Assurance Associate, Third Party Attestation - Summer 2025 (Philadelphia/Cherry Hill)

Job Summary:

The  Assurance Associate, Third Party Attestation will be responsible for the preparation of third-party attestation reports, including System and Organization Controls (SOC) 1, SOC 2, SOC 3, SOC for Cybersecurity and WebTrust for CAs, as well as HITRUST, SSPA, ISO, MRC and CSA STAR applying most areas of the governing standard as necessary and documenting, validating, testing, and assessing various control systems, including internal controls.  Our TPA individuals specialize in these specific areas to understand the entire technology risk umbrella rather than maintaining overall knowledge in Information Technology General Control (ITGC) audit or IT audit. 
 

Job Duties:

Control Environment:

• Applies knowledge and understanding of the collective effect of various factors on establishing or enhancing effectiveness, or mitigating the risks, of specific policies and procedures by:
  • Identifying and considering all applicable policies, laws, rules, and regulations of the firm, regulators, or other authoritative bodies as part of engagement team
  • Making constructive suggestions to improve client internal control procedures
  • Documenting and validating the operating effectiveness of the clients’ internal control system
  • Documenting business and IT processes and controls and tests key controls for service organizations in a variety of industries
  • Identifying and prioritizing key risks, and assesses their impact and likeliness of occurrence
  • Communicating to the client areas to improve processes, strengthen controls, mitigate risks, and/or increase efficiency
  • Developing and maintaining relationships with client personnel and management
  • Ensuring technology is appropriately integrated into the examination process

GAAS:

• Applies knowledge and understanding of professional standards; application of the principles contained in professional standards; and the ability to document and communicate an understanding and application of professional standards on an engagement by:
  • Developing and applying an intermediate knowledge of auditing theory, a sense of audit skepticism, and the use of BDO audit manuals
  • Applying auditing theory to various client situations
  • Documenting working papers and attestation reports in line with BDO policy, identifying deviations and notifying more senior team members in order to obtain appropriate approvals
  • Applying knowledge to identify instances where testing may be reduced or expanded and notifying more senior team members of the occurrence
  • Contributing ideas/opinions to the engagement team

Methodology:

• Applies knowledge and application of BDO standards to guide effective and efficient delivery of quality services and products by:
  • Completing all appropriate documentation of BDO work papers
  • Ensuring assigned work is performed in accordance with BDO methodology and requirements

Research:

• Applies methodology used to seek or maintain information from authoritative sources and to draw conclusions regarding a target issue based on the information by:
  • Researching basic and intermediate topics and forming an initial opinion on the treatment independently

Training:

• Attend professional development and training sessions on a regular basis
• Complete required CPE hours to maintain applicable certifications
   

Qualifications, Knowledge, Skills and Abilities:

Education:

• Bachelor’s degree in Accounting, Computer Science, Management Information Systems, Finance, Economics, Business Administration, Managerial Marketing and Entrepreneurship with a concentration in any of the previous areas noted, required
• Master’s degree in Accounting, and minor or dual major in Information Systems or other relevant advanced degree, preferred

Experience:

• Less than one (1) year of prior experience in IT, internal or external audit or relevant industry experience, required 
• Leadership experience, preferred
• Experience performing SOC, WebTrust, HITRUST, SOX, ISO 27001 and security/privacy advisory engagements, preferred
• Prior internship or experience working within a public accounting or internal auditing environment, preferred

License/Certifications:

• One or more of the following certifications are preferred: 
  • Certified Public Accountant (CPA) 
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • ISO 27001 Lead Auditor certification
  • HITRUST Certified Common Security Framework Professional (CCSFP)
  • Certified Internal Auditor (CIA)
  • Certified Information Security Manager (CISM)
  • Certified Ethical Hacker (C | EH)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified in the Governance of Enterprise IT (CGEIT)

Software:

• Proficiency in Microsoft Office Suite, specifically Word, Excel, and PowerPoint, required 

Other Preferred Knowledge, Skills & Abilities:

• Strong written and verbal communication skills
• Ability to follow instructions as directed
• Ability to work effectively in a team setting 
• Ability to travel as necessary
• Takes appropriate actions without being asked
• Basic understanding of the planning and coordination stages of an audit preferred
• Ability to successfully interact with professionals at all levels

Individual salaries that are offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate’s qualifications, experience, skills, and geography.

California Range:  $78,000 - $82,000
Colorado Range:  $65,000 - $68,000
NYC/Long Island/Westchester Range:  $72,000 - $78,000
Washington Range:  $65,000 - $82,000

Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world. 

At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team.  BDO professionals provide assurance, tax and advisory services for a diverse range of clients across the U.S. and in over 160 countries through our global organization.

BDO is the first large accounting and advisory organization to implement an Employee Stock Ownership Plan (ESOP). A qualified retirement plan, the ESOP offers participants a stake in the firm’s success through beneficial ownership and a unique opportunity to enhance their financial well-being. The ESOP stands as a compelling addition to our comprehensive compensation and Total Rewards benefits* offerings. The annual allocation to the ESOP is fully funded by BDO through investments in company stock and grants employees the chance to grow their wealth over time as their shares vest and grow in value with the firm’s success, with no employee contributions. 

We are committed to delivering exceptional experiences to middle market leaders by sharing insight-driven perspectives, helping companies take business as usual to better than usual. With industry knowledge and experience, a breadth and depth of resources, and unwavering commitment to quality, we pride ourselves on:

• Welcoming diverse perspectives and understanding the experience of our professionals and clients
• Empowering team members to explore their full potential
• Our talented team who brings varying skills, knowledge and experience to proactively help our clients navigate an expanding array of complex challenges and opportunities
• Celebrating ingenuity and innovation to transform our business and help our clients transform theirs
• Focus on resilience and sustainability to positively impact our people, clients, and communities
• BDO Total Rewards that encompass so much more than traditional “benefits.”  Click here to find out more!

*Benefits may be subject to eligibility requirements.

Equal Opportunity Employer, including disability/vets