Senior Consultant (Technology Risk Advisory)

D&V Philippines

Philippines

Fresher

Save

Posted 7 days ago
Be among the first 10 applicants

Early Applicant

Job Description

About the job

Our Client Risk Advisory Services is seeking a Senior Consultant Technology Risk who thrives on

providing exceptional client service to a range of clients on IT advisory, audit and assurance

engagements across different industry specialization. Our Risk Advisory Services is committed to

delivering high-quality IT advisory, audit & assurance which support the public interest and underpin confidence in different industry ecosystems. Understanding and evaluating the information systems is a key part of the Client Risk Advisory Services approach.

Work Schedule: 7:00 AM 4:00 PM, Monday to Friday

Work Set-up: Hybrid

Specifics of Work Setup: One-month onsite training with client, Once a month onsite schedule after.

Job Responsibilities:

Scoping:

Is able to communicate knowledge of industry, regulatory, and other external factors relevant to the engagement prior to commencement of advisory and audit work.

Planning:

Understands and assessing the risk and complexity of clients IT environment and independently completes documents required in planning for a complex engagement
Co-ordinates and assists team members in the completion of planning documents for complex engagements with supervision
Provides assistance to other team members in their completion of walkthroughs (i.e., Tests of Design) on a complex engagement
Performs periodic status updates (both written and verbal) for internal client team members and for communication to client management

Obtain Evidence:

Completes the audit of all in-scope IT risks for an engagement and communicates issues identified to the engagement manager
Completes the walkthroughs and testing with limited supervision, including where required, communicates issues identified with client management
Reviews technology processes supporting the business and ascertaining the adequacy of IT controls, process efficiency and compliance with relevant framework and company policies
Examines controls, evaluating the design, implementation and operational effectiveness of: Business process controls, IT General Controls (ITGC), IT Application controls
Evaluates conclusions from testing and where appropriate, discuss with the engagement team to link control failures or deficiencies to business operation to adapt engagement and audit procedures to address the IT risks identified.
Identifies audit issues in assigned areas and communicates to the manager
Identifies areas where application of the audit approach can be improved.

Reporting and Completion:

Prepares initial draft(s) of potential control weaknesses to be communicated to the client team and, as appropriate, client management
Assists with engagement reporting for complex engagements with limited supervision for control deficiencies identified

Engagement Performance:

Focusing on establishing a professional, enjoyable and positive client and team member experience on each engagement
Providing constructive feedback, including in appraisals and directly to staff on a regular basis and in a timely manner
Prepares and monitor budget for complex engagements
Supervises junior team members in completion of designated tasks, including ensuring the communication of identified audit and engagement issues in a timely manner
Ongoing coaching and mentoring of junior staff in understanding Technology Risk engagements under your supervision
Escalates to manager and partner if discrepancies exist between actual and budget figures
Determines exposure to risk and develop recommendations / remediation strategies
Recommends practical and value-added solutions to management to improve operations, reduce costs and minimize risks
Has a sound grasp of technical issues and is able to identify when consulting is required, performing the appropriate research and documenting the issue to facilitate review

Technology Risk specific competencies:

Designs, performs and documents testing of IT General Controls (ITGC), Business controls and IT Automated controls on complex IT applications in accordance with international frameworks and guidelines
Work collaboratively with technical experts to develop and implement procedures for extracting and analysing large and diverse data sets from widely used applications
Extract and process data from a variety of systems and reports and undertake data validation to ensure data integrity and accuracy is retained when performing IT audit and assurance engagements
Liaising with internal stakeholders to identify needs based on the type of IT Audit and
Assurance to be performed to ensure relevant information is extracted and appropriately
presented

Job Qualifications:

CA / CPA qualified with membership of the relevant body
CISA certified with membership from ISACA
Sufficient knowledge of technical standards from AICPA (SOC 1, 2, 3), IAASB, and IESBA Code of Ethics
Experience in delivering Technology Risk services (including IT Audit & Assurance), for example:

o IT Third Party Assurance (GS007, ISAE 3402, ISAE 3000, SOC 1, 2 ,3)

o Financial IT audit

o System Implementation and Data Migration Assurance

o JSOX and SOX controls review

o Cyber Security Assessments (applying NIST 2.0)

o CPS 234 Assessment, including Tripartite Testing

o IT Internal Audit

o ISO 27001 review

o IT resilience

o IT and Business Process Review

o Payroll Controls Review

Experience with auditing ERP and Financial applications such as SAP S4 Hana, SAP Payroll, Microsoft D365, JDE, Oracle NetSuite etc
Strong verbal and written communication skills
Proven technical abilities & demonstrated experience in successfully managing deliverables and client relationships
Strong analytical & conceptual skills and the ability to think laterally
Ability to manage a variety of complex tasks and work independently
Excellent organizational skills
Advanced level of experience with Microsoft Excel, Word and PowerPoint

You'll also get to enjoy these perks on top of the essential employee benefits: