The IT Risk Consultant will perform IT controls testing, draft engagement scopes and project plans, analyze IT information, and assist in managing client relationships and engagement economics.
CFGI consultants work as part of a team with other CFGI professionals, its clients and their external auditors (or other professional service firms) on a variety of facets of the engagements, such as IT Internal Audit, SOX implementation and testing, attestation/certification readiness work, business process improvement projects, compliance and other assessments.
Duties include:
· Performing IT controls testing, creating process narratives, flow charts or undertaking procedures for other types of assessments
· Drafting engagement scope, project plans, risk assessments, testing approach and specific procedures
· Analysing IT information
· Interviewing client contacts
· Identifying areas for improvement and value-add
· Developing relationships with client contacts
· Assisting with managing engagement economics
Furthermore, all team members, from the Consultant level and up, build their skills by assisting the Firm's leadership with internal responsibilities for training, internal projects, and the continual improvement of the Risk Advisory team.
Ideal candidates will possess the following:
· Strong progress towards obtaining official certification for CISA, CIA or other standard auditing certification will be considered in lieu of university degree
· Three to Five years of experience in public accounting and/or industry performing IT audit, systems implementations, or Information Security
· Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams
· Strong technical skills and a working knowledge of SOX IT General Controls, COSO, SOC 1, and SOC 2
· Awareness of ISO 27001, NIST standards, HIPAA, FAIR, and other relevant standards
· Effective analytical and critical thinking abilities
· Entrepreneurial nature, self-motivated, ethical, and dependable
· Strong project management skills
· High energy with a commitment to quality client service
· Very strong performance within a team dynamic
Top Skills
Hipaa
Iso 27001
Nist
Sox
Similar Jobs
Healthtech
The IT Risk & Control Assurance Manager oversees risk management in IT and Information Security, ensuring compliance and control in regulated financial services.
Top Skills:
Cis-20Cloud ServicesIso/Iec 27001Iso/Iec 27002NistPcidss
Healthtech
Lead information security assurance across UK Insurance, manage cyber risk initiatives and provide expert guidance to mitigate risks and ensure compliance.
Top Skills:
CisCloudCobitIso 27001ItilNistOwaspPci DssSecurity Tools
Fintech • Financial Services
The Senior Red Team Operator will enhance security by conducting adversarial threat emulation, collaborating on risk management, and educating staff on cybersecurity practices.
Top Skills:
Coding LanguagesCommand And Control FrameworksEdrLinuxWindows
What you need to know about the Edinburgh Tech Scene
From traditional pubs and centuries-old universities to sleek shopping malls and glass-paneled office buildings, Edinburgh's architecture reflects its unique blend of history and modernity. But the fusion of past and future isn't just visible in its buildings; it's also shaping the city's economy. Named the United Kingdom's leading technology ecosystem outside of London, Edinburgh plays host to major global companies like Apple and Adobe, as well as a growing number of innovative startups in fields like cybersecurity, finance and healthcare.
