Sr. IT Risk Consultant

  • location: Cary, NC
  • type: Contract
easy apply

job description

Sr. IT Risk Consultant

job summary:
We have a 9 month renewable position for a Sr. IT Risk Consultant for a client of ours in Cary, NC.

IT Risk Management is a global organization that plays an important role in partnering with the business, IT, operations, and audit to ensure that management anticipates, recognizes, and appropriately manages risks. The Senior IT Risk Consultant has responsibility for the delivery and participation in IT Risk Assessments, IT Assurance Testing, IT Audit Support and Facilitation, and other IT Risk Management assignments.

Key Responsibilities:

- Support IT Risk Management team and others in the organization around understanding risk and effective controls. This responsibility includes the planning, scoping, assessment/testing, and reporting of observations as part of the IT Assurance function.

- Design, lead and participate in the IT Assurance plan through the execution of both process and technical assessments of 1st and 2nd line control activities with particular focus on key controls supporting Sarbanes-Oxley, SSAE18, SOC2 and other regulatory related processes.

- Provide Process and Control Owners with feedback on assessments of their processes and controls including recommendations to ensure risks are identified, understood and managed.

Essential Business Experience and Technical Skills:

Required:

- 3 -5 years of experience in IT audit, IT (Network or Operations), or IT Risk/Security

- Possesses basic to intermediate-level understanding of IT general controls (security, change management, disaster backup recovery, data center, etc.), cybersecurity, privacy, and IT regulatory risks and controls.

- Possesses fundamental understanding of multiple guidelines such as IIA, COBIT, NIST, SOX, and PCI DSS.

- Possesses fundamental understanding of auditing practices including sampling and testing methodologies, and risk assessments.

- Strong written and verbal communication skills, including listening and interviewing skills.

Preferred:

- Earned or working towards CISA, CISSP or CISM certification.

- Experience working in IT, Technology Operations, Information Security, Network/Cybersecurity or equivalent area

- Possesses experience in IT, Information Security or IT Audit in large, complex organization

 
location: Cary, North Carolina
job type: Contract
work hours: 9am to 6pm
education: Bachelors
 
responsibilities:
We have a 9 month renewable position for a Sr. IT Risk Consultant for a client of ours in Cary, NC.

IT Risk Management is a global organization that plays an important role in partnering with the business, IT, operations, and audit to ensure that management anticipates, recognizes, and appropriately manages risks. The Senior IT Risk Consultant has responsibility for the delivery and participation in IT Risk Assessments, IT Assurance Testing, IT Audit Support and Facilitation, and other IT Risk Management assignments.

Key Responsibilities:

- Support IT Risk Management team and others in the organization around understanding risk and effective controls. This responsibility includes the planning, scoping, assessment/testing, and reporting of observations as part of the IT Assurance function.

- Design, lead and participate in the IT Assurance plan through the execution of both process and technical assessments of 1st and 2nd line control activities with particular focus on key controls supporting Sarbanes-Oxley, SSAE18, SOC2 and other regulatory related processes.

- Provide Process and Control Owners with feedback on assessments of their processes and controls including recommendations to ensure risks are identified, understood and managed.

Essential Business Experience and Technical Skills:

Required:

- 3 -5 years of experience in IT audit, IT (Network or Operations), or IT Risk/Security

- Possesses basic to intermediate-level understanding of IT general controls (security, change management, disaster backup recovery, data center, etc.), cybersecurity, privacy, and IT regulatory risks and controls.

- Possesses fundamental understanding of multiple guidelines such as IIA, COBIT, NIST, SOX, and PCI DSS.

- Possesses fundamental understanding of auditing practices including sampling and testing methodologies, and risk assessments.

- Strong written and verbal communication skills, including listening and interviewing skills.

Preferred:

- Earned or working towards CISA, CISSP or CISM certification.

