AIG
IT Risk & Controls Manager
AIG, Jersey City, New Jersey, United States, 07390
At AIG, we are reimagining the way we help customers to manage risk. Join us as an IT Risk and Controls Manager to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team.
Make your mark in Information Technology
At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology team equips our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. AIG’s Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology risk and compliance.
How you will create an impact
We seek a highly skilled and experienced professional in our Technology Risk and Controls Organization supporting financial applications with proficiency in SAP Suite specifically in Security and SAP GRC. In this strategic position, you will oversee our SAP systems' “Security & Controls” activities, ensuring compliance, risk management, and control effectiveness for SAP Security & controls End to End.
Your expertise will be crucial in maintaining the security & Controls posture of our SAP landscape and supporting the organization's overall risk management framework. The TRC Team oversees, assesses, and leads risk and compliance activities, develops, and deploys the Risk and Compliance Management framework, and serves as a guide in the SAP Risk and Compliance domain.
The role will ensure that the SAP Security, Controls Strategy, Risk and Compliance Management frameworks are always up-to-date. Hand hold our SAP application team and Auditors during the walkthrough of the controls, Provide clear plan to any deficiencies identified and follow-up to its successful remediation.
The role collaborates with Internal Audit and our external auditor’s to ensure requirements are met through technical controls and findings are remediated properly. This role has been key to proactively reduce risk for the company.
Key Responsibilities:
Establish and handle on the SAP Security and Controls Strategy, Governance Framework, acting as the key contact between the SAP technology teams, Internal Auditors, Regulators and External Auditors.
Risk Management:
Lead the development, implementation, and continuous improvement of SAP risk management strategies and frameworks.
Identify and assess risks associated with SAP processes, applications, and data, collaborating with relevant partners to prioritize risk mitigation efforts.
Compliance and Governance:
Establish and implement compliance with relevant industry standards, regulations, and internal IT policies related to SAP systems.
Work closely with internal audit teams to ensure SAP-related audits are conducted effectively and timely, addressing any findings or deficiencies.
Controls Development and Monitoring:
Design and implement robust control frameworks for SAP processes, collaborating with process owners and IT teams to ensure controls are practical and effective.
Develop key performance indicators (KPIs) and metrics to monitor control effectiveness and promptly address deviations.
Deploy and ensure trainings on controls and standards across lines of defense.
Issue Management:
Develop and maintain incident response plans for SAP systems, ensuring the organization is prepared to address potential security breaches or operational disruptions.
Lead investigations into SAP-related incidents, coordinating with IT security teams, internal audit, and Financial Controls unit as necessary.
Stakeholder Collaboration:
Champion strong working relationships with various stakeholders, including IT, finance, Internal Audit, compliance, and external auditors, to align SAP second line of defense activities with broader organizational objectives.
Reporting and Communication:
Communicate risks to management and across lines of defense for remediation.
Prepare regular reports for executive leadership and relevant committees, providing insights into SAP risk and control status, emerging issues, and recommended actions.
What you’ll need to succeed
Bachelor’s degree in business, Information Systems, or a related field; master's degree preferred.
Extensive experience (7+ years) in Audit, risk management, internal controls, compliance, or a related field, focusing on SAP systems.
Extensive and broad-based experience and expertise with all stacks of SAP infrastructure and Application stack with demonstrated understanding of SAP Security, Risk, and compliance control within a large and diverse enterprise environment or business community.
Solid understanding of SAP processes, modules, and configurations, including ECC, S/4HANA, SAP Platform Basis, Integration, Operating Systems, and related technologies.
Demonstrable record of accomplishment of leading and running multi-functional teams, fostering collaboration, and achieving results.
Identifying key risks and controls, knowledge of Sarbanes Oxley readiness controls optimization, and configuring controls around security, business process, and within the GRC (Governance, Risk modules.)
Relevant certifications such as Certified Information Systems Auditor (CISA) or equivalent are a plus.
