Posted on :
1 Oct, 2014
1 Oct, 2014
Job Title 1: Risk Senior
Job purpose
As a Risk Senior, you’ll make a significant technical contribution to Risk client engagements and internal projects. Within your role, you’ll actively establish, maintain and strengthen internal and external relationships. You’ll also identify and escalate potential business opportunities for Ernst & Young within existing engagements.
With a clear focus on anticipating and identifying risks, you’ll escalate issues as appropriate. Working closely with colleagues, you’ll confirm whether the work plan is properly executed, documented and concluded in compliance with Ernst & Young’s guidelines. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop.
Your client responsibilities
Your people responsibilities
Technical skills requirements
Additional skills requirements
Why should I work for Ernst & Young in Risk?
Risk management protects business performance and contributes to sustainability in results. It’s about achieving a clear understanding of risks and developing plans to manage them. As part of our team of risk professionals, you’ll work with multinational businesses and public sector organizations to develop an integrated, holistic approach to risk and control. You’ll help them benefit from their investments in internal controls and have greater confidence they can respond to whatever the future may hold. You’ll be engaged in delivering some of the most significant and class-leading internal audit and risk engagements globally. As part of our market-leading global network of risk professionals, you’ll gain the valuable experience you need to become a successful risk advisor. You’ll also team with our performance improvement professionals in multidisciplinary engagements with major global clients, helping them transform and sustain their business performance. At Ernst & Young, we recognize that it’s the perspectives, skills and enthusiasm you bring to our clients that makes the difference.
Req ID: GHA0001Y
Submit your CV and Application online : Click Here
Job Title 2: IT Risk and Assurance
Job purpose
As IT Risk and Assurance Senior, you’ll contribute technically to IT Risk and Assurance client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for Ernst & Young within existing engagements, and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team.
In line with Ernst & Young’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop.
Client responsibilities
People responsibilities
Qualifications
Technical skills requirements
You’ll have knowledge and experience of a number of the following areas, and be developing deep experience and technical competence in at least one:
Control frameworks such as COSO Enterprise risk services with a specific focus on IT, and related industry
standards IT risk management framework Common IT governance and control industry frameworks, including CObIT, RiskIT, ValIT, IT Governance Institute and ISACA good practices IT industry frameworks such as ITIL and CMM
Robust understanding of program and project management practices. Familiarity with typical IT systems development life cycle. Experience in developing technical skills specific to a solution, e.g., SAP, Oracle, CRM Proven business process/analysis skills
IT audit in the context of a financial audit, and related regulations, auditing standards and guidelines Control
frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Internal audit services with a specific focus on IT, and related industry standards Common IT governance, control and assurance industry frameworks, including CObIT, RiskIT, ValIT, IT Governance Institute and ISACA good practices. IT industry frameworks such as ITIL and CMM, Third party reporting standards (particularly SAS 70), other reporting and industry specific standards and, if applicable, trust based standards such as SysTrust and WebTrust
Technically enabled IT /business transformation, program and project delivery, design, architecture and solution
design, information management, implementation, operations, and management of IT infrastructure Information systems security assessment, design, architecture, implementation management and reporting Strong technical or security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems
Familiarity with IT analysis, delivery and operations methods, including SDLC and CMM
Experience with programming languages such as Java, C, C++, C#, asp, and .NET Familiarity with security and risk standards such as ISO 2701-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review and internal/external penetration testing
An understanding of web-based application vulnerabilities, and experience in application security review and testing
Experience of manual attack and penetration testing above and beyond the running of automated tools Experience in developing custom scripts or programs (used for port scanning and vulnerability identification)
Application controls and security experiences involving ERPs:
security modelling sensitive access and SoD testing controls testing
Process systems and integrity, including risks and controls within business processes (manual, automated, security)
Change management project management and program management office (PMO) experience involving ERPs Project
assurance/advisory services experience involving ERPs:
system selections targeted assessments pre- and post-implementation reviews
Basic programming compliant with ACL, DB and Microsoft Office skills/experience, e.g., Excel and Access
Data/information management and manipulation Information architecture and integration design Information analysis and business intelligence tools ETL tool usage, design and deployment Database (relational and multidimensional) design, deployment and scripting Data governance and data quality design, deployment and tools
Additional requirements
Why should I work for Ernst & Young in Information Technology Risk and Assurance?
Information technology is one of the key enablers for modern organizations. As one of our information technology risk and assurance professionals, you’ll work with clients to improve the competitive advantage of their IT operations by enhancing efficiency and effectiveness. You’ll help them create and implement processes to identify risks associated with running their systems and find ways to manage those risks. You can expect to work on some of the biggest external and internal audit engagements and we’ll give you the opportunities and support you need to succeed professionally and personally.
Req ID: ACC0000F
Submit your CV and Application online : Click Here