Controls Senior

As a Senior in the IT Audit & Assurance, Risk Consulting team, your main responsibilities will revolve around assisting in planning activities, developing audit programs, and executing internal audits and IT control assessments. Your expertise will be utilized in various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs, application controls, and regulatory/compliance requirements. You will review clients" processes and controls against leading industry frameworks, identifying gaps in design and execution, and effectively communicating issues and recommendations to engagement leads and client management. Working closely with client management teams, you will play a pivotal role in implementing new processes and controls to address key risks as needed. Additionally, you will be responsible for drafting comprehensive executive summaries and final reports for delivery to client senior management, as well as documenting and reviewing engagement workpapers in line with standard KPMG and industry-accepted internal audit methodologies. Your involvement will extend to participating in kick-off, status, and closing meetings with the engagement team and clients, contributing to the IT Audit knowledge base, and engaging in internal practice development initiatives. The ideal candidate will possess a range of mandatory technical and functional skills, including knowledge of security measures and auditing practices across various operating systems, databases, and applications. Experience in assessing risks within different business processes, particularly within the Financial Services sector, will be crucial. You should be adept at identifying control gaps and effectively communicating audit findings and control redesign recommendations to senior management and clients. Hands-on experience in IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management is highly desirable. Moreover, familiarity with regulations impacting the privacy, integrity, and availability of customer Personally Identifiable Information (PII) is essential. Exposure to leading IT Audit engagements and working on Identity Access Management aspects like user management, authentication, and authorization will be advantageous. The preferred candidate should also have experience in team leadership and performance management from their current or previous roles. In terms of technical skills, prior experience in evaluating the design and operating effectiveness of technology controls over various IT platforms, including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL, will be beneficial for excelling in this role.,