Senior Consultant, Technology Risk Services - IT Audit
KPMG View all jobs
- Montreal, QC Quebec City, QC
- Permanent
- Full-time
- Assisting KPMG Audit teams in both audit of technology and in leveraging technology in financial statement audits and integrated audits of financial statements and internal controls. Audit technology-related risks and controls and assist our Audit teams in addressing complex technology topics. Also, perform system implementation assessments both in support of external audits and in an advisory capacity to our clients.
- Formal assurance on systems, processes, and controls, including Audits of Service Organization Controls (i.e., SOC 1 engagements under CSAE 3416, SSAE 18, and/or ISAE 3402), SOC 2 and SOC 3 engagements (systems security & reliability assurance), and other standards.
- Conducting IT audit procedures (e.g., IT risk assessments, General IT Controls, IT Application Controls, large System Implementations and Data Conversions) in support of financial statement audits and internal controls over financial reporting.
- Conducting IT internal audit and third-party attestation engagements such as CSAE 3416 / SSAE 18 / SOC 1 and SOC 2 reports.
- Planning, managing, and completing IT Audit project tasks including liaising with client and KPMG teams; collecting, testing, and exploring information; documenting and evaluating IT processes, controls, policies, strategies; and performing detailed quality assurance review and feedback on the work of others.
- Communicating (written and verbal) findings and recommendations to the client including technical and business communication to management through the preparation of reports and analyses; preparation of advisory and assurance reports and related deliverables..
- Influencing and contributing to other practice initiatives,
- Bachelor’s degree (or higher) in Business or Computer Science degree required, ideally with a major in accounting.
- Completion of one or a combination of the following designations: CA, CISA, CISSP.
- Minimum of 5 years of combined relevant experience in IT Audit (internal and/or external audit) within a large consulting practice.
- Strong understanding and experience with IT Integrated Audits and controls-based audits (e.g., CSAE 3416 or SSAE 18) is required.
- Experience with the identification and or evaluation of process level controls in large system transformation projects involving SAP and or Oracle.
- Experience in the testing of controls in different IT environments, like SAP, Oracle, Unix, Linux, AS400, Mainframe, etc.
- Experience within an external audit practice auditing client in the Financial Services, Technology and Telecom, and Mining industry.
- Ability to work both, with little supervision and within a team environment.
- Excellent communication skills being able to express insights, both written and orally.
- Demonstrated ability to learn and succeed in a fast-paced environment.
- Attention to detail and strong organization and investigative skills.
- Strong understanding of business risks and audit risks.
- Have a high degree of personal confidence, enthusiasm, and drive.