Janus Henderson Investors Technology Audit Manager in Denver, Colorado
We are a leading independent global asset manager, dedicated to delivering the best outcomes for our clients through a highly diversified range of actively-managed products. We are truly global, supporting our individual and institutional investors across a range of products, encompassing equities, fixed income, multi-asset and alternatives. Our high-energy and collaborative culture at Janus Henderson helps our client achieve their goals and ensures that our people love the place they work.
Overview of the role
The Janus Henderson SAP systems contain some of the companies’ most crucial Finance and HR data which are considered by audit to be our ‘Crown Jewels’. As such we need to ensure that we have robust highly auditable processes in place around these systems. As the Distribution and Corporate Tech (DCT) Audit Manager, you will be a key member of the Distribution and Corporate Technology Leadership Team, responsible for the management and coordination of audit-related activities across the DCT systems landscape. You will also be responsible for working closely with product owners, internal and external audit to ensure we have robust, reliable and auditable systems and procedures, and that our systems constantly tested and are compliant with the controls of the various audit regimes that regulate our industry. Where necessary, you will also be expected to manage third party suppliers and consultants responsible for testing our systems to check for compliance of audit controls.
Duties and responsibilities
Helping create and maintain JHI’sSOX control environment across all in-scope SAP SOX systems.
Overseeing and managing the SAP GRC application to ensure it is fit for purpose for all interested parties’ requirements. This will involve constant collaboration with end users, control owners, information security, and internal audit
Other SAP GRC responsibilities include:
Responsible for operating SoX and ISAE 3402 controls.
Responsible for collaborating with control owners/ control operators to ensure the successful design and operating effectiveness of all SoX and ISAE 3402 controls.
Responsible for ownership of all SoD (Segregation of Duties) processes and collaborating with SoD risk and mitigating control owners to evidence the operation of regular oversight over SoD violations and mitigating actions & follow-up.
Ensuring that all control objectives within the DCT landscape are in place and operating as specified and helping coach control owners on changes that need to be made in the event a control is not operating as expected.
Partnering with internal and external audit to ensure all audit processes are documented, socialized, and adhered to with respect to the Finance and HR platforms
Participating in and facilitating audit activities and partnering with IT Product Owners to drive any remedial actions
Providing subject matter expertise in the SAP Security and GRC space to Internal and External Auditors and responsible for technical oversight, best practice guidance, and point of escalation as needed during project lifecycle, service management, and incident management
Assisting with the frequent reporting and tracking of the SAP SOX controls. Success candidate will have experience in IT internal and external audits and functional experience with SAP and have sound understanding of SOX requirements.
Identifying and implementing best practices to meet audit requirements in a timely manner.
Designing IT testing procedures to identify and evaluate risk exposures in order to determine the efficacy and efficiency of controls.
Carry out additional duties as assigned.
Technical skills and qualifications
Minimum of 5 years working experience in IT Risk Management, SOX compliance, or auditing with a strong background in IT controls.
Bachelor's degree in Computer Science/Information Technology, Accounting or equivalent commensurate experience preferred.
5+ years, working experience with SAP GRC
5+ years’ experience in SAP Security Administration
Strong understanding of Sarbanes-Oxley (SOX) and other regulatory requirements that may impact SAP Security.
Experience developing security solutions that address Sarbanes-Oxley requirements.
Technical knowledge of SAP landscape and roadmap and a good understanding of IT Infrastructure and Information Security functions.
Experience in successful SOX implementation in project and support models and follow-up.
SAP CISA certification preferred.
In addition to putting clients first, acting like an owner, and succeeding as a team, the competencies for this role include:
Effective communication and technical leadership. Candidate must demonstrate a high level of communication skills, both verbal and written
Candidate must be able to mentor and coach other members of the team as well as possess the ability to communicate effectively with technical and business audiences interchangeably.
Strong organisation and planning skills.
Must have the ability to work with limited supervision and exhibit a strong sense of urgency.
Ability to maintain strict adherence to security requirements and policies.
Strong stakeholder management skills across all levels of the business.
Strong conceptual, analytical, problem-solving, troubleshooting, and resolution skills including transaction tracing, issue escalation, and problem diagnosis.
Documentation and presentation skills catered to a diverse technical and business audience.
Ongoing competence in the role to be assessed, in line with applicable regulatory requirements, by:
Annual performance appraisal
Completion of all assigned compliance training
Annual attestation (Knowledge and Competence in-scope roles only)
At a minimum the role will require you to:
Place the interest of Janus Henderson’s Clients first, act in accordance with TCF (Treating Customers Fairly) principles
Understand and follow laws and regulations applicable for your role, seeking the help of your supervising manager or Compliance if additional guidance is required
Understand and abide by all Janus Henderson policies applicable to your role, and seek support/guidance of the policy owner guidance when required
You are ultimately accountable for your actions and responsible for seeking further information on any or all of the above as necessary.
The base salary range for this position is $125,000 - $150,000. This range is estimated for this role. Actual pay may be different.
Annual Bonus Opportunity: Position is eligible to receive an annual discretionary bonus award from the profit pool. The profit pool is funded based on Company profits. Individual bonuses are determined based on Company, department, team and individual performance.
Benefits: Janus Henderson is committed to offering a comprehensive total rewards package to eligible employees that includes; competitive compensation, pension/retirement plans, and various health, wellbeing and lifestyle benefits. To learn more about our offerings please visit the Why Join Us section on the career page here.
Janus Henderson (including its subsidiaries) will not maintain existing or sponsor new industry registrations or licenses where not supported by an employee’s job functions (as determined by Janus Henderson at its sole discretion).