Gds Consulting_process & Controls Manager Sox jobs at Ey in Philippines, Cebu City

Your key responsibilities

• Lead and oversee multiple Digital Health strategy workstreams and complex engagements, ensuring delivery of high-impact solutions and strategic recommendations.
• Provide senior leadership and direction to project teams, fostering a culture of excellence, innovation, and collaboration.
• Develop, maintain, and strengthen executive-level client relationships, acting as a trusted advisor and strategic partner.
• Drive business development activities, including identifying opportunities, leading proposal development, and supporting practice growth.
• Stay at the forefront of Digital Health trends and issues, providing thought leadership and market insights to clients and internal teams.
• Demonstrate deep technical and professional knowledge of Digital Health trends in both Canadian and global contexts.
• Mentor, coach, and develop Managers, Senior Consultants, and interns, supporting their professional growth and performance.
• Foster an inclusive, innovative, and team-oriented work environment, championing EY’s values and commitment to diversity.

To qualify for the role, you must have

• Bachelor’s or Master’s degree in business, health administration, technology, or equivalent experience (MBA or MSc preferred).
• A minimum of 8+ years’ experience in industry and/or with a professional services firm, with a successful track record in Digital Health and technology transformation strategy development, including senior leadership roles.
• A minimum of 5+ years’ experience in technology strategy consulting, with demonstrated experience leading large-scale digital operating model implementations in healthcare.
• Proven experience managing innovation, market assessments, and transformation projects.
• In-depth knowledge of EMR/HIS systems, including implementation and configuration best practices.
• Advanced problem-solving and critical thinking skills, with the ability to structure and plan complex workstreams to address bespoke client needs.
• Strong command of technical applications and tools to support complex analysis.
• Experience synthesizing research and analysis into structured, logical recommendations for executive audiences.
• Excellent communication, presentation, and writing skills.
• Willingness to travel as required (up to 80% of work week).

Skills and attributes for success

• Strategic leadership and vision in Digital Health transformation.
• Ability to build and maintain executive relationships and influence senior stakeholders.
• Proven track record of delivering high-quality, innovative solutions in complex environments.
• Commitment to mentoring and developing high-performing teams.

Ideally, you’ll also have

• Security clearance preferred.
• Experience with government and public sector health transformation initiatives.

• Planning, design, build, implementing, managing and upgrading security systems to protect data, systems and network
• Ensuring that the client data and infrastructure are protected by continuously reviewing, enabling and implementing appropriate security controls & enterprise infrastructure. Identifying use cases on existing security systems and provide recommendations to improve current state
• Conduct regular capacity planning assessments on security appliances and licenses, provide quarterly recommendations to the relevant stakeholders. Determine the hardware and software asset’s lifecycle, plan ahead the recommendation on hardware refresh before it reaches its EOL/EOS state
• Process security project communications and track with various technical teams until it reaches completion, document project steps & lessons learned and work with other technical teams on integration, deployment & enhancement projects and any other engineering tasks
• Develop and design security project plans for SIEM, NDR, XDR, NGAV, NGFW, MDM, DLP, SWG, UEBA, primarily on cloud, DevOps and application security based on zero trust framework in compliance with applicable regulatory and data privacy requirements
• Contribute to the development of the various TechOps strategies and roadmaps as required to enable realization of the business strategies and objectives

• Ideal candidate must have a minimum of 6+ years of cybersecurity design, build and implementation experiences in a complex or large-scale environment or at least a minimum of two combined qualifications and/or experiences below:
• At least 3 years of hands-on experience in implementing, deploying & managing SIEM tools such as Splunk, Microsoft Sentinel, Qradar, Mcafee, Arcsight, LogRhythm, including python scripting, usage of regular expressions and natural language queries or;
• Extensive knowledge and hands-on experience in the areas of endpoint security (wintel & linux), web security, network (IDS, IPS, FW) security, data loss prevention (DLP) deployment or;
• Experience with Security Assessment tools (NMAP, Nessus, Metasploit, Netcat), vulnerability analysis, penetration testing, remediation and compliance, usage of automation tools for patch and vulnerability management or;
• Hands-on design and build experience for EDR, XDR and NGAV solutions such as Crowdstrike, Microsoft Defender, Cortex XSIAM, Carbon Black, Sophos, etc. or;
• Understanding of security principles, techniques, and technologies such as SANS Critical Security Controls, OWASP Top 10, Mitre Attack, Cyber Kill Chain, PCI-DSS, ISO 27001/02, SOC2, GDPR and other regulatory compliance frameworks, or;
• Combined hands-on experience on DevSecOps, Windows & Linux Server Administration, Network Administration, Storage & Backup, Systems Administration, Middleware, Application Administration and Endpoint Security Engineering. Network security zone administration, configurations, IDS/IPS policies, systems communications from Layer 1 to 7, packet capture and analysis log formats & analysis, ability to aggregate and parse log data for syslog, http logs, DB logs for discovery & investigation purposes or;
• Setting up SOAR for custom real-time dashboards, process automations, report generation, security orchestration, incident response automation using Phantom & Demisto, workflow modelling, playbooks development, Phantom API integrations with cloud platforms, and SOAR development, migration and administration.
• Strong domain expertise, implementation and/or integration skills in data classification, data discovery, information rights management, encryption, tokenization, data access governance and data masking technology solutions.