Good communication, presentation, and interpersonal skills.
Strong analytical and problem-solving abilities, with keen attention to detail.
Experience in working with regulatory requirements and industry standards (e.g., SOX, GDPR) about SAP systems.
Ready to prove your potential? We would love to hear from you.
For positions based in Jersey City, NJ, the base salary range is $113,000-$143,000 and the position is eligible for a bonus in accordance with the terms of the applicable incentive plan. In addition, we’re proud to offer a range of competitive benefits, a summary of which can be viewed here: New Hire Benefits Overview 202.pdf (sprinklr.com) (https://sprcdn-assets.sprinklr.com/248/0a780968-b61c-4521-b06e-ffe3eb552e83-228292781/New_Hire_Benefits_Overview_202.pdf)
#LI-CN1
Enjoy benefits that take care of what matters
At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program, a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing and financial security—as well as your professional development—to bring peace of mind to you and your family.
Reimagining insurance to make a bigger difference to the world
American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.
Welcome to a culture of belonging
We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through our flexible work arrangements, diversity and inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The diversity of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.
AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.
AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please send an email to candidatecare@aig.com .
Functional Area:
IT - Information Technology
Estimated Travel Percentage (%): No Travel
Relocation Provided: No
AIG Employee Services, Inc.
Make your mark in Information Technology
At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology team equips our colleagues with the latest tools to complete their work efficiently and with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. AIG’s Information Technology functions include enterprise architecture, software and systems engineering, cybersecurity, and technology risk and compliance.
How you will create an impact
We seek a highly skilled and experienced professional in our Technology Risk and Controls Organization supporting financial applications with proficiency in SAP Suite specifically in Security and SAP GRC. In this strategic position, you will oversee our SAP systems' “Security & Controls” activities, ensuring compliance, risk management, and control effectiveness for SAP Security & controls End to End.
Your expertise will be crucial in maintaining the security & Controls posture of our SAP landscape and supporting the organization's overall risk management framework. The TRC Team oversees, assesses, and leads risk and compliance activities, develops, and deploys the Risk and Compliance Management framework, and serves as a guide in the SAP Risk and Compliance domain.
The role will ensure that the SAP Security, Controls Strategy, Risk and Compliance Management frameworks are always up-to-date. Hand hold our SAP application team and Auditors during the walkthrough of the controls, Provide clear plan to any deficiencies identified and follow-up to its successful remediation.
The role collaborates with Internal Audit and our external auditor’s to ensure requirements are met through technical controls and findings are remediated properly. This role has been key to proactively reduce risk for the company.
Key Responsibilities:
Establish and handle on the SAP Security and Controls Strategy, Governance Framework, acting as the key contact between the SAP technology teams, Internal Auditors, Regulators and External Auditors.
Risk Management:
Lead the development, implementation, and continuous improvement of SAP risk management strategies and frameworks.
Identify and assess risks associated with SAP processes, applications, and data, collaborating with relevant partners to prioritize risk mitigation efforts.
Compliance and Governance:
Establish and implement compliance with relevant industry standards, regulations, and internal IT policies related to SAP systems.
Work closely with internal audit teams to ensure SAP-related audits are conducted effectively and timely, addressing any findings or deficiencies.
Controls Development and Monitoring:
Design and implement robust control frameworks for SAP processes, collaborating with process owners and IT teams to ensure controls are practical and effective.
Develop key performance indicators (KPIs) and metrics to monitor control effectiveness and promptly address deviations.
Deploy and ensure trainings on controls and standards across lines of defense.
Issue Management:
Develop and maintain incident response plans for SAP systems, ensuring the organization is prepared to address potential security breaches or operational disruptions.
Lead investigations into SAP-related incidents, coordinating with IT security teams, internal audit, and Financial Controls unit as necessary.
