IT Risk Advisory Senior Consultant (51033)

The Senior Consultant, IT Audit directs and conducts information technology audits, operational risk-based audits, and consulting engagements to include assessing risks, developing audit plans and programs, performing audits, and evaluating/reporting on internal controls. Ultimately, this Senior addresses the appropriate risks, helping our clients achieve optimal IT controls and operational efficiency. Specific responsibilities entail: Leading various engagements, such as SOX 404 compliance (ITGC focus), SOC 2 examinations, outsourced internal audit projects (ITGC focus), and technology/cybersecurity risk assessments. Gaining an understanding of assigned clients’ objectives as well as their regulatory and risk management environment. Developing strong working relationships and communicating effectively with clients. Setting priorities, ensuring daily coordination among the project team, and monitoring progress against schedules, budgets, project/task deliverables and status reporting. Obtaining and analyzing data as a basis for reviewing the adequacy, effectiveness, and efficiency of systems and processes. Leading IT general controls (ITGC) audits. Maintaining the level of technical competency and professional care required for the completion of assignments in accordance with auditing standards and related control techniques. Evaluating processes and controls for compliance with relevant existing or proposed laws and regulations, established policies, plans and procedures. Determining how to audit “through the computer” during financial and operational audits. Assessing internal controls’ design adequacy to mitigate financial, operational and compliance risks and to test their operating effectiveness. Preparing audit reports and recommending improvements to IT controls and operational processes. Delivering oral and written presentations during and at the conclusion of audits. Presenting findings, risk analyses, and recommendations to executive leadership. Planning, reviewing and providing direction for the work of Staff Consultants. Staying abreast of new technology, emerging risk areas and related control techniques. Participating in pre-and post-implementation control reviews of major system development proposals. Appraising the adequacy of corrective actions taken to remediate deficiencies identified during audits. Providing exceptional service to clients remotely and in-person, always serving as a positive brand ambassador.