Security Analyst

Job Title: Security Analyst

Location: Seattle, WA

Employment Type: Contract

About Us:

 DMV IT Service LLC is a trusted IT consulting firm, established in 2020. We specialize in optimizing IT infrastructure, providing expert guidance, and supporting workforce needs with top-tier staffing services. Our expertise spans system administration, cybersecurity, networking, and IT operations. We empower our clients to achieve their technology goals with a client-focused approach that includes online training and job placements, fostering long-term IT success.

Job Purpose:

We are looking for a seasoned Security Analyst to support our Cybersecurity Governance, Risk, and Compliance (GRC) initiatives. This role is vital in ensuring our IT controls comply with SOX Section 404 requirements. You’ll be working closely with cross-functional teams to assess and improve control environments, manage audit engagements, and promote compliance awareness throughout the organization.

Requirements

Key Responsibilities:

• Contribute to the execution of the organization’s IT SOX compliance program.
• Develop and maintain documentation for SOX IT controls, including control design and operating effectiveness.
• Partner with internal teams to confirm appropriate controls are in place for all SOX-relevant systems.
• Act as a subject matter expert for IT SOX compliance and provide guidance across departments.
• Communicate regulatory updates and drive the implementation of necessary changes to control frameworks.
• Collaborate with architecture and technology groups to identify compliance implications of strategic initiatives.
• Track, document, and help resolve control gaps and deficiencies in a timely, effective manner.
• Coordinate quarterly SOX certifications and support leadership attestations.
• Automate audit evidence collection processes and facilitate audit requests.
• Lead risk-based reviews of control environments and support ongoing improvements.
• Maintain centralized audit documentation and improve audit workflows.
• Produce reports and metrics to show compliance progress and program impact.

Required Skills & Experience:

• At least 5 years of experience in IT Audit, Cybersecurity GRC, or related functions, with direct involvement in SOX ITGC compliance.
• Prior experience with a Big 4 consulting firm or similar, focusing on SOX audits and IT control evaluations.
• Deep knowledge of SOX Section 404 and IT control requirements, including risk-based testing and documentation practices.
• Experience leading and participating in audit walkthroughs and managing evidence collection.
• Expertise in core ITGC domains such as user access, change management, operations, and development lifecycle.
• Familiarity with enterprise systems in the retail space (e.g., Oracle EBS, WMS, OMS, RMS) and their SOX compliance implications.
• Knowledge of cloud and SaaS environments (e.g., AWS, Azure) and how they influence IT controls.
• Hands-on experience with GRC platforms such as ServiceNow to streamline control tracking and evidence management.
• Proven ability to drive remediation plans and support teams through control implementation and risk reduction.
• Strong communication and collaboration skills with an ability to influence across diverse teams.
• Ability to adapt and thrive in a dynamic, global retail environment.
• Professional certifications such as CISA, CPA, or CIA are required.