IT Audit SOX and Systems Security Manager in Chicago, IL
IT AUDIT, SOX & SYSTEMS - SECURITY MANAGER/CONSULTANT
POSITION SUMMARY
As companies become increasingly dependent on information technology (IT) to conduct daily business activities, they need to control and secure their overall technology infrastructure. Grant Thornton's Business Risk Services (BRS) practice, part of Business Advisory Services (BAS), addresses these controls and security issues. BRS offers an opportunity for you to leverage your accounting, auditing, and IT experience to broaden your business and project management skills in a rewarding and challenging environment. BRS focuses on reviewing operational, financial, and technology processes to provide management with an independent assessment of business risk, internal control, and the overall effectiveness and efficiency of the process.
The BAS IT Security Manager is responsible for all phases of project and engagement management for multiple clients in a wide variety of industries. Responsibilities include planning, directing, and completing information security assessments, information systems audits, and business process control review engagements; conducting activities related to SOX and Sarbanes-Oxley attestations; and developing and managing staff. The BAS IT Audit Manager works closely with partners and staff on client management, practice development, and business development. The BAS IT Security Manager is responsible for standard application of security practice across BAS IT and will participate in development of standard security service methodologies with other Grant Thornton national offices.
ESSENTIAL DUTIES AND RESPONSIBILITIES:
-Adhere to the highest degree of professional standards and strict client confidentiality.
-Manage, direct, and monitor client services teams on multiple engagements; plan, execute, direct, and complete information systems audits, business process control reviews, and other service offerings in a wide variety of industries; and manage to budget.
-Understand and manage firm risk on audits and proposals.
-Develop a project vision and set challenging personal and client service team goals.
-Manage, develop, train, and mentor staff on projects and assess performance for engagement and year-end reviews.
-Review operational, financial, and technology processes to provide management with an individual assessment of business risk, internal control, and the overall effectiveness and efficiency of the process.
-Work closely with clients and staff to develop client and project risk assessments, implement opportunities, and recommendations regarding business and IT process optimization, profit improvement, internal control, and compliance.
-Work with audit and assurance teams and the client to plan engagement strategy, define objectives, and address technology-related controls risks.
-Work with management consulting teams to implement controls in new systems deployment.
- Lead security risk and vulnerability assessments to identify client business risks.
-Evaluate and test business processes and business controls and identify areas of risk.
-Apply current knowledge of IT trends and IT systems processes to identify security engagement issues and risk management issues.
-Lead engagements with performing general computer and application controls reviews.
-Lead the preparation of Service Audit Reports (SAR) in compliance with SAS70.
-Lead the development and implementation of Business Recovery and Continuity Plans.
-Lead the performance of security and penetration studies.
-Participate in internal auditing outsourcing and co-sourcing engagements for clients.
-Think strategically about practice enhancements and be able to embrace and manage change.
-Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively.
-Consult, work with, and service client base to make recommendations on business and process improvement and serve as a business advisor to client.
-Work closely with partners, managers, and staff to integrate practice development skills into a team approach to client service and new business development.
-Team with partners and senior managers on proposals and business development calls.
-Maintain strong client relations and cross-sell services within the assigned group of clients.
-Recruit and retain s To Apply to this job go to http://www.GadBall.com or click here