Selskapsbeskrivelse
Deloitte delivers specialized services with expertise in audit, legal services, financial advisory, risk analysis, and consulting. With over 450,000 colleagues supporting us, we view the world from various perspectives and create value across borders, industries, expertise, insights, and generations. Using this knowledge, we help prepare our clients for tomorrow’s challenges. Together, we create results.
Jobbeskrivelse
Our team of attestation services experts offers independent assurance services covering a wide range of subject matters, including information security, financial and environmental business processes, data privacy and GDPR, and specialized assurance subjects such as SOC2, Cloud Security, NIS2, DORA, MitID, NSIS, SWIFT, and other challenging themes. With our unique skill sets, we provide clients with the attestation reports they need to meet their regulatory, customer, and B2B requirements, helping them gain a competitive advantage, improve internal control maturity, satisfy contractual and regulatory obligations, and build trust. As Deloitte Norway’s dedicated Third-Party Assurance team, we work with clients to improve their process and control maturity, building trust and evidencing their integrity. We are expanding our capacity to deliver and grow, and as a Senior Consultant in our team, you will work on a wide range of assurance-related assignments. If you are interested in working with complex themes and customers and are passionate about finding good solutions, we would love to talk to you.
As a Senior Consultant in our Third-Party Assurance Services group, you will be responsible for client assignments related to globally recognized standards such as SOC1, SOC2, ISAE3402, and ISAE3000. This includes performing gap analysis and readiness assessments for first-time attestation customers, as well as performing fieldwork for annual Type 1 and Type 2 attestation reports. Our reports cover company-level controls, general IT controls, and business process controls for various themes based on our customers’ services.
We cover areas such as security, change management, operations, incident management, and business process-specific areas related to financial transactions. Using our combined IT and business process knowledge, audit methodology expertise, and data analytics skills, we challenge our clients’ internal control maturity, identify weaknesses or gaps, and provide advice to address them. Our ultimate goal is to help our clients obtain an independent attestation report that they can present to their customers, business partners, regulators, and prospective customers/business partners.

WHO WE ARE LOOKING FOR:

We are looking for individuals who wants to join our dynamic, strong, and committed team, dedicated to delivering the best attestation services in the Nordics. You enjoy understanding and analyzing problems and coming up with good solutions for complex issues. We believe you have higher education in information technology, engineering, mathematics or economics or other relevant education. Additionally, we highly value relevant work experience, such as:

• Hands-on experience in delivering third-party assurance services and a good working knowledge of standards such as SOC 1, SOC 2, SOC 3, ISAE 3402, and ISAE 3000.
• The ability to work on multiple projects at one time, meet our clients’ deadlines, keep yourself and your team happy and deliver good quality while managing client expectations.
• A knowledge of some of the relevant regulatory and IT standards, frameworks, and best practices (e.g., DORA, NIS2, ISO27001, GDPR, COBIT, NIST, MitID, NSIS).
• You should have a general knowledge of auditing IT systems across various platforms. (e.g., Windows, Linux, Azure, GCP, AWS).
• As most of our clients operate in English, you should have excellent communication skills in English. We also have numerous Norwegian speaking clients where advanced communication skills in Norwegian would be beneficial and ideal for at least some of the positions we are trying to fill. We will also support Norwegian language training, if desired.
• We encourage professional certifications such as CISA, CIA, CIPP/e, CCAK, CCSK or equivalent.

Ytterligere informasjon

• Lead/Co-lead Fieldwork: Taking charge or co-leading the fieldwork activities, which may include data collection, interviews, and testing, to gather evidence and insights for the engagement.
• Train graduates: Providing guidance and training to new graduates, helping them understand the firm’s methodologies, tools, and best practices, and supporting their professional development.
• Run client meetings: Taking responsibility for organizing and conducting meetings with clients to discuss project progress, findings, and recommendations, and to address any concerns or queries they may have.
• Gaining a deep understanding of the client’s processes, testing the effectiveness of controls, and thoroughly documenting the procedures and results for review and reference. Contributing to the creation of accurate and comprehensive descriptions of processes and controls, which are essential for attestation reports and compliance assessments.
• Reviewing and ensuring the quality and accuracy of the work produced by consultants involved in the engagement, providing feedback and support as necessary.
  Kvalifikasjoner