Technology Risk Advisor - Technology Risk (IT Risk Management) - Financial Services Office (Senior)(Multiple Positions), Ernst& Young U.S. LLP, New York, NY.
Design and evaluate IT governance, risk management and compliance solutions to help clients evaluate, define, implement and manage their technology risk and information security programs. Assist clients with process re-engineering and enhancements to existing tools based on the clientâs current IT environment and industry trends. Assist with the delivery of IT Risk Management analysis and solutions, which include IT Risk Management (ITRM) program design, current state assessments, future state design, ITRM process re-engineering and enhancements, ITRM implementation, risk assessments, risk metrics, and dashboarding. Apply knowledge of IT risk convergence, IT risk and control framework design to work on features of integrated operational risk management projects. Provide technical guidance and share knowledge with team members with diverse skills and backgrounds. Consistently deliver quality client services focusing on more complex, judgmental and/or specialized issues. Demonstrate technical capabilities and professional knowledge. Learn about EY and its service lines and actively assess and present ways to apply knowledge and services.
Full time employment, Monday â Friday, 40 hours per week, 8:30 am â 5:30 pm.
Bachelor's degree in Computer Science, Information Systems, Business, Finance, Engineering, or a related field and 2 years of experience developing Information Technology risk management solutions. Alternatively, must have a Master's degree in Computer Science, Information Systems, Business, Finance, Engineering, or a related field and 1 year of work experience developing Information Technology risk management solutions.
Must have 1 year of experience as an IT Risk or IT Security professional for a public accounting firm, a professional services firm, or a financial services firm.
Must have 1 year of experience with 3 of the following frameworks/regulations: CobiT, ISO027002, ITIL, FFIEC, NIST, GLBA, or HIPAA.
Must have 1 year of experience with 3 of the following methodologies, tools and enablers: Archer, BWise, BPS, Chase Cooper, or Paisley.
Must have 1 year of experience with risk convergence, IT risk and control framework design, and integrated operational risk management projects.
Must have or obtain within one year of start date one of the following certifications: CA, CGEIT, CIA, CISA, CISM, CISSP, CMA, CPA or CRISC certification.
Requires travel up to 80% to serve client needs.
Employer will accept any suitable combination of education, training or experience.
TO APPLY: Please apply on-line at ey.com/en_us/careers, and click on âFind jobsâ (Job Number â NEW00R1V).
EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, in accordance with applicable law.
This particular position at Ernst & Young in the United States requires the qualified candidate to be a “United States worker“ as defined by the U.S. Department of Labor regulations at 20 CFR 656.3. You can review this definition at at the bottom of page 750. Please feel free to apply to other positions that do not require you to be a “U.S. worker“.