Manager - IT Risk Advisory
Riveron India · India
This listing has closed — view similar roles below.
- Hybrid
- Contract
- $120,000 / year
- India
Job highlights
- Lead IT risk advisory projects for diverse clients.
- Assess IT controls and cybersecurity risks.
- Manage project teams and client relationships.
- Ensure compliance with SOX, NIST, and ISO.
- Mentor junior consultants and drive project success.
About the role
Manager - IT Risk Advisory
In today’s dynamic environment, business leaders face constantly shifting risks. Riveron helps organizations implement leading governance, risk and compliance practices by combining deep expertise with pragmatic partnership, using a hands-on approach to understand the specific needs of the organization and creating tailored solutions to address key compliance risks.
Our Risk Advisory services include SOX readiness, managed internal controls testing and monitoring, co-sourced/outsourced internal audit, segregation of duties and access risk review, policy and procedure development, enterprise risk management, and IT and cybersecurity risk assessment.
The Manager position for Riveron’s IT Risk Advisory group will work collaboratively with senior team members who provide guidance, coaching, and direction. Managers are expected to conduct the majority of day-to-day project management activities on all of their engagements, including project plan development, reviewing staff work for quality, status updates to clients and internal management, and mentoring staff and senior consultants.
Qualifications
- Bachelor's and/or Master’s degree in Accounting, Finance, Management Information Systems, or another relevant field
- Relevant certification preferred, such as CISA, CISSP, CISM, CGEIT, or CIPP; CPA or CIA is also valued but not required
- Minimum 5 years working as IT auditor or IT risk advisor for a public accounting firm, or other operational roles with a focus on information technology compliance. Experience should include performing internal or external IT audits
- Demonstrated knowledge of IT risk management, general and application controls, cybersecurity principles, and regulatory frameworks such as SOX, NIST, or ISO
Who You Are
- You have a passion for developing and maintaining client relationships
- You get the job done and have fun doing it
- You communicate skillfully with a variety of audiences and can create compelling stories from data
- You thrive in an ever-changing, dynamic work environment
- You readily identify problems and instinctively look for solutions
- You enjoy participating in internal and external company initiatives such as community service, training, recruiting, and firm events
- You have the ability and desire to travel as required based on client location
What You’ll Do
- Gain an understanding of the assigned clients’ business objectives, IT environment, and applicable regulatory and risk management landscape
- Lead projects in the areas of IT General Controls (ITGC) assessments, Sarbanes-Oxley (SOX) IT compliance, ERP/application control reviews, and cybersecurity risk assessments
- Leverage knowledge of industry-specific systems, applications, and infrastructure to identify technology risks and evaluate their impact on business and financial reporting
- Assess the design and operating effectiveness of IT controls related to access management, change management, system operations, and data integrity
- Obtain and analyze system-generated data, configurations, and logs as a basis for evaluating control environments and identifying gaps
- Demonstrate proficiency in developing IT control process flows, risk/control matrices, and testing strategies for general and automated application controls
- Maintain the level of technical competency and professional care required for the completion of assignments in accordance with COSO, COBIT, and ISO auditing standards and related control techniques
- Set priorities, ensuring daily coordination among the project team, and monitor progress against schedules, budgets, project/task deliverables and status reporting
- Plan, review, and provide direction for the work of Staff and Senior Consultants
- Communicate extensively with clients to drive expectations and report on the status of ongoing projects
- Deliver oral and written presentations during and at the conclusion of projects by either recommending improvements or any operational/financial deficiencies to executive leadership
- Stay abreast of emerging risk areas, IT trends, and related control techniques
- Strengthen and maintain a network of industry contacts and establish new long-term relationships
About Riveron
At Riveron, we partner with clients—from global multinationals to high-growth private entities—to solve complex finance challenges, guided by our DELTA values: Drive, Excellence, Leadership, Teamwork, and Accountability. Our entrepreneurial culture thrives on collaboration, diverse perspectives, and delivering exceptional outcomes. We are committed to fostering growth, both for our clients and our people, through mentorship, integrity, and a client-centric approach. This inclusive environment offers flexibility, progressive benefits, and meaningful opportunities for impactful work that supports well-being in and out of the office.
Key skills/competency
- IT Risk Management
- IT Audit
- SOX Compliance
- Cybersecurity Risk Assessment
- General Controls (ITGC)
- Access Management
- Change Management
- Regulatory Frameworks (NIST, ISO, COBIT)
- Client Relationship Management
- Project Management
Skills & topics
- IT Risk Management
- IT Audit
- SOX Compliance
- Cybersecurity
- Risk Assessment
- Manager
- Advisory
- Consulting
- Information Technology
- Governance Risk Compliance
How to get hired
- Tailor your resume: Highlight your IT risk, audit, and compliance experience. Quantify achievements in ITGC, SOX, and cybersecurity assessments.
- Showcase your skills: Emphasize your knowledge of regulatory frameworks like SOX, NIST, or ISO, and certifications such as CISA or CISSP.
- Demonstrate client focus: Articulate your ability to build and maintain client relationships, communicate complex data, and thrive in dynamic environments.
- Prepare for interviews: Be ready to discuss your project management experience, leadership style, and problem-solving approach for IT risk challenges.
Technical preparation
Behavioral questions
Frequently asked questions
- What are the key responsibilities for a Manager - IT Risk Advisory at Riveron India?
- As a Manager - IT Risk Advisory at Riveron India, you will lead projects related to IT General Controls (ITGC) assessments, SOX IT compliance, ERP/application control reviews, and cybersecurity risk assessments. You will also manage project teams, client relationships, and ensure adherence to industry standards like COSO, COBIT, and ISO.
- What qualifications are essential for the Manager - IT Risk Advisory role at Riveron India?
- Essential qualifications include a Bachelor's or Master's degree in a relevant field, at least 5 years of experience as an IT auditor or risk advisor, and demonstrated knowledge of IT risk management, general/application controls, cybersecurity, and regulatory frameworks such as SOX, NIST, or ISO. Preferred certifications include CISA, CISSP, CISM, CGEIT, or CIPP.
- Does Riveron India offer opportunities for professional development for IT Risk Advisory Managers?
- Yes, Riveron is committed to fostering growth through mentorship and providing opportunities for impactful work. The company encourages staying abreast of emerging risk areas and IT trends, supporting continuous learning and professional development for its IT Risk Advisory team.
- What is the work environment like at Riveron India for an IT Risk Advisory Manager?
- Riveron offers an entrepreneurial culture that thrives on collaboration, diverse perspectives, and delivering exceptional outcomes. The environment is dynamic and fast-paced, with opportunities for impactful work, client interaction, and participation in company initiatives.
- How does Riveron India approach client relationships in its IT Risk Advisory services?
- Riveron emphasizes a pragmatic partnership and hands-on approach, working closely with clients to understand their specific needs. Managers are expected to develop and maintain strong client relationships, communicate effectively, and deliver tailored solutions to address key compliance risks.