Make an impact with our Enterprise Risk - IT Audit team as a Manager focused on PCAOB integrated audits, public company audit support, and IT internal control over financial reporting advisory. This diverse team of professionals helps clients and audit teams assess technology risks that impact financial reporting, regulatory compliance, and internal control effectiveness. As a trusted advisor, you'll evaluate IT general controls, application controls, automated controls, key reports, service organization reliance, and related deficiencies that affect internal control over financial reporting.
Responsibilities- Lead IT audit and IT ICFR advisory engagements for public company clients, including PCAOB integrated audits, other public company audits, SOX 404 and NI 52-109 readiness, testing, remediation and reporting
- Actively manage, with a hands-on approach when required, small project teams for all aspects of an engagement, including planning, budgeting, risk assessment, execution, review, reporting and closure
- Identify and assess risks, root causes, impacts and remediation considerations related to IT general controls, application controls, automated controls, interfaces, key reports and business process controls that impact ICFR
- Coordinate with financial statement audit teams to support IT risk assessment, control reliance strategy, audit evidence requirements, deficiency evaluation and reporting
- Evaluate third-party service provider reliance, including SOC 1 and SOC 2 reports, user entity controls, complementary subservice organization controls and the impact of service organization control deficiencies on ICFR
- Lead and manage multiple complex audit and advisory engagements from start to finish, delivering planned scope within agreed budgets, timelines and quality expectations
- Synthesize fieldwork into clear, concise workpapers, reports and presentations that support audit conclusions and practical client recommendations
- Write reports and present to clients and audit teams, including executive summaries, control deficiencies, risk implications, remediation recommendations and management action plans
- Review work performed by team members and coach staff on audit quality, evidence standards, documentation expectations and practical communication of control issues
- Contribute to business development processes including research and analysis, writing and developing proposals as well as working with the engagement lead to develop tailored project plans and work programs
- Continuously share knowledge and actively contribute to developing the ERS team's knowledge base through taking part in learning and development opportunities, professional associations, industry groups and MNP thought leadership events
Skills and Experience- Hold a bachelor's degree in Accounting, Business Administration or Computer Science
- Completion of, or in the process of completing relevant professional certifications, such as CISA, CISM, CISSP, CIA or other relevant designations
- 4 or more years of experience in IT audit, technology risk, ICFR advisory or IT internal audit, preferably with experience supporting public company audits, PCAOB integrated audits, SOX 404, NI 52-109 or similar regulatory reporting environments
- Strong understanding of the relationships between ITGCs, application controls, automated controls, key reports, interfaces, service organizations and their impact on ICFR and financial statement audit reliance
- Understand and have applied internal control and risk frameworks relevant to ICFR and technology risk, including COSO, COBIT and related audit methodology requirements
- Possess knowledge of audit methodologies, PCAOB expectations, system development methodologies, project management practices and IT control frameworks and standards, including COBIT, ITIL and ISO 27001/2
- Use data analysis, system reports, audit technology and client-provided extracts to support risk assessment, control testing and audit evidence evaluation
- Ability to audit the design, implementation, security, automated controls, application controls and post-implementation control environment of ERP and financial systems such as SAP, Oracle, Microsoft Dynamics, NetSuite, Workday, Sage or equivalent
- Highly desired skills and experience include:
- Public company audit support, PCAOB integrated audit experience, SOX 404 or NI 52-109 advisory experience
- IT audit co-sourcing experience with internal audit, finance, controllership or external audit teams
- SOC 1 or SOC 2 reporting experience, including review of service auditor reports and user entity control considerations
- Financial statement audit, ICFR, IT risk management or ISO 27001 experience
With a focus on high-potential earnings, MNP is proud to offer customized rewards that support our unique culture and a balanced lifestyle to thrive at work and outside of the office. You will be rewarded with generous base pay, vacation time, 4 paid personal days, a group pension plan with 4% matching, voluntary savings products, bonus programs, flexible benefits, mental health resources, exclusive access to perks and discounts, professional development assistance, MNP University, a flexible 'Dress For Your Day' environment, firm sponsored social events and more!
The annual salary range for this position is: $90,000-$140,000.
Future/Current Opportunity: Current
