Senior IT Assurance & Advisory Associate

At Trane TechnologiesTM  and through our businesses including Trane® and Thermo King®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we uplift others and enable our people to thrive at work and at home. We boldly go.

Job Summary：

The Senior IT Assurance & Advisory Associate is an integral member of a global team that delivers value-added assurance reviews and advisory engagements for all global IT and Cybersecurity entities supporting the business. The Senior IT Assurance & Advisory Associate upholds the mission of the Assurance & Advisory Services department by ensuring a secure IT environment through the execution of IT and cybersecurity assurance reviews, risk assessments, and advisory services. This position assists IT Assurance & Advisory Management in the development and implementation of the IT assurance plan. Furthermore, the role emphasizes identifying emerging cybersecurity threats and enhancing the organization's resilience against evolving cyber risks.

Thrive at work and at home:   

• Benefits kick in on DAY ONE for you and your family, including health insurance and holistic wellness programs that include generous incentives – WE DARE TO CARE!    
• Family building benefits include fertility coverage and adoption/surrogacy assistance.    
• 401K match up to 6%, plus an additional 2% core contribution = up to 8% company contribution.     
• Paid time off, including in support of volunteer and parental leave needs.       
• Educational and training opportunities through company programs along with tuition assistance and student debt support.     
• Learn more about our benefits here!   

Where is the work:   

This position has been designated as a Hybrid work schedule with work performed onsite 3 days each week.  

What you will do: 

• Work in a collaborative team environment and contribute to the successful delivery of IT review and IT risk assessment engagements, including preparing high quality documentation and reports.
• Plan and execute risk based reviews under limited supervision and oversee the daily activities of assigned staff.
• Participate in the annual risk assessment process, including the identification of critical risk factors across the organization and development of the annual plan.
• Assist in the evaluation of system implementations/upgrades
• Evaluate the systems, cybersecurity posture, and control environments of newly acquired entities.
• Present to management at the conclusion of engagements, discuss deficiencies, and recommend remediation actions and opportunities for improvement
• Consult with IT clients to redesign/re-engineer processes; identify opportunities for increasing operational efficiencies, strengthening internal controls, and reducing cybersecurity risk.
• Opine on the adequacy of remedial actions taken to correct deficiencies and assist with issue closure processes
• Maintain adequate and current technical knowledge in such areas as IT general controls, business process controls, cybersecurity, and other areas as required.
• Identify and assess emerging cybersecurity threats and vulnerabilities.
• Conduct analysis and provide recommendations to enhance the organization's cybersecurity posture.
• Collaborate with cybersecurity teams to ensure alignment of audit activities with the latest threat landscape.

What you will bring: 

• Bachelor's degree in Information Technology, Management Information Systems, or Computer Science (or equivalent business degree with emphasis in areas of IT or cybersecurity)
• Certified Information Systems Auditor (CISA) required.
• Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) certification preferred
• Minimum 5 years of IT/Cybersecurity risk and compliance or technical IT experience in areas such as cybersecurity or network security
• Advanced knowledge in relevant IT fields including cybersecurity, system development lifecycle, cloud technologies, and identity and access management.
• Experience with cybersecurity frameworks (e.g., NIST, ISO 27001).
• Strong understanding of current and emerging cybersecurity threats, vulnerabilities, and attack vectors.
• Interact with key business partners and demonstrate a commitment to continuous improvement
• Strong customer service focus, with a drive to ensure that we exceed the expectations of our customers
• Build a positive rapport with personnel throughout the global organization
• Strong written and verbal communication skills for cross-functional interactions.  
• Strong analytical and project management skills
• Detailed-oriented with strong organizational skills
• Demonstrate a high sense of urgency and confidentiality
• Exhibit a positive attitude and maintain poise under pressure
• Exhibit self-confidence with an independent mindset and approach

Compensation:    

Base Pay Range: $97,550-128,950

Disclaimer: This base pay range is based on US national averages. Actual base pay could be a result of seniority, merit, geographic location where the work is performed.

 
We offer competitive compensation and comprehensive benefits and programs. We are an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.