Manager Enterprise Risk - Diegem, België - EY

Geverifieerd bedrijf

Diegem, België

3 weken geleden

Geplaatst door:

Sophie Dubois

beBee Recruiter

Beschrijving

The Opportunity
EY is a fast-moving, high-growth area with huge potential. It offers variety, challenge, responsibility and the opportunity to realize your leadership potential. Our client teams are focused on helping clients improve business performance and operational efficiency while managing risk.

We help clients by delivering assessment, transformation and process efficiency solutions in specialty areas like finance, supply chain, internal audit & compliance, risk management, people and organizational change, strategic direction, and IT program transformation/IT consulting.

Our Consulting team members focus on the priorities and challenges our clients' CFOs & CEOs are facing within these fields.

Within EY Consulting, our Enterprise Risk team provides a variety of services to our clients.

These services include (amongst others):

Risk Management and

Internal Control:
implementation and / or evaluation of risk management and internal control frameworks

Internal Audit: setup and execution of internal audits, from audit plan to reporting, supported by our Virtual Internal Auditor (VIA) platform
Technology risk consulting
Compliance reviews: third party risk management, ESG, Quality,

As we have ambitious growth plans, we currently are seeking a
(Senior) Manager Technology Risk to support our growth by further developing and managing our Technology Risk service delivery.

Your key responsibilities

You will advise our private and public sector clients to achieve their objectives by supporting them to identify and manage their (technology) risks.

Your tasks and responsibilities will include, amongst others, the following:

Further develop the area of Technology Risk within Enterprise Risk by proposing and developing services for existing and future clients
Manage and supervise engagements in which we evaluate the company's technology universe from a technical and business perspective and execute indepth assessments of the IT processes, risks and controls

These engagements can include:

Risk assessments and framework development

Regulatory Compliance Audits (Ensuring that the client's IT systems and processes comply with relevant industry regulations and standards (e.g., GDPR, SOX, PCI DSS, ISO
Evaluating the technology risk posture of thirdparty vendors and partners and Developing and implementing thirdparty risk management programs.
Settingup and managing third party compliance reviews in licensing, channel and/or OEM contexts
Reviewing the setup of complex systems and technology governance frameworks in line with industry leading practices (e.g. ITIL, COBIT, NIST, ISO, ).
Assessing the effectiveness of IT governance structures and controls.
Assessing the risks associated with technology transformation initiatives, such as cloud migrations, digital transformations, and system upgrades.
IT

Audit Support:
Collaborating with internal auditors to provide expertise on technology-related controls and risks (including ITGC)

Providing strategic advice on technology risk management and assisting clients in the development of longterm risk management strategies
Settingup and managing Software Asset Management reviews at current and future clients

To qualify for the role you must:

Have a master's degree, preferably in (commercial) engineering, computer science or economics
Have a minimum of 6 to 10 years of experience in IT, project management/service delivery, operational/IT risk management, Software Asset Management and/or consulting
Have expertise in at least a couple of the following areas:
IT

Risk Management:
In-depth understanding of technology risk concepts, frameworks, and best practices.

Governance and Controls: Expertise in IT governance frameworks and control structures.

Third-Party

Risk Management:

Understanding of third-party risk management principles and the ability to evaluate and manage risks associated with vendors and partners.

Familiarity with auditing principles and practices: Experience collaborating with auditors to address technologyrelated controls.
GRC Tooling
SAM reviews
Expertise in assessing risks associated with technology transformation initiatives: Ability to guide clients through secure technology transformations, such as cloud migrations.
Have strong project management skills to lead and manage engagements effectively.
Have the ability to collaborate effectively with crossfunctional teams.
Have leadership skills to manage and mentor junior team members.
Have excellent communication and solid writing skills in English, and are fluent in either Dutch or French.
Have strong interpersonal skills and the ability to build and maintain client relationships.
Be willing to travel occasionally.
Knowledge and experience of emerging technology, FinTech, Cloud services and Cybersecurity and/or professional certifications, such as CGEIT, CISA, CISM, CISSP, COBIT, CRISC and ITIL are a plu