Associate / Senior Associate - IT Audit
As a Risk Assurance professional, you will be leading assessments and certification services that will directly support C-suite discussions and important business decisions regarding compliance, cost and quality of our clients’ risk management programs. You will be part of an international network of professionals across geographies and sectors, delivering assessment and certification services that will help verify compliance and improve the performance of our clients
Our structured career framework means you’ll continue to develop, whatever level you’re at. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.
Your key responsibilities
Our IT Risk & Assurance services are designed for the dual purpose of strengthening internal controls and, in so doing, helping to improve IT and business performance. In addition to assurance-related engagements such as financial attestation and ISAE 3402 engagements, our IT risk advisory services focus on IT governance and effectiveness; IT program management and assurance; security and controls of Enterprise Resource Planning (ERP) implementations; and business intelligence and information analysis. We are currently offering positions in the following areas:
- Application Risk & Controls practice
- Information Management and Analysis Services practice
- Financial Services Technology Risk and IT Regulatory Services
In your role as a Risk Assurance Associate, you’ll:
- Effectively manage and motivate client engagement teams with diverse skills and backgrounds.
- Consistently deliver quality client services and manage expectations of client service delivery.
- Drive high-quality work products within expected timeframes and on budget.
- Monitor progress, manage risk and ensure key stakeholders are kept informed about progress and expected outcomes.
- Stay abreast of current business and industry trends relevant to the client's business.
- Develop and maintain long-term relationships and networks with clients and internal EY stakeholders - Demonstrate deep technical capabilities and professional knowledge.
- Possess in depth business acumen and demonstrate ability to quickly assimilate to new knowledge. - Remain current on new developments in advisory services capabilities and industry knowledge.
Skills and attributes for success
- Working experience on at least two (2) full cycles of access control framework definition, security role design, remediation and implementation for ERP solutions such as SAP and Oracle.
- Working experience in performing business process controls review, access controls review (e.g., segregation of duties) and project risk assessments in an ERP environment. Having experience in continuous controls monitoring and controls optimization type of work would be an advantage.
- In-depth knowledge on key risks and expected controls (including compensating controls) in one or more business processes (e.g., procure to pay, and financial statement close)
- Understanding of and/or implementation experience with a variety of GRC tools (e.g., SAP GRC and Oracle ICM)
To qualify for the role, you must have:
- A recognized university degree in accounting, business, information technology, engineering, mathematics or other relevant discipline
- At least 4 years of relevant consulting or industry experience, preferably in a professional services environment or MNC.
- Candidates who possess professional certifications such as Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP) and / or Certified Fraud Examiner (CFE) are highly encouraged to apply.
- Proficiency with Microsoft Excel, Access, Word, and PowerPoint
- Strong analytical, interpersonal, communication, writing and presentation skills
- Demonstrates integrity, values, principles, and work ethic
- Willingness to travel on overseas assignment as the need arises
Ideally, you’ll also have
Application Risk & Controls
What we look for
We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working, career development and with FlexEY you can select benefits, which suit your needs, covering holidays, health and well-being, insurances, savings and a wide range of discounts, offers and promotions. Plus, we offer:
- A position in a business that truly recognizes the importance of strong risk capabilities
- Opportunities to develop your skills in a wide range of areas, supported by regular feedback from senior-level colleagues
- Plenty of chances to build lasting professional relationships both internally and externally
- A culture that recognizes success and rewards excellence