Risk Consulting - Digital Risk - Manager - IT Controls

JD – Risk Consulting - Digital Risk – Manager - IT Audits

Key responsibilities

The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will:

• Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm.
• Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes.
• Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business.
• Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels.
• Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients.
• Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate new knowledge.

Skills and attributes for success

You will leverage your proven track record of IT Audit experience and strong interpersonal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions.

To qualify for the role, you must have

• Chartered accountant (CA) or Bachelor’s degree in Management/Information Systems/ Technology/ Computer Science/ Business Analytics/Cybersecurity, or a related discipline  
• Passion for technology and an ardent desire to work in risk management.
• Minimum 5 years of a “Big 4” or professional services firm or professional industry experience in risks & controls, with experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as:
  • Knowledge of audit methodology
  • Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvement.
  • Design of IT Risk Controls frameworks and Risk and Control Matrix
  • Design and Implementation of IT general controls, IT application controls, IPEs / Key reports, Business Process controls, review of SOC 1 or SOC 2 reports etc
  • Strong understanding of IT Application controls, including design, implementation and assessment
  • IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle and OS (Unix Windows) and DB (Oracle DB, MS SQL) will be an added advantage.
  • Understanding of regulatory requirements such as SOX, GDPR, ISO, PCI DSS etc.
• Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.
• Excellent communication, documentation and report writing skills.
• Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant)
• Curious, Innovative mindset to transform ideas into tangible solutions
• Prepare and present clear and concise documentation and recommendations to stakeholders on process improvement, gaps identified, deficiencies etc.
• Maturity to handle complex engagements
• Understanding of Go-To-Market and sales
• Proactiveness, Eagerness to learn, embrace diverse perspectives, who value differences, and team inclusively to build safety and trust.   
• Demonstrate project management, teaming, organizational, analytical, and problem-solving skills. 
• Effective organization and time management skills with the ability to work under pressure and adhere to project deadlines. 
• Integrity within a professional environment