Senior Associate – IT Risk Advisory

This is a fully remote position, open to applicants in India.

📋 Description

• Develop an understanding of the designated clients’ goals, as well as their regulatory and risk management landscape.

• Support projects related to IT General Control Assessments, Sarbanes-Oxley Compliance, and potentially Cybersecurity Engagements.

• Leverage existing knowledge of the client's sector and IT landscape to identify technological advancements and assess their implications for the client’s operations.

• Evaluate the design effectiveness of internal controls to mitigate financial, operational, and compliance risks and test their operational efficiency.

• Collect and analyze data to assess the adequacy, effectiveness, and efficiency of systems and processes.

• Demonstrate expertise in developing internal controls process flows and risk/control matrices.

• Maintain the necessary technical proficiency and professional diligence required for completing assignments in alignment with COSO, COBIT, and ISO auditing standards and associated control methodologies.

• Establish priorities, ensure daily coordination among the project team, and track progress against schedules, budgets, project/task deliverables, and status updates.

• Organize, review, and guide the work of Staff and Senior Consultants.

• Engage in extensive communication with clients to manage expectations and report on the progress of ongoing projects.

• Present both orally and in writing during and at the end of projects, advising on enhancements or any operational/financial shortcomings to executive leadership.

• Remain informed about emerging risk areas, IT trends, and relevant control practices.

⛳️ Requirements

• Bachelor’s and/or Master’s degree in Accounting, Finance, Management Information Systems, or a related field.

• Relevant certification is preferred, such as CISA, CISSP, CISM, CGEIT, or CIPP; CPA or CIA is also valued but not mandatory.

• Over 3 years of experience as an IT auditor or IT risk advisor within a public accounting firm, including experience in performing internal or external IT audits.

• Proven knowledge of IT risk management, general and application controls, cybersecurity principles, and regulatory frameworks like SOX, NIST, or ISO.

🏝️ Benefits

• Comprehensive benefits package including medical, dental, and vision insurance.

• 401(k) plan with company matching.

• Paid time off (PTO).