GDS Advisory_Technology Risk Senior Consultant
Ernst & Young Global Limited
Taguig City, PH
5d ago

Technology RiskSenior Consultant

Technology Riskcovers all risk services where EY is providing independent assurance and the preparation towards assurance to our clients where the assurance can be used by our clients to build confidence and trust with their customers, the general market / public, key stakeholders or when regulatory (by law or oversight) or contractually required.

Engagements focus on the assessment and / or evaluation of IT systems and the mitigation of IT-related business risks. Engagements may be either assurance (attestation) and / or risk advisory in nature, and vary considerably in size and complexity.

The Opportunity

All of our services whether assurance or advisory in nature are designed for the dualpurpose of strengthening internal controls and, in so doing, helping to improve IT andbusiness performance.

  • In addition to assurance-related engagements such as financialattestation and SSAE 16 engagements, our IT risk advisory services focus on ITgovernance and effectiveness;
  • ITprogram management and assurance; security andcontrols of ERP implementations; and business intelligence and information analysis.

    KEY RESPONSIBILITIES : Business Development

    Business Development

  • Develop and maintainclient relationships to manage expectations of service, including work products, timing, and deliverables
  • Demonstrate a thorough understanding of complex information systems and apply to client’s IT environment
  • Client Service Delivery

  • Provide high quality client service, working directly with onshore teams to understand and evaluate client’s IT environment
  • Working predominantlyon off-shore engagements. Communication,written and verbal, with the local EY teams would be expected
  • Engagement Management :

  • Understandtheprocessworkflowrelatedtoworkrequestsfrominitiation throughcompletion and how workflow is managed within the firm's online tool for audit monitoring and project management
  • Perform IT related controls testing and evaluation for Information Systems
  • Preparetest procedures based oncontrol requirements and documentation of test results based on testing performed
  • Report control deficiencies identified to management and business clients
  • Review Consultant’s work papers and provide guidance in performing test procedures
  • Lead kick-off and status update calls with onshore team
  • Provide update to Engagement Manageon the work status and result of audit review
  • Practice Development :

  • Adherence toEYauditmethodologies (related to risk assessment and prioritization, risk responses, and risk management capabilityassessments), supporting tools and other materials.
  • Skills and attributes for success :

    Extensivein (at least4-6yearexperience) :

    oIT General Controls across platforms (Application, Operating System, Database) for following areas :

    Change Management

    Backup and Recovery Management

    Batch Job Management

    Problem / Incident Management

    oIT Application Controls : Business Process cycles (Purchase to Payable; Revenue & Receivables; Inventory; Payroll; Treasury)

    oGenerallyaccepted audit standards, and Corporate Internal Audit standards

    oExperience with SOX, Internal Audit and SSAE 16 (At least 1 of 3)

    Working knowledge of :

    oSystem architecture, business processes and system risks

    oApplicationsystems(SAP,Oracle,JDEdwards,Hyperion,MicrosoftNav,Salesforce, PeopleSoft)

    oOperating system and database platforms (Windows2008 / 2012 / 2016, Unix, OS400, Mainframe, SQL, Oracle, DB2, Red Hat Enterprise Linux 6 / 7,etc.)

    oApplicationand / orDatabaseAdministration(SQL,Oracle,Salesforce,Ultipro, Workday, etc)

    oKnowledgeable in Agile softwaremethodologyand Cloud Technology

    oAble to build Macros, VBA

    Good understanding ofindustrystandardsandframeworkssuch as ISO / IEC27001,COBIT, ITIL, COSO etc.

    Excellentwritten, oralcommunication, and presentation skills

    Experiencein supervising staff or engagement team

  • Withatleastoneofthefollowingcertifications CISA,CISM,CRISC,CIA;non-certifiedhires are required to becomecertified within 1 year from the date of hire.
  • To qualify, you must have :

  • A bachelor's degreeaccounting,computer science, information systems, engineering, or a related discipline
  • Previous roles IT Audit Supervisor, IT Compliance Lead, IT InternalAudit Lead, Information Risk Senior Consultant, Information Security Supervisorand other related roles
  • Must be amenable to work in McKinley Hill, Taguig City or Ortigas
  • Successful candidate must work in excess of standard hours when necessary.
  • A validpassport is required.
  • Technology RiskSenior Consultant

    Technology Riskcovers all risk services where EY is providing independent assurance and the preparation towards assurance to our clients where the assurance can be used by our clients to build confidence and trust with their customers, the general market / public, key stakeholders or when regulatory (by law or oversight) or contractually required.

