Senior IT Auditor -

Job Title: Audit Deputy Manager

About the Role

What It Means to Work for Us

• Growth Opportunities: Be part of one of the largest and fastestgrowing accounting and advisory firms in the industry.
• Flexibility: Enjoy the flexibility to manage your days supporting our commitment to work/life balance.
• AwardWinning Culture: Join a culture that has received multiple top Places to Work awards.
• We believe great work is accomplished when diverse cultures ideas and experiences come together to create new solutions.
• Embracing our differences unites us as a team and strengthens our foundation.
• Authenticity inspires us both as professionals and as a Firm to do our best work.
• Participate in numerous Employee Resource Groups (ERGs) to support our Diversity Equity & Inclusion (DE&I) efforts.

Responsibilities

• IT Audit Reviews: Perform IT audit reviews in areas of IT General Controls (ITGC) SOX SOC1 and SOC2 audits.
• Risk & Control Assessment: Conduct risk assessments identify and evaluate controls and document findings in a Risk & Control Matrix.
• Control Testing: Test IT security application controls interface controls change management access control business continuity and disaster recovery.
• Quality Review: Conduct quality reviews of the work performed by the team on control testing.
• Client Control Catalogues: Review and develop clients custom control catalogues to enhance efficiencies in remote execution of test procedures.
• SOC1 Testing: Review the teams work on SOC1 testing and documentation.
• Identify Control Weaknesses: Identify IT control weaknesses through risk assessments and document the findings.
• Relationship Building: Develop strong working relationships with engagement managers and onshore team members.
• Vulnerability Assessment: Perform vulnerability assessments and penetration testing using industrystandard tools as per clients requirements.

Basic Qualifications

• Education: Chartered Accountant
• Experience: Minimum of 3 years of postqualification experience in IT audit ITGC SOX SOC1 SOC2 and application control review.

Preferred/Desired Qualifications

• Certifications: At least one of the following certifications CISA CISM CISSP ISO27001 LA ISO 22301 LA CBCP or any other relevant certification.
• Additional Experience: Experience with postimplementation review information security COBIT ITIL and strategy transformation is a plus.

cism,sox,itgc,documentation,soc-1,,cisa,itl,cissp,cobit,access control,it audit,iso27001 la,vulnerability assessment,itgc review,interface controls,disaster recovery,risk assessment,business continuity,soc1 testing,change management,information security,quality review,application control review,iso 22301 la/cbcp,it security application controls,risk & control matrix,soc-1 & soc-2 audits