The client is seeking a detail-oriented Junior Control Tester – Procurement to support the monitoring, testing, and governance of internal controls across Procurement functions—including Global Third-Party Risk Management, Sourcing, Supplier Relationship Management, Procurement Operations, and Accounts Payable. This role ensures that controls are well designed, operating effectively, and documented in alignment with enterprise standards and risk frameworks.
This position is ideal for early-career professionals with experience in internal controls testing, audit, risk management, or compliance who want to grow within a structured, well-supported environment. The successful candidate will work closely with cross-functional stakeholders and contribute to quarterly Process, Risk, Controls (PRC) monitoring and testing.
Location: Toronto, ON (Hybrid – 3 days in office)
Contract Length: 12 Months (Extension Possible; FTE Conversion Possible)
Hours: 9 AM–5 PM EST (37.5 hours/week)
Perform design and operating effectiveness testing of Procurement controls in accordance with the Monitoring & Testing Handbook. Identify testing populations, select statistically sound samples, document procedures, evidence, and conclusions.
Conduct walkthroughs with stakeholders across Procurement functions to confirm process understanding and validate control design; review internal procedures to ensure alignment with control objectives.
Apply risk-based audit approaches, including sampling techniques, audit evidence collection, audit data analytics, and clear communication of results.
Test IT automated controls and project-management-related controls supporting Procurement processes.
Assess IT-related dependencies (IT governance, vendor/third-party management, data governance, data classification) that influence Procurement control effectiveness.
Execute general IT controls (GITCs), application control testing, and cybersecurity-related assessments across both on-premise and cloud environments.
Review data management practices, including data privacy, protection, classification, and compliance across the data lifecycle.
Plan, track, and deliver testing activities using project-management practices within the domains of People, Process, and Business Environment.
Assist the Senior Manager with testing summaries, governance reporting, remediation updates, and status materials.
Support the consistency and transparency of the internal control governance framework across Procurement; identify risks and recommend enhancements to processes and controls.
Contribute to operational programs that leverage established control frameworks (e.g., COSO, COBIT, SOX).
Must Have:
Post-secondary degree in Business, Finance, Accounting, Information Systems, or related field.
Minimum 3 years of experience in internal controls testing, risk management, audit, or compliance.
Strong analytical, sampling, and audit data-analytics skills.
Excellent written and verbal communication, stakeholder engagement, and collaboration skills.
Ability to manage ambiguity and work independently within quarterly testing cycles.
Data-driven decision-making capability.
Nice to Have:
Understanding of risk and control frameworks such as SOX 404, COSO, COBIT.
Experience within the financial services industry or other regulated environments.
Candidates must clearly highlight experience in internal controls testing, risk management, audit, or compliance, including any exposure to Procurement, IT controls, or third-party risk. This is a hybrid role requiring 3 days per week onsite in Toronto