Share this Job

IT Risk and Compliance Mgr - 90243162 - Washington

Date: Jan 11, 2019

Location: Washington, DC, US, 20002

Apply now »
Apply now

Apply for Job

Your success is a train ride away.

Amtrak connects businesses and communities across the country and we move America’s workforce toward the future. We employ more than 20,000 diverse, energetic professionals in a variety of career fields throughout the United States. The safety of our passengers, our employees, the public and our operating environment is our priority and the success of our railroad is the result of our employees.

Are you ready to join our team?

Position Summary: 

The Manager may manage multiple IT processes within one functional area. The position may also manage services provided to internal and external customers.  May focus on a specific industry of moderate to high complexity. 

Essential Functions: 

  • Managing all non-security related policies.
  • Owning all IT policy catalog / repository and conduct IT policy reviews.
  • Reviewing, revising, and where appropriate, proposing new policies and procedures to ensure compliance with applicable laws and regulations.
  • Working with IT leaders / staff to develop new or updated policies.
  • Managing feedback and corrective action plans resulting from audits involving Amtrak's IT department.
  • Identifying major risk factors which prevent Amtrak from achieving its strategic, operational, financial reporting and compliance objectives.
  • Providing support and oversight to Amtrak's various IT audit projects and testing initiatives, including audits of internal controls; identifying internal IT controls, assessing their design and operational effectiveness, determining risk exposures and developing remediation plans.
  • Participates in the development of IT audit budgets. Tracks and takes appropriate steps to stay within budget.
  • Working with the Director IT Risk & Compliance and other appropriate leadership to formulate, develop and review audit responses.
  • Meets regularly with team to gather work status; discuss work progress and obstacles; provide guidance, encouragement and constructive feedback.
  • Identifies the roles, skills and knowledge required. Ensure staff has the resources and skills needed to support all work initiatives. Participates in IT workforce deployment activities.
  • Generates appropriate communication, process and educational plans for mitigating the disruption of change. Identifies and removes obstacles to change.


Work Experience:

  • Experience performing integrated audits
  • Familiarity with risk-based audit approach.
  • Familiarity with industry frameworks (e.g. COSO, COBIT, NIST, etc.), best practice and methodologies
  • 10 or more years of IT audit experience to include Big 4 experience
  • Requires experience in managing teams and building relationships with people at a variety of levels.
  • Professional certifications including Certified Information Systems Auditor (CISA) and/or Certified Information Security Manager (CISM)
  • Must possess strong verbal communication and interpersonal skills, work well with others in an integrated team environment, and must be self-motivated
  • Strong written communication skills.

Preferred Work Experience:

  • Sarbanes Oxley Audit experience
  • Experience in the transportation industry.
  • SAP ERP security audit experience
  • At least 10 years of broad IT audit experience to include managing internal audit or risk management consulting engagements.

Preferred Education:

  • Master's degree in related technical/business areas or equivalent.


Other Requirements:

  • Requires on-call status

Requisition ID:37889
Posting Location(s):District of Columbia; Maryland; Virginia
Personnel Area:DC04
Job Family/Function:Information Technology 
Relocation Offered:No 
Education Requirements:Bachelors Degree
Travel Requirements:None 
Employment Experience Requirements:5 - 7 years of experience

Amtrak employees power our progress through their performance.

We want your work at Amtrak to be more than a job – we want it to be a fulfilling experience where you find challenging and rewarding opportunities, respect among colleagues, competitive pay, benefits that protect you and your family, and a high performance culture that recognizes and values your contributions and helps you reach your career goals.

We proudly support and encourage U.S. Veterans to apply for Amtrak job opportunities.

All positions require pre-employment background verification, medical review and pre-employment drug screen. Amtrak is committed to a safe and drug-free workplace and performs pre-employment substance abuse testing. All new hires are required to undergo a hair drug test which detects the presence of illegal drugs for months prior to testing. We appreciate your cooperation in keeping Amtrak safe and drug-free.  

In accordance with DOT regulations (49 CFR section 40.25), Amtrak is required to obtain prior drug and alcohol testing records for applicants/employees intending to perform safety- sensitive duties for covered Department of Transportation positions.   If an applicant/employee refuses to provide written consent for Amtrak to obtain these records, he/she will not permitted to perform safety-sensitive functions.

Note that any education requirement listed above may be deemed satisfied if you have an equivalent combination of education, training and experience.

Amtrak is an Affirmative Action/Equal Opportunity Employer and we welcome all to apply. We consider candidates regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, disability (including blindness), or veteran status.

POSTING NOTES: Information Technology || Corporate

Apply now »
Apply now

Apply for Job