Government and Public Sector - Assurance - Tech Risk - Manager
About the role
The Government & Public Sector practice of Ernst & Young LLP provides a full range of consulting and audit services to help our Federal, State, Local and Education clients implement new ideas to help achieve their mission outcomes. We deliver real change and measurable results through our diverse, high-performing teams, quality work at the highest professional standards, operational know-how from across our global organization, and creative and bold ideas that drive innovation.
Responsibilities
- Serve as a key resource in delivering quality client services on financial statement audits, attestation engagements and IT control projects.
- Conduct research as needed.
- Assist in the testing of IT general and application controls.
- Prepare for and potentially lead client meetings.
- Establish relationships with client personnel at the appropriate levels.
- Deepen sector and client knowledge.
Requirements
- Bachelor's degree in Business, Accounting, Finance, Information Systems, Information Technology or closely related field.
- 5+ Years of relevant experience in information assurance, information security, risk management, leading standards (e.g., COSO, ERM, FISCAM, FISMA, NIST), IT technologies (e.g., Windows, UNIX, Oracle, Mainframe, SAP), preparing written or verbal materials, and assisting with presenting project results to clients.
- Participated in planning through reporting phases and oversaw the execution of relevant audit/control testing engagement (e.g., CFO Act/FISCAM, OMB Circular A-123 internal control over financial reporting/Systems (ICOFR/ICOFS), audit readiness (DOD FIAR), ATC-320 SOC-1 Examinations (SSAE-18), and FISMA security implementations and/or OIG FISMA security reviews based on DHS cyberscope metrics).
- Possess a strong understanding of IT technical security controls (e.g. NIST 800 series requirements, DOD Security Technical Implementation Guides (STIGS)), FIPS guidance, and Federal IT audit/examination methodologies (e.g. GAO FISCAM, Financial Audit Manual (FAM), and NIST RMF Assessment and Authorization).
- Must be able to obtain and maintain a Secret-level clearance or higher.
Skills and Attributes
- Demonstrate working knowledge and aptitude in key capabilities such as IT general and application controls, risk management, information security, and information assurance.
- Take a practical approach to solving issues and gaining client agreement.
- Collaborate among team members; promote an inclusive working environment.
Qualifications
- Must have a Bachelor's degree in Business, Accounting, Finance, Information Systems, Information Technology or closely related field.
- Must have 5+ years of relevant experience in information assurance, information security, risk management, leading standards (e.g., COSO, ERM, FISCAM, FISMA, NIST), IT technologies (e.g., Windows, UNIX, Oracle, Mainframe, SAP), preparing written or verbal materials, and assisting with presenting project results to clients.
- Must have participated in planning through reporting phases and oversaw the execution of relevant audit/control testing engagement (e.g., CFO Act/FISCAM, OMB Circular A-123 internal control over financial reporting/Systems (ICOFR/ICOFS), audit readiness (DOD FIAR), ATC-320 SOC-1 Examinations (SSAE-18), and FISMA security implementations and/or OIG FISMA security reviews based on DHS cyberscope metrics).
- Must possess a strong understanding of IT technical security controls (e.g. NIST 800 series requirements, DOD Security Technical Implementation Guides (STIGS)), FIPS guidance, and Federal IT audit/examination methodologies (e.g. GAO FISCAM, Financial Audit Manual (FAM), and NIST RMF Assessment and Authorization).
- Must be able to obtain and maintain a Secret-level clearance or higher.
Benefits
Our total rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. Under our flexible vacation policy, you’ll decide how much vacation time you need based on your own personal circumstances. You’ll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.
Pay
The base salary range for this job in all geographic locations in the US is $111,600 to $204,700. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $134,000 to $232,700. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography.
Schedule
Due to the nature of our work in the Government and Public Sector, work may be required to be completed at client, EY and/or contractor sites. Our goal is to assign professionals to projects within a commutable distance of their work location office. In certain circumstances, travel may be required beyond your work location based on client and project needs.