As a Risk Advisory Experienced Associate, this position is responsible for working with our clients and leading teams of consulting practitioners in activities such as the following:

• Analyzing and evaluating information technology (IT) security risks and controls


• Performing IT audits (e.g. IT General Controls reviews)


• Providing IT risk reduction recommendations


• Implementing solutions to control weaknesses


• Developing policies and procedures as it relates to information systems controls


• Performing SSAE16 audits


• Developing written reports of IT and business risks, control descriptions, findings, and recommendations


• Identifying opportunities, and helping to sell consulting services to both current and prospective clients

Basic Qualifications:

• Bachelor's degree in Accounting, Business, Information Systems or Computer Science


• 1+ years related professional experience, preferably Big 4 or equivalent


• Significant experience in applying relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) SAS 70/SSAE16 engagements; and/or (d) ERP security and control reviews (Oracle, SAP, PeopleSoft)


• Strong written and verbal communication skills


• Information systems and/or IT audit expertise


• Ability to work with limited supervision


• Ability to travel up to 40% or more, depending on client locations

Preferred Qualifications:

• Knowledgeable regarding Sarbanes-Oxley Act, FFIEC, GLBA, AT501 and similar requirements


• Experienced in ERP/systems implementations, either through internal audit or as part of the implementation team


• CPA, CIA, CISA or other technical certifications


• Possess a high degree of integrity and confidentiality, as well as ability to adhere to both company policies and best practices


• Possess a thorough understanding of corporate IT related trends, such as cloud computing, Agile project management, ITIL, DevOps, data loss & recovery, data analytics, GRC, business continuity, disaster recovery, and the current ERP offerings


• Possess a strong internal drive and motivation for continuous improvement


• Flexible for periodically working long hour days to meet deadlines when necessary