Associate – IT Risk Advisory

This is a fully remote position, open to applicants in India.

📋 Description

• Develop an understanding of the designated clients’ goals as well as their regulatory and risk management frameworks.

• Support projects in the domains of IT General Control Assessments, Sarbanes-Oxley Compliance, and potentially Cybersecurity Engagements.

• Leverage existing knowledge of the client's industry and IT landscape to identify technological advancements and assess their impacts on the client’s operations.

• Evaluate the design adequacy of internal controls to mitigate financial, operational, and compliance risks, as well as test their operational effectiveness.

• Collect and analyze data to assess the adequacy, effectiveness, and efficiency of systems and processes.

• Demonstrate expertise in creating internal control process flows and risk/control matrices.

• Uphold the technical proficiency and professional diligence necessary for completing assignments in alignment with COSO, COBIT, and ISO auditing standards and related control methodologies.

• Prioritize tasks, ensuring daily coordination with the project team, and monitor progress against timelines, budgets, project/task deliverables, and status updates.

• Plan, review, and guide the work of Staff and Senior Consultants.

• Engage extensively with clients to manage expectations and report on the status of ongoing projects.

• Present both orally and in writing during and at the conclusion of projects, recommending improvements or addressing any operational or financial deficiencies to executive leadership.

• Keep informed of emerging risk areas, IT trends, and related control methodologies.

⛳️ Requirements

• Bachelor's and/or Master’s degree in Accounting, Finance, Management Information Systems, or a related field.

• Relevant certifications are preferred, such as CISA, CISSP, CISM, CGEIT, or CIPP; CPA or CIA is also appreciated but not mandatory.

• A minimum of 1 year of experience as an IT auditor or IT risk advisor within a public accounting firm, including hands-on experience in conducting internal or external IT audits.

• Proven knowledge of IT risk management, general and application controls, cybersecurity principles, and regulatory frameworks like SOX, NIST, or ISO.

🏝️ Benefits

• Comprehensive benefits package that includes medical, dental, and vision insurance.

• 401(k) plan with company matching contributions.

• Paid Time Off (PTO).