), IT application controls (ITACs), and key reports (IPE) identified in the walkthrough process. Coordinate testing approach and align expectations with internal & external auditors to ensure documentation and testing complies with industry standards (including PCAOB) and allows for reliance by the external auditors. Leverage knowledge of SOX methodology and industry requirements to ensure thorough workpapers are maintained.Support the Brand and various teams during project and system implementations to ensure governance is in place with adequate controls during Lifecyle(s) and establish run-state controls to address risk post go-liveAssessing IT control deficiencies identified and work with Management for impact analysis and to identify an appropriate remediation action. Follow-up on remediation activities to verify appropriate resolution.Gathering details for in-scope SOX entities and assist in performing an annual SOX IT Risk, Scoping and Controls AssessmentProviding advisory and when required, assess SOC 1 / SOC 2 reports to ensure appropriate controls are identified and operating effectively.SKILLS AND QUALIFICATIONS NEEDED TO GET THE JOB DONEYou have 3-4 years of experience in IT Audit, SOX Compliance, or Information Systems Risk Management & GovernanceYou have a working knowledge of internal controls over financial reporting (ICOFR), SEC standards, PCAOB standards, the NIST framework, COSO framework, and/or COBITYou are experienced in designing test plans, testing and concluding on the operating effectiveness of IT general controls, IT automated controls, key reports, and software development life cycle controlsYou are experienced in documenting and evaluating deficiencies and assisting management with designing remediation plansYou have experience with technologies such as MS Dynamics 365, SAP, Oracle, Unix/Linux, SAP GRC, Identify & Access Management Systems and other cloud technologies, especially AWS, Salesforce and AzureWHAT YOU’LL BE GAINING BY JOINING OUR TEAMThere’s a lot of good stuff that comes along with being a DECIEM team member. Here are a few of our favorite perks and benefits, in no particular order…Generous Vacation & Personal Days, plus additional time off for volunteering in your community, voting, peaceful protesting, celebrating your birthday, and more.6 months of paid time off for new parents (inclusive of all genders).Monthly catered lunches and chances to connect with your teammates.Unlimited access to an Employee Assistance Program that includes mental health care, mindfulness programs, and more.Access to Development Grants & a LinkedIn Learning membership to help you keep growing and learning.First dibs on new products.A generous discount on DECIEM products for you, your family, and your friends.BUILDING GROWTH TO POWER GOODWe are a People first company that lives by our core values to… Do the right thing Respect small things Be the futureThese values continue to guide us in all that we do. Along the way, we’ve been honoured to win some pretty incredible awards, including a CEW Achiever Award, Best Skincare Brand at Sunday Times Style Beauty Awards, and Most Popular Sustainable Brand by The Cosmetify Index Global. We’re still blushing!SUSTAINABILITY AND SOCIAL IMPACTDECIEM’s objective is to build growth and do good things while prioritizing people, animals, and the Earth.Our Sustainability strategy is focused on fighting climate change, improved waste management, responsible packaging, responsible sourcing and product lifecycle, and water conservation.In 2020, DECIEM established the Good Fund to support both large and grassroots charities in response to global events.CREATING A HUMAN WORLD OF BEAUTYDECIEM is committed to diversity, equity, and inclusion (DEI) by creating meaningful, measurable change in the lives of our team members and in the communities where we operate. Achieving equality is critical to DECIEM and our future. You can learn more about our DEI commitment in our open letter, "Belonging is the Destination, Change is the Journey ".DECIEM is an equal opportunity employer. We prohibit discrimination based on age, colour, disability, national origin, race, religion, sex, gender, sexual orientation, and any other legally protected class in accordance with applicable federal, provincial and local laws. We are also committed to creating and maintaining an inclusive and accessible workplace. If you are contacted to be part of our recruitment process and require accommodation, please let us know.WANT TO JOIN US?Thank you for reading the whole thing! If you liked what you heard, kindly send us your resume. We really appreciate your effort in applying for this position. However, only those who have been shortlisted for interviews will be contacted. <3