Canada Controls Senior

As a Senior in the IT Audit & Assurance, Risk Consulting team, you will be responsible for assisting in planning activities, developing audit programs, and executing internal audits and IT control assessments across various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements. You will review clients" processes and controls against leading practices and industry frameworks, identify gaps, and communicate issues and recommendations to engagement leads and client management. Additionally, you will work with client management to implement new processes and controls to address key risks as needed. Your role will involve drafting comprehensive executive summaries and final reports for delivery to client senior management, as well as documenting and reviewing engagement workpapers in accordance with standard KPMG and industry-accepted internal audit methodologies. You will also participate in kick-off, status, and closing meetings with the engagement team and clients, contributing to the IT Audit knowledge base and internal practice development initiatives. Furthermore, you will support AM and Managers in managing and upskilling the team. In terms of mandatory technical and functional skills, you should possess knowledge of security measures and auditing practices within various operating systems, databases, and applications. Experience in assessing risks across different business processes, particularly within the Financial Services sector, is essential. You should also have expertise in identifying control gaps, communicating audit findings and control redesign recommendations to senior management and clients, and conducting IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management. Knowledge of regulations impacting the privacy, integrity, and availability of customer Personally Identifiable Information (PII) is required. Experience in leading IT Audit engagements and working on Identity Access Management aspects like user management, authentication, and authorization is preferred. Additionally, having team-leading experience and performance management skills from your current or previous roles will be beneficial. From a technical perspective, you should have prior experience in evaluating the design and operating effectiveness of technology controls across various IT platforms, including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL.,