EY Senior Consultant, IT Risk & Assurance Services, Advisory Belfast in Northern Ireland, United Kingdom

Title: Senior Consultant, IT Risk & Assurance Services, Advisory Belfast

Location: GB-Northern Ireland-Belfast

Job Number: BEL000RS

EY gives you access to global opportunities in a challenging, rewarding and dynamic environment.

Wherever your aspirations lie, if you have the drive and determination to help our clients succeed you’ll find the scope and support to realise your professional and personal ambitions. Working alongside talented professionals from a wide range of backgrounds, you’ll be part of a culture that’s results-focused, collaborative and inspirational. Together, we make a difference to our clients and the communities in which we live and work.

EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.

Qualifications:

About The Role

This is a great opportunity to join the Advisory IT Risk and Assurance (ITRA) group, whose objective is to provide technology risk services to our clients. The ITRA group provides a number of advisory services to clients. Core to our teams’ services is the provision of IT audit support for the firm’s audit clients. This involves assessing the IT control environment in the context of the financial audit risk and may involve the utilisation of computer assisted audit techniques.

The ITRA group also provides a range of additional services include ERP Advisory, Information Security, Information Management & Process Analytics, IT Internal Audit, IT Risk & Control Advisory, Privacy and Third Party Reporting. The ITRA group aims to have a broad range of diverse but complimentary expertise.

You will be part of a pool of ITRA specialists and the reporting line will be to the manager(s) responsible for each assignment. One manager will be responsible for your mentoring, performance assessment and career development. As part of the ITRA group, you will be expected to develop specialist expertise and actively market the services to clients and non clients.

The majority of the assignments are performed within the Belfast and Dublin area. There are opportunities to travel within Ireland and the UK as well as on international assignments.

Examples of IT risk and control advisory engagements include:

  • Assessing clients' IT environments and IT-related business processes that support the financial statements to determine the extent to which reliance can be placed on the internal control environment

  • Identifying and remediating control and performance gaps compared to leading practice, helping clients gain stakeholder buy-in, reduce risk, and increase value and visibility of IT cost

  • Assisting organisations in the identification and management of information security risks by assessing the current state, prioritising improvements and conducting projects to reduce risk and improve regulatory compliance

  • Identifying and managing privacy and data protection risks and compliance requirements, working across our clients' organisations to help meet stakeholder expectations and requirements.

Within the context of client engagements, specific responsibilities include:

  • Planning, budgeting and delivering engagement for review by ITRA Managers or Senior Managers

  • Gaining an understanding of the clients' IT applications and infrastructure to determine the effectiveness of the control environment through performing and reviewing process walkthroughs

  • Reviewing detailed analysis of the control environment to gain assurance over effective operation of controls

  • Identifying control weaknesses and any mitigating controls

  • Reviewing working papers and supporting evidence in line with internal compliance requirements

  • Effectively articulating control findings to key client stakeholders.

In addition, the ITRA team itself places a significant emphasis on its own management and development, including learning and development, knowledge sharing, current technologies, methodologies and the ongoing expansion of the team. All team members are expected to contribute to this process and participating fully in the team activities, meetings and workshops.

Training

Ernst & Young will provide comprehensive training, which will build on your existing skills. The training available includes:

  • Financial audit support

  • Cyber security

  • Program change control

  • Project management

  • Business continuity planning

  • Operating systems (Windows, Unix, AS/400)

  • ERP applications (SAP, Oracle JDE)

  • Management skills

  • Report writing

  • Marketing and sales

The training comprises of class room, on line and self study courses. A wide range of technology is available through the global intranet to enable our people to learn/practice technology skills.

Skills & Attributes

As an ITRA Senior you should hold a business, IT or accounting qualification and have at least 2 years experience in financial audit, IT audit or Information Security. This is likely to have been gained in external audit, internal audit, IT consulting or within an IT department.

It would be desirable that you have experience of supporting audit teams through the provision of IT control reviews and the utilisation of computer assisted audit tools such as ACL or Monarch.

The role will require strong IT / business risk and control assessment skills. You should be comfortable working in an IT environment and be interested in further developing this area of your expertise. A financial auditor who is interested in switching to an IT audit career would be of interest to us. Strong commercial awareness with ability to understand IT / business environments and identify risks / solutions

In addition you must have a proven track record of outstanding performance and display a high level of people and business skills.

Professional Experience

You'll have knowledge and experience of one or more of the following areas:

  • IT Assurance

  • IT external audit support including Financial audit IT integration

  • IT internal audit

  • Information Security

  • Third party reporting, e.g. SOC1, AAF 01/06, SOC2

  • IT Risk framework development or execution

  • IT Controls design and/ or assessment

Industry Experience

Strong insight into one or more of the following would be an advantage:

  • Financial Services

  • Utilities/Oil & Gas

  • Government and Public Sector

  • Consumer Products

Candidates will ideally have experience working in a Big 4 firm and have had exposure working in a client facing role.

Technical Skills

One or more of the following would be an advantage:

  • Certified Information Security Auditor (CISA) qualification

  • ISO accreditation

  • Advanced MS Excel beneficial

  • Knowledge of IT industry practice methodologies (e.g. CobiT, ITIL) is preferable

  • Experience of Windows, Oracle, SQL or UNIX environments

Core Competencies

  • Highly professional with ability to work in challenging, diverse and evolving client environments

  • Flexible with the ability to learn quickly and leverage skills in new situations

  • Excellent verbal and written communication skills

  • The ability to build strong client relationships

  • Strong team working skills are essential

  • Strong presentation and facilitation skills

  • A passion to contribute to the growth of the practice

  • Self motivated with lots of energy and drive

  • Flexible, with the ability to learn quickly and leverage skills in new situations

  • The ability to deliver multiple/parallel project

Opening date: 24/08/2017

Closing date: 22/09/2017

Hours per week: 37.5

Employment Type: Full time (Monday - Friday)

Salary: competitive

Multiple roles: Belfast

Who we are

EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.