Stakeholder Collaboration:
Champion strong working relationships with various stakeholders, including IT, finance, Internal Audit, compliance, and external auditors, to align SAP second line of defense activities with broader organizational objectives.
Reporting and Communication:
Communicate risks to management and across lines of defense for remediation.
Prepare regular reports for executive leadership and relevant committees, providing insights into SAP risk and control status, emerging issues, and recommended actions.
What you’ll need to succeed
Bachelor’s degree in business, Information Systems, or a related field; master's degree preferred.
Extensive experience (7+ years) in Audit, risk management, internal controls, compliance, or a related field, focusing on SAP systems.
Extensive and broad-based experience and expertise with all stacks of SAP infrastructure and Application stack with demonstrated understanding of SAP Security, Risk, and compliance control within a large and diverse enterprise environment or business community.
Solid understanding of SAP processes, modules, and configurations, including ECC, S/4HANA, SAP Platform Basis, Integration, Operating Systems, and related technologies.
Demonstrable record of accomplishment of leading and running multi-functional teams, fostering collaboration, and achieving results.
Identifying key risks and controls, knowledge of Sarbanes Oxley readiness controls optimization, and configuring controls around security, business process, and within the GRC (Governance, Risk modules.)
Relevant certifications such as Certified Information Systems Auditor (CISA) or equivalent are a plus.
Good communication, presentation, and interpersonal skills.
Strong analytical and problem-solving abilities, with keen attention to detail.
Experience in working with regulatory requirements and industry standards (e.g., SOX, GDPR) about SAP systems.
Ready to prove your potential? We would love to hear from you.
For positions based in Jersey City, NJ, the base salary range is $113,000-$143,000 and the position is eligible for a bonus in accordance with the terms of the applicable incentive plan. In addition, we’re proud to offer a range of competitive benefits, a summary of which can be viewed here: New Hire Benefits Overview 202.pdf (sprinklr.com) (https://sprcdn-assets.sprinklr.com/248/0a780968-b61c-4521-b06e-ffe3eb552e83-228292781/New_Hire_Benefits_Overview_202.pdf)
#LI-CN1
Enjoy benefits that take care of what matters
At AIG, our people are our greatest asset. We know how important it is to protect and invest in what’s most important to you. That is why we created our Total Rewards Program, a comprehensive benefits package that extends beyond time spent at work to offer benefits focused on your health, wellbeing and financial security—as well as your professional development—to bring peace of mind to you and your family.
Reimagining insurance to make a bigger difference to the world
American International Group, Inc. (AIG) is a global leader in commercial and personal insurance solutions; we are one of the world’s most far-reaching property casualty networks. It is an exciting time to join us — across our operations, we are thinking in new and innovative ways to deliver ever-better solutions to our customers. At AIG, you can go further to support individuals, businesses, and communities, helping them to manage risk, respond to times of uncertainty and discover new potential. We invest in our largest asset, our people, through continuous learning and development, in a culture that celebrates everyone for who they are and what they want to become.
Welcome to a culture of belonging
We’re committed to creating a culture that truly respects and celebrates each other’s talents, backgrounds, cultures, opinions and goals. We foster a culture of inclusion and belonging through our flexible work arrangements, diversity and inclusion learning, cultural awareness activities and Employee Resource Groups (ERGs). With global chapters, ERGs are a cornerstone for our culture of inclusion. The diversity of our people is one of AIG’s greatest assets, and we are honored that our drive for positive change has been recognized by numerous recent awards and accreditations.
AIG provides equal opportunity to all qualified individuals regardless of race, color, religion, age, gender, gender expression, national origin, veteran status, disability or any other legally protected categories.
AIG is committed to working with and providing reasonable accommodations to job applicants and employees with disabilities. If you believe you need a reasonable accommodation, please send an email to candidatecare@aig.com .
Functional Area:
IT - Information Technology
Estimated Travel Percentage (%): No Travel
Relocation Provided: No
AIG Employee Services, Inc.