Sr IT Governance Risk and Controls Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Refresco · 1 day ago

Sr IT Governance Risk and Controls Analyst

positionTampa, FL
timeFull-time
remoteOnsite
seniorityMid, Senior Level
date4+ years exp

Refresco is the leading global independent beverage solutions provider, aiming to put their drinks on every table. The role is responsible for maintaining and improving the IT governance, risk, and compliance program, focusing on SOX compliance, risk assessments, and third-party risk management.

Consumer GoodsFood and BeverageFood Processing
check
H1B Sponsor Likelynote

Responsibilities

Conduct comprehensive IT risk assessments, including identifying and analyzing potential threats and vulnerabilities across applications, infrastructure, and data
Develop and maintain risk registers, documenting identified risks, their potential impact, and mitigation strategies
Collaborate with IT and business stakeholders to prioritize and remediate identified risks
Assess impact of IT changes to policies, risks, controls, and governance process (including but not limited to disaster recovery, RCM)
Maintain and update the Risk and Control Matrix
Evaluate the design and monitor the execution of management's SOX controls
Participate in business process walkthroughs to identify application controls, reports, and ITGC dependencies/risks
Review SOC reports and map control deficiencies to relevant IT risks
Ensure all control evidence of operating effectiveness is maintained timely, with appropriate detail for all IT controls; own the development, reporting, completion of control remediation plans
Identify the application controls, interfaces/batch jobs and reports key to supporting SOX business processes
Evaluate the design and effectiveness of application controls
Evaluate the design and effectiveness of controls intended to mitigate data transfer errors/incompleteness
Evaluate the design (completeness and accuracy) of reports used for key controls
Support the implementation of a third-party risk management program
Monitor and manage risks associated with third-party relationships
Develop, maintain, and test the IT disaster recovery plan, inclusive of supporting audits and requests for understanding and evidence by 3rd parties
Perform cyber security posture evaluations
Design and execute strategies to evaluate the ICFR impact of cyber security incidents
Draft the appropriate disclosures regarding cyber security posture and cyber incidents and response as necessary
Ensure compliance with relevant regulations and industry standards (e.g., SOX, NIST)
Assist with internal and external audits

Qualification

SOX complianceIT governance frameworksERP system designRisk management methodologiesCyber securityThird-party risk managementDisaster recoveryAnalytical skillsStakeholder managementPrioritizationAccounting skillsProject managementInterpersonal skillsCommunication skillsProblem-solving

Required

Advanced knowledge of SOX controls and compliance; experience implementing or improving SOX
Strong drive and organizational skills inclusive of project and program management
Ability to proactively, productively manage diverse stakeholder groups
Excellent accounting and analytical skills
Technical expertise in ERP system design and operation
In-depth knowledge of IT governance frameworks (e.g., COBIT, ITIL) and risk management methodologies
Excellent interpersonal and communication skills, verbal and written
Strong understanding of SOX requirements and IT general controls (ITGCs)
Ability to analyze and solve problems, results oriented
Able to prioritize work, and determine when necessary to switch priorities
Experience evaluating / governing SAP ITGCs
Undergraduate degree in Accounting, Information Technology, Computer Science or related technical degree required
Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) designation required (two or more preferred)
3+ years relevant work experience in public accounting or 4+ years industry required
2+ years working with SOX in the IT domain with or for a company listed on a US market required

Benefits

Medical/Dental/Vision Insurance
Health Savings Accounts and Flexible Spending Accounts
Life and AD&D Insurance, critical illness, hospital indemnity, and accident insurance
Short-term disability and long-term disability
Pet Insurance
Legal Benefits
401(k) Savings Plan with Company Match
12 Paid Holidays
Vacation Days and Paid Sick Time Off Days
Well-being Benefit
Discount and Total Reward Programs

Company

Refresco

twittertwitter
company-logo
Refresco is a global independent beverage solutions provider offering a wide range of products and packaging options.
dateFounded in 1999
location
Rotterdam, Zuid-Holland, NLD
people-size10001+ employees
web-link
https://www.refresco.com/

H1B Sponsorship

Refresco has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (9)
2024 (9)
2023 (18)
2022 (10)
2021 (6)
2020 (7)

Funding

Current Stage
Public Company
Total Funding
$432.76M
2024-07-29Debt Financing· $432.76M
2022-02-22Acquired
2015-03-27IPO

Leadership Team

leader-logo
Aart Duijzer
Founder & CFO
linkedin
leader-logo
Vincent Delozière
Chief Commercial Officer / ExCom member
linkedin

Recent News

valorinternational
Orange juice sector faces changes in consumer habits
2025-10-12
Refresco
Refresco successfully completes repricing of EUR and USD Term Loan B facilities
2025-09-15
EIN Presswire
Sugar Free Carbonated Drinks Market Size, Current and Future Trends and Forecast, 2030
2025-08-14
Company data provided by crunchbase