General Qualifications:
• Bachelor’s Degree relevant to Information Technology or Computer Science
• Can work under pressure, displays high level of ownership & accountability with very minimal supervision to execute tasks and deliverables
• Related Certification such as CEH, CHFI, Sec+, ITILv3, GCFA, ECIH, GCIH, CySA+, and other cybersecurity engineering-related certifications

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

There really is no average day in this role, since every client will have multi-faceted challenges and a distinct business environment. What it means is that you’ll have an opportunity to learn and adapt to our clients’ cultures and contribute towards developing unique solutions that are tailored to individual engagements. Whichever industry or client you’re working with, you’ll have plenty of opportunities to expand your business network and transform yourself into a truly global professional.

This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You'll also team with our performance improvement professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. The team is focused on leveraging emerging technologies like Robotics, AI, Advanced Analytics to enhance various Internal Audit and internal control solutions being provided to the client and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional Risk Advisor

• Manage a team of Staffs and Seniors (across locations) to manage delivery of the SOX engagements - including scoping, test of design, test of effectiveness and reporting – for multiple processes across clients
• Provide guidance to Staffs and Seniors to conduct effective assessment to comply to Sarbanes-Oxley (SOX) compliance
• Conduct / Lead control rationalization and standardization activity or re-design existing controls for business processes
• Evaluate control gaps noted during design or operating effectiveness testing, provide recommendations and track remediation
• Responsible to define budget, track actuals against the budget and resource planning / scheduling
• Independently manage client process owners with minimal supervision
• Meet quality guidelines within the established turnaround time (or allotted budget) to drive the value for the client
• Demonstrate application and solution-based approach to problem solving while executing client engagements
• Anticipate and identify engagement related risks and escalate issues as appropriate on a timely basis
• Design and lead area specific transition plan within agreed timelines
• Spear head the team performing analytics and benchmarking activities for clients
• Drive process automation and implement opportunities for continuous improvements

• Executive-level skills in client relationship management and the hold conversations with senior executives.
• Partnering with onshore teams to understand client’s business & related industry issues / trends for global clients.
• Identify buyers, influencers & stakeholders in existing client engagements and build strong relationships.
• Assist Senior Managers / Directors in driving the account management agenda by focusing on high impact opportunities.
• Contribute to new solution development basis the industry trends and client’s problem statement
• Conduct knowledge sharing discussions & contribute to EY thought leadership.
• Supports in responding to RFP / RFIs
• Support multiple innovation initiatives to enhance existing solutions leveraging emerging technologies like Robotics, AI, Advanced Analytics
• Collaborating with colleagues across multiple service lines, sharing your knowledge and experience to guide business decisions.
• Monitoring industry news, tools and trends while suggesting potential risks, as well as opportunities to improve the way we work.

• Suggest ideas on improving engagement productivity and identify opportunities for improving client service.
• Manage engagement budgets and ensure compliance with engagement plans and internal quality & risk management procedures.

• Display teamwork, integrity and leadership. Work with team members to set goals and responsibilities for specific engagements. Foster teamwork and innovation.
• Utilize technology & tools to continually learn and innovate, share knowledge with team members and enhance service delivery.
• Understand EY and its service lines. Actively encourage team members to contribute ideas.
• Conduct workshops and technical training sessions for team members. Contribute to the learning & development agenda and knowledge harnessing initiatives.

• Exceptional command on spoken and written English
• Globally mobile and flexible to travel to onsite locations
• Highly analytical, organized and meticulous consulting skills
• Strong academic history (degree in Business, Accounting, or similar work experience in similar industry, Big 4 preferred)
• Proficient in MS-Office Suite, data analysis & validation
• Team player with strong interpersonal skills
• Ability to prioritize deliverables effectively in order to achieve optimum results.

