Job Summary:

Within MBAF’s IT Risk Advisory and Assurance practice, the Senior participates in and supervises multiple client engagement teams and other related activities. Engagements focus on the assessment and/or evaluation of Information Technology (IT) systems and the mitigation of IT-related business risks. Engagements may be either risk advisory and / or assurance (attestation) nature, and vary in size and complexity. Our IT Risk Advisory and Assurance services, whether advisory or assurance in nature, are designed for the dual purpose of strengthening internal controls and, in so doing, helping to improve IT and business performance. In addition to assurance-related engagements such as financial attestation engagements, our IT risk advisory services focus on IT governance; IT program management and assurance; and security and controls of Enterprise Resource Planning (ERP) implementations.

This professional serves as a fieldwork leader to assist clients in employing proper information systems, resources, and controls to maximize efficiencies and minimize risk. The successful candidate will work with client personnel to analyze, evaluate, and enhance information systems facilitating the business internal control process, and will assist clients and other IT Risk Advisory and Assurance professionals in performing information technology control and security engagements.

Key Responsibilities:

  • Collaborate with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments, and other planning documents. Work with the engagement team to document the business processes dependent on information technology. Serve as a fieldwork leader by directing the daily progress of fieldwork, informing supervisors of engagement status, and managing staff performance
  • Demonstrate and apply a thorough understanding of complex information systems. Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues, and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Demonstrate and apply strong project management skills, inspire teamwork and responsibility with engagement team members, and use current technology and tools to enhance the effectiveness of deliverables and services

To qualify, candidates must have:

  • A bachelor’s degree and approximately 2 years of related work experience; or a graduate degree and approximately 1-2 years of related work experience
  • A degree that combines accounting and auditing with information systems and related disciplines
  • A minimum of 12 – 18 months of experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or within industry
  • Significant experience in applying relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) SSAE16 Attest engagements; and/or (d) ERP security and control reviews (SAP, Oracle, PeopleSoft, etc.)
  • Project management skills
  • Strong written and verbal communication skills and presentation skills
  • Leadership, teamwork and client service skills
  • Demonstrated integrity within a professional environment
  • Successful candidates should be available to travel outside of their assigned office location approximately 10 – 25% of the time (including internationally), plus commute within the region. Successful candidates must work in excess of standard hours when necessary.
  • CPA and CISA certification is preferred; other verifications would be considered: CA, CISA, CISSP, CISM, CBCP, CIA, CIPP, CGEIT. Non-certified hires are required to become certified to be eligible for promotion to Manager