PitchMeAI
Riveron India

Associate - IT Risk Advisory

Riveron India · India

  • Hybrid
  • Contract
  • $75,000 / year
  • India

Job highlights

  • Assess IT controls and perform risk assessments.
  • Assist with SOX compliance and cybersecurity projects.
  • Develop remediation roadmaps and client relationships.
  • Requires 1 year of IT audit experience.
  • Bachelor's/Master's degree in a relevant field.

About the role

About Riveron

At Riveron, we partner with clients—from global multinationals to high-growth private entities—to solve complex finance challenges, guided by our DELTA values: Drive, Excellence, Leadership, Teamwork, and Accountability. Our entrepreneurial culture thrives on collaboration, diverse perspectives, and delivering exceptional outcomes. We are committed to fostering growth, both for our clients and our people, through mentorship, integrity, and a client-centric approach. This inclusive environment offers flexibility, progressive benefits, and meaningful opportunities for impactful work that supports well-being in and out of the office.

Role Overview

In today’s dynamic environment, business leaders face constantly shifting risks. Riveron helps organizations implement leading governance, risk and compliance practices by combining deep expertise with pragmatic partnership, using a hands-on approach to understand the specific needs of the organization and create tailored solutions to address key compliance risks.

Our Risk Advisory services include SOX readiness, managed internal controls testing and monitoring, co-sourced/outsourced internal audit, segregation of duties and access risk review, policy and procedure development, enterprise risk management, and IT and cybersecurity risk assessment.

The Associate level position for Riveron’s IT Risk Advisory group will work collaboratively with senior team members who provide guidance, coaching, and direction. The role includes assessing the design and operating effectiveness of IT General Controls (ITGC), developing and executing remediation roadmaps, and performing IT risk assessments.

What You’ll Do

  • Gain an understanding of the assigned clients’ objectives as well as their regulatory and risk management environment.
  • Assist projects in the areas of IT General Control Assessments, Sarbanes-Oxley Compliance, and potentially Cybersecurity Engagements.
  • Utilize existing knowledge of client’s industry and IT environment to identify technological developments to evaluate impacts on the client’s business.
  • Assess internal controls’ design adequacy to mitigate financial, operational, and compliance risks and to test their operating effectiveness.
  • Obtain and analyze data as a basis for reviewing the adequacy, effectiveness, and efficiency of systems and processes.
  • Exhibit proficiency with creating internal controls process flows and risk/control matrices.
  • Maintain the level of technical competency and professional care required for the completion of assignments in accordance with COSO, COBIT, and ISO auditing standards and related control techniques.
  • Set priorities, ensuring daily coordination among the project team, and monitor progress against schedules, budgets, project/task deliverables and status reporting.
  • Plan, review, and provide direction for the work of Staff and Senior Consultants.
  • Communicate extensively with clients to drive expectations and report on the status of ongoing projects.
  • Deliver oral and written presentations during and at the conclusion of projects by either recommending improvements or any operational/financial deficiencies to executive leadership.
  • Stay abreast of emerging risk areas, IT trends, and related control techniques.

Qualifications

  • Bachelor's and/or Master’s degree in Accounting, Finance, Management Information Systems, or another relevant field.
  • Relevant certification preferred, such as CISA, CISSP, CISM, CGEIT, or CIPP; CPA or CIA is also valued but not required.
  • 1 year of experience working as IT auditor or IT risk advisor for a public accounting firm. Experience should include performing internal or external IT audits.
  • Demonstrated knowledge of IT risk management, general and application controls, cybersecurity principles, and regulatory frameworks such as SOX, NIST, or ISO.

Who You Are

  • You have a passion for developing and maintaining client relationships.
  • You get the job done and have fun doing it.
  • You communicate skillfully with a variety of audiences and can create compelling stories from data.
  • You thrive in an ever-changing, dynamic work environment.
  • You readily identify problems and instinctively look for solutions.
  • You enjoy participating in internal and external company initiatives such as community service, training, recruiting, and firm events.
  • You have the ability and desire to travel as required based on client location.

