Requisition Id : 1523381

As a global leader in assurance, tax, transaction and advisory services, we hire and develop the most passionate people in their field to help build a better working world. This starts with a culture that believes in giving you the training, opportunities and creative freedom. At EY, we don't just focus on who you are now, but who you can become. We believe that it’s your career and ‘It’s yours to build’ which means potential here is limitless and we'll provide you with motivating and fulfilling experiences throughout your career to help you on the path to becoming your best professional self.

The opportunity : Senior Consultant-NAT-Assurance-ASU - TR - Technology Risk - Mumbai

ASU - TR - Technology Risk :

Assurance’s purpose is to inspire confidence and trust to enable a complex world to work. We do so by protecting and serving the public interest, promoting transparency, supporting investor confidence and economic growth and fostering talent to provide future business leaders. We help clients by:

1) Ensuring their accounts comply with the requisite audit standards

2) Providing a robust and clear perspective to audit committees and

3) Providing critical information for stakeholders.

Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS & US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting & implementation support etc.

Your key responsibilities

Technical Excellence

Job Summary

As an Technology Risk professional, you will be instrumental in conducting detailed IT audits to ensure compliance with controls and regulatory mandates, including ICFR. Your responsibilities encompass identifying ITGCs and ITACs, executing SOX compliance tasks, preparing SOCR, and performing IT process reviews. You will oversee Change Management, Access Management, Application Controls and other relevant areas, while collaborating with teams to pinpoint and mitigate control gaps. Staying current with industry developments and effectively communicating audit outcomes to stakeholders are key aspects of the role. The ideal candidate will have a solid background in IT controls and auditing, with certifications like CISA or CISSP preferred, and the capacity to thrive in a dynamic, multi-priority environment.

Your key responsibilities

Conduct comprehensive IT audits to address and ensure compliance with established controls and regulatory requirements, including Internal Controls over Financial Reporting (ICFR)
Identify and review IT General Controls (ITGCs) to safeguard organizational assets and IT Application Controls (ITACs) to ensure accuracy of financial reporting
Execute SOX compliance activities, including risk assessments, controls testing, and remediation efforts
Prepare and assess Service Organization Control Reports (SOCR) to validate the effectiveness of IT controls objectives
Conduct IT process reviews through stakeholder interviews, data validations, and document analysis
Apply IT-related and internal control knowledge to deliver high quality engagement
Review Change Management processes, ensuring that changes are thoroughly reviewed, tested and approved
Review Access Management procedures to ensure proper access levels and permissions.
Evaluate and address Segregation of Duties (SOD) concerns to prevent unauthorized access and potential conflicts
Collaborate with cross-functional teams to identify control gaps and develop effective remediation plans
Stay abreast of industry trends, regulatory changes, and emerging technologies related to IT controls and compliance
Prepare and communicate audit findings, recommendations, and status updates to key stakeholders and management.

Skills and attributes

To qualify for the role you must have
Qualification

Proven experience of IT controls, ITGCs, ITACs, SOX 404 controls testing and IT auditing
Strong knowledge of Change Management, Access Management, SOD, business process IT controls and ICFR principles
Familiarity with Service Organization Control Reports (SOCR) and related frameworks.
Familiarity with ERPs such as SAP, Oracle, Dynamics 365 etc.
Excellent analytical and problem-solving skills with attention to detail.
Effective communication and interpersonal skills for collaborating with internal teams and external auditors.
Relevant professional certifications such as CISA, CISSP, or equivalent preferred
Ability to adapt to a fast-paced environment and manage multiple priorities

Experience

5 - 7 years of relevant experience

What we look for

People with the ability to work in a collaborative manner to provide services across multiple client departments while following the commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. We look for people who are agile, curious, mindful and able to sustain postivie energy, while being adaptable and creative in their approach.

What we offer

With more than 200,000 clients, 300,000 people globally and 33,000 people in India, EY has become the strongest brand and the most attractive employer in our field, with market-leading growth over compete. Our people work side-by-side with market-leading entrepreneurs, game- changers, disruptors and visionaries. As an organisation, we are investing more time, technology and money, than ever before in skills and learning for our people. At EY, you will have a personalized Career Journey and also the chance to tap into the resources of our career frameworks to better know about your roles, skills and opportunities.

EY is equally committed to being an inclusive employer and we strive to achieve the right balance for our people - enabling us to deliver excellent client service whilst allowing our people to build their career as well as focus on their wellbeing.

If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

Join us in building a better working world. Apply now.