EY GDS - Senior Manager - Technology Risk

Our IT Risk & Assurance team delivers world-class information technology advice as part of our broader risk and business improvement services. We provide services such as financial audit IT integration, third party reporting, IT Risk Advisory, information management & analysis and information security.

Business Development

- Develop and maintain contact with onshore global teams/clients

- Identify new business and aid in organization growth strategies

Client Service Delivery

- Provide high quality client service, working directly with our clients to understand management expectations, evaluate the current risk management environment, and design and implement solutions to identify, assess and respond to strategic risks and improve risk management capabilities across their enterprise.

- Managing predominantly off-shore engagements - work directly with EY global teams, end clients, and relevant Big 4 teams globally. Communication, written and verbal, with these teams would be expected. This communication would include emphasizing the capabilities within the GDS to provide high-quality deliverables to support EY Global Offices.

Engagement Management:

- Manage engagement risk and project economics including planning and budgeting, define deliverable content, ensure buy-in of proposed solutions from top management levels at the client.

- Understand the process workflow related to work requests from initiation through completion, understand how workflow is managed within the firm's workflow management tool, understand optimal and required manner in which to document results of work performed

- Perform IT related controls testing and evaluation for Information Systems

- Prepare test procedures based on control requirements and documentation of test results based on testing performed.

- Report control deficiencies identified, to management and business clients.

- Manage one or more client engagements and internal teams

- Involved in Process Documentation/Flowcharts and creating SOP

Essential Functions

- Extensive experience in:

- IT General Controls across platforms (Application, OS, DB) for following areas:

- Change Management

- User Access Management

- Backup and Recovery Management

- Batch Job Management

- Problem/Incident Management

- Business Process cycles (Purchase to Payable; Revenue & Receivables; Inventory; Payroll; Treasury)

- Hands-on experience in auditing SAP and Oracle App controls

- Generally accepted audit standards, and Corporate Internal Audit standards

- Experience with SOX, Internal Audit, statutory audits and SSAE 16/ SSAE 18

Skill sets Requirement

- BE/BTech/CA and/or MBA with Finance/IT

- 13+ years of hands-on experience in the multiple areas of IT audits, SOX / ICFR / IFC / SSAE, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits in a similar role

- Experience in delivering result oriented solutions to Senior Management and Boards of Directors.

- Knowledge of IT Security aspects towards key areas like Cloud Computing, Cyber Risks, Network Security, database management systems, SDLC, IT general controls (ITGC), COBIT, COSO 2013.

- Excellent written and oral communication skills e.g. presentation to top management and report writing

- Good experience in MS Visio, excel, Powerpoint required.

- Personal drive and positive work ethic to deliver results within tight deadlines and in demanding situations

- Flexibility to adapt to a variety of engagement types, working hours and work environments and locations

- Excellent written and verbal communication skills

- Experience in managing professional service engagement teams

- Certifications of CISA, CISSP, CISM preferred

- Experience in Big 4 is an added advantage