RSM
Supervisor, Technology Risk - SOC (Financial Services Industry)
RSM, New York, New York, us, 10261
RSM Professional Services
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM. Responsibilities:
Consulting with client leadership on the design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies. Create internal control documentation for the engagement including narratives, process and data flows. Consulting with client leadership on strategic plans and other business matters, helping our clients to anticipate emerging risks and information technology opportunities. Managing SOC attestation and other third-party opinion services for clients within the financial services industry. Supporting external financial statement and SOX compliance engagements for application and information technology general computer controls. Assessing IT security policies, procedures, and controls of our clients' business applications, networks, operating systems, and other components of their technology infrastructure. Reviewing, documenting, evaluating, and testing application controls, particularly automated controls on a wide range of ERP systems and software applications across a wide variety of client business processes. Identifying internal IT controls, assessing their design and operational effectiveness, determining risk exposures and developing remediation plans and determining technical and business impact of identified security and control issues and providing remediation guidance to clients. Helping grow RSM's business through involvement in various business development and client sales opportunities. Required Qualifications:
Bachelor's degree or equivalent 4 or more years of experience in business process controls and IT risk management, internal audit, IT security, or other IT compliance related work Experience leading engagements and managing staff Experience managing project financials and managing projects to completion within agreed upon budgets Experience managing people, mentoring staff, providing performance feedback, and monitoring workloads of the team while meeting stakeholder and client expectations Clear understanding of relevant regulations and industry standards (e.g., FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA and GLBA) Preferred Qualifications:
Strong understanding of information technology controls and security experience in a widely used financial application (SAP, Oracle, JD Edwards, PeopleSoft, etc.) Experience within the financial services industry highly preferred Professional certification: Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professionals (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Privacy Professional (CIPP)
We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM. Responsibilities:
Consulting with client leadership on the design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies. Create internal control documentation for the engagement including narratives, process and data flows. Consulting with client leadership on strategic plans and other business matters, helping our clients to anticipate emerging risks and information technology opportunities. Managing SOC attestation and other third-party opinion services for clients within the financial services industry. Supporting external financial statement and SOX compliance engagements for application and information technology general computer controls. Assessing IT security policies, procedures, and controls of our clients' business applications, networks, operating systems, and other components of their technology infrastructure. Reviewing, documenting, evaluating, and testing application controls, particularly automated controls on a wide range of ERP systems and software applications across a wide variety of client business processes. Identifying internal IT controls, assessing their design and operational effectiveness, determining risk exposures and developing remediation plans and determining technical and business impact of identified security and control issues and providing remediation guidance to clients. Helping grow RSM's business through involvement in various business development and client sales opportunities. Required Qualifications:
Bachelor's degree or equivalent 4 or more years of experience in business process controls and IT risk management, internal audit, IT security, or other IT compliance related work Experience leading engagements and managing staff Experience managing project financials and managing projects to completion within agreed upon budgets Experience managing people, mentoring staff, providing performance feedback, and monitoring workloads of the team while meeting stakeholder and client expectations Clear understanding of relevant regulations and industry standards (e.g., FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA and GLBA) Preferred Qualifications:
Strong understanding of information technology controls and security experience in a widely used financial application (SAP, Oracle, JD Edwards, PeopleSoft, etc.) Experience within the financial services industry highly preferred Professional certification: Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professionals (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Privacy Professional (CIPP)