Ernst & Young (EY)

Advisory - Risk - IT Audit Manager/Senior Associate

Ernst & Young (EY)
Full Time
Intermediate (3-6 years)
Bachelor
English, Cantonese, Mandarin (Putonghua)

Job Description

Advisory - Risk - IT Audit Manager/Senior Associate

Location: CN-Hong Kong-Hong Kong

Our independent position and assessment capabilities provide clients with a candid and reliable overview of their risk landscape and the controls in place. As a risk assurance professional, you will be leading assessments and certification services that will directly support C-suite discussions and important business decisions regarding compliance, cost and quality of our clients’ risk management programs. You will be part of an international network of professionals across geographies and sectors, delivering assessment and certification services that will help verify compliance and improve the performance of our clients.
Our structured career framework means you’ll continue to develop, whatever level you’re at. So whenever you join, however long you stay, the exceptional EY experience lasts a lifetime.

Qualifications

Responsibilities:
  • Support IT audit executive in the updating and maintenance of the audit strategy and plan
  • Handle of IT internal control project, IT audit, general computer/application control review, documentation and testing, and other IT risk advisory services for client companies
  • Execution of SOX IT audits and attestations
  • Provide feasible recommendations for improvement
  • Document the audit work performed and draft internal audit reports
To qualify, you must meet the following requirements:
  • Degree holder in Computer Science/Information System or related discipline with relevant professional qualifications such as CISA or CISSP
  • 3 - 8 years (over 5 years of experience will be considered for manager position) external/internal IT audit and/or IT technical experience obtained from other Accounting/ Consulting firms; or with commercial/public sectors which cover general IT controls, application controls, general network infrastructure controls and data extraction and analysis
  • Familiar with IT audit methodologies and requirements
  • Good technical control knowledge on Windows, UNIX, MsSQL, Oracle. Knowledge on ERP system (i.e. SAP, Oracle, JD Edward) is an advantage
  • Exposure in data analytics and proficiency in analytic software (CAATs, Access, SQL Server, SPSS, SAS, R, Tableau, QlikView) is an advantage
  • Logical thinker with strong interpersonal and organizational skills. Able to interact effectively with both management and clients
  • Excellent command of spoken and written English and Chinese. Mandarin is an advantage
  • Good computer skills - Word, Excel, PowerPoint, Visio and Chinese processing

Professional Qualifications

  • Certified Information System Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)

Technical Skills

  • Accountancy
  • Analytics
  • Audit
  • Internal Audit
  • Internal Control
  • IT Audit
  • Microsoft Access
  • Microsoft Excel
  • Microsoft Powerpoint
  • Microsoft SQL Server
  • Microsoft Visio
  • Microsoft Word
  • Oracle Database
  • Oracle ERP
  • Qlikview
  • R
  • Risk Management
  • SAP
  • Sarbanes-Oxley
  • SAS (Statistical Software)
  • SQL
  • UNIX