Risk Consulting - Digital Risk - Cyber Risk - Senior Consultant

About The Position

Requirements

• A bachelor's or master's degree
• A minimum of 2 years of experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry.
• Experience in applying relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) Service Organization Controls Reporting engagements; and/or (d) ERP security and control reviews (Oracle, SAP, PeopleSoft).
• Availability to travel outside of their assigned office location at least 50% of the time, plus commute within the region (where public transportation often is not available).
• Successful candidates must work in excess of standard hours when necessary.
• A valid passport is required.

Nice To Haves

• A bachelor's or master's degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline
• CPA, CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT certification is desired; non-certified hires are required to become certified to be eligible for promotion to Manager.
• CCSP – Certified Cloud Security Professional
• CCSK – Certificate of Cloud Security Knowledge
• CCAK – Certificate of Cloud Auditing Knowledge
• Microsoft Certified: Azure Fundamentals
• AWS Certified Cloud Practitioner
• Google Cloud Digital Leader

Responsibilities

• Operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk.
• Work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process.
• Assist clients and other Risk Assurance professionals in performing information technology control and security engagements.
• Collaborate with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments, and other planning documents.
• Work with the engagement team to document the business processes dependent on information technology.
• Serve as a fieldwork leader by directing the daily progress of fieldwork, informing supervisors of engagement status, and managing staff performance.
• Support the implementation of cloud risk governance frameworks, contributing to the alignment with client organizational objectives and adherence to regulatory standards.
• Facilitate risk discussions on cloud transformation including migration from on-prem.
• Assist in the execution of cloud risk monitoring processes, including using tools to detect and address risks in cloud environments.
• Contribute to the design of cloud control mechanisms and, on engagements where independent, evaluate effectiveness in mitigating risks and maintaining compliance.

Benefits

• medical and dental coverage
• pension and 401(k) plans
• wide range of paid time off options
• flexible vacation policy
• designated EY Paid Holidays
• Winter/Summer breaks
• Personal/Family Care
• other leaves of absence