• More than 7 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 4 years of experience in SOX / internal controls
• Strong understanding of SOX and COSO framework
• CIA certification is preferred
• Strong academic history (degree in Business, Accounting, Engineering or similar)
• Strong multi-project management skills
• Skilled at collaborating, motivating and guiding high performance teams.
• Cognitive problem solving capabilities, quick decision making skills and ability to handle complex situations with a calm demeanor
• Exceptional command on spoken and written English
• Globally mobile and flexible to travel to onsite locations
• Team player with strong interpersonal skills
• Ability to think differently and innovate

• Responsible for the performance and appraisal of direct reports, including training and developing necessary skill sets to enable them to grow in their careers.
• Mentor and coach junior team members, enabling them to meet their performance goals and successfully grow their careers.

• A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment
• Opportunities to work with EY Risk -Internal Audit practices global with leading businesses across a range of industries

At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are.
You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:
• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

Apply now

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

• Hold sessions with end users and/or functional consultants to gather business requirements for technical development
• Deliver technical design based on the business requirements
• Develop technical design documents based on functional design documents
• Pursue prescribed coding standards during development work
• Prepare quality deliverables as per designated project timelines
• Assist business user during design/FUTs/UATs
• Prepare unit test cases for technical components
• Conduct trainings
• For support engagements, support end users in resolving the reported incidents within prescribed SLA
• Work in shifts to support client support engagements
• Work with offshore, client, onsite teams as part of the project
• Should be willing to travel onsite on short term or long term on need basis
• Support Project Management Office (PMO)
• Acts as liaison with client for troubleshooting issues faced during implementation and/or support - investigate, analyse and solve software problems

• Min 3-6 years of relevant experience working in SAP ABAP
• Should have worked in at least 1 full cycle implementation
• Experience in some of SAP modules such as SD, PS, PP, HR (PY, OM, PA, TM), FI (FM, BCS), MM (PR, AP, IM) and PS, APO modules
• Experience of having worked in an onsite- offshore delivery model would be a plus
• Experience of having worked in a CMMI environment would be a plus.

• Should be good in ABAP Programming with experience in RICEFW development.
• Knowledge in OOPS, BAPI, SAP notes implementation and code push down approach.
• Minimum one full cycle implementation experience.
• Extensive experience in analysis, design, development, testing, implementation, and documentation.
• Working knowledge in AS-ABAP on HANA
• Sound knowledge of User Exits, Customer Exits, BADIs, new enhancement framework.
• Practical Knowledge of ABAP development toolkit, ADT
• Sound knowledge/ experienced in oData, CDS and AMDP.
• Module pool programming, adobe form and smart form.
• Hands on experience in Adobe forms, Web services, Proxies

• SAP-ABAP Workflow
• Mobility
• SAP data migration tools
• SAP GATEWAY
• Experience in SPDD/SPAU conflict resolution.
• Technical Upgrade Experience
• ABAP Certification
• CRM technical / SAP HANA / Mobility / PI-PO /Web-dynpro• Possesses good communication skills to coordinate, resolve queries of both external and internal customers
• Self-motivator and result oriented to complete task as per timelines
• Must have good analytical and problem-solving skills

BTech / MTech / MCA / MBA

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

To qualify for the role, you must have

• 3 to 5 years of Experience in developing data ingestion, data processing and analytical pipelines for big data, relational databases, NoSQL and data warehouse solutions
• Extensive hands-on experience implementing data migration, data processing, and Big Data
• Hands on experience in programming like Python, scala, and Hadoop – nice to have
• Well versed in DevSecOps and CI/CD deployments – nice to have
• Must have hands on experience in SQL and procedural SQL languages -
• Experience working with NoSQL in at least one of the data stores - HBase, Cassandra, MongoDB – nice to have
• Strong analytical skills and enjoys solving complex technical problems
• Proficiency in Software Development Best Practices
• Strong analytical skills and enjoys solving complex technical problems
• Excellent debugging and optimization skills
• Experience in Enterprise grade solution implementations & in converting business problems/challenges to technical solutions considering security, performance, scalability etc

What we look for

• A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills.
• An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide.
• Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries

You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer:

• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

Apply now

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

Key responsibilities
Your key responsibilities will include:
• Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes.
• Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels.
• Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business.
• Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge.

Skills and attributes for success
You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions.

To qualify for the role, you must have
• A bachelor’s or master’s degree and approximately 3-6 years of related work experience
• At least 2-4 years of experience in IT Risk and Compliance
 Design IT Risk Controls framework such as IT SOX
 Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc.
 Identify control gaps, weaknesses and areas of improvements.
 Conducting IT internal control reviews, and review of SOC1 or SOC2 reports
• Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc.
• IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML
• IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc.
• Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.
• Excellent communication, documentation and report writing skills.
• Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant)

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.