Consultant - Technology Risk

Technology Risk Consultants at Virchow Krause will work as a team to understand our client's business exposures and implement creative and cost effective solutions that reduce risk and enhance the quality, assurance and security of information systems and business processes.

Consultants research, organize and analyze data by combining our information resources and tools with information gathered through interactions with clients, colleagues, and third party contacts. They identify and test an organization's internal control policies and procedures with a focus on technology and document the application and control findings. These services may be provided as part of a client?s internal audit initiative, audit of financial statements, or as individual projects resulting from major organizational changes, implementation of new technologies, or reliance on third-party service providers. Consultants prepare working papers and deliverables for clients.

We are currently looking for a Consultant to join our Milwaukee Technology Risk Services practice.
The Consultant in Technology Risk Services at Virchow Krause will audit client IT controls to assess exposure to risk by evaluating the sufficiency of the IT control environment, policies, procedures, design effectiveness and operational effectiveness through testing, determine deficiencies and develop remediation activities.

Additionally, the Consultant will:

Contribute to a strong client relationship through interactions with client personnel.
Understand engagements as they relate to a client's business.
Develop knowledge in specific areas of industry or functional specialty.
Demonstrate understanding of information technology solutions.
Assume responsibility for specific components of engagement delivery.
Contribute to engagement planning and ensuring that products/deliverables meet contract/workplan.

This position requires:
1 to 2 years of related experience within professional services, internal audit or IT audit is preferred.
Knowledge of internal control concepts, risk assessments, business process and IT control testing, or operational auditing.
Successful experience identifying controls, developing and executing test plans.
Ability to effectively present technical detail in writing.
Ability to summarize technical details into concise action plans.
Ability to participate in presentations.
Experience with regulatory compliance, including Sarbanes-Oxley, HIPAA, and GLBA.
Experience with industry accepted audit frameworks such as COBIT and COSO is preferred.
Technology audit certifications (CISSP, CISA, CISM)are preferred.
BA/BS in Business Administration, Accounting, Computer Science, Information Systems Administration or related field is required.
Must be open to travel 25% to 50%.