Huron is a global consultancy that collaborates with clients to drive strategic growth, ignite innovation and navigate constant change. Through a combination of strategy, expertise and creativity, we help clients accelerate operational, digital and cultural transformation, enabling the change they need to own their future. 

You'll help banks, asset management and insurance organizations own their future by helping them to transform and create new business models to meet changing customer needs and drive sustainability.

Join our team as the expert you are now and create your future.

This project supports Technology, Cybersecurity, and Operational Risk Management functions by reviewing, testing, and challenging IT and cloud-control environments to ensure they align with enterprise security requirements, regulatory obligations, and Risk Management Frameworks.

This project supports Technology, Cybersecurity, and Operational Risk Management functions by reviewing, testing, and challenging IT and cloud-control environments to ensure they align with enterprise security requirements, regulatory obligations, and Risk Management Frameworks.

• You will partner with Risk Management and Technology Control Owners to design, implement, validate, and test controls across Cloud and IT environments.

• Daily activities include controls development, controls presentation and validation results to leadership, and leading collaborative vetting sessions with business line stakeholders and other Risk Management teams.

• This role ensures controls are effectively developed, documented, and tested to mitigate business and technology risks while meeting First- and Second-line control testing

• This role also performs application evidence reviews ensuring controls meet the requirements/attributes from Tech Risk prior to approving application migrations to cloud environments.

 

The Profile We're Looking For: 

• 7+ years of applicable experience in IT audit, cloud security, controls assurance, technology risk management, or related fields

• Risk and/or business experience with technology solutions including in-depth knowledge of technology processes and inherent risks

• Application of technology risk fundamentals to unique scenarios and prioritization of multiple workstreams to produce timely, reportable results

• Ability to create and update documentation as required for risk reviews as well as Control creation and modification

• Experience reviewing Scripts and Codes e.g. Python to confirm necessary controls are designed effectively

• Experience using Jira or similar workflow management tools

• Established knowledge of Risk/Compliance/Audit competencies, including controls development and testing techniques

• Refined communication skills and ability to quickly distill complex detail into concise, actionable steps

• Extensive experience with Microsoft Excel including ability to interpret data, analyze results, and drive risk-based decisions and assurance

• Drive, determination, and resolve to manage competing and evolving priorities

• Good understanding of cloud technologies (Azure, AWS) and cloud security architecture.

• Certifications such as CISA, CRISC, CISSP, or cloud platform certifications (Azure/AWS).

Position Level

Consultant

Country

United States of America