Risk Analyst jobs in United States, Illinois, Chicago

You will help our clients evaluate and enhance their business. You will be part of our account centric growth strategy focusing on issue-based and competency-driven client needs. That's what differentiates EY in the consulting marketplace.

Your key responsibilities

Everything you will be involved in comes down to providing excellent customer service and helping ensure your teams do the same. Whether it is; managing multiple client teams, leading IT internal audit engagements, external audit integration, or SOC reporting as well as assisting with business development activities across financial services’ sectors, you will build strong relations ships and become a trusted advisor to your clients.

Skills and attributes for success

• Providing guidance and knowledge, participating in performing procedures focusing on complex, judgmental, and/or specialized issues
• Working with the team/client to create plans for accomplishing engagement objectives. Making sure the strategy complies with professional standards and addresses the inherent risks
• Briefing the team on the client’s IT environment and industry IT trends
• Maintaining relationships with client management, managing expectations around work products, timing, and deliverables billing
• Demonstrating a thorough understanding of complex information systems and the client’s business/industry
• Demonstrating excellent project management skills, inspiring teamwork and responsibility with team members. Using current technology/tools to enhance the effectiveness of deliverables and services

To qualify for the role you must have

• A bachelor’s degree and at least 6 years of related work experience; or a graduate degree and approximately 4 years of related work experience
• A degree in business, accounting, finance, computer science, information systems or a related discipline
• Approximately 6 years of experience working as an IT auditor or IT risk advisor for a public accounting firm, professional services firm or financial services company, or comparable experience as an advisor to a financial services company
• Solid experience leading IT internal audit, external audit, service organization control reporting and/or IT internal controls engagements and assisting with business development activities within financial services
• Experience with internal audit risk assessments, SOX/internal controls, Service Organization Control (SOC) reporting, tools and enablers in the financial services sector
• Strong project management skills
• Advanced written and verbal communication skills and presentation skills
• Excellent leadership, teamwork and client service skills.
• Willingness to travel to meet client obligations

Ideally, you’ll also have

• CA, CGEIT, CIA, CISA, CISM, CISSP, CMA, CPA and CRISC certification is desired; non-certified hires are required to become certified within 1 year from the date of hire. Based on an individual’s professional background, area of specialization or industry focus, we recognize that other certifications, credentials or experience may be more relevant than the listed certifications and therefore may be acceptable substitutes with written consent of EY's Americas IT Risk & Assurance leadership

What we look for

We’re interested in leaders with a genuine creative vision and the confidence to make it happen. You can expect plenty of autonomy in this role, so you’ll also need the ability to take initiative and seek out opportunities to improve our current relationships and processes. If you’re serious about auditing and ready to take on some of our clients’ most complex issues, this role is for you.

What we offer you
At EY, we’ll develop you with future-focused skills and equip you with world-class experiences. We’ll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn .

• We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $111,600 to $204,700. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $134,000 to $232,700. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
• Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year.
• Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.

The objective of our consulting risk services is to provide clients with a candid and reliable overview of their risk landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market and when required by regulation or contract.

For our Cyber Risk services, the ideal candidate will be responsible for identifying, evaluating, and managing cyber risks across the organization. This role involves working closely with IT, security teams, and business units to ensure that our cyber risk posture is aligned with our business objectives and regulatory requirements..

Your key responsibilities

You will operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk. You can expect to work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process, and will assist clients and other Risk Assurance professionals in performing information technology control and security engagements.

Skills and attributes for success

• Collaborate with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments, and other planning documents. Work with the engagement team to document the business processes dependent on information technology. Serve as a fieldwork leader by directing the daily progress of fieldwork, informing supervisors of engagement status, and managing staff performance.
• Demonstrate and apply a thorough understanding of complex information systems. Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Demonstrate and apply strong project management skills, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and services.
• Conduct comprehensive cyber risk assessments to identify vulnerabilities, threats, and potential impacts to the organization.
• Develop and implement risk mitigation strategies and controls to protect against cyber threats.
• Collaborate with IT and security teams to ensure that cybersecurity policies and procedures are up-to-date and effectively implemented.
• Monitor the cyber threat landscape and provide timely intelligence to relevant stakeholders.
• Facilitate risk management discussions with business leaders to ensure they understand their cyber risk exposure.
• Oversee the cyber risk management lifecycle, including risk identification, analysis, response, and monitoring.
• Coordinate with external partners, such as insurance providers and cybersecurity firms, to manage and transfer cyber risks where appropriate.
• Prepare and present risk reports and dashboards to senior management and the board of directors.
• Ensure compliance with relevant laws, regulations, and industry standards related to cybersecurity and data protection.
• Conduct training and awareness programs to promote a culture of cybersecurity across the organization..

To qualify for the role you must have

• A bachelor's or master's degree
• Bachelor's degree in Information Technology, Cybersecurity, Risk Management, or a related field.
• Professional certifications such as CISSP, CISM, CRISC, or similar are highly desirable.
• Minimum of 2 years of experience in cybersecurity, risk management, or a related role.
• Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and regulatory requirements.
• Proven experience in risk assessment methodologies and tools.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to convey complex information to non-technical stakeholders.
• Ability to work independently and as part of a team in a fast-paced environment.
• We would expect for you to be available to travel outside of their assigned office location at least 50% of the time, plus commute within the region (where public transportation often is not available). Successful candidates must work in excess of standard hours when necessary. A valid passport is required.

