Technology Risk & Controls Assurance Senior Analyst

Key Responsibilities

• Deliver testing over ITGCs, IT application controls, interface controls, automated controls and IPE with limited supervision.
• Support ISA 315-aligned IT understanding and risk assessment, including systems, data flows, key reports and risks arising from IT
• Prepare clear, review-ready workpapers, testing templates, issue summaries and RACMs.
• Identify control deficiencies, exceptions and root causes, and escalate issues clearly to engagement leads.
• Liaise professionally with client stakeholders and audit teams to obtain evidence, resolve queries and maintain delivery timelines.
• Support financial statement audit-related technology controls assurance, SOC 1, SOC 2 and regulatory assurance engagements as required.
• Assist with planning, sample selection, evidence tracking and execution across assigned workstreams.
• Coach Analysts on selected tasks and contribute to TRCA methodology, templates and knowledge sharing.
• Manage assigned workstreams across multiple engagements and escalate risks, delays or uncertainties promptly.

Skills, Knowledge and Expertise

• Experience in IT audit, technology risk, controls assurance or external audit support
• Good understanding of IT General Controls, IT Application Controls, interfaces, automated controls and IPE
• Ability to document processes, testing and conclusions clearly in an audit-ready and professional manner
• Strong analytical mindset, professional scepticism and attention to detail
• Confident communication skills with the ability to liaise effectively with clients, managers and audit teams
• Ability to manage competing deadlines, take ownership of deliverables and support junior colleagues
• Working knowledge of assurance and control frameworks such as ISA 315, SOC reporting or related risk standards
• A commitment to ethical standards, collaboration and high-quality client service

• Progress toward or completion of a professional qualification such as ISACA CISA
• Exposure to ERP, cloud or SaaS environments and the technology risks relevant to financial reporting
• Experience supporting walkthroughs, control design assessments or issue remediation discussions