Digital Risk - Staff - Contractor To FTE Conversion

Digital Risk – Staff:

About Global Delivery Services

Global Delivery Services refers to EY's worldwide network of service delivery centers. The GDS team plays an important role in EY’s strategy by ensuring effective support to EY’s growth agenda.

Our journey started in 2002 with approximately 200 people. Today we stand at 80,000+ professionals in ten locations around the world. We operate in Argentina, China, Hungary, India, Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom.

Client service is focused on providing Consulting, Assurance, Tax, Strategy & Transactions, and Knowledge support to our clients around the world. The teams enable account teams worldwide to provide seamless, high-quality, value-added support, helping deliver exceptional client service.

Enablement Services provides cost-effective, high-skilled, and innovative services to support EY’s global and local enablement teams. Markets, BMC, AWS, Finance and Accounting, Risk Management, Procurement, People Shared Services, IT Service Delivery and IT Global Infrastructure services, are among the services offered by Enablement Services.

Our innovation specialists serve the GDS Client Service and Enablement Services teams, along with Service Lines, Core Business Services and Sectors. The team brings the desired environment, technologies and skilled teams together for facilitation, rapid prototyping and innovative thinking. The competencies offered include analytics, digital, user experience, mobile technology, infrastructure, Microsoft technologies and open innovation.

The Opportunity

We are expanding our Digital Risk team and are looking for Staff with strong hands-on expertise in IT Internal Controls.

Staff will play a key role in delivering Digital Risk engagements by owning specific workstreams, performing detailed assessments, and contributing effectively to client solutions in a fast‑paced and evolving technology risk landscape. They will support end‑to‑end delivery by conducting deep‑dive analysis, managing assigned workstreams, and ensuring high‑quality outputs across all phases of the engagement.

Your Key Responsibilities

• Conduct comprehensive risk assessments to identify and prioritize potential IT risks against technology strategies, business applications and platforms, and digital transformations.
• Develop and execute testing strategies to evaluate the effectiveness of existing controls and recommend areas for enhancement to our clients.
• Understanding our clients’ overall technology strategy to effectively manage risk while transforming their business.
• Taking full responsibility for tasks including consistent self-review of work to identify and improve an approach for producing high quality deliverables, while working under supervision  
• Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve risk management at procedural and technology levels.
• Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations.
• Stay abreast of current business and industry trends relevant to the client's business.
• Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate new knowledge.
• Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitoring progress manage risk and ensure key stakeholders are kept informed about progress and expected outcome.
• You will be responsible for executing tasks with increasing autonomy, applying sound judgment within defined parameters, and contributing to team outcomes. You are expected to demonstrate initiative, resolve routine issues independently, and support junior colleagues.
• You will anticipate and identify risks within engagement and share any issues with senior members of the team.
• In line with EY commitment to quality, you'll confirm that work is of high quality and is reviewed by the next-level reviewer.

Skills and attributes for success

• You will leverage your proven track record of IT Audit experience and strong interpersonal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions.

To qualify for the role, you must have

• Bachelor’s or master’s degree and approximately 1-3 years of related work experience
• At least 2-3 years of experience in IT Risk and Compliance
  • Knowledge of audit methodology
  • Design IT Risk Controls framework for SOX clients, Internal audit clients
  • Implementation and Testing of internal controls such as IT general controls, IT application controls, IPEs / Key report testing, Interface controls etc.
  • Identify control gaps, weaknesses and areas of improvements.
  • Conducting IT internal control reviews, and review of SOC1 or SOC2 reports
• IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle and OS (Unix Windows) and DB (Oracle DB, MS SQL) will be an added advantage
• Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.
• Excellent communication, documentation and report writing skills.
• Proactiveness, Eagerness to learn, embrace diverse perspectives, who value differences, and team inclusively to build safety and trust.   
• Effective organization and time management skills with the ability to work under pressure and adhere to project deadlines. 
• Integrity within a professional environment.

Additionally, good to have

• Proven experience in direct client‑facing roles, partnering with cross‑functional teams to deliver assessment and remediation activities.
• Strong experience working directly with technology and business stakeholders to evaluate IT Internal controls, collaborate with internal audit and IT security teams, and support remediation of issues.
• Good to have relevant industry certifications such as CISA, CISM, CRISC, ISO 27001, and others (as relevant).

Ideally, you’ll also have

• Prior Big 4 or consulting leadership experience.

What we offer you

At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. 

• Our Commitment: As a commitment, we persistently endeavour to embody our values, fulfil our purpose, and champion inclusiveness. Our dedication is to cultivate EY into an environment where diverse perspectives are celebrated, creating a supportive atmosphere for individuals to authentically be themselves and contribute their utmost.
• Professional Development: From entry-level employees to senior leaders, we believe in continuous learning. We offer opportunities to build new skills, take on leadership roles, and connect and grow through mentorship.
• People and Culture: In our dynamic workplace, diversity, equity, and inclusiveness are ingrained in our culture. We're united by a commitment to create an environment where every individual's differences are valued, practices are equitable, fostering a sense of belonging. Our shared values include integrity, respect, teaming, inclusiveness, energy, enthusiasm, courage to lead, and building relationships based on doing the right thing.
• Benefits: Embark on a transformative career journey with us and indulge in a suite of premium benefits, encompassing exclusive health and wellness packages, enticing rewards, and cutting-edge learning opportunities that empower you to continually grow and excel in your professional and personal development.
• How to Apply: If you are passionate to join us and are aligned with our commitment to building a better working world, we invite you to apply by completing our user-friendly form with personal and professional information and by providing your consent to data privacy.