Technology Risk Manager Within EY's Advisory Risk practice, the Manager is responsible for managing multiple client engagement
teams at an executive level within the practice and the firm. Engagements focus on the assessment
and/or evaluation of IT systems and the mitigation of IT-related business risks. Engagements may be
either assurance (attestation) and/or risk advisory in nature, and vary considerably in size and complexity.
All of our services whether assurance or advisory in nature are designed for the dual purpose of
strengthening internal controls and, in so doing, helping to improve IT and business performance. In
addition to assurance-related engagements such as financial attestation and SSAE 16 engagements, our
IT risk advisory services focus on IT governance and effectiveness; IT program management and
assurance; security and controls of ERP implementations; and business intelligence and information analysis.Job Description-Technology Risk –Manager
Entity: EY GDS
Position Title: Manager
Location–Manila (McKinley Taguig City)
KEY RESPONSIBILITIES:
Business Development
Develop and maintain client relationships to manage expectations of service, including work products, timing, and deliverables
Demonstrate a thorough understanding of complex information systems and apply to client’s IT environment
Identify new pursuit and aid in organization growth strategiesClient Service Delivery
Provide high quality client service, working directly with onshore teams to understand and evaluate client’s IT environment
Manage predominantly off-shore engagements. Communication, written and verbal, with the local EY teams would be expected. This communication would include emphasizing the capabilities within the GDS to provide high-quality deliverables to support EY Global Offices.Engagement Management:
Manage engagement risk and project economics including planning and budgeting, define deliverable content, ensure buy-in of proposed solutions from top management levels at the client.
Manage the local engagement team to deliver quality deliverables within the agreed timeline.
Understand the process workflow related to work requests from initiation through completion and how workflow is managed within the firm's online tool for audit monitoring and project management.Practice Development:
Adherence to EY audit methodologies (related to risk assessment and prioritization, risk responses, and risk management capability assessments), supporting tools and other materialsSkills and attributes for success:
Ø Extensive experience in(at least7 years experience):
o IT General Controls across platforms (Application, OS, DB) for following areas:
§ User Access Management
§ Change Management
§ Backup and Recovery Management
§ Batch Job Management
§ Problem/Incident Management
o IT Application Controls :Business Process cycles (Purchase to Payable; Revenue & Receivables; Inventory; Payroll; Treasury)
o Generally accepted audit standards, and Corporate Internal Audit standards
o Experience with SOX, Internal Audit and SSAE 16 (At least 1 of 3)
o Knowledge of ERPs like SAP, Oracle, JDEs etc.Ø Working knowledge of:
O System architecture, business processes and system risks
O Operating system and database platforms (such as Windows, Unix, OS400, Mainframe, SQL, Oracle, DB2 etc.)Ø Good understanding of industry standards and frameworks such as ISO/IEC 27001, COBIT, ITIL, COSO etc.
Ø Excellent written, oral communication, and presentation skills.
Ø Excellent leadership, teamwork, and client service skills.
Ø With at least one of the following certifications–CISA, CISM, CRISC, CIA; non-certified hires are required to become certified within 1 year from the date of hire.To qualify, you must have:
A bachelor's degree accounting, computer science, information systems, engineering, or a related discipline.
Previous roles–IT Audit Manager, IT Compliance Manager, IT Internal Audit Lead, Information Risk Manager, Information Security Manager and other related roles.
Must be amenable to work in McKinley Hill, Taguig City
Successful candidate must work in excess of standard hours when necessary. A valid passport is required.
Technology Risk Manager
Within EY's Advisory Risk practice, the Manager is responsible for managing multiple client engagement
teams at an executive level within the practice and the firm. Engagements focus on the assessment
and/or evaluation of IT systems and the mitigation of IT-related business risks. Engagements may be
either assurance (attestation) and/or risk advisory in nature, and vary considerably in size and complexity.
All of our services whether assurance or advisory in nature are designed for the dual purpose of
strengthening internal controls and, in so doing, helping to improve IT and business performance. In
addition to assurance-related engagements such as financial attestation and SSAE 16 engagements, our
IT risk advisory services focus on IT governance and effectiveness; IT program management and
assurance; security and controls of ERP implementations; and business intelligence and information analysis.Job Description-Technology Risk –Manager
Entity: EY GDS
Position Title: Manager
Location–Manila (McKinley Taguig City)
KEY RESPONSIBILITIES:
Business Development
Develop and maintain client relationships to manage expectations of service, including work products, timing, and deliverables
Demonstrate a thorough understanding of complex information systems and apply to client’s IT environment
Identify new pursuit and aid in organization growth strategiesClient Service Delivery
Provide high quality client service, working directly with onshore teams to understand and evaluate client’s IT environment
Manage predominantly off-shore engagements. Communication, written and verbal, with the local EY teams would be expected. This communication would include emphasizing the capabilities within the GDS to provide high-quality deliverables to support EY Global Offices.Engagement Management:
Manage engagement risk and project economics including planning and budgeting, define deliverable content, ensure buy-in of proposed solutions from top management levels at the client.
Manage the local engagement team to deliver quality deliverables within the agreed timeline.
Understand the process workflow related to work requests from initiation through completion and how workflow is managed within the firm's online tool for audit monitoring and project management.Practice Development:
Adherence to EY audit methodologies (related to risk assessment and prioritization, risk responses, and risk management capability assessments), supporting tools and other materialsSkills and attributes for success:
Ø Extensive experience in(at least7 years experience):
o IT General Controls across platforms (Application, OS, DB) for following areas:
§ User Access Management
§ Change Management
§ Backup and Recovery Management
§ Batch Job Management
§ Problem/Incident Management
o IT Application Controls :Business Process cycles (Purchase to Payable; Revenue & Receivables; Inventory; Payroll; Treasury)
o Generally accepted audit standards, and Corporate Internal Audit standards
o Experience with SOX, Internal Audit and SSAE 16 (At least 1 of 3)
o Knowledge of ERPs like SAP, Oracle, JDEs etc.Ø Working knowledge of:
O System architecture, business processes and system risks
O Operating system and database platforms (such as Windows, Unix, OS400, Mainframe, SQL, Oracle, DB2 etc.)Ø Good understanding of industry standards and frameworks such as ISO/IEC 27001, COBIT, ITIL, COSO etc.
Ø Excellent written, oral communication, and presentation skills.
Ø Excellent leadership, teamwork, and client service skills.
Ø With at least one of the following certifications–CISA, CISM, CRISC, CIA; non-certified hires are required to become certified within 1 year from the date of hire.To qualify, you must have:
A bachelor's degree accounting, computer science, information systems, engineering, or a related discipline.
Previous roles–IT Audit Manager, IT Compliance Manager, IT Internal Audit Lead, Information Risk Manager, Information Security Manager and other related roles.
Must be amenable to work in McKinley Hill, Taguig CitySuccessful candidate must work in excess of standard hours when necessary. A valid passport is required.
