BDO USA
Assurance Senior, Third Party Attestation
BDO USA, San Jose, California, United States, 95199
Assurance Senior, Third Party Attestation
BDO USABDO delivers assurance, tax, and financial advisory services that are tailored to our clients' industry, unique needs, and goals.The Assurance Senior, Third Party Attestation will be responsible for the preparation of third-party attestation reports, including System and Organization Controls (SOC) 1, SOC 2, SOC 3, SOC for Cybersecurity and WebTrust for CAs, as well as HITRUST, SSPA, ISO, MRC, and CSA STAR, applying most areas of the governing standard as necessary and documenting, validating, testing, and assessing various control systems, including internal controls.Job Duties:Applies knowledge and understanding of the collective effect of various factors on establishing or enhancing effectiveness, or mitigating the risks, of specific policies and procedures by:
Identifying and considering all applicable policies, laws, rules, and regulations of the firm, regulators, or other authoritative bodies as part of the engagement teamMaking constructive suggestions to improve client internal controls and accounting proceduresDocumenting and validating the operating effectiveness of the clients’ internal control systemSupervising and reviewing the work of staffDocumenting business and IT processes and controls and tests key controls for service organizations in a variety of industriesIdentifying and prioritizing key risks and assessing their impact and likelihood of occurrenceCommunicating to the client areas to improve processes, strengthen controls, mitigate risks, and/or increase efficiencyDeveloping and maintaining relationships with client personnel and managementEnsuring technology is appropriately integrated into the examination process
GAAS:Applies knowledge and understanding of professional standards; application of the principles contained in professional standards; and the ability to document and communicate an understanding and application of professional standards on an engagement by:
Developing and applying an intermediate knowledge of auditing theory, a sense of audit skepticism, and the use of BDO audit manualsApplying auditing theory to various client situationsDocumenting working papers and attestation reports in line with BDO policy, identifying deviations and notifying more senior team members in order to obtain appropriate approvalsApplying knowledge to identify instances where testing may be reduced or expanded and notifying more senior team members of the occurrenceContributing ideas and opinions to the engagement team
Other:Applies knowledge and understanding of governing principles; applying these principles to client transactions; and documenting and communicating an understanding and application of these principles by:
Planning and executing attestation examinations including obtaining an understanding of the control environment, designing test plans, evaluating deficiencies, and assessing the overall financial reporting control environmentReading and reviewing clients’ reports, ensuring accuracy and completeness, and also ensuring that all supporting information is documented in the workpapers and through appropriate testingPreparing required communications to the Client and the Audit Committee, as applicableRecognizing and applying new pronouncements to client situationsIdentifying, analyzing, and discussing alternative principles with the Manager, Senior Manager, and engagement partner and the client, as neededIdentifying complex issues and bringing them to the attention of superiors for resolutionCoaching less experienced team members in new areas
Methodology:Applies knowledge and application of BDO standards to guide effective and efficient delivery of quality services and products by:
Completing all appropriate documentation of BDO work papersEnsuring assigned work is performed in accordance with BDO methodology and requirements
Research:Applies methodology used to seek or maintain information from authoritative sources and to draw conclusions regarding a target issue based on the information by:
Researching basic and intermediate accounting topics and forming an initial opinion on the treatment independently
Other duties as requiredSupervisory Responsibilities:Provides verbal and written performance feedback to Associates on assigned engagement teamsSupervises the work assignments of Associates on assigned engagement teamsOther duties as requiredQualifications, Knowledge, Skills and Abilities:Education:Bachelor’s degree in Accounting, Computer Science, Management Information Systems, Business Administration, Managerial Marketing and Entrepreneurship, Finance, or Economics, requiredMaster’s degree in Accounting and minor or dual major in Information Systems or other relevant advanced degree, preferredExperience:More than two (2) years of prior experience in IT, internal or external audit, requiredMore than one (1) year of prior supervisory experience, preferredExperience performing internal control reviews, preferredExperience performing SOC, WebTrust, HITRUST, SOX, ISO 27001, and security/privacy advisory engagements, preferredLicense/Certifications:One or more of the following certifications are preferred:
