Tech Risk & Controls Assurance Assessor

Recruiter
Willis Towers Watson
Location
Ipswich, UK
Salary
Competitive
Posted
18 Sep 2019
Closes
25 Sep 2019
Ref
1267240150
Contract Type
Permanent
Hours
Full Time
The Role

The successful candidate will be responsible for representing IT management in the successful co-ordination of Internal and External IT audits, as assigned, which may include annual SOX and or SOC2 audits. The role holder will represent IT in the end to end management of the audits, from initial planning and agreement of the TOR, through co-ordination of the audit walkthroughs, advising on management action plans and tracking actions. This role will suit a candidate with excellent stakeholder management skills and the ability to arbitrate between Audit and IT stakeholders as necessary. Based in the UK the role will have global stakeholders and require the ability to manage them remotely. The successful candidate will be organized with good attention to detail and the ability to work under pressure.
  • Working with control owners and other key stakeholders to prepare for IT audits, internal and external
  • Working with the internal and external audit teams to agreed detailed audit schedules and walkthroughs
  • Prepare for and co-ordinate IT Audits including briefing of attendees, attendance at meetings, co-ordination of scheduling and review of management responses
  • Provide insight into audit findings and coach others through the development of remediation plans
  • Facilitate the development and documentation of controls in response to issues raised by audit
  • Provide appropriate challenge to both Internal and External auditors
  • Follow up open Audit points and work with the wider IT team to resolve
  • Status reporting and MI for technology management and senior stakeholders
  • Effective communication to all stakeholders
  • Review of control design
  • Testing of control effectiveness
  • Co-ordinating and delivering assurance services
  • Reporting and tracking technology control gaps as well as ineffective or inadequate technology controls
  • Coordination and tracking remediation activities being performed by technology control owners
  • Identify opportunities and recommendation to improve the design and implementation of technology controls.
The Requirements
Risk & Control Professionals
  • Financial Services (FS) experience or Big4 / Top 10 within FS sector
  • Professionally qualified (CISA/CISM/CRISC/ CCSP/CISSP), demonstrating credibility and technical understanding of recognized risk and control management practices
  • Be interested in further developing skills and knowledge of IT Risk Management
  • Previous experience in an IT Audit or Risk Management role
  • Knowledge and understanding of IT general controls and IT concepts
  • Whilst this is not a hands-on technical role, the role holder will be expected to demonstrate a strong awareness of technology and how IT is used to enable business processes.
Skills
  • Strong IT and analytical skills
  • Good communication skills, both orally and in writing
  • Stakeholder Management
  • Questioning approach
  • Ability to coach others involved in audits
  • Strong planning and organizing skills
  • Status reporting and presentation
  • Attention to detail
  • Self-managing
  • Problem solving
  • Persistence
  • Facilitation.
Equal opportunity employer

Similar jobs

Similar jobs