IT Audit, Cybersecurity & Risk Advisory Manager (SOC Focus) Job at Baker Tilly U

IT Audit, Cybersecurity & Risk Advisory Manager (SOC Focus) Join Baker Tilly, a leading advisory, tax and assurance firm with a global presence in major U.S. and international financial centers. Baker Tilly provides professional services across audit, tax, and advisory disciplines through an alternative practice structure in line with the AICPA Code of Professional Conduct and applicable laws. Baker Tilly US, LLP is a licensed independent CPA firm offering attest and advisory work. Overview Baker Tilly Advisory Group, LP and Baker Tilly US, LLP, trading as Baker Tilly, are independent members of Baker Tilly International, a worldwide network of independent accounting and business advisory firms in 141 territories with 43,000 professionals and a combined worldwide revenue of $5.2 billion. Baker Tilly aims to deliver exceptional client service in information technology risk advisory, focusing on IT audit, cybersecurity, and SOC (System and Organization Controls) assessments. Responsibilities Work closely with client executives and management teams to understand their businesses and assist in identifying and managing financial and operational risks within their business systems to ensure technology risks are managed. Develop in-depth knowledge of clients’ businesses and industries through direct client interaction while working on multiple aspects of an engagement. Think independently and strategically about clients’ business, systems and risks, providing recommendations for business and process improvements based on knowledge gained relative to the client’s operations, processes and business objectives. Provide strategic business advice by assisting in the implementation of new processes and controls that address key risks. Assess, manage and optimize information technology risk across a wide range of areas, including cybersecurity, IT strategy and governance, IT regulatory and compliance requirements, and business continuity. Review clients' processes and controls against industry frameworks, identifying gaps in design and execution, and communicating issues and recommendations to clients. Manage the development of audit programs and the execution of internal audits and IT control assessments in the areas of: IT strategy and governance IT operations, business continuity and disaster recovery Cybersecurity Third‑party risk ITGC and application controls SOC reporting Regulatory and compliance requirements Draft comprehensive executive summaries and final reports for delivery to clients, documenting and reviewing engagement work papers in accordance with industry‑accepted internal audit methodologies. Act as a valued business advisor, build relationships and communicate effectively with the client to provide superior client service. Facilitate professional and effective presentations to internal and external audiences. Continue to develop your knowledge and experience working with a variety of technology environments, platforms, applications and tools/utilities. Assist with managing client engagement staffing, billings/collections, and ensure client profitability targets are met. Utilize entrepreneurial skills to network and build strong relationships internally and externally with clients and the community. Invest in your professional development individually and through participation in firm‑wide learning and development programs. Support the growth and development of team members through the Baker Tilly Care and Teach philosophy, helping associates meet their professional goals. Enjoy friendships, social activities and team outings that encourage a work‑life balance. What You Will Do Lead SOC (System and Organization Controls) audits for clients, ensuring alignment with frameworks such as SOC 1, SOC 2, and SOC 3. Collaborate with cross‑functional teams to map controls, evaluate effectiveness, and recommend remediation for identified gaps. Prepare and present audit findings, risk assessments, and control enhancement plans to senior client management. Maintain up‑to‑date knowledge of industry regulations and emerging cybersecurity threats. Guide junior team members, providing mentorship and knowledge sharing. Qualifications Bachelor’s degree in management, computer information systems, computer science, accounting information systems, computer engineering, industrial engineering, or a related field. CISA, CISSP, CISM, CIA, or CPA certification(s) required. Minimum 5 years of experience with IT audit or cybersecurity, with prior experience performing SOC audits preferred. Experience with Security+ certification, cloud audit experience and related certifications preferred. Experience as a client‑serving professional for a consulting firm desired. Excellent analytical, technical and problem‑solving skills, with strong attention to detail. Exceptional verbal and written communication, collaboration, and time‑management skills. Compensation The compensation range for this role is $123,840 to $234,770. Actual compensation is influenced by a variety of factors including but not limited to skills, experience, qualifications and geographic location. EEO Statement Baker Tilly is an equal‑opportunity/affirmative‑action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status, gender identity, sexual orientation, or any other legally protected basis, in accordance with applicable federal, state or local law. #J-18808-Ljbffr