Digital Risk - Senior Consultant - Milano/roma

Ernst & Young Global Ltd

Milan, Italy
On-site (with flexible smart working policy)
Internal auditing experience in ict risk
Knowledge of itgc and itac controls
Experience with iso 27001 and iso 22301 standards
Ernst & Young (EY) is seeking a Senior Consultant for their Digital Risk team in Milan or Rome, focusing on Information Security Risk and Internal Auditing related to ICT Risk Management. The position offers a dynamic work environment with opportunities for professional development, international mobility, and a strong emphasis on continuous learning and inclusivity

Job Summary

  • The Digital Risk team supports clients in understanding, analyzing, monitoring, and managing risks related to technology and information infrastructure.
  • Candidates will plan and conduct internal audits in compliance with relevant ISO norms such as ISO 27001, ISO 22301, and ISO 27701.
  • EY offers continuous training with over 50 hours of technical and managerial courses per year plus access to AI tools like Copilot365.

Matching Summary

Match Score: 85

Ernst & Young (EY) is seeking a Senior Consultant for their Digital Risk team in Milan or Rome, focusing on Information Security Risk and Internal Auditing related to ICT Risk Management. The position offers a dynamic work environment with opportunities for professional development, international mobility, and a strong emphasis on continuous learning and inclusivity.

Skills & Requirements

Must-have

  • Internal Auditing experience in ICT Risk
  • Knowledge of ITGC and ITAC controls
  • Experience with ISO 27001 and ISO 22301 standards
  • Ability to assess automated system controls
  • Proficiency in English language

Nice-to-have

  • Familiarity with Artificial Intelligence tools
  • Experience with Archer platform
  • Knowledge of SoD (Segregation of Duties)
  • Business Continuity planning skills
  • Third Party Risk management exposure

Key Requirements

  • Bachelor's or Master's degree in Economics, Law, Engineering, or Statistics
  • At least 15 months of experience in ICT Risk Management
  • Strong knowledge of IT General Controls and Internal Auditing methodologies

Work Rights

Not specified

Tailored Resume

Cover Letter