At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. 

Risk Consulting – AI Governance – Senior

The opportunity: your next adventure awaits.

Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Enterprise Risk team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of Artificial Intelligence (AI) Risk Management and Governance which would cover AI Auditing techniques, AI Risk and Controls, Pre-Implementation reviews, Data Privacy reviews, AI application security and BCP review of AI Applications.

This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies.

Key responsibilities

Your key responsibilities will include:

Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes.
Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels.
Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client’s business. Knowledge of AI models and applications is good to have but not mandatory.

Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge.

Skills and attributes for success

You will leverage your proven track record of technology plus business process internal audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of AI Risk solutions

To qualify for the role, you must have

A bachelor’s or master’s degree and approximately 3-6 years of related work experience
At least 2-4 years of experience in Internal audit, risk, compliance for both business and IT audits

Business process and operational audits – P2P, O2C, H2R etc.
IT systems pre-implementation and post-implementation reviews.
Compliance and regulatory assessments – Risk and Controls assessment relating to regulations and frameworks
Risk Assessment – Assessment of internal processes to identify security findings, vulnerabilities, and control gaps/deviations identified on applications and infrastructure. Develop risk control matrix in line with COBIT, ISO, NIST and ITIL Best Practice and recommendations.
Control Monitoring / Testing – Understanding of Cyber and compliance standards like PCI, ISO27001, perform test the design and operational effectiveness of the cyber controls.
Defect / Gap Identification:   Identify the confidentiality, integrity and the availability related deficiencies in the client environment and evaluate against industry standards.
IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc.
Audit report creation and follow up experience
Control Automation – Identify controls automation opportunities through analytics platform to monitor the operational effectiveness on the regular basis.

Excellent communication, documentation and report writing skills.
Knowledge of AI is good to have but not mandatory
Good to have relevant industry certifications such as CIA, CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant)

EY | Building a better working world 

 
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.  

 
Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate.  

 
Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.