The ultimate source for official answers about a business online should be the business itself. However, when consumers ask questions on company websites, too often they are left in the dark with wrong answers. Yext (NYSE: YEXT), the Search Experience Cloud, solves this problem by organizing a business's facts so it can provide official answers to consumer questions — wherever people search. Starting with the company website, then extending across search engines and voice assistants, businesses around the world, like T-Mobile, Jaguar Land Rover, BBVA USA, and Kiehl’s — as well as organizations like the U.S. State Department and World Health Organization — trust Yext to radically improve the search experience on their websites and across the entire search ecosystem.

We are looking for a highly-motivated experienced Senior Analyst to join us in Yext’s IT department based in our NY headquarters. This position will support the IT team in the development of policies, processes and controls around Yext’s SOX, SOC2 and other risk management activities. Yext’s IT Audit and Compliance team seeks to build leading technology risk management practices that improve efficiency and enhance the audit and risk management experience for our partners!

The role will require an execution-oriented and solid team player who can work across the organization to help manage our audit requirements, identify process improvements and lead themselves and others in project completion. The ideal candidate will have a firm grasp of governance, risk and controls in a cloud based IT environment with technical understanding of IT infrastructure. The position will be responsible for proposing improvements to the company’s policies, procedures and controls around information security, logical access, change management, issue remediation, control design, assisting with risk assessments and crafting compliance monitoring strategies.

What You'll Do

  • Execute on our IT compliance plan to ensure an effective internal control environment for SOX, SOC 2 and other regulatory requirements.
  • Develop and maintain ITGC process flows, procedural documentation and compliance strategies for key SOX applications in a complex SaaS environment.
  • Educate the IT organization on governance, risk and controls/compliance concepts
  • Assist management in development and implementation of remediation plans related to IT controls and provide recommendations for improvements.
  • Assist in developing policies and procedure documents based on ISO27001/2 standards.
  • Support the management in identifying key technology risks, mitigation strategies and improvements to the business process.
  • Support risk and control considerations related to IT relevant projects, including vendor evaluations, system implementations, newly scoped systems, UAT documentation, onboarding of application to ITGC processes and initial testing of application controls, etc
  • Build and maintain internal control narratives, flowcharts and risk matrices.
  • Work closely with external parties for all matters related to IT, including IT issues related to SOC 1, SOC 2, SOX, and financial audits.

What You Have

  • 3-5 years of combined experience in the fields of Information Systems audit, Risk Assurance, Internal and/or External audit (Big 4 preferred)
  • Experience working for a SAAS company preferred
  • Experience in working with both cloud and on-premise applications preferred
  • Bachelor’s Degree or similar college level education in Information Systems, Accounting or a related field
  • CISA or equivalent Information Technology audit or security certifications are preferred
  • Working knowledge of information security and computer network, server, database technologies
  • Knowledge of the COSO 2013, COBIT and ITIL frameworks preferred
  • Knowledge of GDPR, ISO27001/2, HIPAA and other regulations preferred
  • Proven ability to lead self in executing discrete tasks and developing compliance strategies to drive effective results
  • Self-starter who demonstrates initiative and displays a high energy level
  • Strong organizational, prioritization and process improvement skills
  • Effective verbal and written communication skills

#LI-JM1

Yext is committed to building an inclusive and diverse culture where every person is seen, heard and valued. We believe in equal employment opportunity and welcome employees and applicants of all races, colors, ethnicities, religions, creeds, national origins, ancestries, genetics, sexes, pregnancy or childbirth, sexual orientations, genders (including gender identity or nonbinary or nonconformity and/or status as a trans individual), ages, physical or mental disabilities, citizenships, marital, parental and/or familial status, past, current or prospective service in the uniformed services, or any characteristic protected under applicable law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you require a reasonable accommodation in completing this application, interviewing, or participating in the employee selection process, please complete this form.

Apply for this Job

* Required

  
  


U.S. Equal Opportunity Employment Information (Completion is voluntary)

Individuals seeking employment at Yext are considered without regards to race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.


Form CC-305

OMB Control Number 1250-0005

Expires 05/31/2023

Voluntary Self-Identification of Disability

Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.