"Alerted.org

The IT Risk Specialist is an individual contributor who will provide practical and technical audit and IT risk expertise for the global cybersecurity team. The primary responsibility of this role is to liaise between the IT Department and internal/external auditors for the annual SOX audit. This role is also responsible for providing oversight and support to all required audits and IT risk functions, including, but not limited to creating & maintaining a thorough audit calendar, conducting quarterly Active Directory reviews, managing Sensata’s third-party risk management platform, and maintaining the IT risk register. The IT Risk Specialist will also be responsible for conducting due diligence assessments on new vendors, suppliers, and business partners and evaluating regulatory compliance documentation during the on-boarding process. This role will report to the IT Director of Cybersecurity, but will support the broader IT Department.

# General Responsibilities

+ Partners with IT and business stakeholders on the status of cyber risk and compliance issues, assessment findings, control gaps, and upcoming audit requirements

+ Coordinates with business stakeholders to understand the full scope of Sensata’s audit schedule; builds and manages the audit calendar for IT participation

+ Maintains SOX audit playbooks; develops playbooks for other recurring audits

+ Defines metrics for internal cyber risk register rating scores; maintains the cyber risk register; coordinates with risk owners to remediate identified risks to the organization

+ Manages the IT component of both internal and external audits: schedules control walkthroughs, coordinates evidence collection, etc.

+ Conducts quarterly reviews of the Active Directory and Azure environments for inappropriate and/or stale user and computer access

+ Documents and maintains policies and standard operating procedures to assess, monitor, report, escalate and remediate cyber risk and compliance related issues

+ Monitors and analyzes Sensata’s third-party risk management platform and coordinates remediation actions with vendors, suppliers, and other business partners

+ Works collaboratively with corporate compliance, internal audit, corporate risk management and various technical teams in the design and implementation of audit, risk assessment and regulatory compliance practices for IT

+ Proactively promotes enhancement of technology-related internal controls awareness and training across IT and business units; drives toward efficiency and automation for recurring audit requirements

+ Partners with cross-functional & cross-regional teams in performing reviews and tests of IT internal controls to ensure that existing IT systems are operating as designed

+ Escalates issues and risks to appropriate stakeholders; creates corrective action plans; determines acceptable level of risk

# Experience / Qualifications

+ A university degree required (i.e. Bachelors degree) or equivalent relevant work experience.

+ Must be a team player able to work in a fast-paced environment with demonstrated ability to handle multiple competing tasks and demands

+ Strong communication skills; oral, written and presentation

+ Strong organization, planning and time management skills to achieve results

+ Strong personal and professional ethical values and integrity

+ Holds self-accountable to achieving goals and standards

+ Proficient in Microsoft Office programs (Outlook, Word, PowerPoint, and Excel)

+ Strong interpersonal & collaboration skills to work effectively with all levels of the organization including suppliers and/or external customers

Additional Experience/ Qualifications

+ IT and business work experience in risk management, SOX compliance, audit, information security management, or similar career path preferred

+ A university degree in Information Systems, Cyber Security, Business Administration, or equivalent relevant work experience/certifications preferred

+ First-hand experience with Sarbanes-Oxley (SOX) and the NIST Cybersecurity Framework preferred

+ **Familiarity with:** TISAX, ISO 27001, ISO 21434, CMMC, etc. preferred

+ Knowledge of governance, risk, and compliance platforms preferred

+ Previous auditor experience is a plus, but not required

+ Ability to travel up to 10%

This position will be subject to U.S. export control requirements under the International Traffic in Arms Regulations (ITAR) and/or Export Administration Regulations (EAR). Employment is contingent on either verifying the U.S. Person status or obtaining any necessary export license.

\#LI-MY1 #LI-Hybrid

# Base Salary Range:

$107,600.00 - $148,060.00

_At Sensata, our employees are the key to our success and growth. We recognize that each individual brings their own unique experience, therefore the base salary range information shown above is a general guideline only. Sensata considers several factors when extending an offer, including, but not limited to, a candidate’s experience and qualifications, as well as internal equity, market and business considerations. In addition to base salary, Sensata offers competitive medical, dental, vision, life and disability insurance plans, along with education reimbursement, wellness programs, a 401(k) retirement plan with Company matching, and a variety of paid time off, such as vacation or flex-time, sick, bereavement, and parental leave. Certain positions are also eligible for short-term incentive and long-term incentive programs._

# Smarter _Together_

+ Collaborating at Sensata means working with some of the world’s most talented people in an **enriching environment** that is constantly pushing towards the next best thing

+ Employees work across functions, countries and cultures gaining **new perspectives** through mutual respect and open communication

+ As OneSensata, we are working together to make things work together

Click here to view Sensata Recruitment Privacy Statement (https://www.sensata.com/sensata-recruitment-privacy-policy)

Click here to view our Sensata Recruitment Privacy Statement for China (https://www.sensata.com/sites/default/files/a/sensata\_china\_recruitment\_privacy\_policy.pdf)

NOTE: If you are a current Sensata employee (or one of our Affiliates), please** **back out of this application** **and log into Workday via the Company Intranet to apply directly. Type "FIND JOBS" in the Workday search bar.

Return to Sensata.com

**Read our Fraud Advisory (https:** //www.sensata.com/careers)

# Sensing is what we do.

In fact, our name Sensata comes from the Latin word sensate for ‘those gifted with sense’. Our focus on sensing is also reflected in our logo, which spells Sensata in Braille.

Sensata Technologies is a global industrial technology company striving to create a safer, cleaner, more efficient and electrified world. Through its broad portfolio of mission-critical sensors, electrical protection components and sensor-rich solutions, Sensata helps its customers address increasingly complex engineering and operating performance requirements. With more than 19,000 employees and global operations in 15 countries, Sensata serves customers in the automotive, heavy vehicle & off-road, industrial, and aerospace markets.

Learn more at **sensata.com** and follow Sensata on LinkedIn (https://www.linkedin.com/company/sensata-technologies/) , Facebook (https://www.facebook.com/SensataTechnologies) , **Instagram (https://www.instagram.com/sensatatechnologies/)** and X (https://twitter.com/Sensata) .

# Note to applicants for positions in the United States:

+ Sensata Technologies, Inc. (US) is proud to be an Equal Opportunity and Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran or any other basis protected by federal, state or local law.

+ View The EEO is the Law poster (https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm) and its supplement (https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm) .

+ Sensata Technologies, Inc. (US) participates in E-Verify. View the E-Verify posters (https://www.e-verify.gov/sites/default/files/everify/posters/EVerifyParticipationPoster.pdf)

If you are an individual who requires a reasonable accommodation in connection with the hiring process and/or to perform the essential functions of the position for which you applied, please make a request to the recruiter or contact [email protected]

# Diversity Statement

We are dedicated to ensuring our employees feel a sense of belonging (https://www.sensata.com/sites/default/files/a/Sensata%20DEI%20Policy%20FINAL.pdf) and respect every day. We believe that every individual has unique insights that others can learn from. Working at Sensata means you can bring your whole self to the table. Our goal is to achieve fair representation of women, minorities, veterans, people with disabilities, and all types of diversity among all levels in our organization.

Note to applicants for positions in the United States:

Sensata Technologies, Inc. (US) is proud to be an Equal Opportunity and Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, age, national origin, protected veteran status, disability or any other basis protected by federal, state or local law.

View The EEO is the Law poster https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm and its supplement https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm

Sensata Technologies, Inc. (US) participates in E-Verify. View the E-Verify posters https://www.e-verify.gov/sites/default/files/everify/posters/EVerifyParticipationPoster.pdf