Business Process and IT Risk and Control Senior Consultant / IT Audit

Deloitte & Touche USA LLP is the U.S. member firm of Deloitte Touche Tohmatsu and services are provided by its subsidiaries, including Deloitte & Touche LLP, Deloitte Consulting LLP, Deloitte Financial Advisory Services LLP and Deloitte Tax LLP. Deloitte & Touche USA LLP?s subsidiaries are among the nation?s leading professional services firms, providing audit, tax, consulting, and financial advisory services through nearly 30,000 people in more than 80 cities. Known as employers of choice for innovative human resources programs, they are dedicated to helping their clients and people excel.

In conducting an external audit of our clients' financial statements, Deloitte holds itself to the highest standards of independence, professional objectivity, and technical excellence. Our approach is to understand a client's business, the risks it faces, and its internal controls.? Based on our understanding we assess the risk of material misstatement of the financial statements so that we design effective
audit procedures.? For public companies we will integrate the audit of internal control over financial reporting as required by the Sarbanes Oxley Act with our audit of the financial statements.? Our professionals bring a comprehensive methodology that leverages the firm's extensive professional and technical resources to our clients' financial reporting process, helping them meet the growing demand for enhanced disclosure and accountability.
?
Our external audit services include:
??Audits of financial statements including reviews of quarterly financial information
??Audits of internal control over financial reporting (as required by Section 404 of the Sarbanes Oxley Act)
??Agreed upon procedures
??Other attest related services
?
The role of technology and infrastructure in supporting and advancing the regulatory, governance and business objectives of organizations has never been more critical.? We assist clients in assuring controls and assessing risk management systems by
incorporating control assurance into the audit process. We offer a broad continuum of services that identify, develop and test internal controls and policies. We can help you ensure reliable, verifiable and consistently retrievable data across your organization. Our control reviews are created and implemented to address management objectives ranging from business process to application and technology infrastructure controls.
?
Our Business Process and IT Risk and Control services include:
??Content/Data Quality Management?
??Application Security and Controls Assessments
??Identity Management Security?
??Information Technology Controls
??Infrastructure Security?
??Systems Project Control Assurance
??Security Management ?
??Business Continuity Management
?
Enterprise Risk Services (ERS) Senior Consultants work as contributing members of a team, or lead a team?that strives to understand its client's business exposures and implements creative solutions that reduce risk and
enhance the quality, assurance and security of information systems and business processes. ERS Senior Consultants research, organize and analyze data by combining our information resources and tools with information gathered through interactions with clients, colleagues, and third party contacts. They identify and test an organization's internal control policies and procedures with a focus on technology and document the application and control findings.
?
These services may be provided as part of an internal audit or audit of financial statements, or as individual projects resulting from major organizational changes, implementation of new technologies, or reliance on third-party service providers.? ERS Senior Consultants prepare working papers and deliverables for clients.
ERS Senior Consultant Responsibilities
- Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards
- Identify and evaluate complex business and
technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement
- Understand complex business and information technology management processes
- Execute advanced services and supervise staff in delivering basic services
- Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
- Understand clients' business environment and basic risk management approaches
- Demonstrate a general knowledge of market trends, competitor activities, D&T products and service lines
- Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
- Generate innovative ideas and challenge the status quo
- Build and nurture positive working relationships with clients with the intention to exceed client expectations
- Facilitate use of technology-based tools or methodologies to review,
design and/or implement products and services
- Identify opportunities to improve engagement profitability
- Participate in and actively support mentoring relationships within practice
- Excellent potential for 1) playing lead role in designated tasks of the project team in gathering, organizing and analyzing data; 2) making major contributions in assuring products/deliverables meet contract/work plan and; 3) strong potential for growth and acceptance of additional responsibilities
?
Qualifications
- 2+ years of related experience within professional services, internal audit or IT audit
- Demonstrated experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing
- Strong background in auditing techniques and/or computer control environments
- Successful experience identifying controls, developing and executing test plans
- Demonstrated ability to write report segments and to
participate in presentations
- CPA, CIA, CISA,? preferred
- SAP, Oracle or PeopleSoft controls experience desirable
- Experience with Sarbanes-Oxley and/or COSO preferred
- BA/BS in Business Administration, Accounting, Computer Science, Information Systems Administration or related field
- Open to travel requirements


Deloitte & Touche USA LLP and its subsidiaries ("the Deloitte US Firms") are equal opportunity employers.

About Deloitte
Deloitte refers to one or more of Deloitte Touche Tohmatsu, a Swiss Verein, its member firms and their respective subsidiaries and affiliates. As a Swiss Verein (association), neither Deloitte Touche Tohmatsu nor any of its member firms has any liability for each other?s acts or omissions. Each of the member firms is a separate and independent legal entity operating under the names ?Deloitte,? ?Deloitte & Touche,? ?Deloitte Touche Tohmatsu,? or other related names. Services are provided by the member firms or their
subsidiaries or affiliates and not by the Deloitte Touche Tohmatsu Verein.
Deloitte & Touche USA LLP is the U.S. member firm of Deloitte Touche Tohmatsu. In the U.S., services are provided by the subsidiaries of Deloitte & Touche USA LLP (Deloitte & Touche LLP, Deloitte Consulting LLP, Deloitte Financial Advisory Services LLP, Deloitte Tax LLP and their subsidiaries), and not by Deloitte & Touche USA LLP.




Contact?Information