- Actively manage, with a hands-on approach when required, small project teams for all aspects of an engagement (e.g., planning, budgeting, economics management, execution, reporting and closure)
- Identify and assess the risks, root causes, impacts and mitigation of information technology general controls (ITGC), business cycle controls (BCC) and application controls' deficiencies
- Plan, lead, conduct and close SOC engagements (e.g., SOC 1/CSAE 3416 and SOC 2) and Financial Statement ITGC and IT application controls audits
- Develop solutions on a variety of engagements through collaboration with the team and clients
- Lead and/or manage multiple complex engagements, from start to finish, to deliver the planned scope within agreed budgets and timelines
- Synthesize fieldwork into well-written and concise reports / presentations
- Write reports and present to clients, including: executive summaries, audit findings and recommendations on control deficiencies
- Contribute to business development processes including research and analysis, writing and developing proposals as well as working with the engagement lead to develop tailored project plans and work programs
- Continuously share knowledge, train and actively contribute to developing the ERS team's knowledge base through taking part in learning and development opportunities, professional associations, industry groups and MNP thought leadership events
- Hold a bachelor's degree in Accounting, Business Administration or Computer Science
- Completion of, or in the process of completing relevant professional certifications, such as CPA, CISA, CISM, CISSP or other relevant designations
- 5 or more years of experience as an IT auditor for a public accounting firm or relevant IT risk management consulting and/or IT internal audit experience gained within a risk management or IT internal audit practice within a mid-size or large corporation
- Strong understanding of the relationships between ITGC, application controls, use of service organizations and their impacts on ICFR
- Possess knowledge and understanding of audit methodologies, software development methodologies, project management and IT control frameworks and standards, including COBIT, ITIL and ISO 27001/2
- Experience in auditing cloud environments such as AWS, Azure, GCP
- Ability to audit controls of ERP environments (at least 1) of: SAP, Oracle, Dynamics, Sage or equivalent
- Highly desired skills and experience include: IT audit co-sourcing experience with internal auditAbility to design, code and execute CAATsUnderstand and have implemented internal controls frameworks including COBIT 5 and COSO (2013)ISO 27001 certificationIT risk managementFinancial statement audit
- Some travel may be required
Manager, Enterprise Risk Services - Toronto, Canada - MNP
Description
Job Details
Description
Inspirational, innovative and entrepreneurial - this is how we describe our empowered teams. Combine your passion with purpose and join a culture that is thriving in the face of change.
Make an impact with our Enterprise Risk Services - IT Audit team as a Manager. This diverse team of professionals utilizes leading-edge industry knowledge to assist clients in mitigating risk. As a trusted advisor, you'll establish an effective system of internal controls that safeguard clients' assets, improve financial reporting reliability and maintain compliance.
MNP is proudly Canadian. Providing business strategies and solutions, we are a leading national accounting, tax and business advisory firm in Canada. Entrepreneurial to our core, our talented team members transcend obstacles into opportunities and are successfully transforming mid-market business practices.
Responsibilities
Skills and Experience