Risk Consulting - Digital Risk - Cyber Risk - Senior Consultant
About the role
The objective of our consulting risk services is to provide clients with a candid and reliable overview of their risk landscape. Our solutions can be used by our clients to build confidence and trust with their customers, the overall market and when required by regulation or contract.
Responsibilities
- Operate as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk.
- Work with the engagement team to document the business processes dependent on information technology.
- Serve as a fieldwork leader by directing the daily progress of fieldwork, informing supervisors of engagement status, and managing staff performance.
- Demonstrate and apply a thorough understanding of complex information systems.
- Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations.
- Demonstrate and apply strong project management skills, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and services.
- Support the implementation of cloud risk governance frameworks, contributing to the alignment with client organizational objectives and adherence to regulatory standards.
- Facilitate risk discussions on cloud transformation including migration from on-prem.
- Aid in the execution of cloud risk monitoring processes, including using tools to detect and address risks in cloud environments.
- Contribute to the design of cloud control mechanisms and, on engagements where independent, evaluate effectiveness in mitigating risks and maintaining compliance.
Requirements
- A bachelor's or master's degree
- A minimum of 2 years of experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry.
- Bring your experience in applying relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) Service Organization Controls Reporting engagements; and/or (d) ERP security and control reviews (Oracle, SAP, PeopleSoft).
- A valid passport is required.
Qualifications
- A bachelor's or master's degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline.
- CPA, CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT certification is desired; non-certified hires are required to become certified to be eligible for promotion to Manager.
- Additional cloud-based certifications to credentialize but do not currently meet the rigor of the certification requirement above: CCSP – Certified Cloud Security Professional, CCSK – Certificate of Cloud Security Knowledge, CCAK – Certificate of Cloud Auditing Knowledge, Microsoft Certified: Azure Fundamentals, AWS Certified Cloud Practitioner, Google Cloud Digital Leader
Skills
- Collaborate with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments, and other planning documents.
- Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations.
- Demonstrate and apply strong project management skills, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and services.
- Support the implementation of cloud risk governance frameworks, contributing to the alignment with client organizational objectives and adherence to regulatory standards.
- Facilitate risk discussions on cloud transformation including migration from on-prem.
- Aid in the execution of cloud risk monitoring processes, including using tools to detect and address risks in cloud environments.
- Contribute to the design of cloud control mechanisms and, on engagements where independent, evaluate effectiveness in mitigating risks and maintaining compliance.
Benefits
Comprehensive compensation and benefits package including medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options.
Pay
The base salary range for this job in all geographic locations in the US is $97,900 to $179,500. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $117,500 to $203,900. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography.
Schedule
Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year.