Technology Risk Manager

As a member of the IT Audit team, you will contribute to IT audit client engagements in Luxembourg and abroad. A significant component of your work will be to support the Financial Audit as a member of integrated audit teams with IT related audit work, including evaluation of a client’s IT environment, testing of IT controls and data analytics. Other areas of services include advisory work in cybersecurity, IT strategy, architecture and optimization, business continuity planning, IT Governance and IT service management, information systems requirements analysis, solution design, implementation support, and technology-related regulatory compliance.

This role offers you the unique opportunity for quick onward career progression while working with a broad range of clients across a number of sectors.

Your responsibilities:

We provide assurance over the most pressing IT risks facing our financial audit clients, and we also advise our clients on how best to manage their risks in an ever-changing business environment. As a Manager/ Senior Manager in the IT Audit team, you will contribute to client engagements in Luxembourg and abroad. A significant component of your work will be to support the Financial Audit as part of integrated audit teams with respect to the IT related audit work, including evaluation of a client’s IT environment, testing of IT controls and data analytics. Other areas of services include IT internal audit, attestations and certification audits, technology risk management and information security, IT governance and technology-related regulatory compliance.

You will be managing teams of IT Auditors and other EY professionals to deliver quality services to our clients. You will also be participating in market, sales and business development activities. As part of our team you will be expected to take on responsibility early, while continuously developing your personal skills through learning, experiences and coaching.

Your profile:

• You hold a Master’s degree or equivalent certification in Computer Science, Information Systems, engineering or other appropriate academic majors.
• You have a minimum of:
  • 5 years of work experience applying relevant IT audit skills in audit engagements
  • 3 years of experience in a supervisory/managerial capacity leading IT audit  
  • 3 years of experience as the supervisory senior/manager responsible for supervising audit professionals performing IT general controls, and audit quality inspection processes, including internal and/or external inspection processes.  
• You have sound knowledge of and experience in common IT frameworks and standards, such as: ITIL, COBIT, ISO27k, ISO 22301, CMMI, etc.
• You are fluent in French and English; additional language skills will be considered as an asset.
• You are highly organized and flexible, with the ability to learn quickly and leverage skills in new situations.
• You can anticipate problems and take decisive action, giving regard to the impact on both the client and the company.
• You strive to obtain and share knowledge, ideas and solutions to improve client's business and processes.

It is welcomed for you to have:

• Additional relevant certifications, such as CISA, CISM, CGEIT, CRISC, ITIL, CISSP, CIA, ISO 27001 Lead Auditor/Implementer, ISO22301 Lead Auditor/Implementer, Prince2 or PMP are considered an advantage.
• Significant experience in applying relevant technical knowledge in at least one of the following engagements: (a) financial statement audits; (b) internal or operational audits; (c) ISMS implementation/ audit; (d) business continuity management implementation; and/or (e) ERP security and control reviews (Oracle, SAP, MS Dynamics).
• Experience auditing general computer controls and IT control testing of applications, operating systems, and databases. 
• Prior experience in project planning and management will be a plus.
• Knowledge of basic principles of Accounting and Financial Reporting.
• Knowledge of business and accounting information systems (Accounting, Billing, Payroll, ERP systems such as SAP, Navision, etc.).
• Knowledge of IT architecture and network design, operating systems, database management systems.
• Knowledge of statistics, modelling and data analytics tools

What we look for:

What’s most important is that you’re dedicated to working with your colleagues as part of a high-performing team. You’ll need to demonstrate enthusiasm, high motivation and passion to develop fast in a multinational working environment. You’ll need to thrive in picking up new skills and talents as you go, so natural curiosity, a lot of questions and the confidence to speak up when you see something that could be improved are essential. If you’ve got the right combination of technical knowledge and communication skills, this role is for you.