Our IT Risk Advisory team helps clients address the risks surrounding their IT environment; information governance; information security and privacy; business continuity and disaster recovery. We provide transformational services that have lasting impacts on the way in which our clients optimize their technology investments and manage value, cost and risk.
The IT Risk Advisory Supervisor is responsible for leading field engagements in assisting in the creation of multi-faceted vulnerability management solutions tailored to client environments. This individual will also evaluate client vulnerability management programs across people, process and technology. The responsibilities include but are not limited to:
* Performing technology risk assessments and reviewing, documenting, evaluating and testing general computer controls including access controls, change management, security, backup controls and operation controls, in a wide range of computing environments. * Performing IT compliance audits, internal audits and SOC 1 and SOC 2 readiness reviews and attestations * Reviewing system configurations and device configurations using manual and automated techniques * Determining the technical and business impact of identified issues and providing remediation guidance to clients. * Assisting in the creation or review of information security policies, standards, procedures and plans (BCP, DR, and Incident Response) to support the client's information security needs and governance requirements. * Stay abreast of current business and industry trends relevant to the client's business. * Establish and maintain effective business relationships with client management. * Collaborate with the engagement team to plan the engagement and develop work programs, timelines, and planning documentation. * Work with the team to document the business processes (IT dependent) and perform system flowcharting * Demonstrate and apply strong project management skills and use current technology and tools to enhance the effectiveness of deliverables and services. * Understand engagement economics, including monitoring and communicating project status and appropriate financial metrics to key stakeholders.
* Bachelor's degree, ideally in Computer Science or equivalent, and a minimum of 3 years of related work experience, or a Master's degree and 2 years of related work experience. * Certified Information Systems Auditor (CISA) or pursuing certification. * IDEA power user required. * Active membership with ISACA. * Strong knowledge of established IT governance frameworks. * Strong knowledge of the Trust Services Principles. * Ability to examine issues both strategically and analytically. * Strong analytical and problem-solving skills. * Strong report writing and communication skills. * Motivated / self-starter able to work collaboratively in a team environment on multiple engagements. * A valid driver's license in the US; willingness and ability to travel domestically to meet client needs
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.