Senior IT Auditor

Senior IT Auditor

Location: Wrocław / Katowice - 2 days in office / 3 days remote

Let us introduce you the job offer by EY GDS Poland – a member of the global integrated service delivery center network by EY.

At EY, you will have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we are counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all.

The opportunity

As a Senior in Technology Risk, you will lead and deliver on a wide range of technology risk and IT audit engagements across multiple industry sectors where EY is recognized as a market leader, including financial services, energy and utilities, oil and gas, industrial products, retail and consumer products, and real estate. You will play a key role in supporting clients in managing technology risks and strengthening their control environments in increasingly complex and digital landscapes.

We are looking for experienced professionals who are motivated to further develop in IT audit and technology risk areas, with strong exposure or interest in Data Analytics, Cybersecurity, and emerging technologies such as Artificial Intelligence. In this role, you will work closely with global engagement teams across the globe, leading or contributing to IT audit engagements while building advanced expertise in technology assurance, IT controls, and international audit standards.

You will operate in a dynamic, international, and technology-driven environment, where you will not only apply your existing knowledge but also continuously expand your technical capabilities. The role offers opportunities to deepen your expertise in data-driven auditing, cybersecurity risk management, and AI-related controls, while actively contributing to innovation, automation, and the evolution of modern audit practices.

Your key responsibilities

As an Auditor, you will contribute technically to Risk Assurance client engagements as well as internal initiatives, with a strong focus on IT audit, Cybersecurity, Data Analytics, and emerging technologies such as Artificial Intelligence. An important part of your role will be to actively establish, maintain, and strengthen internal and external relationships. You will also identify potential business opportunities and risks within projects, ensuring that all deliverables meet EY GDS quality standards.

Your responsibilities will include:

• Performing effectiveness testing over IT Application Controls, IT General Controls (ITGC), and Segregation of Duties (SoD), with consideration of cybersecurity risks such as access management and data protection
• Leveraging data analytics techniques to support audit procedures, including analysis of large datasets, identification of anomalies, and generation of risk-focused insights
• Supporting reviews of automated and AI-driven processes, including evaluation of controls around algorithms, data usage, and governance frameworks
• Identifying internal control deficiencies and providing actionable recommendations to improve organizational performance, both in terms of efficiency and effectiveness
• Defining and executing audit procedures to assess whether identified deficiencies in systems or applications could have been exploited, including in complex and technology-driven environments
• Performing IT and security testing across multiple areas, such as Database Security, Process Automation (including RPA), IT Asset Management, Software License Compliance, and cloud-based solutions
• Actively contributing to the development and adoption of AI within the team by identifying use cases, exploring innovative solutions, and proactively implementing AI tools to improve audit quality and efficiency
• Providing guidance and sharing knowledge with team members, while participating in audit procedures with a focus on complex, judgmental, or specialized areas

Your people responsibilities:

• Responsible for staffing, motivating, and managing the team, including effective supervision and support of team members in their day-to-day activities
• Actively contributing to knowledge sharing and capability building within the team, ensuring transfer of expertise in areas such as IT audit, Cybersecurity, Data Analytics, and AI
• Proactively identifying development opportunities for team members and supporting their growth through coaching, feedback, and on-the-job learning
• Driving engagement and fostering a collaborative, high-performance team environment focused on continuous improvement and innovation
• Identifying opportunities to enhance team effectiveness, including adoption of new tools, methodologies, and technology-driven solutions

Skills and attributes for success

Experience requirements:

• 2,5+ years' experience in IT and / or information security

Technical skills requirements:

• Bachelor’s or Master’s degree in Computer Science, Telecommunications, Cybernetics, or other related fields (e.g. Data Analytics, Cybersecurity, Information Technology, or similar)

• Good technical knowledge of operating systems, databases, application servers and network devices
• Demonstrate a thorough understanding of complex information systems and apply it to client situations/ client business
• Knowledge of IT standards (COBIT, ITIL, ISO 2700x, NIS2, and others)
• Ideally possesses one or more recognized IT certifications such as (CISA. CISM, CRISC, CISSP, TOGAF, CEH, OSCP)

Soft skills requirements:

• Positive attitude with a: strong willingness to learn and continuously develop, especially in areas such as AI, data analytics, and emerging technologies
• Excellent communication skills, both written and verbal, in English
• Good command of German is a plus (B1 and above)
• Strong project management skills, with the ability to inspire teamwork, ownership, and accountability within engagement teams
• Creative thinking and a proactive, problem-solving mindset
• Attention to detail with a strong commitment to quality and accuracy
• Interest in consulting and technology-driven environments, with openness to continuous development and innovation
• Curiosity and openness to exploring and applying AI solutions in day-to-day work and contributing to team development in this area

To qualify for this role, you should have significant experience in applying relevant technical knowledge in at least 3 of the following areas:

• IT General Controls review
• Application Controls review
• Cybersecurity review
• Infrastructure review
• Experience performing business process assessments
• Business continuity review
• IT governance review
• IT risk assessment and IT audit planning
• Use of Data Analytics in audit and risk assessment
• Exposure to Artificial Intelligence, including understanding of AI-related risks and controls

What we offer

EY Global Delivery Services (GDS) is a dynamic and truly global delivery network. We work across nine locations –  Argentina, Hungary, India, the Philippines, Poland, Sri Lanka, Mexico, Spain and the United Kingdom – and with teams from all EY service lines, geographies and sectors, playing a vital role in the delivery of the EY growth strategy. From accountants to coders to advisory consultants, we offer a wide variety of fulfilling career opportunities that span all business disciplines. In GDS, you will collaborate with EY teams on exciting projects and work with well-known brands from across the globe. We’ll introduce you to an ever-expanding ecosystem of people, learning, skills and insights that will stay with you throughout your career.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

About EY

EY | Building a better working world

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.

Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

If you can demonstrate that you meet the criteria above, please contact us as soon as possible.

The exceptional EY experience. It’s yours to build.

In compliance with the requirements of the Whistleblower Protection Act, our company has established the Procedure for reporting breaches of law and undertaking appropriate follow-up actions. Any misconduct should be reported through the EY Ethics Hotline.