Risk Consulting Digital Risk Senior IT Controls

JD Risk Consulting - Digital Risk Senior - IT Audits

Key responsibilities

Your key responsibilities will include:

• Conduct comprehensive risk assessments to identify and prioritize potential IT risks against technology strategies business applications and platforms and digital transformations.
• Develop and execute testing strategies to evaluate the effectiveness of existing controls and recommend areas for enhancement to our clients.
• Understanding our clients overall technology strategy to effectively manage risk while transforming their business.
• Collaborating with members of the engagement team to plan the engagement and develop project plans assign responsibilities for keytasksand prepare other planning documents.
• Taking full responsibility for tasks including consistent self-review of work to identify and improve an approach for producing high quality deliverables
• Foster relationships with client personnel to analyse evaluate and enhance information systems to develop and improve risk management at procedural and technology levels.
• Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the clients business.
• Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate new knowledge.
• Consistently deliver quality client service. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes.

Skills and attributes for success

You will leverage your proven track record of IT Audit experience and strong interpersonal skills to effectively deliver quality results in the assessment design or implementation of controls security and IT risk solutions.

To qualify for the role you must have

• Chartered accountant (CA) or Bachelors degree in Management/Information Systems/ Technology/ Computer Science/ Business Analytics/Cybersecurity or a related discipline
• Passion for technology and an ardent desire to work in risk management.
• Minimum 3 years of a Big 4 or professional services firm or professional industry experience in risks & controls with experience in IT Risk Management IT Regulatory Compliance IT Audit and IT Transformation Risk areas such as:
  • Knowledge of audit methodology
  • Identification of strategic IT & business risks and Identify control gaps weaknesses and areas of improvement.
  • Design of IT Risk Controls frameworks and Risk and Control Matrix
  • Design and Implementation of IT general controls IT application controls IPEs / Key reports Business Process controls review of SOC 1 or SOC 2 reports etc.
  • Strong understanding of IT Application controls including design implementation and assessment
  • IT Risk and Controls assessment with exposure of any of the technologies such as SAP Oracle and OS (Unix Windows) and DB (Oracle DB MS SQL) will be an added advantage
  • Understanding of regulatory requirements such as SOX GDPR ISO PCI DSS etc.
• Strong exposure working in client facing roles collaborate with cross functional teams including internal audits IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.
• Excellent communication documentation and report writing skills.
• Good to have relevant industry certifications such as CISA CISM CISSP CRISC CCSK ISO 27001 and others (as relevant)
• Proactiveness Eagerness to learn embrace diverse perspectives who value differences and team inclusively to build safety and trust.
• Demonstrate project management teaming organizational analytical and problem-solving skills.
• Effective organization and time management skills with the ability to work under pressure and adhere to project deadlines.
• Integrity within a professional environment