EY-IT Auditor - Technology Risk - Consultants (Staff)

As part of our Technology Risk team, you will be part of audit team to perform IT General Controls and IT Application Control audit for various clients across the MENA region. Working with Technology Risk team, you will also perform IT Risk assessment, Software Asset Management (SAM), IT Governance, ERP reviews and conduct maturity assessment on the client's current IT posture. The client base spans across various sectors and includes collaboration with other teams within Advisory services.

The opportunity

We're looking for Consultant with expertise in IT Audit to join the group of our IT Audit team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of our service offering.

Your key responsibilities

• Responsible for delivering multiple client engagements and teams at Staff level within the MENA region.
• You can expect to work with high level client personnel to address compliance, financial, and operational risks
• You are also expected to conduct Kick-off Meetings, IT internal control testing, develop IT internal audit plans, conduct IT audit closure meetings and provide other IT internal audit services for the MENA stakeholders.
• You will assess the client's current state IT internal controls for the client's IT environment and identify IT risks and subsequent recommendations.
• Working with client personnel to analyse, evaluate and enhance information systems facilitating the business internal control process, and assisting clients and other technology professionals in performing information technology control audits, information technology control engagements, security audits and security engagements

Skills and attributes for success

• Collaborating with other members of the engagement team to plan the engagement and develop work program timelines, risk assessments and other documents/templates.
• Able to coordinate with Senior stakeholders in the IT internal audit domain.
• Experience in taking proactive approach in learning and working with teams to execute IT audit/Risk Management within stipulated timeline along with high quality deliverables.
• Execute IT internal audit engagements.
• Exposure to SOC, A&P, ISMS, COBIT reviews and IT audits
• Experience in performing IT reviews in FS sector is preferred.
• Good Communication skill and willingness to travel at a short notice
• Experience in applying relevant technical knowledge in at least one of the following engagements:
• ITGC audits; (b) IT internal or operational audits; (c) Service Organization Controls Reporting engagements; and/or (d) ERP security and control reviews (Oracle, SAP, MS Dynamics)
• Demonstrating and applying strong project management skills, inspiring teamwork and responsibility with engagement team members

To qualify for the role, you must have

• A bachelor's or master's degree
• A minimum of 3-5 years of experience working as an Information security professional with IT/IS internal audit background in a professional services firm.
• Excellent communication skills with consulting experience preferred
• A valid passport for travel.

Ideally, you'll also have

• A bachelor's or master's degree in B. TECH/B. E, MS, MBA in accounting or a related discipline.
• ISO27001, ITSM, CoBIT, ITIL V3, CISA, CISM, CIA (anyone certification is desired)