Risk Consulting - Cloud Risk - Manager - Multiple Cities

About The Position

Requirements

• A bachelor's or master's degree
• A minimum of 5 years of experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry
• Significant experience in applying relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) Service Organization Controls Reporting engagements; (d) ERP security and control reviews (Oracle, SAP, PeopleSoft); and/or (e) cloud risk engagements (Azure, AWS, GCP)
• Availability to travel outside of their assigned office location at least 50% of the time, plus commute within the region (where public transportation often is not available).
• Ability to work in excess of standard hours when necessary.
• A valid passport is required.

Nice To Haves

• A bachelor's or master's degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline
• CPA, CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT certification is desired; If you are non-certified, you are required to become certified within 1 year from your date of hire.
• Additional cloud-based certifications such as CCSP – Certified Cloud Security Professional, CCSK – Certificate of Cloud Security Knowledge, CCAK – Certificate of Cloud Auditing Knowledge, Microsoft Certified: Azure Fundamentals, AWS Certified Cloud Practitioner.

Responsibilities

• Managing multiple client engagement teams at an executive level within the practice and the firm.
• Working with high-level client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process.
• Assisting clients and other Risk Assurance professionals in performing information technology control and security engagements.
• Providing guidance and sharing knowledge with team members and participating in performing procedures, especially focusing on complex, judgmental, and/or specialized issues.
• Working with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement.
• Briefing the engagement team on the client's IT environment and industry IT trends.
• Maintaining relationships with client management to manage expectations of service, including work products, timing, and deliverables.
• Demonstrating a thorough understanding of complex information systems and applying it to client situations.
• Bringing and utilizing extensive experience in the client's business/industry to identify technological developments and evaluate impacts on the client's business.
• Demonstrating excellent project management skills, inspiring teamwork and responsibility with engagement team members, and using current technology/tools to enhance the effectiveness of deliverables and services.
• Understanding EY and its service lines and actively assessing what the firm can deliver to serve clients.
• Partnering with clients on the development and deployment of cloud risk governance frameworks, ensuring alignment with organizational goals and adherence to regulatory standards.
• Leading risk discussions on cloud transformation, including migration from on-prem.
• Coordinating with technical EY groups on cloud risk monitoring initiatives that employ advanced tools to proactively identify and mitigate risks across various cloud service models and deployments.
• Designing robust cloud control mechanisms and, on engagements where independent, evaluating effectiveness in mitigating risks and maintaining compliance.

Benefits

• Medical and dental coverage
• Pension and 401(k) plans
• Wide range of paid time off options
• Flexible vacation policy
• Time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed