EY Consultant - Assurance NAT ASU TR Technology Risk Mumbai Pune 

India, Maharashtra, Mumbai 

658763427

ASU - TR - Technology Risk :

1) Ensuring their accounts comply with the requisite audit standards

2) Providing a robust and clear perspective to audit committees and

3) Providing critical information for stakeholders.

Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS & US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting & implementation support etc.

Your key responsibilities:

Job Summary:

As an Technology Risk professional, you will be instrumental in conducting detailed IT audits to ensure compliance with controls and regulatory mandates, including ICFR. Your responsibilities encompass identifying ITGCs and ITACs, executing SOX compliance tasks, preparing SOCR, and performing IT process reviews. You will oversee Change Management, Access Management, Application Controls and other relevant areas, while collaborating with teams to pinpoint and mitigate control gaps. Staying current with industry developments and effectively communicating audit outcomes to stakeholders are key aspects of the role. The ideal candidate will have a solid background in IT controls and auditing, with certifications like CISA or CISSP preferred, and the capacity to thrive in a dynamic, multi-priority environment.

Your key responsibilities:

• Conduct comprehensive IT audits to address and ensure compliance with established controls and regulatory requirements, including Internal Controls over Financial Reporting (ICFR)
• Identify and review IT General Controls (ITGCs) to safeguard organizational assets and IT Application Controls (ITACs) to ensure accuracy of financial reporting
• Execute SOX compliance activities, including risk assessments, controls testing, and remediation efforts
• Prepare and assess Service Organization Control Reports (SOCR) to validate the effectiveness of IT controls objectives
• Conduct IT process reviews through stakeholder interviews, data validations, and document analysis
• Apply IT-related and internal control knowledge to deliver high quality engagement
• Review Change Management processes, ensuring that changes are thoroughly reviewed, tested and approved
• Review Access Management procedures to ensure proper access levels and permissions.
• Evaluate and address Segregation of Duties (SOD) concerns to prevent unauthorized access and potential conflicts
• Collaborate with cross-functional teams to identify control gaps and develop effective remediation plans
• Stay abreast of industry trends, regulatory changes, and emerging technologies related to IT controls and compliance
• Prepare and communicate audit findings, recommendations, and status updates to key stakeholders and management.

Skills and attributes:

• Proven experience of IT controls, ITGCs, ITACs, SOX 404 controls testing and IT auditing
• Strong knowledge of Change Management, Access Management, SOD, business process IT controls and ICFR principles
• Familiarity with Service Organization Control Reports (SOCR) and related frameworks.
• Familiarity with ERPs such as SAP, Oracle, Dynamics 365 etc.
• Excellent analytical and problem-solving skills with attention to detail.
• Effective communication and interpersonal skills for collaborating with internal teams and external auditors.
• Relevant professional certifications such as CISA, CISSP, or equivalent preferred
• Ability to adapt to a fast-paced environment and manage multiple priorities

Qualification-B.Tech/MBA or any other similar degree in technology.

- 2-5 years of experience

What we look for:

People with the ability to work in a collaborative manner to provide services across multiple client departments while following the commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. We look for people who are agile, curious, mindful and able to sustain postivie energy, while being adaptable and creative in their approach.

What we offer

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.