IT Control Attestations
- Work directly with IT Audit Managers and clients to gain an understanding of the client’s IT systems, infrastructure, and control environment
- Apply that understanding to a variety of IT risk and control frameworks such as SOC, PCI, HIPAA, ISO, FFIEC, NIST, CIS Security and many others
IT Risk Assessments
- Understand the clients and their stakeholders to assist with an independent assessment of their IT risks and be involved with developing various types of reports and presentations to stakeholders
IT Risk Assessments
- Understand the clients and their stakeholders to assist with an independent assessment of their IT risks and be involved with developing various types of reports and presentations to stakeholders
Controls Testing:
- Working directly with IT Audit Managers to develop and follow audit plans to evaluate the design and operational effectiveness of client controls
Documentation:
- Clearly document the procedures, results of tests, and conclusions performed during control testing
Training and Support:
- Work with junior level staff and interns to provide training and support throughout the course of engagements.
- Review their work and provide feedback
Quality control
- Ensure quality control procedures are being executed under direction of engagement supervisor, and perform thorough self-review of all work prior to submission
Administration
- Track time and maintain designated chargeable hours for the year
Supervisory responsibilities
- You will supervise IT Audit Staff and interns throughout engagements. You will review their work and provide feedback to the staff and to the IT Audit Managers
Work environment
- Work is conducted in a professional office environment with minimal distractions
Physical demands
- Prolonged periods of sitting at a desk and performing work in front of a computer screen for long periods of time
- Must be able to lift up to 15 pounds at a time
Travel required
- Some travel is required. The TRC team meets twice a year at various offices in the county.
- Some client travel may be required.
Required education and experience
- Bachelor's degree in accounting, information systems, or similar with an interest in information technology
- A minimum of 2 – 4 years of related internal audit and IT audit experience
- Must have a desire to work toward achieving one or more of the following certifications:
- Certified Public Accountant (CPA)
- Certified Information Systems Auditor (CISA): ISACA's globally recognized cornerstone certification for IS, audit, control, assurance, and security professionals who control, monitor, and assess an organization's information technology and business systems
- Certified Information Systems Security Professional (CISSP): An independent information security certification governed by the International Information Systems Security Certification Consortium, also known as ISC², which provides security training to information assets
- Certified Information Security Manager (CISM): ISACA's certification program for those who manage, design, oversee, or assess an enterprise's information security
Other duties
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the colleague for this job. Duties, responsibilities and activities may change at any time with or without notice.
WHO WE AREUHY is one of the nation’s largest professional services firms providing audit, tax, consulting and advisory services to clients primarily in the dynamic middle market. We are trailblazers who bring our experience from working within numerous industries to our clients so that we can provide them with a 360-degree view of their businesses. Together with our clients, UHY works collaboratively to develop flexible, innovative solutions that meet our clients’ business challenges. As an independent member of UHY International, we are proud to be a part of a top 20 international network of independent accounting and consulting firms.
WHAT WE OFFERPOSITIVE WORK ENVIRONMENT
Enjoy a collaborative and supportive work environment where teamwork is valued.
ATTRACTIVE COMPENSATION PACKAGES
Our compensation is competitive and tailored to reflect the role, qualifications, and expertise of each individual.
COMPREHENSIVE BENEFIT PACKAGE
Access comprehensive benefits including group health insurance, dental and vision coverage, 401(k) retirement plans, and generous paid time off (PTO) allowances.
Skills Required
- Bachelor's degree in accounting, information systems, or similar
- 2-4 years of related internal audit and IT audit experience
- Experience with IT risk and control frameworks such as SOC, PCI, HIPAA, ISO 27001, NIST, CIS, FFIEC
- Desire to pursue certifications (CPA, CISA, CISSP, or CISM)
UHY-US Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about UHY-US and has not been reviewed or approved by UHY-US.
-
Healthcare Strength — Health coverage includes medical, dental, vision, life and disability, with some locations citing strong employer contributions. Consultant materials also outline multiple plan choices and HSA access.
-
Leave & Time Off Breadth — Time off includes paid holidays and accrued PTO, and consultant roles are eligible for time-and-a-half overtime. Local write-ups also reference full maternity and paternity leaves in at least one market.
-
Retirement Support — Savings options include a 401(k) with pre-tax, after-tax, and Roth features. Feedback suggests retirement benefits are viewed favorably in some cases.
UHY-US Insights
What We Do
UHY is one of the nation’s largest professional services firms providing audit, tax, consulting and advisory services to clients primarily in the dynamic middle market. We are trailblazers who bring our experience from working within numerous industries to our clients so that we can provide them a 360-degree view of their businesses. Together with our clients, UHY works collaboratively to develop flexible, innovative solutions that meet our clients’ business challenges. As an independent member of UHY International, we are proud to be a part of a top 20 international network of independent accounting and consulting firms. Firm Disclaimer ©2025 UHY LLP. ALL RIGHTS RESERVED. “UHY” is the brand name under which UHY LLP and UHY Advisors, Inc. provide professional services. The two firms operate as separate legal entities in an alternative practice structure. UHY LLP is a licensed independent CPA firm that performs attest services. UHY Advisors, Inc. provides tax and business consulting services through subsidiary entities. UHY Advisors, Inc. and UHY LLP are U.S. members of Urbach Hacker Young International Limited (UHY International), a UK company, and form part of the international UHY network of legally independent accounting and consulting firms. Any services described herein are provided by UHY Advisors, Inc. and/or UHY LLP (as the case may be) and not by UHY International or any other member firm of UHY International. Neither UHY International nor any member of UHY International has any liability for services provided by other members. On this website, (i) the term "our firm", "we" and terms of similar import, denote the alternative practice structure conducted by UHY LLP and UHY Advisors, Inc. and its subsidiary entities, and (ii) the term "UHYI" denotes the UHY international network, in each case as more fully described in the preceding paragraph.
