IT Risk Advisory Senior Associate

Job Description

Salary: 75,000-90,000

TITLE: IT Risk Advisory Senior Associate

REPORTS TO: RAS Director

Who we are: Pease Bell, CPAs is a rapidly growing mid-sized accounting firm serving an expanding nationwide client base. Now, with multiple offices and more than 150 employees, our priority is to provide the same exceptional quality of client support that has built our reputation in a crowded CPA marketplace.

Our diverse clientele engages us for specialized expert assistance in Accounting Advisory, Audit & Assurance, Business Consulting, Buy-Side Advisory, Employee Benefit Plans, Estate Planning, Mergers & Acquisitions, and Tax Compliance & Consulting. Our services cover a variety of industries, including Construction, Distribution, Healthcare, Manufacturing, Motion Picture, Nonprofit, Real Estate, and services.

General Summary of Position:

We are currently seeking professionals at the Senior Associate level (2+ years) of experience to join our IT Risk Advisory team. The IT Risk Advisory Senior Associate is responsible for demonstrating skills in assessing IT process and technology risks, identifying, and evaluating the design of IT controls, designing, executing, and documenting IT audit tests, and making initial determinations of reportable issues. During the audit process, the IT Risk Advisory Senior Associate will work timely and with modern audit methodologies and other applicable standards and defined plans, budgets, and schedules.

Responsibilities

Perform comprehensive risk assessments and analysis over IT and business processes sufficient to scope applicable engagements and understand the design and operational effectiveness of applicable client controls.

Design and execute walkthroughs and tests of operating effectiveness over controls in the entity, business units, IT, applications, and infrastructure, supporting various audits (e.g., SOC, HIPAA, financial (ITGC), SOX 404, IT risk assessment for various industry frameworks).

Provide insight and recommendations to clients regarding gaps and improvements in controls' design and operating effectiveness.

Collaborate with the team in designing audit procedures, project management solutions, and client deliverables.

Maintain effectiveness and efficiency while working on multiple projects and responsibilities.

Provide appropriate and timely feedback to leadership on issues and the progress of engagements.

Collaborate with the team in designing audit procedures, project management solutions, and client deliverables while advising our clients on industry-specific issues.

Continual learning and updating of skills on applicable standards, frameworks, and interpretative guidance (e.g., attestation and auditing standards, SOC, HIPAA, Privacy Rights, COSO, SOX 404).

Performing control testing on the more complex areas of an audit program.

Managing and supervising IT Risk Advisory Associates.

Education, Experience, and Skills:

Significant experience in understanding and applying relevant technical knowledge in at least one of the following engagement types: (a) System and Organization Controls (SOC) reporting engagements, (b) HIPAA Compliance, (c) Information Technology General Control audits (financial audit support), (d) privacy rights assessments, and/or (e) internal or operational audits.

Bachelor’s degree in information systems, accounting, IT, security, or another relevant field.

CISA is required; CPA, CIA, CISSP, or similar certification is desired.

Advanced written and verbal communication skills.

Capable of working in a demanding, deadline-driven environment.

Strong work ethic.

Ability to demonstrate an understanding of risks and controls in IT and business processes, and how to apply them to client situations.

Strong time management skills: the ability to effectively participate in multiple commitments and engagements while supervising/managing myself and others to finish projects accurately and in a timely manner.

Solid organizational skills, including the ability to meet project deadlines while maintaining quality, attention to detail, and accuracy in work products.

Ability to work effectively alone and with teams.

Strong interpersonal skills: capacity and interest to develop and maintain strong relationships with internal and client personnel.

Entrepreneurial spirit and the ability to work effectively with minimal supervision.

Technical awareness/experience (e.g., servers (Windows, Unix, Linux), databases, network devices, applications, utilities, Microsoft Office.

Demonstrated integrity within a professional environment.

Compensation & Benefits:

The compensation band for this role is $75,000 - $90,000 based on experience and skillset.

Exceptional health, vision, and dental care.

Flexible PTO with progressive time off for life events such as the purchase of a home, the addition of a family member, or marriage.

Hybrid work model.

Ability to join a growing team