IT Manager, Risk Advisory Services

Job Summary

Manager, Data Risk & Security (DRS) will supervise a team of RAS professionals in reviewing, documenting, evaluating and testing general controls across technology environments. The role will manage IT internal audit, IT SOX and consulting engagements, provide recommendations on client risks, and suggest improvements to IT internal controls and procedures of assigned clients.

• Documents and tests application and automated controls on a wide range of software application packages
• Prepares audit reports and recommendations associated with audit work performed
• Identifies opportunities to utilize automation and AI and manages the implementation of those techniques, as appropriate
• Participates in the review of IT internal controls based on Sarbanes‑Oxley Act requirements
• Communicates to client areas to strengthen controls, mitigate risks and/or increase efficiency
• Identifies key technology and data risks and assesses their impact and likeliness of occurrence
• Establishes engagement budget, makes pricing scope changes and prepares billings
• Utilizes research tools, databases and trade publications to develop understanding of client’s industry
• Manages SAP controls
• Prepares formal and informal presentations for client meetings
• Participates in marketing and business activities within practice
• Completes research and draft proposals and reports
• Recognizes technical concerns or issues and communicates those concerns with internal and client management
• Plans and executes the audit work on assigned engagements
• Reviews the work product of staff
• Ensures technology is appropriately integrated into the audit process
• Acts as primary client contact for all questions and issues
• Communicates suggested improvements to processes, controls and risk management capabilities to client management and audit committees
• Analyzes the client’s processes, risk and controls
• Develops and maintains relationships with client personnel and management
• Documents controls, tests performed and results
• Administers project plans
• Other duties as required

• Supervises the day‑to‑day workload of DRS Senior Associates and Associates on assigned engagements and reviews work product
• Ensures DRS Senior Associates and Associates are trained on all relevant software
• Evaluates the performance of DRS Senior Associates and Associates and assists in the development of goals and objectives to enhance professional development
• Delivers periodic performance feedback and completes performance evaluations for DRS Senior Associates and Associates
• Acts as mentor to DRS Senior Associates and Associates, as appropriate
• May act as a Career Advisor to Associates or Senior Associates

• Bachelor’s degree in Accounting, Finance, Management Information Systems, or Business Intelligence (required)
• MBA or other relevant advanced degree (preferred)

• Six (6) or more years of experience within a public accounting firm or Fortune 1000 company performing IT Sarbanes‑Oxley, IT internal audit, consulting or risk services as a Technology Subject Matter Expert (required)
• Two (2) or more years of supervisory experience (required)
• Prior experience performing systems audits and audits of application controls (required)
• Prior experience with IT internal controls including flowcharts, documentation and testing of controls (required)
• Prior experience conducting IT audit planning, developing audit programs, performing testing and preparing work papers (required)
• Prior experience performing audits within a public accounting environment (preferred)

• Certificate of Internal Auditor (CIA), Certified Information System Auditor (CISA), Certified Information Systems Security Professional (CISSP), or equivalent certifications (required)

• Experience in the use of various assurance applications and research tools as is appropriate for this level (required)
• Exposure to industry software such as People Soft, SAP, Oracle or other ERP application software packages (highly preferred)
• Experience with R and/or Python programming language, and other AI or automation tools (preferred)