EY GRC-SAP Controls - ITAC Manager 

India, Uttar Pradesh 

928705665

Role Description:

As part of our EY GRC Tech team you’ll contribute technically to IT Risk and SAP S4 transformation client engagements An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for Ernst & Young within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team.

Career Framework:

• Interacts with business stakeholders to gather, understand, document, and analyse business requirements
• Analyse reports and assessments to provide insights on whether a solution/technology being implemented is meeting business requirements
• Evaluates business models, processes, and operations to develop a good understanding of business needs and requirements

Experience, Background, Technical Skills & Knowledge:

• Candidate will have minimum 7-11 years of experience in SAP IT Audit with knowledge of IT governance practices.
• Lead SAP Risk and Controls projects, ensuring high-quality delivery and client satisfaction.
• Conduct SAP pre/post-implementation reviews to identify and mitigate potential risks.
• Perform SAP audits, focusing on system integrity and data accuracy.
• Design and assess SAP S4 controls, identifying gaps and recommending improvements.
• Utilize functional knowledge of key business processes such as Order To Cash, Procure To Pay, and Record To Report to enhance control frameworks.
• Collaborate with cross-functional teams to integrate risk and control considerations into broader project objectives.
• Provide thought leadership and insights on SAP risk and control trends and best practices.

Qualifications:

• Good understanding of the COSO framework, Sarbanes-Oxley Act (Sections 302 and 404), GDPR etc
• Strong experience in performing test of design and effectiveness for internal controls related to SOD, ITAC, ITDM, ICFR and IFRS along with the ability to suggest best practice recommendations.
• Should have completed at least 5-6 Risk & Control engagements covering pre-& post implementation reviews, assessments, control design and testing for SAP ECC and/or S4 HANA landscape.
• Proven experience in SAP Risk and Controls projects.
• Strong understanding of SAP ECC & S4 HANA environments.
• Familiarity with key business processes (Order To Cash, Procure To Pay, Record To Report).
• Excellent project management and leadership skills.
• Ability to communicate complex ideas effectively, both verbally and in writing.
• Relevant professional certifications (e.g., CISA, CRISC, CIA) are desirable.
• Good to have exposure in SAP Basis testing & SAP ITGC testing will be preferable
• Candidate with professional consulting experience in technology risk management ideally with a Big 4 or similar large consulting firm will be preferred.

Skills & Capabilities:

• Experience in leading implementation / Risk and Controls engagements for various clients
• Experience in drafting proposals, RFP , pursuits, innovations etc.
• Strong communication, presentation and team building skills and experience in producing high quality reports, papers, and presentations.
• Owns the relationship with senior business stakeholders to fully understand complex business / functional requirements and strategies and oversees the translation of these into complex technical requirements and specifications, guiding senior management towards accepting change brought about through process and organizational change.
• Establishes the contribution that technology can make to business objectives, defining strategies, validating and justifying business needs, conducting feasibility studies, producing high-level and detailed business models and overseeing the development and implementation of solutions, taking into account the implications of change on the organisation and all stakeholders.

• Should possess the ability to conduct and drive workshops with the client stakeholders on understanding client’s process & system landscape
• Work effectively as a team member and drive the delivery of IT audit documents independently
• Demonstrate sound technical understanding of IT Audits (ITGC & ITACs) for SAP environment.

Technologies & Tools:

• SAP Functional Knowledge
• Knowledge on Business Processes
• SAP ECC & S4 HANA
• Risk and Compliance
• MS Office Tools

EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.