IT General Controls Lead

Nike does more than outfit the world's best athletes. We are a place to explore potential, obliterate boundaries, and push out the edges of what can be. We're looking for people who can grow, think, dream and create. We thrive in a culture that embraces diversity and rewards imagination. We seek achievers, leaders and visionaries. At Nike, it's about bringing what you have, to a challenging and constantly evolving game.

If you're ready to innovate and lead in the Global Warehouse Management space, join Nike's Technology Global Fulfillment and Logistic Solution (GFLS) organization. We are a fast pace organization that is always looking and moving forward to ensure we delivery high quality solutions to meet our ever-changing customer needs. We are responsible for delivering high end-to-end quality software releases to the Enterprise, on time and quicker than before. Working in our organization is rewarding and challenging, and like no other job you have had before.

You will leverage your knowledge of IT General Controls to define the best solutions across our Global Supply Chain landscape, including processes and systems. As a Lead 3PL IT General Control, your role on the team will include leading a team of IT General Control Compliance Analysts to implement IT General Controls within our Distribution Centers managed by 3PLs.

As a LEAD 3PL IT General Controls, your role will including leading the team by leveraging your knowledge of industry best practices, people and problem solving skills to ensure regulatory (e.g., GDPR, SOX, Sarbanes Oxley) and non-regulatory (e.g., IT General Controls) compliance functions are properly executed.

You must be passionate about Compliance, as you'll need a good working knowledge of industry best practice frameworks, such as ISO, NIST and CoBIT. You will regularly meet with business and technology teams across Nike and Nike's 3PLs to consult with them on their compliance requirements. You will work cross-functionally within the Corporate Information Security (CIS) teams and across Nike for information security compliance operations.

We're looking for someone who has clearly demonstrated skills and experience, since your responsibilities will include, but not be limited to:
• Utilize your thorough understanding of ITGC's (IT General Controls) to consult and influence other Technology units for assessment of compliance to GDPR.
• Consult and influence control design and control operations related in support of compliance requirements.
• Drive and own the annual control validation process (Self- Assessment, Report of Compliance).
• Lead the broader 3PL compliance team to implement Nike's comprehensive compliance controls program, with an IT focus.
• Understand and promote the relationship between information security policies, standards, procedures, and controls as they pertain to the delivery and maintenance of quality systems so that you can effectively advocate information security rationale to business stakeholders.


Qualifications
• 7 + years of IT Audit, internal Audit, and/or IT compliance history
• Highly preferred ISA (Internal Security Assessor) certification but not required.
• Knowledge of information security principles, frameworks, and best practices (e.g., PCI DSS, COBIT, COSO, NIST and ISO 27000).
• Excellent collaboration skills - must be eager to work as part of a cohesive team and work as a partner to others within Nike, Inc. both at WHQ and globally and with external parties.
• Proven experience identifying solutions for complex problems in enterprise environments.
• Excellent analytical and problem-solving skills.
• Current on information security technologies, trends, standards, and best practices.
• Bachelor's degree in Business Information Management, Information Security, Computer Science, Finance, or Accounting.
• CISA, CRISC, CISSP, or CISM certifications are beneficial.
• Strong business acumen to quickly learn new business processes and understanding of PCI and SOX value to the business.

Other:
• Design, document, and oversee 3rd party implementation of IT General Controls (ITGC) to ensure compliance
• Partner with Tech Compliance audit to determine scope, perform risk assessment, and oversee audits
• Monitor controls to ensure proper and timely execution
• Prepare reports of control operational status, audit findings, and remediation plans as required.
• Serve as liaison between Tech Compliance, the Business and 3rd parties as required.

• 7 + years of IT Audit, internal Audit, and/or IT compliance history
• Highly preferred ISA (Internal Security Assessor) certification but not required.
• Knowledge of information security principles, frameworks, and best practices (e.g., PCI DSS, COBIT, COSO, NIST and ISO 27000).
• Excellent collaboration skills - must be eager to work as part of a cohesive team and work as a partner to others within Nike, Inc. both at WHQ and globally and with external parties.
• Proven experience identifying solutions for complex problems in enterprise environments.
• Excellent analytical and problem-solving skills.
• Current on information security technologies, trends, standards, and best practices.
• Bachelor's degree in Business Information Management, Information Security, Computer Science, Finance, or Accounting.
• CISA, CRISC, CISSP, or CISM certifications are beneficial.
• Strong business acumen to quickly learn new business processes and understanding of PCI and SOX value to the business.

Other:
• Design, document, and oversee 3rd party implementation of IT General Controls (ITGC) to ensure compliance
• Partner with Tech Compliance audit to determine scope, perform risk assessment, and oversee audits
• Monitor controls to ensure proper and timely execution
• Prepare reports of control operational status, audit findings, and remediation plans as required.
• Serve as liaison between Tech Compliance, the Business and 3rd parties as required.


Back to top