Business Risk Services Manager
CliftonLarsonAllen LLP
Reference #: R14489
At CLA we create inspired careers!
The Business Risk Services Manager coordinates and interacts with IT general controls assessments, System and Organization Controls (SOC) services, as well as other Business Risk and Risk Management related services (including internal audit, enterprise risk assessments, etc.). Specific engagements will include assessments of business process and information technology/security control design, internal control testing, IT support of financial audits, and service auditor reporting requirements associated with SSAE 18 and HITRUST engagements. This role builds strong relationship and communicates with external clients and internal clients that are industry specialists or other service teams within CLA.
Essential Job Functions:
The below functions reflect the general details of the essential work activities and accountabilities of this position and are not all inclusive. Other activities may be assigned.
Client Service: Identify other CLA services that would help clients. Participates in meetings, and presentations to clients. Ability to deliver high level of client service through positive interactions with clients in multiple industries. Proactively demonstrate curiosity and an open mind to new ideas and concepts; generate innovative ideas and solutions.
Risk Management: Assists in the development, execution and completion of risk assessment, examination plan, and other duties as assigned. Facilitates and/or participates in the execution of the technical examination process including definition of examination scope, control evaluation, test activities, reporting, issue resolution, and risk assessment for assigned examination control / objectives. Demonstrate awareness and understanding of clients technical environment and business processes through discussions and review of available information with an emphasis on controls relevant to the business, network, cloud apps, security devices, servers and workstations. Analyze processes and adequacy of controls related to administration of technical components including logical access, change management, development life cycle, data management, backup and recovery, incident response, vulnerability management, risk assessment, and physical environment. Analyze processes and adequacy of controls related to business processes that support our clients financial reporting information and systems.
Project Management:Balance assigned work and efficiently delegate to associates to meet established deadlines. Project management to coordinate resources necessary to perform control testing, keep engagements on schedule, and help to lead associates through complex areas of the engagements. Communicate status of project including issues that need immediate attention to Manager / Director / Principal. Reports results of tests to engagement Director / Manager / Principal in a timely manner.
Reporting:Communicate draft and final reports and status items in both verbal and written form. Demonstrate abilities to draft reports, present results, and share status with clients, as well as interact and communicate with internal team members.
Requirements:
7 years of experience performing SOC services, internal audit, IT controls assessments, internal audit, and/or Risk Management services.
Bachelors degree with a major in accounting, business, or management information systems.
Dual major in Information Systems, or information systems minor preferred.
Applicable certification of either CPA, CISA, CRMA, or CIA certification or similar (such as HITRUST, CFSA, CISSP, CISM, CGFA) required
Strong computer and technical skills including Microsoft Office Suite (Outlook, Word, Excel, Powerpoint, etc.) required.
Experience with networking systems such as Windows, Unix, Mainframe, firewalls, etc. preferred.
Need to have exposure with various accounting and audit software, such as ERP systems, GL software, financial r porting packages, payroll and timekeeping systems, etc. Familiarity with audit tools such as data analytics, automated/electronic working paper software, risk tools/products, etc. preferred
Ability to identify and work with database products such as Oracle, SQL Server, and others is preferred.
The Business Risk Services Manager reports to and may receive work direction from Principals on both the service and industry teams. They work with a variety of Associates, Managers, Directors and Principals on assigned projects. They are involved in multiple client engagements that include a variety of different reporting relationships and expectations. They may be in a position to delegate work to Associates or Seniors. They act in professional and career development mentor capacity for Associates and Seniors. Other roles involved include assistance with billing, proposal/service presentations, project management, and client communications.
This position requires frequent local travel to/from client sites and may require occasional non-local or overnight travel for client visits, training, meetings and/or other business-related purposes.
Our Perks:
Flexible PTO (designed to offer flexible time away for you!)
Up to 12 weeks paid parental leave
Paid Volunteer Time Off
Mental health coverage
Quarterly Wellness stipend
Fertility benefits
Complete list of benefits here
#LI-PG1
Equal Opportunity Employer /AA Employer/Minorities/Women/Protected Veterans/Individuals with Disabilities.
Click here to learn about your hiring rights.
Wellness at CLA
To support our CLA family members, we focus on their physical, financial, social, and emotional well-being and offer comprehensive benefit options that include health, dental, vision, 401k and much more.
To view a complete list of benefits click here.
CLA is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, disability status, protected veteran status, national origin, or any other characteristic protected by law.
EOE/AA Employer/Vets/Disability