ERP Risk and Controls Analyst

This is a hybrid role with 50% on-site requirement in Wilmington, MA. We are looking for a detail-orientedERP Risk and Controls Analyst to join our growing team. In this role, you will partner with business control owners in assessing and managing risks associated with the company's Oracle Enterprise Resource Planning (ERP) system, ensuring that key controls are in place and effectively mitigated. You will work closely on the Oracle implementation with the IT, finance, and business teams to ensure that the ERP system's functionality, data integrity, and internal controls are designed, implemented, and operating efficiently. The ideal candidate will have a strong understanding of ERP systems (e.g., SAP, Oracle, Microsoft Dynamics) and experience with risk management, internal controls, and audit processes. Responsibilities: Perform risk assessments related to the Oracle ERP system implementation, identifying potential vulnerabilities in business processes, access controls, data security, and financial reporting. Collaborate with cross-functional teams to assess the potential risks of system changes and configurations, ensuring that appropriate mitigating controls are in place prior to the go-live of the Oracle ERP implementation. Assist in the design, documentation, and implementation of internal controls specific to Oracle ERP systems, focusing on key financial, operational, and IT processes. Review and monitor user access to ERP systems to ensure compliance with segregation of duties (SoD) policies. Analyze and validate user roles and permissions to prevent conflicts of interest and ensure that only authorized individuals have access to critical financial and operational data. Collaborate with business process owners to ensure that controls within the ERP system effectively support business operations and mitigate operational and financial risks. Conduct post-implementation reviews of ERP system updates to ensure that new features or modifications do not introduce new risks or vulnerabilities. Qualifications Requirements: Bachelor's degree in Information Technology, Accounting, Finance, Business Administration, or a related field. Certifications such as Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or Certified Internal Auditor (CIA) are highly preferred. 2-4 years of experience in ERP systems, risk management, internal controls, or audit, with a strong understanding of ERP modules (SAP, Oracle, Microsoft Dynamics, etc.). Experience with access control frameworks, segregation of duties (SoD), and user role management within ERP systems. Knowledge of risk management frameworks, IT general controls, and financial reporting processes. Strong understanding of ERP system functionalities, data flows, and integrations between modules (e.g., Finance, HR, Procurement, etc.). Familiarity with compliance regulations such as SOX, GDPR, and IT audit standards. Proven experience in identifying, assessing, and mitigating risks within business systems, especially ERP-related risks. Strong analytical skills, with the ability to assess complex data and workflows to identify potential control gaps. Excellent communication and interpersonal skills, with the ability to collaborate across various departments and levels of the organization. 5% travel may be required for this role. #J-18808-Ljbffr

Created: 2025-03-06