EY GDS Advisory - Third Party Risk Management Senior Manager (non-FS) in Philippines

GDS Advisory - Third Party Risk Management Senior Manager (non-FS)

Advisory

Requisition # PHI002EW

Post Date Thu 31 May 05:36

Essential Functions of the Job:

· Expertise in IT SOX compliance, Proficiency in General IT Controls, Business Continuity management, SAP testing, applications controls and performing SAS70 Reviews.

· 3rd party of vendor Risk management , VRM experience

· IT strategy consulting services - IT strategy reviews and assistance in implementation of a value governance framework.

· Assisting in application security assessments, business cycle controls (BCCs) review, general computer controls (GCCs), Segregation of duties analysis.

· Security policy and procedure development in alignment with business needs

· Service Delivery - Engagement planning, management, client report review and delivering client presentations.

· Knowledge Management- Developing work programs and methodologies to build specific competency and enhance value proposition.

· Team Building - Knowledge sharing, training, motivating and development of team members.

· Defining and performing Audit procedures to assess if any identified deficiencies in the application were exploited

· Using various standards like - (ISO 27001, PCI DSS, SSAE16, HIPAA )

Assessing the application security , Documenting , Business cycle controls (BCCs) review, general computer controls (GCCs) in Third Party Risk management

Analytical/Decision Making Responsibilities:

· Understand the business requirements clearly and plan for effective utilization of resources, managing the change requests and risk planning, etc

· Enhance service delivery through frequent interaction with the end user and (or) business sponsors

Understand the process gaps and propose preventive / corrective action where appropriate

Knowledge and Skills Requirements:

Mandatory:

· Leading TPRM in consulting organizations (domestic) in India

· 3rd party of vendor Risk management , VRM experience

Essential Functions of the Job:

· Expertise in IT SOX compliance, Proficiency in General IT Controls, Business Continuity management, SAP testing, applications controls and performing SAS70 Reviews.

· 3rd party of vendor Risk management , VRM experience

· IT strategy consulting services - IT strategy reviews and assistance in implementation of a value governance framework.

· Assisting in application security assessments, business cycle controls (BCCs) review, general computer controls (GCCs), Segregation of duties analysis.

· Security policy and procedure development in alignment with business needs

· Service Delivery - Engagement planning, management, client report review and delivering client presentations.

· Knowledge Management- Developing work programs and methodologies to build specific competency and enhance value proposition.

· Team Building - Knowledge sharing, training, motivating and development of team members.

· Defining and performing Audit procedures to assess if any identified deficiencies in the application were exploited

· Using various standards like - (ISO 27001, PCI DSS, SSAE16, HIPAA )

Assessing the application security , Documenting , Business cycle controls (BCCs) review, general computer controls (GCCs) in Third Party Risk management

Analytical/Decision Making Responsibilities:

· Understand the business requirements clearly and plan for effective utilization of resources, managing the change requests and risk planning, etc

· Enhance service delivery through frequent interaction with the end user and (or) business sponsors

Understand the process gaps and propose preventive / corrective action where appropriate

Knowledge and Skills Requirements:

Mandatory:

· Leading TPRM in consulting organizations (domestic) in India

· 3rd party of vendor Risk management , VRM experience