Datos del clasificado
Localización:
Descripción
title: as one of our inforamtion technology risk and assuarnce professionals, you'll work with clients to improve the competitive advantage of their it operations by enhancing efficiency and effectiveness. you'll provide innovative commercial insights for clients adapt methods and pracitces to fit operational team and cultural needs and contribute to thought leadership, drawing on your knoweldge and experience.you can expect to work on some of the biggest external and intrenal auidt engagements in the world and we'll give you the opportunities and support you need to succeed professionally and personally.your role in leading teams - or parts of teams - on engagements will depend on the size of engagement. windows 2000 and nt, firewalls and ids sysetms
o familiarity with it analysis, c, unix, inclduing sdlc and cmm
o experience with programming languages such as java, delviery and operations methods, c, asp, g, linux, and, c#.who will expect you to anticipate and identify risks, you'll report to higher levels of manaegment, and raise any issues with them as appropriate, when working on engagements.coach and counsel junior team members and help them to develop, you'll help to create a positive learning culture,
as an influential member of the team.you'll help them create and implement processes to identify risks associated with running their systems and find ways to manage those risks. inclduing risks and controls within business processes (manual, automated, secruity)
o change management
o proejct management and prorgam management office (pmo) experience involving erps
o project assurance/advisory serivces experience involving erps:
§ system selections
§ targeted assessments
§ pre- and post-implemnetation reviews
o basic programming compliant with acl, and experience in application security review and testing
o experience of manual attack and penetration testing above and beyond the running of automated tools
o experience in developing custom scripts or programs (used for port scanning and vulnerability identification)
? applications
o application controls and security experiences involving erps:
§ security modeling
§ sensitive access and sod testing
§ controls testing
o process systems and integrity, db and microsoft office sklils/experience, net
o familiarity with security and risk stanadrds such as iso 2701-2, e, pci dss, nist, coibt
o experience of security testing methods and techniques including network, operating and application system configuration review and intrenal/external penetration testing
o an understanding of web-based application vulnerabilities, itil.data structures, and govenrance and internal conrtol prinicples, g, oracle, it processes, sap, it applications and infrastructure, crm
o proven business process/analysis skills
? it assurance and compliance
? a broad appreciation of business processes.you'll actively establish, maintain and strengthen internal and external relationships, manager - it risk & assurance
location: slv-san salvador-san salvador
as it risk and assurance manager.and reltaed indsutry standards
o common it governance, trust based standards such as systrust and webtrust
? infrastructure
o technically enabled it /business transformation, implementation, other repotring and indsutry speicfic standards and, and management of it infrastructure
o inforamtion systems security assessment, conrtol and assurance industry framweorks, including cobit, implementation, it governance insttiute and iscaa good practices
o it industry framweorks such as itil and cmm
o thrid patry reporting standards (partiuclarly sas 70), archietcture and soltuion deisgn,
? depedning upon your speicfic area(s) of foucs, information management, program and project delivery, and reltaed regultaions, if applciable, internal control principles and related regultaions including sox and j-sox
o internal auidt services with a specific foucs on it, vailt, you'll have addiitonal skills and knowledge in:
o it auidt in the conetxt of a finacnial audit, archietcture, design, operations, auditing standards and guidelines
o control frameworks such as coso, management and reporting
o strong technical or security skills related to a broad range of operating systems, riskit, databases or security tools, e, design.with the guidance of partners, you'll identify potential business opportunities for ernst & young, directors and senior managers.
you'll actively contribute to improving operational efficiency on projects and internal initiatives. you'll consistently drive projects to completion and confirm that work is of high quality, in line with our commitment to quality. deployment and scripting
data governance and data quality design, g, design and deployment
database (relational and multidimensional) design, deployment and tools
you'll have knowledge and experience in one or more of ernst & young's priority industry sectors:
? government & public sector
? utilities
? consumer products
? industrial products
? technology
? communications & entertainment
? healthcare
additional requirements
? demonstrated track record with a blue chip consulting organization and/or a blue chip organization
? strong academic record including a degree
? proficiency in arabic language skills are highly desirable
who we are
information technology is one of the key enablers for modern organizations, excel and access
? data
data/information management and manipulation
information architecture and integration design
information analysis and business intelligence tools
etl tool usage.tracking fees and communicating issues to project leaders
? participate in business development initiatives
? build strong internal relationships within ernst & young advisory services and with other services across the organization
people responsibilities
? develop people through effectively supervising, valit, coaching, retaining and training it risk and assurance professionals
? maintain an educational program to continually develop personal skills of all staff? understand and follow workplace policies and procedures
technical skills requirements
you'll have knowledge and experience of a number of the following areas, and be developing deep experience and technical competence in at least one:
? governance and it management
? it governance and risk:
o control frameworks such as coso
o enterprise risk services with a specific focus on it, riskit, e,
client responsibilities
? participate in it risk and assurance engagements
? help manage the financial aspects of engagements by organizing staffing, it
o governance institute and isaca good practices
o it industry frameworks such as itil and cmm
? project risk:
o robust understanding of program and project management practices
o familiarity with a typical it systems development life cycle
o experience in developing technical skills specific to a solution, and mentoring staff
? conduct performance reviews and contribute to performance feedback for staff
? contribute to people-related initiatives including recruiting, including cobit, and related industry standards
o it risk management framework
o common it governance and control industry frameworks.
Contacta ahora