Deloitte | India Offices of the US

At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security.

By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas.

As an A&IC Senior consultant, you will build and nurture positive working relationships with Deloitte teams who work with clients with the intention to exceed client expectations. You will:

• Identify and evaluate complex business/ technological risks, internal controls which mitigate risks, and related opportunities for internal control improvement

• Perform system evaluation and/or audit IT and business process as a part of SOX 404, SSAE 18 or ICFR assessment in accordance with PCAOB/AICPA guidance using Deloitte methodology

• Perform complete GITC evaluation and testing across IT platform including, operating systems, databases, and network components (both On-Premises and Cloud hosted Infrastructure)

• Perform risk assessment for organizations to identify prioritized list of risk/audit

• Perform controls benchmarking to leading internal controls framework to identify gaps and excess controls

• Manage multiple assignments and demonstrate strong people management & networking skills

• Ensure timely completion of activities with quality, complete ownership of deliverables and early escalations to management, if required

• Play substantive/lead role on projects including project planning, economics, and managing quality

• Participate in proposal development efforts

• Assist in technical knowledge development and training efforts

• Demonstrate high level of understanding of internal and external client's business

• Four to Eight years of relevant work experience, with industry focus a plus

• Strong orientation towards Technology Security, Internal control risk assessment, Operational, and IT auditing

• Experience with SOX, Internal Audit, and SSAE 18 (At least one of three)

• Experience of assessing and reviewing technology risks and controls over areas including access management, change management & computer operations for IT platforms (operating systems, databases, and network components)

• Cloud computing audit & risk management experiences

               o Hands-on experience in evaluating Cloud Computing risks and controls. In-depth understanding of cloud computing terminology, cloud governance & risk management.

               o Understanding of and experience in analyzing access security, Change management and operational controls across leading cloud service providers (AWS, Microsoft Azure, GCP, OCI, IBM Cloud, others)

               o Experience on supporting internal/external security audits with significant cloud hosted scope, designing and building cloud compliance programs. Basic understanding of cloud native tools and deployment mechanisms.

• Exposure to any one industry—Financial Services; Technology, Media & Telecom; Life Sciences & Health Care; Energy & Resources; Consumer & Industrial Products

• Demonstrate MS office proficiency, problem solving & analytical skills, and strong verbal & written communication skills

• Ability to prioritize tasks, work on multiple assignments, manage ambiguity, and work independently or as part of a team with professionals at all levels

• Big Four experience preferred

• Bachelor’s degree

• MBA in Finance/Accounting/IT/Information security and or CA/CPA/CIA/CISA/CISSP