EY NFS - Technology Risk Senior Generic 

Philippines, Taguig 

237534898

Job Title:

As an IT risk consultant, you’ll contribute technically to risk assurance client engagements and
internal projects. An important part of your role will be to perform IT audits, document good quality
assessment reports and issue opinions. You’ll anticipate and identify risks within engagements and
share any issues with the audit stakeholders. You’ll also identify potential business opportunitiescommitment to quality, as an influential member of the team - you’ll help to create a positive

We’re looking for staffs and seniors with 2 to 7 years of hands-on experience in IT Risk/Audit,of a leading firm whilst being instrumental in the growth of a new service offering.
• Participate, lead and execute the IT Risk and Assurance engagements
• Develop and maintain productive working relationships with client and onshore stakeholders
• Work effectively as a team member, sharing responsibility, providing support, maintaining• Help prepare reports and schedules that will be delivered to clients and other parties
• Develop and maintain productive working relationships with client personnel
• Build strong internal relationships within Ernst & Young Services and with other services across
the organization
• Stay current with and promote awareness of applicable regulatory standards, upstream risks
and industry best practices across the enterprise

members to succeed
Maintain an educational program to continually develop personal skills of self and staff
Conduct performance reviews and contribute to performance feedback for staff
• B.E/B.Tech (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc., Chartered
Accountant and/or MBA with Finance/IT with at least 2-7 years of experience
• 2-7 years of professional experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 /
SSAE / SOC, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other
regulatory / compliance audits
• Expertise in pre and post implementation reviews and auditing configuration of major ERPs like
SAP, Oracle, JDE, WorkDay, Netsuite, Navision etc.
• Expertise in performing infrastructure reviews pertaining to OS, DB and Active Directory such as
Windows, UNIX, SQL, Mainframe, Oracle etc.
• Assist with the development of policies, procedures and standards that meet existing and newly
developed policy and regulatory requirements
• Assist with facilitating IT security/risk training curriculum.
• Work closely with cross-functional teams and develop strong relationships as project lead
within IT security and GRC projects.
• Stay current with and promote awareness of applicable regulatory standards, upstream risks
and industry best practices across the enterprise
• Must have end-client facing experience
• CISA, CISM, CRISC, ISO27001, Cloud and Data privacy certifications
• IT audit knowledge for a financial audit - Control frameworks such as COSO, related regulations
including SOX and J-SOX
• Data analytics/automation tool – SQL, Monarch, BluePrism, Alteryx, PowerBI
• Familiarity with a typical IT systems development life cycle
You get to work with inspiring and meaningful projects. Our focus is education and coachingyou will be able to control your own development with an individual progression plan. You will
quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you

will be part of an interdisciplinary environment that emphasizes high quality and knowledge
exchange. Plus, we offer:
• Support, coaching and feedback from some of the most engaging colleagues around
• Opportunities to develop new skills and progress your career
• The freedom and flexibility to handle your role in a way that’s right for you
society and build trust in the capital markets.

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.