EY Jobs

Job Information

EY GDS Consulting_Third Party Risk Management Senior Manager in Philippines

GDS Consulting_Third Party Risk Management Senior Manager

Consulting

Requisition # PHI004DS

Post Date Oct 29, 2020

Risk Transformation-TPRM Senior Manager

Job Summary:

Provide guidance and share knowledge with team members and participate in performing procedures especially focusing on complex, judgmental and/or specialized issues. Work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement

Brief the engagement team on the client's IT environment and industry IT trends. Maintain relationships with client management to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations.

Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the client's business. Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services. Understand EY and its service lines and actively assess what the firm can deliver to serve clients

Essential Functions of the Job:

  • Expertise in IT SOX compliance, Proficiency in General IT Controls, Business Continuity management, SAP testing, applications controls and performing SAS70 Reviews.

  • 3rd party of vendor Risk management , VRM experience

  • IT strategy consulting services - IT strategy reviews and assistance in implementation of a value governance framework.

  • Assisting in application security assessments, business cycle controls (BCCs) review, general computer controls (GCCs), Segregation of duties analysis.

  • Security policy and procedure development in alignment with business needs

  • Service Delivery - Engagement planning, management, client report review and delivering client presentations.

  • Knowledge Management- Developing work programs and methodologies to build specific competency and enhance value proposition.

  • Team Building - Knowledge sharing, training, motivating and development of team members.

  • Defining and performing Audit procedures to assess if any identified deficiencies in the application were exploited

  • Using various standards like - (ISO 27001, PCI DSS, SSAE16, HIPAA )

  • Assessing the application security , Documenting , Business cycle controls (BCCs) review, general computer controls (GCCs) in Third Party Risk management

Analytical/Decision Making Responsibilities:

  • Understand the business requirements clearly and plan for effective utilization of resources, managing the change requests and risk planning, etc

  • Enhance service delivery through frequent interaction with the end user and (or) business sponsors

  • Understand the process gaps and propose preventive / corrective action where appropriate

Knowledge and Skills Requirements:

  • Experience leading TPRM in consulting organizations, conducting third-party/vendor risk management , VRM experience

Other Requirements:

  • Strong interpersonal skills

  • Proven influencer and communicator with stakeholders at all levels

  • Strong written and presentational skills; ability to clearly communicate complex messages to a variety of audiences

  • Possess high standard of integrity and confidentiality

Job Requirements:

Education:

  • Demonstrated track record with a blue chip consulting organization and/or a blue chip organization

  • Strong academic record including a degree

  • Bachelor's Degree (IT, Electronics, Electronics& Telecommunications, Comp. Science)/MBA/M.Sc. with 12+ years’ of professional experience

Experience:

  • 12 to 15 years

Risk Transformation-TPRM Senior Manager

Job Summary:

Provide guidance and share knowledge with team members and participate in performing procedures especially focusing on complex, judgmental and/or specialized issues. Work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement

Brief the engagement team on the client's IT environment and industry IT trends. Maintain relationships with client management to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations.

Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the client's business. Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services. Understand EY and its service lines and actively assess what the firm can deliver to serve clients

Essential Functions of the Job:

  • Expertise in IT SOX compliance, Proficiency in General IT Controls, Business Continuity management, SAP testing, applications controls and performing SAS70 Reviews.

  • 3rd party of vendor Risk management , VRM experience

  • IT strategy consulting services - IT strategy reviews and assistance in implementation of a value governance framework.

  • Assisting in application security assessments, business cycle controls (BCCs) review, general computer controls (GCCs), Segregation of duties analysis.

  • Security policy and procedure development in alignment with business needs

  • Service Delivery - Engagement planning, management, client report review and delivering client presentations.

  • Knowledge Management- Developing work programs and methodologies to build specific competency and enhance value proposition.

  • Team Building - Knowledge sharing, training, motivating and development of team members.

  • Defining and performing Audit procedures to assess if any identified deficiencies in the application were exploited

  • Using various standards like - (ISO 27001, PCI DSS, SSAE16, HIPAA )

  • Assessing the application security , Documenting , Business cycle controls (BCCs) review, general computer controls (GCCs) in Third Party Risk management

Analytical/Decision Making Responsibilities:

  • Understand the business requirements clearly and plan for effective utilization of resources, managing the change requests and risk planning, etc

  • Enhance service delivery through frequent interaction with the end user and (or) business sponsors

  • Understand the process gaps and propose preventive / corrective action where appropriate

Knowledge and Skills Requirements:

Mandatory:

  • Leading TPRM in consulting organizations (domestic) in India 3rd party of vendor Risk management , VRM experience

Other Requirements:

  • Strong interpersonal skills

  • Proven influencer and communicator with stakeholders at all levels

  • Strong written and presentational skills; ability to clearly communicate complex messages to a variety of audiences

  • Possess high standard of integrity and confidentiality

Job Requirements:

Education:

  • Demonstrated track record with a blue chip consulting organization and/or a blue chip organization

  • Strong academic record including a degree

  • B.E/B.Tech (Electronics, Electronics& Telecommunications, Comp. Science)/MBA/M.Sc. with 12+ years’ of professional experience

DirectEmployers