Share this Job

Analyst, IT Audit & Compliance


Berwyn, PA, US, 19312

Business Unit:  Corporate
Function:  Information Technology

Triumph Group designs, engineers, manufactures, repairs and overhauls a broad portfolio of aviation and industrial components, accessories, subassemblies, systems and aircraft structures. We partner with original equipment manufacturers (OEMs) and operators of commercial, regional, business and military aircraft worldwide, to provide products and services that solve their hardest problems. So whatever the part, component or complexity of assembly, Triumph is committed to quality, service and meeting the specialized needs of each customer.

Triumph participates at all levels of the aerospace supply chain – from single components, to complex systems, to aerospace structures and their contents. We provide solutions for the entire product life cycle of an aircraft – from raw material to aftermarket service. Our unique ability to integrate a broad range of products and capabilities is our competitive advantage.


The IT Audit & Compliance Analyst will serve as subject matter expert and is responsible for assisting the Director of IT Compliance in assessing, developing, implementing, maintaining and monitoring Triumph’s IT compliance programs by providing  guidance, support, analysis and reports to IT management based on internal and external compliance requirements such as SOX, FEDRAMP, DFARS, ITARS, GDPR, CMMC, etc. This role will also heavily engage with IT management, staff, and departments outside Triumph’s IT department, as well as Internal Audit and external auditors, in continuously identifying gaps, feasible resolutions and improvements to control weaknesses and opportunities in support of Triumph’s internal controls over financial reporting. 

Job Responsibilities include:

•    Engage with IT management, staff, and teams outside Triumph’s IT department, as well as Internal Audit, and external auditors, to identify feasible resolutions to control weaknesses and opportunities for improvement. 
•    Apply knowledge of operating systems, application development, change management, operations, networking and telecommunications, databases, business continuity, disaster recovery, physical and logical security to develop and assist in implementation and enforcement of security compliance policies and procedures, to reduce technical risk and increase operational efficiency.
•    Utilize automated tools and services to support the security compliance program in analysis and accurately documenting work performed to support findings, conclusions reached, and recommendations made. 
•    Periodically monitor activities of audited area(s), control self-assessments, following-up to ensure continued compliance with applicable internal policies, procedures, and external regulations, including monthly, quarterly, and annual account and activity reviews where applicable.
•    Drive audit finding recommendations to increase compliance and accountability among all partner and customer groups.
•    Strive to create efficiencies within the IT Compliance Department by streamlining processes and audits.
•    Complete ad hoc assignments, projects, and audits.
•    Periodically and during audit peak season, work extended hours past 5pm. 
•    Maintain proficient knowledge of applicable compliance statutes, audit regulations and interpretations.



•    Bachelor's degree in Accounting, Finance, Information Technology, MIS, or related field. A Master's degree is a plus. Desire to pursue CPA, CISA, CISSP, CIA or CISM license/certification.
•    At least 1 year of experience in IT Risk and Compliance audits, IT Assurance, Internal Audit, another SOX controls related field or related IT audit work in public accounting. Big 4 internship experience preferred. 
•    Work experience in administering and/or testing windows and/or Linux servers, Active Directory structures, Oracle or SQL databases, SAP and/or VMware environments. 
•    An understanding of PCAOB guidance on generally accepted practices for testing SOX IT General Controls, Business Process Controls, Key Reports, and Application Controls a plus. 
•    Exceptional client service and communication skills. Strong technical aptitude and problem-solving skills, excellent analytical, communication (written and verbal) and interpersonal skills. 
•    Effective project and time management skills for handling multiple priorities and simultaneous projects. 
•    Enthusiasm to learn through a combination of structured, on-the-job, and self-directed training.
•    Ability to work efficiently and effectively in a complex and decentralized IT environment. 
•    Strong computer skills including proficiency in Microsoft Office suite applications.
•    Must possess competence to understand and manage work/project obstacles and complexities, including work/project scope, key players, urgency, inherent risks, and business benefits. 
•    Ability to work additional hours and/or travel as needed.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.

Please be aware that the Company requires all employees to be vaccinated for COVID-19.  This position will require the successful candidate to obtain OR show proof of a vaccination.  The Company is an equal opportunity employer, and will provide reasonable accommodation to those individuals who are unable to be vaccinated consistent with federal, state, and local law.

Please contact us if you require assistance in applying for Triumph Group and we will provide reasonable accommodations via HRDepartment@triumphgroup.com. If you’d like more information on your EEO rights under the law, please click here

Nearest Major Market: Philadelphia