Risk Expert III

Position Summary...

What you'll do...

About the Team:

 At Walmart, we prioritize innovation and data security. Our team is dedicated to maintaining a secure operating environment and preserving the trust of our customers, associates, and stakeholders. We combine a range of services and expertise to prevent fraud, detect threats, and manage digital risk and access. Our focus is on mitigating attack risks, securing cloud transformation, and fostering a culture of security and reliability within our team.

What you'll do:

As a member of the InfoSec Risk & Compliance team, the SAP ITGC Lead will play a crucial role in our Global IT SOX Risk & Compliance program. This position involves partnering with the IT organization to enhance and maintain a robust IT SOX control environment. The role requires proactive detection and management of risks to the SOX compliance program due to new or changing technology solutions. Additionally, the SAP ITGC Lead will serve as a subject matter expert in IT controls, ensuring integration of best practices across development communities and tools. This role reports directly to the Director of SOX Compliance and IT General Controls (ITGC).

• Control Evaluation: Assess the effectiveness of key ITGCs within SAP modules, including user access controls, change management, system backups, data integrity, and system monitoring.
• Risk Assessment: Identify potential risks within the SAP environment related to data security, unauthorized access, system malfunctions, and regulatory non-compliance.
• Control Documentation: Develop and maintain comprehensive documentation of ITGCs, including control procedures, testing methodologies, and evidence collection processes.
• Audit Support: Collaborate with internal and external auditors to facilitate ITGC testing, provide required documentation, and address audit findings.
• Compliance Monitoring: Ensure SAP system activities comply with internal policies, industry standards, and regulatory requirements such as SOX.
• Continuous Improvement: Identify opportunities for enhancement in ITGCs and propose process improvements to strengthen controls.
• Stakeholder Collaboration: Act as a trusted business advisor by educating stakeholders on control requirements and assisting in the implementation of secure and compliant system environments.
• Risk Detection: Lead efforts to proactively detect technology risks to the SOX program and assess their impact in coordination with key stakeholders.
• Control Awareness & Integration: Leverage developer forums to enhance control awareness, integrate compliance checks into the Systems Development Lifecycle, and foster a controls-conscious culture.
• Technical Mapping: Manage and maintain the SOX technical map, ensuring key information for in-scope SOX solutions is up to date.
• Process Optimization: Drive automation and continuous controls monitoring initiatives across teams to improve process efficiency and compliance.

What You’ll Bring:

• An overall experience of 3-8 yrs with a degree in engineering or MS/MCA.
• Extensive knowledge of SOX, IT risk management, and IT general controls.
• Relevant certification in risk, audit, or compliance (e.g., CISA, CRISC, CISSP).
• Experience as an internal or external auditor in IT compliance and controls.
• A proactive, analytical, and detail-oriented mindset with a passion for solving complex challenges.
• Strong customer-centric approach to executing compliance and control functions.
• Ability to influence stakeholders, lead teams, and effectively manage cross-functional collaboration.
• Excellent communication skills, with the ability to articulate control requirements to both technical and non-technical audiences.

Preferred Qualifications:

• Experience in SAP security and compliance frameworks.
• Familiarity with automation tools for continuous control monitoring.
• Knowledge of emerging IT risks and regulatory trends impacting SAP environments.

This is a key role within the Risk & Compliance team, offering the opportunity to shape and strengthen the IT SOX control environment while working alongside industry-leading professionals in IT risk management and compliance.

About Walmart Global Tech
Imagine working in an environment where one line of code can make life easier for hundreds of millions of people.  That’s what we do at Walmart Global Tech. We’re a team of software engineers, data scientists, cybersecurity expert's and service professionals within the world’s leading retailer who make an epic impact and are at the forefront of the next retail disruption. People are why we innovate, and people power our innovations. We are people-led and tech-empowered. 

We train our team in the skillsets of the future and bring in experts like you to help us grow. We have roles for those chasing their first opportunity as well as those looking for the opportunity that will define their career. Here, you can kickstart a great career in tech, gain new skills and experience for virtually every industry, or leverage your expertise to innovate at scale, impact millions and reimagine the future of retail.

Flexible, hybrid work
We use a hybrid way of working with primary in office presence coupled with an optimal mix of virtual presence. We use our campuses to collaborate and be together in person, as business needs require and for development and networking opportunities. This approach helps us make quicker decisions, remove location barriers across our global team, be more flexible in our personal lives.

Benefits

Beyond our great compensation package, you can receive incentive awards for your performance. Other great perks include a host of best-in-class benefits maternity and parental leave, PTO, health benefits, and much more.

Equal Opportunity Employer:
Walmart, Inc. is an Equal Opportunity Employer – By Choice. We believe we are best equipped to help our associates, customers and the communities we serve live better when we really know them. That means understanding, respecting and valuing diversity- unique styles, experiences, identities, ideas and opinions – while being inclusive of all people.

Minimum Qualifications...

Outlined below are the required minimum qualifications for this position. If none are listed, there are no minimum qualifications.

Option 1: Bachelor's degree in computer science, information technology, engineering, information systems, cybersecurity, or related area and 2 years’ experience in cybersecurity risk or related area at a technology, retail, or data-driven company. Option 2: 4 years’ experience in cybersecurity risk or related area at a technology, retail, or data-driven company.

Preferred Qualifications...

Outlined below are the optional preferred qualifications for this position. If none are listed, there are no preferred qualifications.

Certification in Security+, GISF, GSEC, CISA, CISSP, or CCSP, Master’s degree in Computer Science, Information Technology, Engineering, Information Systems, Cybersecurity, or related area

Primary Location...

G, 1, 3, 4, 5 Floor, Building 11, Sez, Cessna Business Park, Kadubeesanahalli Village, Varthur Hobli , India