Job Description

Job Summary

BDO’s Core Purpose is Helping People Thrive Every Day. Our Core Values reflect how we manage our work, our relationships and ourselves. As an employee of the firm, you will live true to our Core Values of people first, being exceptional every day in every way, embracing change, feeling empowered through knowledge, and choosing accountability. Our Core Values are the standards by which we conduct ourselves day in and day out, both internally and externally.

The TPA Audit Manager is responsible for leading a team of audit professionals performing the duties of planning, fieldwork and wrap-up for the preparation of third party attestation reports, including Service Organization Control (SOC) 1, SOC 2, and WebTrust for CAs, as well as HITRUST, and ISO, while applying all areas of the governing standard, as necessary, for documenting, validating, testing and assessing various control systems. This position is also involved in other business process or IS assurance related engagements, including Sarbanes-Oxley (SOX), Information Technology (IT) general control testing for private company financial audit engagements and agreed-upon procedure engagements, as needed.

Salary will be commensurate with candidate experience and qualifications.

Salary Range: $120,000 - $160,000

Qualifications

Education

- Bachelor’s degree in Accounting, Computer Science, Management Information Systems, Business Administration, Finance or Economics, required
- Master’s degree in Accounting and minor or dual major in Information Systems or other relevant advanced degree, preferred

Experience

- More than five (5) years of prior experience in IT, internal or external audit, required
- Supervisory experience, required
- Experience performing SOC, WebTrust, HITRUST, SOX, ISO 27001 and security/privacy advisory engagements, preferred

License/Certifications

One or more of the following certifications are required:

- Certified Public Accountant (CPA)
- Certified Information Systems Auditor (CISA)
- Certified Information Systems Security Professional (CISSP)
- ISO 27001 Lead Auditor certification
- HITRUST Certified Common Security Framework Professional (CCSFP)
- Certified Internal Auditor (CIA)
- Certified Information Security Manager (CISM)
- Certified Ethical Hacker (C | EH)
- Certified in Risk and Information Systems Control (CRISC)
- Certified in the Governance of Enterprise IT (CGEIT)

Software

- Proficient in the use of Microsoft Office Suite, specifically Word, Excel and PowerPoint, preferred
- Prior experience with various applications (e.g., ERP systems), operating systems (e.g., UNIX, Windows); and databases (e.g., Oracle, SQL), preferred
- Exposure to cloud platforms, SaaS applications, security and engineering tools, and other industry software, preferred

Other Knowledge, Skills & Abilities

- Excellent understanding and experience planning and coordinating the stages to perform technology-focused audits and assessments
- Strong knowledge of internal controls and professional standards and regulations (SOC, ISO, WebTrust, HITRUST, Sarbanes-Oxley, etc)
- Knowledge of data analytics and emerging technologies, preferred
- Strong analytical and diagnostic skills with the ability to break down complex issues and implement appropriate resolutions
- Ability to successfully multi-task while working independently and within a group environment
- Ability to work in a demanding, deadline driven environment with a focus on details and accuracy
- Strong project management skills with the ability to manage multiple projects simultaneously
- Capable of effectively managing a team of professionals and delegating work assignments
- Ability to encourage a team environment on engagements, and contribute to the professional development of assigned personnel
- Capacity to build and maintain strong relationships with client personnel
- Executive presence and ability to act as primary contact on assigned engagements
- Strong verbal and written communication skills with the ability to adapt style and messaging to effectively communicate with professionals at all levels both within the client organization and the firm
- Ability and willingness to travel up to 40%, required