« Back to Job Openings

IT Audit – Risk and Assurance

Pay Rate:


The role of an IT External Audit Manager in IT Risk & Assurance services will be responsible for:

·         Managing multiple client engagement teams at an executive level within the practice and the firm.

  • Leading IT portions of external audits for public (Sarbanes-Oxley – SOX) and private companies, Service Organization Control engagements (SOC reporting formerly known as SAS 70, Trust Services, and WebTrust), and IT advisory services relating to Risk and Control.
  • Assist with business development activities across asset management, banking, capital markets and insurance sectors
  • Provide guidance and share knowledge with team members and participate in performing review procedures especially focusing on complex, judgmental and/or specialized issues.
  • Work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement.
  • Maintain relationships with client management to manage expectations of service, including work products, timing, and deliverables.
  • Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client’s business/industry to identify technological developments and evaluate impacts on the client’s business.
  • Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services.


To qualify, candidates must have:

  • A bachelor’s degree and approximately 5 years of related work experience; or a graduate degree and approximately 4 years of related work experience
  • A degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline
  • Approximately 4 years of experience working as an IT auditor or IT risk adviser for a public accounting firm, a professional services firm, or in a progressive Internal Audit group
  • Approximately 4 years of relevant experience at a financial services company or comparable experience as an advisor to a financial services company
  • Assisting with business development activities across asset management, banking, capital markets and insurance sectors
  • Significant experience in having applied relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) SOC engagements; and/or (d) ERP security and controls reviews (Oracle, SAP, PeopleSoft), (e) data analytics
  • Strong project management skills
  • Advanced written and verbal communication skills and presentation skills
  • Excellent leadership, teamwork and client service skills
  • Demonstrated integrity within a professional environment

CPA, CA, CISA, CISSP, CISM, CBCP, CIA or CFE certification is desired; non-certified hires are required to become certified within 1 year from the date of hire. Based on an individual’s professional background, area of specialization, or industry focus, we recognize that other certifications, credentials, or experience may be more relevant than the listed certifications and therefore may be acceptable substitutes with written consent of EY’s Americas IT Risk & Assurance leadership.

« Back to Job Openings