IT Controls & Compliance Analyst in MVW Corporate Headquarters at Marriott Vacations Worldwide

Date Posted: 1/5/2021

Job Snapshot

Job Description

Are you ready to grow your dream career while making others' vacation dreams come true? Marriott Vacations Worldwide is a world premier organization for Vacation Ownership with resorts at destinations around the globe. Join our team and help deliver unforgettable experiences that make vacation dreams come true.

Position Summary

As a member of the professional staff, the IT Controls and Compliance Analyst will contribute general knowledge and skill in the information technology discipline to support team and/or department objectives.  Generally, works under close supervision or within well-established guidelines to complete routine tasks. 

Specific Job Summary

The Information Technology (IT) Controls and Compliance Analyst provides and manages the day-to-day assigned IT-related compliance, audit, and user access review functions throughout the Marriott Vacations Worldwide (MVW) enterprise.  Responsible for creating and reporting on individual components of quarterly user access review programs and related processes, as well as performing monthly termination testing.  Participates, supports and partners in meetings with Internal Audit, IT Security, Access Management, Data Privacy, Legal, and other enterprise-wide stakeholders to understand, document, plan, and deliver all IT-related compliance, audit, and user access review functions. Ensures compliance for the user access review process to minimize risks for the organization.

This position will utilize IT auditing, audit support, and internal controls related skills to support IT and/or MVW business-related IT user access review objectives.  Responsible for planning, coordinating, and collaborating with other cross-functional team members and providing required deliverables related to any IT audit and/or user access review related activities.  Supports the annual review and refresh of MVW policies and procedures, including Information Security Manuals (ISMs), throughout the organization.  Follows and maintains standard operating procedures (SOPs) and escalates areas of opportunities to improve or streamline processes in alignment with compliance requirements.

Expected Contributions

  • Performs the following types of basic tasks:  analysis, auditing, budgeting, forecasting, programming, research, report generation, and software integration.
  • Responds to, solves, and makes decisions on standard/routine business requests with limited risk.
  • Responsible for own work and contributing to team, department, and/or business results. May direct work of non-management staff. 
  • Assists more senior associates in achieving business results by:
    • utilizing technical knowledge and skills to enhance business processes.
    • establishing priorities for self and, where appropriate, others.
    • allocating own time effectively to meet goals in a manner that does not disadvantage other associates or groups.
    • contributing to department/unit budget as appropriate (i.e., input, following guidelines, etc.).
  • Demonstrates an awareness of personal strengths and areas for improvement and acts independently to improve and increase skills and knowledge.
  • Performs other duties as appropriate.

Specific Expected Contributions

Key Accountabilities:

  • Responsible for planning, implementing, and executing all required quarterly, biannual, and annual MVW IT user access review processes.
  • Coordinate, facilitate, track, monitor status of all user access reviews (application, operating system, database layers, etc.), which include:
    • Understand and perform all tasks associated with obtaining system generated information source files (user access, roles, headcount, etc.)
    • Proactively perform all administrative activities (work papers, tracking, documentation, etc.)
    • Responsible for pre-validation process to ensure completeness and accuracy (scope/objective, validate population in scope, other miscellaneous considerations)
    • Initiate user access review process with business (notification, monitor, track, report on status, etc.)
    • Perform post-validation/self and peer-review process to ensure completeness and accuracy of closed user access reviews (close all follow-up items, Q&A, track and document findings)
    • Identify and improve user access review process by providing recommendations for process enhancements/efficiencies to automate manual processes and assist in the documentation of these plans
    • Maintain department SOP for current state processes and make recommendations to improve and/or streamline
    • Audit to ensure documentation and backup meet guidelines set for by MVW policies and auditor requests
    • Ad hoc user access reviews as required
  • Provide support and education to IT personnel on MVW Policy concerning audit and compliance, including:
    • Documenting current practices and comparing to best practices
    • Communicating policy and procedure changes to relevant IT personnel
    • Escalating and communicating issues of non-compliance with policies and ISMs in a timely manner
  • Provide support, as needed, to track and monitor the status of MVW Policy reviews, including:
    • Documenting status and creating tracking of all MVW Policy revisions using SharePoint
    • Preparing and communicating policy reviews at IT Governance meetings
    • Coordinating and updating Internal Audit of MVW Policy updates
    • Coordinating, facilitating, tracking, and monitoring the status of updates to WAVE Intranet site and/or our policy repository for all ISMs

Candidate Profile

Successful candidates should possess knowledge, experience, demonstrate strong leadership, and relationship skills.  Usually a professional position with general knowledge in a discipline (i.e., Accounting, Human Resources, Information Resources).  College degree and/or related experience typically required.

Specific Candidate Profile


  • BS/BA preferred and 1-3 years of experience in related field
  • CISA or CIA and/or other related certifications preferred


  • 1-3 years’ work experience in public accounting, technology, IT auditing/IT general controls, internal controls, or a similar control function environment


  • Ability to work in cross functional teams
  • Strong analytic and problem-solving skills; sound judgment
  • Strong organization, facilitation, goal-setting, and time management skills
  • Demonstrated effectiveness in collaborating with business partners
  • Possess strong written and verbal communication skills, presentation, and be able to interact well with peers and internal customers
  • Strong attention to detail and demonstrated follow-through
  • Positive attitude, ethics, and values which support our Company’s values
  • Strong organization, facilitation, goal-setting, and time management skills
  • Strong knowledge of the Microsoft Office suite of products (i.e., Excel and SharePoint)

Marriott Vacations Worldwide is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture.