Audit Senior Manager, SOC

BDO New York , NY 10007

Posted 2 months ago

Job Summary

BDO's Core Purpose is Helping People Thrive Every Day. Our Core Values reflect how we manage our work, our relationships and ourselves. As an employee of the firm, you will live true to our Core Values of people first, being exceptional every day in every way, embracing change, feeling empowered through knowledge and choosing accountability. Our Core Values are the standards by which we conduct ourselves day in and day out, both internally and externally.

The Audit Senior Manager, SOC will be responsible for supervising a team of SOC Assurance professionals in the planning, fieldwork and wrap-up for the preparation of third party attestation reports, including Service Organization Control (SOC) 1, SOC 2, and WebTrust for CAs. The Audit Senior Manager, SOC will be responsible for applying most all areas of the applicable governing standard while supervising third party attestation engagements. This position may also be involved in other business process or IS assurance related engagements, including SOX, IT general control testing for private company financial audit engagements, and agreed-upon procedure engagements. In this role, the Audit Senior Manager, SOC will participate in marketing, networking, and the development of business proposals and other business development activities to grow the SOC Assurance practice. Additionally, the Audit Senior Manager, SOC is expected to maintain key client relationships and act as the primary contact for clients regarding complex technical areas impacting their third party attestation engagement.



  • Bachelor's degree in Accounting, Computer Science, Management Information Systems or other relevant field required

  • Master's degree in Accounting and minor or dual major in Information Systems or other relevant advanced degree preferred


  • Eight (8) or more years of prior experience in internal or external audit required

  • More than Five (5) years of prior supervisory experience preferred

  • Experience performing internal control reviews preferred

  • Experience performing SOC, SOX or ISO 27001 engagements desired


  • CPA, CISA, CISSP or other relevant certifications required


  • Proficiency in the use of Microsoft Office Suite

  • Exposure to industry software such as PeopleSoft, JD Edwards, SAP, Lawson, Oracle Financials, Great Plains, Solomon IV and MAS/90-500, UNIX, OS400 or ERP application software packages desired

Other Knowledge, Skills & Abilities:

  • Advanced understanding and experience planning and coordinating the stages to perform an audit of a basic public and/or private company

  • Knowledge of internal accounting controls and professional standards and regulations (GAAP, GAAS, Sarbanes-Oxley, etc).

  • Strong verbal and written communication skills with the ability to adapt style and messaging to effectively communicate with professionals at all levels both within the client organization and the firm

  • Ability to successfully multi-task while working independently and within a group environment

  • Solid analytical and diagnostic skills and ability to break down complex issues and implementing appropriate resolutions

  • Capable of working in a demanding, deadline driven environment with a focus on details and accuracy

  • Solid project management skills

  • Ability and willingness to travel up to 40%

  • Ability to successfully interact with professionals at all levels


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior IT Audit Manager

Standard Chartered

Posted 2 days ago

VIEW JOBS 10/18/2019 12:00:00 AM 2020-01-16T00:00 About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East. To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good. We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base. The Role Responsibilities GIA represents the third line of defence and provides independent assurance of the effectiveness of management's control of business activities (the first line) and of the control processes maintained by the Risk Framework Owners and Policy Owners (the second line). GIA works with the Group's other control functions, such as Finance, Risk and Compliance, but does not place unqualified reliance on their work. GIA is an independent function whose primary role is to help the Board and Executive Management to protect the assets, reputation and sustainability of the Group. As defined in the Audit Charter, all staff in GIA must exhibit the highest level of professional objectivity in gathering, evaluating and communicating information about the activity or process being examined. They must make a balanced assessment of all the relevant circumstances and not be unduly influenced by their own interests or by others in forming judgments. GIA will adhere to the Definition of Internal Auditing, the Core Principles for the Professional Practice of Internal Auditing, Code of Ethics and the Standards for the Professional Practice of Internal Auditing that are published by the IIA. It is expected that all members of GIA strive to operate as role models for the Group's valued behaviours. GIA methodology has defined "Habits of a Human Auditor" which are aligned to the Group's valued behaviours and communicated across the function. In addition to the responsibilities defined in the Audit Charter, the Senior Audit Manager is expected: * To act as a Team Leader on assigned audit work involving Data, Technology and Cyber Risk for CIB and Functions risk across the Americas. Data, Technology and Cyber related audits will be performed in coordination with the Group Internal Audit Data, Information Technology and Operations team (a global audit team). This will entail managing the auditors working on the audit to deliver the Audit Planning Memo, Controls Document, agree issues and action plans with management and submission of draft report to the Team Manager for review; * To act as Team Manager and take responsibility for overseeing the delivery of high quality audits, including finalising of audit issues and the audit report; * To confirm that assigned audit work, as well as the work carried out by team members is executed in an efficient and effective manner, within the given budget and timelines, and in line with GIA methodology standards. * To clearly identify the risks and impact of issues during issue writing, agreeing these issues with management and obtaining quality management action plans to mitigate the risks raised; * To lead continuous monitoring of assigned countries / portfolio areas, and to build and maintain engagement with stakeholders; * To take responsibility for the design and implementation of department wide exercises such as annual planning, risk assessment and training; * To support GIA audit teams by providing product/country knowledge and expertise for their audits relating to the individual's area of responsibility; * To attend and present at formal committees and Group meetings on behalf of the HOA or for their own area of responsibility, as required, e.g. Governance Committees and Country Non-Financial Risk Committees; and * The individual will support the HOA in their role as the GIA portfolio/country subject matter expert, depending on the skills of the individual. * Issue validation: all audit issue action plans agreed during audit fieldwork should be tracked through to completion in accordance with methodology requirements Strategy * Support the HOA where required, in the development of the GIA risk assessment and development of an appropriate audit plan for the HOA's assigned portfolio; * Support the HOA to confirm that audits assigned to the individual in the GIA audit plan address the key risks identified in the detailed risk assessment and in the audit planning process, and meet relevant regulatory requirements and expectations that are required to be covered by GIA; * Support the HOA to assess the assigned audit plan to confirm that it remains relevant throughout the year as the risk profile of the business changes. Propose changes as appropriate; and * Ensure that audit team operates in line with the Audit Charter during engagements, remains independent from management and free from interference. Business (Budget) * Assist the HOA to effectively manage the cost of assigned audits within the allocated budget for audit engagements; and * Identify and implement opportunities for cost savings and optimal productivity of assigned audit engagements. Audit Delivery * To act as a Team Lead or Team Manager on assigned audit work involving Data Technology and Cyber Risk within CIB & Functions risk across the Americas. This will entail managing the auditors working on the audit to deliver the Audit Planning Memo, Controls Document, agree issues and action plans with management and submission of draft report to the Team Manager for review; * Provide clear guidance, detailed review and supervision of the audit team's work so that audit deliverables meet quality standards and timelines in line with the GIA methodology; * Provide guidance on business/audit technical knowledge and management skills to team leaders and team members to enable them to effectively deliver their assigned contributions for an audit; * Provide technical input and challenge on audit work being undertaken within the scope of assigned product / country area of responsibility. This will include working with the audit team to produce high quality outputs which address the risk; * GIA methodology should be adhered to in all areas of the audit engagement, as well as raising team members' awareness and understanding of the methodology; * Demonstrate sound knowledge of both business/technical areas and expert knowledge in the audit process, including the GIA system, to ensure that audit work is carried out to a high standard that meets all methodology and GIA system requirements; * Take the lead in presenting the draft report in the GIA report review process (to the tollgate or report approver); and * Have a thorough understanding of the regulatory landscape and to ensure that all key regulatory concerns are covered in the audit scope. * Monitor the implementation/delivery of the agreed issues/audit plans for the audits assigned, understanding the key risks arising, provide advice on resolution of issues to auditees/action plan owners and escalate audit findings that remain unresolved. Risk Assessment * Support the HOA to update the relevant assigned risk assessments as part of the Continuous Risk Assessment on a regular basis so that changes in risk profiles are identified in a timely manner, proposing changes to the assigned audit plan to the HOA, as appropriate; * Promote early identification and escalation of risks, issues, trends and developments to relevant stakeholders. Be prepared to raise issues/concerns outside the normal audit process; * Attend relevant meetings relevant to assigned country / product area (e.g. Management Groups and Committees) at the request of the HOA to keep up-to-date on key business matters and provide the right challenge to ensure risks are appropriately identified, discussed and timely remediation plans are put in place; * Adopt an anticipatory approach to risk assessment through stakeholder engagement and monitoring of the external environment to improve audit planning; and * Review MI and reports regularly to keep up-to-date with key trends within the business. Stakeholder Management * Establish and maintain effective working relationships with the management of data technology, cyber risk and business units which fall under risk assessment responsibility. People and Talent * Demonstrate strong leadership and ability to motivate and guide audit team leaders and members * Influence change within the department by highlighting potential enhancements; * Identify growth areas at the start of each audit, and discuss with the Team Manager on how best to develop them during the work; * Provide written performance feedback to team members at the end of an audit. Review and agree the feedback provided with the Team Manager; * Identify and successfully complete key internal training for self-development; * Facilitate the development of audit team members by providing on the job training and recommending formal training to support GIA activities; and * Support the HOA to proactively spot talent for GIA. Governance: * Assist the HOA to manage the relevant Product/Country clients, and establish good working relationships to help the businesses improve the control environment and keep updated with changes in the business impacting their risk profile; * Propose changes to audit plans to the HOA, as appropriate, so that the audit plan remains relevant; * Lead by example on how to communicate audit-related matters and resolve any conflict between auditors and auditees during an audit. Use networks and relationships to build engagement and achieve results; * Delays in the execution of audit work should be escalated in a timely manner, both to auditee management and GIA management; * Be able to clearly explain issues identified along with the risks and root causes to GIA and business management, using language designed to be understood by non-experts; and * Assist the HOA/ to manage the relevant Product/Country stakeholders, as appropriate, and establish good working relationships to help the businesses improve the control environment and keep updated with changes in the business impacting their risk profile. Regulatory & Business Conduct * Display exemplary conduct and live by the Group's Values and Code of Conduct. * Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. * Support the GIA to achieve the outcomes set out in the Bank's Conduct Principles: [Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment.] * * Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters. Key Stakeholders * Regional CIO, Cyber Risk Managers and Regional Head of EA Technology Audit * Designated business stakeholders, typically related to individual audit assignments and the assigned portfolio; and * GIA stakeholders – team leaders, team members, team managers, Product, Functional, Country and Regional Heads of Audit. Other Responsibilities * Embed Here for good and Group's brand and values in GIA; and * Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures. Our Ideal Candidate * Experience in audit, governance, risk or in a business environment; * Professional audit certification preferred (such as CISA or CISSP) or Certified Data Management Professional (CDMP); * A minimum of 5-7 years overall experience as an auditor or 2nd Line: preferably Data, Technology and / or Information Security experience. * Effective collaborative skills that contribute to positive working relationships with counterparts in Group Internal Audit and the business; * In-depth understanding of Data Quality, Technology and Information Security risk management, regulatory requirements and associated control requirements; * Strong communicator, both written and verbal, with an ability to influence and an ability to gain the respect of senior management, regional stakeholders, peers and their teams; * Confident and courageous to raise/escalate issues in a pro-active, professional and timely manner; * Self-directed and able to work with minimum supervision; * Professional audit certification preferred and * Experience in audit, governance, risk or in a business environment Apply now to join the Bank for those with big career ambitions. '78305 Standard Chartered New York NY

Audit Senior Manager, SOC