- Experience working in IT, Technology Operations, Information Security, Network/Cybersecurity or equivalent area

- Possesses experience in IT, Information Security or IT Audit in large, complex organization

 
qualifications:
We have a 9 month renewable position for a Sr. IT Risk Consultant for a client of ours in Cary, NC.

IT Risk Management is a global organization that plays an important role in partnering with the business, IT, operations, and audit to ensure that management anticipates, recognizes, and appropriately manages risks. The Senior IT Risk Consultant has responsibility for the delivery and participation in IT Risk Assessments, IT Assurance Testing, IT Audit Support and Facilitation, and other IT Risk Management assignments.

Key Responsibilities:

- Support IT Risk Management team and others in the organization around understanding risk and effective controls. This responsibility includes the planning, scoping, assessment/testing, and reporting of observations as part of the IT Assurance function.

- Design, lead and participate in the IT Assurance plan through the execution of both process and technical assessments of 1st and 2nd line control activities with particular focus on key controls supporting Sarbanes-Oxley, SSAE18, SOC2 and other regulatory related processes.

- Provide Process and Control Owners with feedback on assessments of their processes and controls including recommendations to ensure risks are identified, understood and managed.

Essential Business Experience and Technical Skills:

Required:

- 3 -5 years of experience in IT audit, IT (Network or Operations), or IT Risk/Security

- Possesses basic to intermediate-level understanding of IT general controls (security, change management, disaster backup recovery, data center, etc.), cybersecurity, privacy, and IT regulatory risks and controls.

- Possesses fundamental understanding of multiple guidelines such as IIA, COBIT, NIST, SOX, and PCI DSS.

- Possesses fundamental understanding of auditing practices including sampling and testing methodologies, and risk assessments.

- Strong written and verbal communication skills, including listening and interviewing skills.

Preferred:

- Earned or working towards CISA, CISSP or CISM certification.

- Experience working in IT, Technology Operations, Information Security, Network/Cybersecurity or equivalent area

- Possesses experience in IT, Information Security or IT Audit in large, complex organization

 
skills: We have a 9 month renewable position for a Sr. IT Risk Consultant for a client of ours in Cary, NC.

IT Risk Management is a global organization that plays an important role in partnering with the business, IT, operations, and audit to ensure that management anticipates, recognizes, and appropriately manages risks. The Senior IT Risk Consultant has responsibility for the delivery and participation in IT Risk Assessments, IT Assurance Testing, IT Audit Support and Facilitation, and other IT Risk Management assignments.

Key Responsibilities:

- Support IT Risk Management team and others in the organization around understanding risk and effective controls. This responsibility includes the planning, scoping, assessment/testing, and reporting of observations as part of the IT Assurance function.

- Design, lead and participate in the IT Assurance plan through the execution of both process and technical assessments of 1st and 2nd line control activities with particular focus on key controls supporting Sarbanes-Oxley, SSAE18, SOC2 and other regulatory related processes.

- Provide Process and Control Owners with feedback on assessments of their processes and controls including recommendations to ensure risks are identified, understood and managed.

Essential Business Experience and Technical Skills:

Required:

- 3 -5 years of experience in IT audit, IT (Network or Operations), or IT Risk/Security

- Possesses basic to intermediate-level understanding of IT general controls (security, change management, disaster backup recovery, data center, etc.), cybersecurity, privacy, and IT regulatory risks and controls.

- Possesses fundamental understanding of multiple guidelines such as IIA, COBIT, NIST, SOX, and PCI DSS.

- Possesses fundamental understanding of auditing practices including sampling and testing methodologies, and risk assessments.

- Strong written and verbal communication skills, including listening and interviewing skills.

Preferred:

- Earned or working towards CISA, CISSP or CISM certification.

- Experience working in IT, Technology Operations, Information Security, Network/Cybersecurity or equivalent area

- Possesses experience in IT, Information Security or IT Audit in large, complex organization


Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status.

easy apply

get jobs in your inbox.

sign up
{{returnMsg}}

related jobs