Key skills/competency

  • IT Risk Management
  • IT Audit
  • SOX Compliance
  • Cybersecurity
  • IT General Controls (ITGC)
  • Risk Assessment
  • Internal Controls
  • Regulatory Frameworks
  • COSO
  • COBIT

Skills & topics

  • IT Risk Advisory
  • IT Audit
  • SOX Compliance
  • Cybersecurity
  • Risk Management
  • Internal Controls
  • Access Risk
  • Policy Development
  • Enterprise Risk Management
  • ITGC

How to get hired

  • Tailor your resume: Highlight your IT audit, risk management, and SOX experience. Quantify achievements where possible.
  • Showcase relevant certifications: Emphasize any CISA, CISSP, CISM, CGEIT, CPA, or CIA credentials.
  • Demonstrate client relationship skills: Provide examples of your ability to communicate with diverse audiences and build rapport.
  • Prepare for behavioral questions: Be ready to discuss problem-solving, adaptability, and teamwork in a dynamic environment.
  • Research Riveron's culture: Understand their DELTA values (Drive, Excellence, Leadership, Teamwork, Accountability) and client-centric approach.

Technical preparation

Study ITGCs, COSO, and COBIT frameworks.,Review SOX, NIST, and ISO regulatory standards.,Practice control design and effectiveness testing.,Familiarize with data analysis for control reviews.

Behavioral questions

Describe a time you built a client relationship.,How do you handle dynamic work environments?,Share an example of problem-solving skills.,Discuss your experience communicating complex data.

Frequently asked questions

What is the primary focus of the Associate - IT Risk Advisory role at Riveron India?
The Associate - IT Risk Advisory role at Riveron India focuses on assessing IT General Controls (ITGC), developing remediation roadmaps, and performing IT risk assessments for clients. You will work collaboratively with senior team members to provide these crucial risk and compliance services.
What qualifications are essential for the Associate - IT Risk Advisory position at Riveron India?
Essential qualifications include a Bachelor's or Master's degree in Accounting, Finance, MIS, or a related field, and at least one year of experience in IT auditing or IT risk advisory, preferably with a public accounting firm. Demonstrated knowledge of IT risk management, general/application controls, cybersecurity, and frameworks like SOX, NIST, or ISO is also required.
Are certifications required for the Associate - IT Risk Advisory role at Riveron India?
While not strictly required, relevant certifications such as CISA, CISSP, CISM, CGEIT, or CIPP are preferred. A CPA or CIA certification is also valued for this Associate - IT Risk Advisory position.
What kind of client engagements can I expect as an Associate - IT Risk Advisory at Riveron India?
As an Associate - IT Risk Advisory, you can expect to assist on projects involving IT General Control Assessments, Sarbanes-Oxley (SOX) Compliance, and potentially Cybersecurity Engagements. You will work with clients to assess controls, identify risks, and recommend improvements.
What is the expected travel for the Associate - IT Risk Advisory role at Riveron India?
The role requires the ability and desire to travel as needed based on client location. Travel is an integral part of consulting engagements in the IT Risk Advisory field.
How does Riveron India approach internal audit and risk management for its clients?
Riveron India employs a hands-on approach, combining deep expertise with pragmatic partnership to understand client needs and create tailored solutions. They focus on leading governance, risk, and compliance practices, offering services like SOX readiness, managed internal controls testing, and IT/cybersecurity risk assessments.
What are Riveron India's core values, and how do they relate to the Associate - IT Risk Advisory role?
Riveron India's core values are Drive, Excellence, Leadership, Teamwork, and Accountability (DELTA). These values are integral to the Associate - IT Risk Advisory role, emphasizing collaboration, delivering exceptional outcomes, and fostering professional growth within the team.