Right now, we are looking for a candidate experienced with IT audit and IT risk management dedicated to further develop in these areas and use his experience to advise on tech enabled, sustainable and creative solutions in IT GRC area for our clients to achieve far more than basic compliance by:

• Managing projects and team oriented to advise on governance, risk and compliance in IT area
• Creating innovative solutions to address compliance and risk management challenges of our Clients (also supported with tools and automation)
• Designing and delivering IT audits (driven by both regulations and businesses objectives)
• Supporting business development of the organization, including innovation, marketing and sales activities
• Developing / exercising leadership capabilities to motivate and elevate team members

Our Team is based mostly in Warsaw, however we have already adjusted to remote cooperation so any domestic location of a candidate is not a constraint.

Yours skills and experience should include:

• 5-7 years of experience in roles related to audit, risk, governance, compliance in IT area
• Hands-on experience with design and evaluation of ITGC & ITAC controls and frameworks
• Solid understanding of IT relevant regulations (SOx, KNF, GDPR) and compliance / risk assessment procedures over IT area
• Good sense of applications and infrastructure impact to business objectives and operations
• Experience in creating high-quality documents and working closely with the client or senior stakeholders
• Degree in information systems, computer science or related discipline (or career path dedicated to IT / technology area)
• Good written and verbal command of English (other European languages are also welcome and are of additional advantage)

It would be your advantage if you also have any of the following:

• Professional certifications (e.g. CISA, CGEIT, CISSP, CISM, ISO22301, ITIL, COBIT)
• Practical experience with Third Party Assurance and SOC attestation (ISAE, SSAE)
• Interest in new technologies and their business values (e.g. AI, IoT, RPA, Cloud, BigData)
• Expertise in using or implementing GRC Tools (vendors like SAP, ServiceNow, Archer)
• Experience with IT transformation and implementation of risk frameworks or governance models in IT
• Understanding how to effectively manage and secure IT systems and protect the information, including data classification, protection and privacy concepts
• Consulting experience (not mandatory)

In your new role you will:

• Make impact that matters: be part of the IT Risk Advisory Team providing dedicated and high quality services that elevate GRC processes into business enablers
• Manage: coordinate project teams focused on IT GRC area delivering both audit and advisory services for IT (process / controls testing, risk assessments, security reviews)
• Create future: deliver innovative and tech-enabled solutions for governance, risk & compliance management and audit excellence
• Play detective: utilize audit and risk assessment experience to identify root causes of deficiencies and address them with tailored services
• Design and implement: support entire service lifecycle from developing new ideas into products or responding to Client needs with offering, through delivering an exceptional service
• Lead: support your project team members in their professional development with both SME expertise and career coaching, and be part of the organization growth by taking role in business development activities and internal initiatives

Join the team, see the world! If you would like to, you will have possibility to work on client site with up to 30% travel time, also on international assignments (subject to COVID-19 restrictions).

•  Trust and time for accommodation and growth in our Team
• Energized, ambitious and sociable Team members
• Opportunity to provide services to and meet most prestigious and influential organizations and their leaders on challenging and complex engagements in a variety of industries
• Globalized working environment with easy access to information and communication across Deloitte professional network
• Access to mentoring and coaching processes with senior professionals within our network as part of employees development programs
• Mature trainings portfolio from best in class learning platforms and our technology partners (including content of Udemy and LinkedIn Learning)
• Working approach, office and employee benefits adjusted to pandemic environment
• Stable employment in socially responsible and involved organization

Illustrative projects portfolio:

• Re-design ineffective IT processes and IT controls framework as a response to critical deficiencies
• Provide risk and controls expertise during GRC tool implementation
• Implement Polish Financial Supervision Authority (KNF) regulations for FSI Clients (gap analysis and remediation delivery)
• Release SOC1 (ISAE3402) report for IT services
• Re-organize and support Clients’ GRC / Internal Audit functions and their activities
• Measure, automate and optimize IT controls execution, testing and reporting with technology solutions (RPA / CCM & GRC tools, Audit Analytics tools)

Deloitte is a variety of people, experience, industries and services we deliver in 150 countries of the world. It is an intellectual challenge, a good starting point for your career, and an excellent opportunity for continuous development and gaining valuable life experiences. What you only must do is to take the first step – press the apply button and send us your CV, go through all the stages of the recruitment process and sign a contract with us. Deloitte is simply your best choice.

We are a team of experts providing diverse services in the field of technology related risks. We advise our clients on setting up proper IT governance and management structure, design internal control frameworks to mitigate technology risks. We ensure that their systems and data are secure and that they are compliant with relevant regulatory requirements. We also participate in Mergers & Acqusitions projects - IT Due Diligence and Post-Merger Integration. Our professionals advise CIOs, CROs, Internal Audit Directors and Project Managers of the largest companies in Central Europe.