We are looking for a candidate experienced with IT audit and IT risk management dedicated to further develop in these areas and use his experience to advise on tech enabled, sustainable and creative solutions in IT GRC area for our clients to achieve far more than basic compliance by:
- Managing projects and team focused on advising on governance, risk management and compliance (GRC) in IT area
- Creating innovative solutions to address compliance and risk management challenges of our Clients (also supported with advanced tools and automation)
- Designing and delivering IT audits (driven by both regulations and businesses objectives)
- Supporting Deloitte’s business development, including innovation, marketing and sales activities
- Developing / exercising leadership capabilities to motivate and elevate team members
Our Team is based mostly in Warsaw, however we have already adjusted to remote cooperation so any domestic location of a candidate is not a constraint.
Yours skills and experience should include:
- 5-7 years of experience in roles related to audit, risk, governance or compliance in IT area
- Hands-on experience with design and evaluation of ITGC & ITAC (IT General & Application Controls) and frameworks
- Solid understanding of IT relevant regulations (SOx, KNF, GDPR) and compliance / risk assessment procedures over IT area
- Good sense of applications and infrastructure impact to business objectives and operations
- Experience in creating high-quality documents and working closely with the client , especially with senior stakeholders
- Degree in information systems, computer science or related discipline (or career path dedicated to IT / technology area)
- Good written and verbal command of English (other European languages are also welcome and are of additional advantage)
It would be your advantage if you also have any of the following:
- Professional certifications (e.g. CISA, CGEIT, CISSP, CISM, ISO22301, ITIL, COBIT)
- Practical experience with Third Party Assurance and SOC attestation (ISAE, SSAE)
- Interest in new technologies and their business values (e.g. AI, IoT, RPA, Cloud, BigData)
- Expertise in using or implementing GRC Tools (vendors like SAP, ServiceNow, Archer)
- Experience with IT transformation and implementation of risk frameworks or governance models in IT
- Understanding how to effectively manage and secure IT systems and protect the information, including data classification, protection and privacy concepts
- Consulting experience (not mandatory)
Your future role
In your new role you will:
- Make impact that matters: be part of the IT Risk Advisory Team providing dedicated and high quality services that elevate GRC processes into business enablers
- Manage: coordinate project teams focused on IT GRC area delivering both audit and advisory services for IT (process / controls testing, risk assessments, security reviews)
- Create future: deliver innovative and tech-enabled solutions for governance, risk management & compliance (GRC) and audit excellence
- Play detective: utilize audit and risk assessment experience to identify root causes of deficiencies and address them with tailored services
- Design and implement: support entire service lifecycle from developing new ideas into products or responding to Client needs with offering, through delivering an exceptional service
- Lead: support your project team members in their professional development with both SME expertise and career coaching, and be part of the organization growth by taking role in business development activities and internal initiatives
Join the team, see the world! If you would like to, you will have the possibility to work on client site with up to 30% travel time, also on international assignments (subject to COVID-19 restrictions).
What we offer
- Trust and time for accommodation and growth in our Team
- Energized, ambitious and sociable Team members
- Opportunity to provide services to and meet most prestigious and influential organizations and their leaders on challenging and complex engagements in a variety of industries
- Globalized working environment with easy access to information and communication across Deloitte professional network
- Access to mentoring and coaching processes with senior professionals within our network as part of employees development programs
- Mature trainings portfolio from best in class learning platforms and our technology partners (including content of Udemy and LinkedIn Learning)
- Working approach, office and employee benefits adjusted to pandemic environment
- Stable employment in socially responsible and involved organization
Illustrative projects portfolio:
- Re-design ineffective IT processes and IT controls framework as a response to critical deficiencies
- Provide risk and controls expertise during GRC tool implementation
- Implement Polish Financial Supervision Authority (KNF) regulations for FSI Clients (gap analysis and remediation delivery)
- Release SOC1 (ISAE3402) report for IT services
- Re-organize and support Clients’ GRC / Internal Audit functions and their activities
- Measure, automate and optimize IT controls execution, testing and reporting with technology solutions (RPA / CCM & GRC tools, Audit Analytics tools)
About the team
We are a team of experts providing diverse services in the field of technology related risks. We advise our clients on setting up proper IT governance and management structure, design internal control frameworks to mitigate technology risks. We ensure that their systems and data are secure and that they are compliant with relevant regulatory requirements. We also participate in Mergers & Acqusitions projects - IT Due Diligence and Post-Merger Integration. Our professionals advise CIOs, CROs, Internal Audit Directors and Project Managers of the largest companies in Central Europe.
Recruitment Journey
I stage – we will carefully read your resume
II stage – you will be asked to complete an analytical and English online test
III stage – you we be invited for HR interview
IV stage - you we be invited for Hiring Manager interview (interview contains case study)
Recruiter tips
We want job seekers exploring opportunities at Deloitte to feel prepared and confident. We suggest you to do your research: know some background about the organization and the business area you’re applying to. Moreover we advise you to brush up on your behavioral and case interviewing skills and practice discussing your experience and job history with a family member, friend or mentor.