    Engagements focus on the assessment and / or evaluation of IT systems and the mitigation of IT-related business risks. Engagements may be either assurance (attestation) and / or risk advisory in nature, and vary considerably in size and complexity.

    The Opportunity

    All of our services whether assurance or advisory in nature are designed for the dualpurpose of strengthening internal controls and, in so doing, helping to improve IT andbusiness performance.

  • In addition to assurance-related engagements such as financialattestation and SSAE 16 engagements, our IT risk advisory services focus on ITgovernance and effectiveness;
  • ITprogram management and assurance; security andcontrols of ERP implementations; and business intelligence and information analysis.

    KEY RESPONSIBILITIES : Business Development

    Business Development

  • Develop and maintainclient relationships to manage expectations of service, including work products, timing, and deliverables
  • Demonstrate a thorough understanding of complex information systems and apply to client’s IT environment
  • Client Service Delivery

  • Provide high quality client service, working directly with onshore teams to understand and evaluate client’s IT environment
  • Working predominantlyon off-shore engagements. Communication,written and verbal, with the local EY teams would be expected
  • Engagement Management :

  • Understandtheprocessworkflowrelatedtoworkrequestsfrominitiation throughcompletion and how workflow is managed within the firm's online tool for audit monitoring and project management
  • Perform IT related controls testing and evaluation for Information Systems
  • Preparetest procedures based oncontrol requirements and documentation of test results based on testing performed
  • Report control deficiencies identified to management and business clients
  • Review Consultant’s work papers and provide guidance in performing test procedures
  • Lead kick-off and status update calls with onshore team
  • Provide update to Engagement Manageon the work status and result of audit review
  • Practice Development :

  • Adherence toEYauditmethodologies (related to risk assessment and prioritization, risk responses, and risk management capabilityassessments), supporting tools and other materials.
  • Skills and attributes for success :

    Extensivein (at least4-6yearexperience) :

    oIT General Controls across platforms (Application, Operating System, Database) for following areas :

    Change Management

    Backup and Recovery Management

    Batch Job Management

    Problem / Incident Management

    oIT Application Controls : Business Process cycles (Purchase to Payable; Revenue & Receivables; Inventory; Payroll; Treasury)

    oGenerallyaccepted audit standards, and Corporate Internal Audit standards

    oExperience with SOX, Internal Audit and SSAE 16 (At least 1 of 3)

    Working knowledge of :

    oSystem architecture, business processes and system risks

    oApplicationsystems(SAP,Oracle,JDEdwards,Hyperion,MicrosoftNav,Salesforce, PeopleSoft)

    oOperating system and database platforms (Windows2008 / 2012 / 2016, Unix, OS400, Mainframe, SQL, Oracle, DB2, Red Hat Enterprise Linux 6 / 7,etc.)

    oApplicationand / orDatabaseAdministration(SQL,Oracle,Salesforce,Ultipro, Workday, etc)

    oKnowledgeable in Agile softwaremethodologyand Cloud Technology

    oAble to build Macros, VBA

    Good understanding ofindustrystandardsandframeworkssuch as ISO / IEC27001,COBIT, ITIL, COSO etc.

    Excellentwritten, oralcommunication, and presentation skills

    Experiencein supervising staff or engagement team

  • Withatleastoneofthefollowingcertifications CISA,CISM,CRISC,CIA;non-certifiedhires are required to becomecertified within 1 year from the date of hire.
  • To qualify, you must have :

  • A bachelor's degreeaccounting,computer science, information systems, engineering, or a related discipline
  • Previous roles IT Audit Supervisor, IT Compliance Lead, IT InternalAudit Lead, Information Risk Senior Consultant, Information Security Supervisorand other related roles
  • Must be amenable to work in McKinley Hill, Taguig City or Ortigas
  • Successful candidate must work in excess of standard hours when necessary.
  • A validpassport is required.
  • Apply
    Add to favorites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form