Ideally, you’ll also have

• A bachelor's or master's degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline
• CPA, CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT certification is desired; non-certified hires are required to become certified to be eligible for promotion to Manager.
• Additional cloud-based certifications to credentialize but do not currently meet the rigor of the certification requirement above:
  • CCSP –
  • CCSK – Certificate of Cloud Security Knowledge
  • CCAK – Certificate of Cloud Auditing Knowledge
  • Microsoft Certified: Azure Fundamentals
  • AWS Certified Cloud Practitioner
  • Google Cloud Digital Leader

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.

Assurance, Technology Risk (Manager) (Multiple Positions) (1650357), Ernst & Young U.S. LLP, Chicago, IL.

Full time employment, Monday – Friday, 40 hours per week, 8:30 am – 5:30 pm.

MINIMUM REQUIREMENTS:

Must have a Bachelor’s degree in Business, Management, Engineering, Mathematics, Accounting, Finance, International Relations or a related field and 5 years of progressive, post-baccalaureate related experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry.

Alternatively, will accept a Master’s degree in Business, Management, Engineering, Mathematics, Accounting, Finance, International Relations or a related field and 4 years of related experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry.

Must have 3 years of work experience applying relevant IT audit skills in audit engagements as a Financial Audit IT integration leader on own engagement.

Must have 3 years of experience in a supervisory/managerial capacity focused on financial audit IT in public company audits.

Must have 3 years of experience supervising audit professionals performing the IT portion of the audit (IT general controls, ERP, application knowledge, system implementation, audit knowledge, and similar).

Must have 3 years of experience supervising the integration with the financial audit team on application controls, IPE, and IT dependent manual controls.

Must be eligible to obtain CPA, CA, CISA, CIPP, CGEIT, CIA, CISSP, CISM, CIPT, CRISC, CMA and/or relevant certification within one year of hire.

Employer will accept any suitable combination of education, training or experience.

What we offer

We offer a comprehensive compensation and benefits package where you’ll be rewarded based on yourperformance and recognized for the value you bring to the business. The base salary for this job is $150,510.00 per year. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next.
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
• Transformative leadership: We’ll give you the insights, coaching and confidence to be the leader the world needs.
• Diverse and inclusive culture: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

This particular position at Ernst & Young in the United States requires the qualified candidate to be a "United States worker" as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition at at the bottom of page 750. Please feel free to apply to other positions that do not require you to be a "U.S. worker".

Job purpose

EY established a Global Trade team to help clients manage export and import classifications, assist with Free Trade Agreements (“FTA”) solicitation and qualification analysis, identify other government agencies (“OGA”) requirements, and review client transactions. The Global Trade team consists of a dedicated team of trained individuals responsible for analysing the technical characteristics of products and assigning proper export and import classifications, conducting analysis if products qualify for FTAs, identifying OGA requirements and screening client’s transactions against different lists of sanctioned parties.

Your client responsibilities

The role of the Classification Global Trade Staff includes the following:

• Monitor and manage a workload of classification assignments sent from the clients
• Execute key processes and documentation to effectively and timely manage classifications
• Communicate with clients regarding the products, information needed, and classification status
• Provide insight, connectedness and responsiveness to client points of contact while demonstrating a good understanding of their products
• Make informed decisions in complex and indefinite areas

Your people responsibilities

Responsibilities, Qualifications, Certifications – External

Technical skills requirements

Global Trade Staff team members should have the following educational or technical experience:

• An undergraduate degree in electrical engineering, electronic engineering, or a related field (*preferred)

• Relevant experience working in the electronic/electrical (in capacities where understanding the technical aspects of the products is essential and commodity expertise exists).

Additionally, experience in the following areas is desirable but not required:

• Experience determining tariff classifications in accordance with the Harmonized Tariff System, knowledge of Free Trade agreements rules
• Export Control classification knowledge

Additional skills requirements

• Proficiency with MS Windows, word processing, database and spreadsheet software;
• Excellent analytical and problem-solving skills;
• Strong written/ verbal communication skills;
• Ability to analyse regulations and procedures and relate them to operations;
• Excellent teamwork and interpersonal skills;

Fluency in English is required

Assurance - Technology Risk (Senior) (Multiple Positions) (1658380), Ernst & Young U.S. LLP, Chicago, IL.

Full time employment, Monday – Friday, 40 hours per week, 8:30 am – 5:30 pm.

MINIMUM REQUIREMENTS:

Must have a Bachelor’s degree in Business, Management, Engineering, Mathematics, Accounting, Finance, International Relations or a related field and 2 years of related experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry.

Of the required experience, must have 1 year of experience in a supervisory capacity focused on financial audit IT in public company audits.Must have 1 year of experience supervising audit professionals performing the IT portion of the audit (IT general controls, ERP, application knowledge, system implementation, audit knowledge, and similar).

Employer will accept any suitable combination of education, training or experience.

What we offer

We offer a comprehensive compensation and benefits package where you’ll be rewarded based on your performance and recognized for the value you bring to the business. The base salary for this job is $91,957.00 per year. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.

•: You’ll develop the mindset and skills to navigate whatever comes next.
•: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way.
•: We’ll give you the insights, coaching and confidence to be the leader the world needs.
•: You’ll be embraced for who you are and empowered to use your voice to help others find theirs.EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.

This particular position at Ernst & Young in the United States requires the qualified candidate to be a "United States worker" as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition at at the bottom of page 750. Please feel free to apply to other positions that do not require you to be a "U.S. worker".