Senior Technology Assurance Associate

You will be responsible for assisting engagements on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. Engagements are assurance (attestation) in nature and vary considerably in size and complexity. Assurance-related engagements may include, but not limited to, the following: • Financial audit IT integration (FAIT) o Internal Controls testing, such as IT application controls (ITACs), IT Dependent Manual (ITDM) controls and manual controls. ▪ IT General Controls (ITGCs) (e.g., Manage Change, Manage Security, Manage Access, Manage IT Operations) ▪ Business Process Controls (e.g., Order to Cash, Purchase to Pay, Make to Stock, Acquire to Dispose, Hire to Retire, Record to Report) o Information Produced by the Entity (IPEs) testing. o Data Analysis o Cyber security o System implementation (e.g., Waterfall approach, Agile, etc.) • Service organizations reporting (e.g., ISAE 3402, SSAE 18 (SOC1, SOC2 and SOC3), ISAE 3000) • Expanded assurance engagements focus on: o Pre and Post Implementation Review o Regulatory Readiness and Framework Assessment o Cybersecurity Program Assessment As a Senior Associate, you are expected to supervise the day-to-day project activities, to provide coaching to your staff, provide support and/or updates to your Manager and assist in administrative activities (e.g., talent and quality initiatives, and operations) which aim to reinforce the practice.

JOB RESPONSIBILITIES

◼ Duties and Responsibilities:

• Execute projects with varying levels of complexity based on the defined approach and methodology with guidance from Managers • Gathering relevant information to understand the client's business, processes, risks and controls (e.g., organizational structure, management, protocols)

• Provide guidance and support to Associates in understanding the client's business, processes, risks and controls through walkthrough discussions with the client counterparts and performing site visits when needed • Perform quality review of audit work done by Associates and provide timely and constructive feedback (e.g., readability, informational and typographical accuracy, completeness, conciseness, consistency, etc.) • Evaluate control design and/or operating effectiveness using a risk-based approach • Evaluate third-party service organization and complementary user entity controls, as applicable • Discuss audit issues with client management and prepare deficiency listing, including obtaining remediation action plans and due dates • Monitor and report status of deliverables against planned timeline, including identifying and providing recommendations to mitigate and/or address issues and dependencies • Contribute ideas with the team to improve ways of working and complete project outputs • Attend and participate in internal trainings, and complete the required and assigned learnings • Conduct trainings and/or seminars and be part of internal and external Firm projects • Participate and contribute to any internal capacity and capability building activities for the benefit of the team – examples include people engagement, onboarding and quality and service delivery initiatives • Develop positive relationship with peers, supervisors, and mentors/counselors