Risk Assurance Senior

6 hours, 39 minutes ago
Full-time
Senior
Cybersecurity
BPM

BPM

BPM LLP is a top public accounting and advisory firm offering assurance, advisory, tax, and wealth management services with a focus on client success and innovation in business process management.

Diversified Financial Services
1K-5K
Founded 1986

Description

  • Lead and perform IT General Controls (ITGC), IT Application Controls (ITAC), and automated controls testing for SOX compliance engagements.
  • Perform audit activities for SOC 1 and SOC 2 engagements and SOX compliance, from walkthroughs through report preparation, while meeting delivery timelines.
  • Prepare and review workpapers, testing documentation, narratives, flowcharts, and risk and control matrices (RCMs).
  • Perform testing and provide technical expertise to clients and engagement team members.
  • Mentor, coach, and review the work of Associates and interns, providing constructive feedback and guidance.
  • Contribute to practice development initiatives, including methodology enhancements, training, and recruiting.
  • Coordinate assurance engagements and support clients through complex business and IT risk and compliance initiatives.

Requirements

  • Bachelor's degree in Information Systems, Accounting, Computer Science, or a related field.
  • 2–5 years of experience performing IT audits, SOC examinations, SOX compliance, or risk assurance engagements in public accounting or consulting.
  • Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), and/or CPA license preferred.
  • Strong understanding of SOC 1, SOC 2, and SOX frameworks, including ITGCs, ITACs, automated controls, business process controls, and third-party risk considerations.
  • Experience with ERP systems, cloud environments (Azure, AWS, GCP), and cybersecurity concepts preferred.
  • Ability to independently manage multiple assignments and prioritize competing deadlines.
  • Excellent analytical, problem-solving, and critical-thinking skills.
  • Strong verbal and written communication skills with the ability to interact effectively with client management and engagement teams.
  • Ability to synthesize research into clear, thoughtful, and actionable deliverables.

Benefits

  • Flexible work arrangements and personalized benefit structures.
  • Financial compensation options that provide choice and flexibility.
  • Interactive wellness platform, incentives, employee assistance program, and mental health resources.
  • Colleague Resource Groups (CRGs) for connection and support.
  • 14 firm holidays, including 2 floating holidays.
  • Flex PTO, paid family leave, winter break, summer hours, and remote work options.
  • CPA exam resources and bonuses, tuition reimbursement, a coach program, and BPM University classes, workshops, and seminars.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Offensive Security Lead

Nebius 51-250 Internet Software & Services

Nebius is seeking an Offensive Security Lead to build and run its red team and offensive security program for a global AI cloud platform.

Go Kubernetes Penetration Testing Python
6 hours, 9 minutes ago

Senior Security Controls Assessor - Contingent

ARETUM Construction & Engineering

Aretum is seeking a Senior Security Controls Assessor to support a federal government contract by conducting comprehensive security assessments of information systems and ensuring compliance with required security controls and regulations.

1 day, 6 hours ago

Manager, Compliance Advisory

Coalfire 251-1K Internet Software & Services

Coalfire is hiring a Manager, Public Sector Advisory to lead client-facing cybersecurity compliance engagements for public sector customers while managing a small consulting team and overseeing delivery quality.

AWS Azure Cybersecurity GCP Network Security
2 days, 6 hours ago

Senior Technical Consultant — Physical & Logical Access Control (ServiceNow Platform)

SwiftConnect 51-200 Software Development

An experienced technical consultant is needed to advise product and engineering teams building an enterprise workplace security capability on the ServiceNow platform, unifying physical access control with identity, HR, and IT workflows.

REST API SOAP
2 days, 6 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers