FS-RISK CONSULTING FS-DR-ITCA-Manager

Manager –FS TR- ITC – Tech Risk

About Global Delivery Services

Global Delivery Services refers to EY's worldwide network of service delivery centers. The GDS team plays an important role in EY’s strategy by ensuring effective support to EY’s growth agenda.

Our journey started in 2002 with approximately 200 people. Today we stand at 80,000+ professionals in ten locations around the world. We operate in Argentina, China, Hungary, India, Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom.

Client service is focused on providing Consulting, Assurance, Tax, Strategy & Transactions, and Knowledge support to our clients around the world. The teams enable account teams worldwide to provide seamless, high-quality, value-added support, helping deliver exceptional client service.

Enablement Services provides cost-effective, high-skilled, and innovative services to support EY’s global and local enablement teams. Markets, BMC, AWS, Finance and Accounting, Risk Management, Procurement, People Shared Services, IT Service Delivery and IT Global Infrastructure services, are among the services offered by Enablement Services.

Our innovation specialists serve the GDS Client Service and Enablement Services teams, along with Service Lines, Core Business Services and Sectors. The team brings the desired environment, technologies and skilled teams together for facilitation, rapid prototyping and innovative thinking. The competencies offered include analytics, digital, user experience, mobile technology, infrastructure, Microsoft technologies and open innovation.

The Opportunity

As a TR-ITC manager, you’ll contribute technically to Risk Assurance client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with stakeholders as required.

In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer(client/onshore). As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop.

Your Key Responsibilities

• Participate in IT Risk and Assurance engagements.
• Proficiency in using audit software tools, data analytics techniques, and IT auditing techniques. Strong analytical skills are necessary for interpreting technical data, identifying patterns, anomalies, and areas of concern.
• Understanding of regulatory requirements and industry standards related to IT governance, data protection, privacy, and cybersecurity. This includes regulations such as GDPR, HIPAA, PCI-DSS, and industry frameworks like COBIT and NIST Cybersecurity Framework.
• Knowledge of IT governance principles, structures, and processes to ensure that IT activities align with business objectives, comply with regulations, and mitigate risks appropriately.
• Proficiency in identifying, assessing, and managing IT-related risks to ensure that adequate controls are in place to mitigate potential threats to the organization's information assets, systems, and operations.
• Familiarity with IT auditing principles, techniques, and tools to assess the effectiveness of IT controls, identify control deficiencies, and recommend remediation actions.
• Proficiency in understanding IT systems, networks, applications, and infrastructure to design and implement controls effectively. This includes knowledge of common technology platforms, such as operating systems, databases, cloud services, and cybersecurity tools.
• Strong project management skills are necessary for planning, coordinating, and executing internal control initiatives effectively. This includes managing resources, timelines, budgets, and deliverables to ensure that control objectives are achieved in a timely and efficient manner.
• The ability to lead and mentor a team of IT control professionals, providing guidance, support, and development opportunities. Strong leadership qualities include decision-making, delegation, conflict resolution, and fostering a collaborative work environment.
• Building and maintaining effective relationships with key stakeholders, including senior management, IT leadership, internal auditors, external auditors, and regulatory authorities. This involves understanding stakeholder expectations, managing communications, and addressing concerns in a collaborative and constructive manner.
• Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress

Skills and attributes for success

• Experience in application controls and Information security experience.
• Ability to build relationships with key stakeholders across different levels of seniority.
• Strong written and verbal communication skills
• Conduct performance reviews and contribute to performance feedback for the team.

To qualify for the role, you must have

• Preferably Bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA
• Minimum of 7-8 years of experience in internal controls and Internal Audit
• Enterprise risk services with specific focus on IT and related industry standards
• IT Risk Assurance framework
• Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX
• Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems
• Familiarity with IT analysis, delivery and operations methods, including ITGC, ITAC,SDLC, PAM and CM
• Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT
• Experience of security testing methods and techniques including network, operating and application system configuration review
• Application controls and security experience:
• sensitive access and SOD testing
• controls testing
• Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc.

Preferred Certifications: CISA

What we offer you

At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.

Are you ready to shape your future with confidence? Apply today.

To help create an equitable and inclusive experience during the recruitment process, please inform us as soon as possible about any disability-related adjustments or accommodations you may need.

Our Commitment: As a commitment, we persistently endeavour to embody our values, fulfil our purpose, and champion inclusiveness. Our dedication is to cultivate EY into an environment where diverse perspectives are celebrated, creating a supportive atmosphere for individuals to authentically be themselves and contribute their utmost.

Professional Development: From entry-level employees to senior leaders, we believe in continuous learning. We offer opportunities to build new skills, take on leadership roles, and connect and grow through mentorship.

People and Culture: In our dynamic workplace, diversity, equity, and inclusiveness are ingrained in our culture. We're united by a commitment to create an environment where every individual's differences are valued, practices are equitable, fostering a sense of belonging. Our shared values include integrity, respect, teaming, inclusiveness, energy, enthusiasm, courage to lead, and building relationships based on doing the right thing.

Benefits: Embark on a transformative career journey with us and indulge in a suite of premium benefits, encompassing exclusive health and wellness packages, enticing rewards, and cutting-edge learning opportunities that empower you to continually grow and excel in your professional and personal development.

How to Apply: If you are passionate to join us and are aligned with our commitment to building a better working world, we invite you to apply by completing our user-friendly form with personal and professional information and by providing your consent to data privacy.

Successful candidates advance to a competency-based interview. If mutual interest persists, a job offer awaits.

“We are an equal opportunity employer and are committed to Diversity, Equity & Inclusion”.