About Thentia

Thentia is a fast-growing, venture capital-backed software as a service (SaaS) company that is emerging as a world leader in government technology with a platform that is transforming and modernizing how regulatory organizations are conducting business. As a company of builders, thinkers, and owners, Thentia gives employees the opportunity to create amazing solutions, showcase their talents, and benefit from our shared success as we scale up in the U.S., Canadian, and global markets. Our solutions directly impact public trust and regulatory integrity, helping regulators and agencies meet 21st century standards by leveraging predictive analytics, Big Data, AI, and other innovative capabilities. Internally, our culture fosters collaboration, inclusivity, intellectual curiosity, and professional development. We lead by our values of customer focus, integrity, accountability, adaptability, achievement, purpose, teamwork, and authoritativeness.

About The Role

The IT Auditor is primarily responsible for working with the Compliance and Governance Manager to perform internal audit projects as well as participating on operational and compliance audits, as part of the total compliance plan. This responsibility includes performing internal audit procedures and preparing internal audit reports reflecting the results of the work performed. Scope of work performed will include applying knowledge of the PCI DSS, FedRAMP, ISO 27001, CJIS and Systems Development Life Cycle to audit various controls in alignment with those compliant areas. Additionally, this is a non-SOX environment, and the IT Auditor will perform follow-up on the status of outstanding internal audit issues and champions internal control and corporate governance concepts throughout the business.

Responsibilities

• Perform, evaluate, assess, advise, and follow General IT Controls (GITCs) audit plans aligned with business objectives.
• Conduct and document audits according to audit program and audit schedule.
• Establish Internal audit plan based on business needs and associated risks.

• While on audits, assess controls and identify control weaknesses, alongside communicating areas for process improvement.
• Perform follow-up of implementation of agreed and communicated remediation actions and timely escalations.
• Prepare detailed assessment reports following each audit using the formal internal audit procedure and process.
• Assist in any type of IT compliance implementation project (ISO, SOC, GDPR, FedRAMP etc.) with full participation in the internal audit process before official reviews.
• Work with control and process owners in the cloud engineering and Info Sec space on planning and execution of the test of design and test of operating effectiveness.

• Suggest improvement recommendations of the control environment and assist with pre-implementation control identification and issue validation while contributing to the deficiency evaluation process.
• Perform and/or assist with IPEs (information provided by the client) testing, review of SOC (service organization controls), applications and ITAC controls.

Qualifications

• Bachelor’s degree or equivalent, with an emphasis in Information Technology, Business, or a related field.
• Minimum 6 years’ experience in ITGC and operational experience.
• Certified Information Systems Auditor (CISA) or Certified Internal Auditor (CIA) required.
• Must be self-driven with the ability to work independently within a multinational environment.
• Excellent communication skills with experience presenting to all levels of management.

• Experience with different information security and data privacy standards and frameworks such as ISO27001, SOC, GDPR, FedRAMP, etc.
• Team player with a focus on the big picture prioritizing overall success of the customer, team and Thentia.
• Ability to build strong relationships with relevant stakeholders to understand their business and identify appropriate risk mitigations and opportunities to add value.
• Background in large firm consulting preferred.

We’re proud to be ‘Great Place to Work’ certified in the U.S. and Canada. Nearly 90% of our employees have participated and nearly 9 out of 10 employees overall agreed that Thentia is a ‘great place to work’.

We are a hybrid workplace: At Thentia, we've adopted a hybrid work model with 3 days a week in office and 2 days at your discretion. As a company, hybrid collaboration is key to our success because:

• It’s noticeably and positively different when we have people together
• Being all remote is pretty impersonal and can be isolating

• Serendipitous interactions can spark new big ideas and innovation
• Problem solving and sharing ideas in real time moves us forward faster
• Cross group collaboration makes us stronger
• Having fun, together helps us win together
• Best of all…feeling the energy in the room around ideas and wins is incredible!

Compensation

Thentia provides employees with a competitive base salary along with:

• Full Health Insurance coverage (programs vary for each country)
• Flexible paid-time-off, including vacation and wellbeing days, and volunteer days

• Parental Leave
• Year-end bonus potential (for eligible roles)
• Professional development & training, including Udemy Business

Our Commitment

Thentia is an equal opportunity employer that is committed to diversity and inclusion in the workplace. We are building products for a diverse world and are committed to building and fostering an environment where our employees feel included, valued, and heard, which enables us to make commerce better for everyone. We strongly encourage applications from racialized people, people with disabilities, people from gender and sexually diverse communities and/or people with intersectional identities. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristic as outlined by federal, state, provincial, or local laws in the regions we operate. This policy applies to all employment practices within our organization, including hiring, recruiting, promotion, termination, layoff, recall, leave of absence, compensation, benefits, training, or internships.

We thank all applicants in advance for applying. Only individuals selected for interviews will be contacted.

Staffing Firms: Thentia does not accept unsolicited submissions. All firms must have valid agreements in place.