Business Analyst, IT Compliance and Data Governance

We are seeking a detail-oriented and proactive IT Compliance and Data Governance Business Analyst to join our Enterprise Architecture team.

The analyst will assist in initiatives to identify and address technology debt, regulatory compliance, and audit challenges within the IT landscape, ensuring alignment with Enterprise Architecture Standards and adherence to IT and Information Security policies, as well as state and federal regulations, including SOX. The position will also focus on ensuring data governance around CMDB and process standardization for sustainable completeness and accuracy of configuration item master data. This position will collaborate with various stakeholders across SPE, including IT and Business Executives, Architects, Application Developers, System Engineers, Information Security, Procurement, CDO, Internal and External Auditors, Finance Compliance, Legal, and Privacy teams.

Key Responsibilities:

Support IT Compliance and Governance Initiatives

Assist in aligning IT compliance efforts with enterprise architecture governance, security, and risk management objectives.

Collaborate with enterprise architects, security teams, and IT governance functions to ensure adherence to IT standards and frameworks.

Support cross-functional IT initiatives related to compliance, architecture governance, and process optimization.

Support the adoption of IT Service Management and ITIL best practices to improve service delivery and operational efficiency.

Enterprise Architecture Compliance

Participate in the IT Change Advisory Board (CAB) and assist with compliance reviews for IT architecture changes.

Evaluate IT projects for compliance with enterprise architecture principles, policies, and frameworks.

Track compliance deviations and collaborate with stakeholders to implement corrective actions.

Document and report on architecture compliance reviews and technology standards.

Policy and Procedure Management

Assist in the development and documentation of IT policies, standards, and procedures that support effective governance frameworks in line with ITIL best practices and ensure alignment with regulatory and organizational requirements.

Support initiatives to improve policy adherence across IT teams and ensure compliance documentation is current.

Audit and Security Findings Management

Support internal and external audits by assisting with evidence collection and documentation.

Track, manage, and remediate IT compliance, enterprise architecture, and information security audit findings.

Collaborate with enterprise architecture and security teams to ensure timely completion of corrective action plans.

Identify potential gaps in IT governance and enterprise architecture controls and recommend improvements.

Control Testing & Quality Assurance

Assist in evaluating IT controls and architecture compliance frameworks (e.g., TOGAF, COBIT, SOX, NIST, ISO 27001).

Support management in performing compliance reviews, control testing, and documentation to validate effectiveness.

Identify potential gaps in IT governance and enterprise architecture controls and recommend improvements.

Process Documentation and Workflow Development

Develop and update enterprise architecture and IT compliance process documents, standard operating procedures (SOPs), and guidelines.

Collaborate with stakeholders to document IT governance and compliance workflows using tools such as Visio, Lucidchart, or Miro.

Identify inefficiencies in existing workflows and recommend process improvements.

Maintain structured documentation repositories to support audit readiness and compliance reporting.

Aid in the creation and implementation of standardized workflow procedures for application asset management, including intake, lifecycle governance, and retirement processes, following ITIL principles.

Process Improvement and Automation

Work with IT leadership and the enterprise architecture team to identify opportunities for process improvements and automation in compliance workflows.

Assist in implementing workflow automation tools (e.g., Power Automate, ServiceNow, Jira) to enhance efficiency and reduce manual effort.

Research and recommend best practices for CMDB and enterprise architecture process enhancements. Develop processes to ensure completeness and accuracy of CMDB.

Qualifications:

Bachelor’s degree in Information Technology, Cybersecurity, Business, or a related field.

Basic understanding of IT compliance and enterprise architecture frameworks (e.g., TOGAF, COBIT, SOX, NIST, ISO 27001, ITIL, PCI-DSS).

Strong analytical and problem-solving skills with attention to detail.

Ability to manage multiple tasks and prioritize effectively.

Experience with process mapping tools (Visio, Lucidchart, Miro) and workflow automation tools (Power Automate, ServiceNow, Jira)

Familiarity with analytical tools, including Tableau and Power BI.

Experience in process automation, IT governance, and enterprise architecture compliance

Experience in developing metrics and dashboards to monitor operational KPIs.

Commitment to data quality, integrity, and governance principles.

Adaptability to changing priorities and environments.

Skills in organizational change management to facilitate transitions.

Proven ability to influence and collaborate with cross-functional teams and stakeholders.

Strong leadership skills with the ability to motivate diverse teams towards common goals.

Preferred Qualifications

Master’s degree in Information Technology or a related field.

Certified Information Systems Auditor (CISA), Certified Data Management Professional (CDMP)

ITIL v4 Foundation certification.

Experience in managing projects related to data governance strategy and architecture.

The anticipated base salary for this position is $70,000-$105,000. This role may also qualify for annual incentive and/or comprehensive benefits. The actual base salary offered will depend on a variety of factors, including without limitation, the qualifications of the individual applicant for the position, years of relevant experience, level of education attained, certifications or other professional licenses held, and if applicable, the location of the position.

Sony Pictures Entertainment is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, veteran status, age, sexual orientation, gender identity, or other protected characteristics.

SPE will consider qualified applicants with arrest or conviction records in accordance with applicable law.

To request an accommodation for purposes of participating in the hiring process, you may contact us at .

JR107407