Senior Internal Controls Analyst at Workplace Safety and Insurance Board (WSIB)

While the WSIB's current work environment is hybrid, this role requires the successful applicant to commit to an in-office work arrangement up to 5 days a week beginning in 2026.

About The Workplace Safety And Insurance Board (WSIB)

We’re here to help. When an injury or illness happens on the job, we move quickly to provide wage-loss benefits, medical coverage and support to help people get back to work. Funded by businesses, we also provide no-fault collective liability insurance and access to industry-specific health and safety information. We are one of the largest insurance organizations in North America covering over five million people in more than 300,000 workplaces across Ontario. For more information, visit wsib.ca .

At The WSIB, You’ll Have The Opportunity To:

• explore many career paths and follow your passion
• continuously learn and grow professionally
• be recognized for the great work you do
• participate in programs that support your health and wellbeing
  
  

You’ll also receive a competitive salary and may be eligible to participate in our health and dental plan.

The Internal Controls team is recruiting for a 12-month opportunity, with potential to extend. This is a unique role that combines data analytical skills, and IT controls excellence, to support a robust control environment at the WSIB.

This posting is for a Senior Internal Controls Analyst reporting to the Manager, Internal Controls in the IT work stream, within the Internal Controls Program.

Salary From: $90,639.25

Job Summary:

Support the annual Internal Control over Financial Reporting (ICFR / Internal Controls) certification process that forms a sub-certification for the Certificate of Assurance for the WSIB. This is done through preparation and maintenance of internal control documentation, planning and performing walkthroughs, executing annual test plans, and identifying internal control deficiencies and process improvement opportunities through the Internal Controls Program.

Together with the Manager, the Senior Internal Controls Analyst’s scope of responsibility includes internal control activities detailed in the annual Program Plan e.g. walkthroughs, testing, documentation, deficiency monitoring and recommendations for remediation. This will include entity level controls, business process controls and IT general controls for assigned sub-processes, and advisory on a range of engagements, projects and initiatives, across all business areas in the organization.

Emphasis is also on maintaining positive, value add relationships with various internal business areas across the organization. There is an expectation that objectives and deliverables are carried out in line with current values of the organization, and complemented by the core competencies applicable to the role.

Major Responsibilities:

Complete annual walkthrough of existing sub-processes and controls with business areas within timelines. Prepare documentation and identify controls for new sub-processes that are added to the scope of the Program. Both activities involve:

• Exercising a reasonable level of judgement when assessing risks and impact of gaps/weaknesses identified;
• Preparing/updating internal controls documentation per Program methodology;
• Writing (i.e. process documentation, memos) in a clear, logical and detailed manner;
• Obtaining review and final sign-off from the business area on internal controls documentation; and
• Providing progress updates to the manager and alerting/escalating to the manager in a timely manner for issues/challenges in completing deliverables.
  
  

Plan And Execute Design, Or Operating Effectiveness, Testing For Assigned Sub-processes. This Work Requires Adherence To Program Methodology And Guidelines, And Includes:

• Preparing and distributing requests for information;
• Preparing or rolling forward existing test plans and making any updates required;
• Executing test plans and documenting in detail steps taken to perform testing;
• Liaising and coordinating with stakeholders across business areas to understand and assess performance of controls;
• Obtaining and referencing evidence samples, and where required taking appropriate measures to maintain confidentiality of sensitive or personal information;
• Evaluating and concluding on test results and completing peer reviews when such tasks are assigned (includes testing completed by contractors);
• Providing, responding to, and clearing review comments in a timely manner; and
• Providing progress updates to the manager, and alerting/escalating to the manager in a timely manner for issues/challenges in completing deliverables.
  
  

Identify Internal Control Gaps, Deficiencies And Improvement Opportunities That May Arise From (but Are Not Limited To) Testing, Walkthroughs, Advisory Work. This Includes:

• Assessing control gaps/deficiencies and process improvement opportunities;
• Evaluating and documenting control impacts, risk exposure, and determining existence or opportunity for mitigation to derive residual risk;
• Where appropriate, perform initial discussion with business area on the potential finding including mitigating activities and possible remediation plan;
• Suggesting remediation activities for deficiencies identified which may extend to determining root cause(s); recommendations may include impacts to systems and applications and/or scope and duties of work performed by staff and management throughout the organization; and
• Present assessment and evaluation to Program management to obtain their feedback and agreement.
  
  

Provide assistance and guidance to other members of the team by:

• Supporting Program management in the development of reporting and/or inputs into reporting;
• Sharing new information or lessons learnt from day-to-day work, training, seminars etc.;
• Supporting Program management in onboarding and coaching new team members or contractors e.g. first point of support for questions and explaining program methodology; and
• Providing back-up for vacation or wellness leaves of absence.
  
  

Identify Program Improvements, Including:

• Enhancements and process changes to the Program methodology, tools and templates;
• Presenting recommendations to Program management; and
• Implementing recommendations as approved by Program management.
  
  

Maintain Customer Focus By:

• Building and maintaining relationships with business areas that support a partnership culture of working together to drive for results;
• Working collaboratively with internal partners within functions such as audit, risk and compliance;
• Adapting and changing the way we work to better support our stakeholders;
• Supporting Program management in working collaboratively with external partners such as external auditors, and third party service providers for internal control related matters; and
• Supporting Program management in raising awareness and benefits of internal controls across the organization.
  
  

Perform other related duties and responsibilities as assigned or required

Job Requirements:

Education

Minimum Level Required

• Post-secondary education
  
  

Preferred Level

• Post-secondary education in business, risk or, audit, with a focus on IT
  
  

Experience

Minimum Level Required

• 5 years of experience in a role within a function with exposure to an internal controls program (e.g. SOX or ICOFR/ICFR), audit, risk or compliance.
• Working knowledge of COSO.
• Experience with process documentation, analysis and testing.
• Experience with process owners to discuss deficiencies and potential remediation plans.
• Demonstrated knowledge and experience with Microsoft Office products, including Power BI. and Visio.
  
  

Preferred Level

• 5+ years of experience in a role within a function with exposure to an internal controls program (e.g. SOX or ICOFR/ICFR), audit, risk or compliance.
• Strong knowledge and experience in evaluating internal controls under the COSO/COBIT frameworks. including knowledge of IT practices and standards (e.g. systems development life cycle, logical and physical access, security, etc.)
• Experience with Microsoft Power Platform, especially PowerBI, to analyze data, create reports and innovate interactive dashboards
• Experience with large and complex ITGC processes and systems (including legacy systems) at a medium public, or comparably sized company.
• Experience with working in a GRC tool/system.
• Exposure to preparing presentations or training material/guidelines for different audiences, including some level of presenting or training.