Certified Public Accountant (CPA)Certified Information Systems Auditor (CISA)Certified Information Systems Security Professional (CISSP)ISO 27001 Lead Auditor certificationHITRUST Certified Common Security Framework Professional (CCSFP)Certified Internal Auditor (CIA)Certified Information Security Manager (CISM)Certified Ethical Hacker (C | EH)Certified in Risk and Information Systems Control (CRISC)Certified in the Governance of Enterprise IT (CGEIT)
Software:Proficiency in Microsoft Office Suite, specifically Word, Excel, and PowerPoint, requiredPrior experience with various applications (e.g., ERP systems), operating systems (e.g., UNIX, Windows), and databases (e.g., Oracle, SQL), preferredExposure to cloud platforms, SaaS applications, security and engineering tools, and other industry software, preferredOther Knowledge, Skills & Abilities:Basic understanding and experience planning and coordinating the stages to perform technology-focused audits and assessmentsKnowledge of internal controls and professional standards and regulations (SOC, ISO, WebTrust, HITRUST, Sarbanes-Oxley, etc)Knowledge of data analytics and emerging technologies desiredStrong verbal and written communication skills with the ability to adapt style and messaging to effectively communicate and interact with professionals at all levels both within the client organization and the firmAbility to successfully multi-task while working independently and within a group environmentSolid analytical and diagnostic skills and ability to break down complex issues and implement appropriate resolutionsCapable of working in a demanding, deadline-driven environment with a focus on details and accuracyAbility to travel as necessaryIndividual salaries offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate’s qualifications, experience, skills, and geography.California Range: $85,000 - $125,000NYC/Long Island/Westchester Range: $80,000 - $115,000Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world.At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team.
#J-18808-Ljbffr
BDO USABDO delivers assurance, tax, and financial advisory services that are tailored to our clients' industry, unique needs, and goals.The Assurance Senior, Third Party Attestation will be responsible for the preparation of third-party attestation reports, including System and Organization Controls (SOC) 1, SOC 2, SOC 3, SOC for Cybersecurity and WebTrust for CAs, as well as HITRUST, SSPA, ISO, MRC, and CSA STAR, applying most areas of the governing standard as necessary and documenting, validating, testing, and assessing various control systems, including internal controls.Job Duties:Applies knowledge and understanding of the collective effect of various factors on establishing or enhancing effectiveness, or mitigating the risks, of specific policies and procedures by:
Identifying and considering all applicable policies, laws, rules, and regulations of the firm, regulators, or other authoritative bodies as part of the engagement teamMaking constructive suggestions to improve client internal controls and accounting proceduresDocumenting and validating the operating effectiveness of the clients’ internal control systemSupervising and reviewing the work of staffDocumenting business and IT processes and controls and tests key controls for service organizations in a variety of industriesIdentifying and prioritizing key risks and assessing their impact and likelihood of occurrenceCommunicating to the client areas to improve processes, strengthen controls, mitigate risks, and/or increase efficiencyDeveloping and maintaining relationships with client personnel and managementEnsuring technology is appropriately integrated into the examination process
GAAS:Applies knowledge and understanding of professional standards; application of the principles contained in professional standards; and the ability to document and communicate an understanding and application of professional standards on an engagement by:
Developing and applying an intermediate knowledge of auditing theory, a sense of audit skepticism, and the use of BDO audit manualsApplying auditing theory to various client situationsDocumenting working papers and attestation reports in line with BDO policy, identifying deviations and notifying more senior team members in order to obtain appropriate approvalsApplying knowledge to identify instances where testing may be reduced or expanded and notifying more senior team members of the occurrenceContributing ideas and opinions to the engagement team
Other:Applies knowledge and understanding of governing principles; applying these principles to client transactions; and documenting and communicating an understanding and application of these principles by:
Planning and executing attestation examinations including obtaining an understanding of the control environment, designing test plans, evaluating deficiencies, and assessing the overall financial reporting control environmentReading and reviewing clients’ reports, ensuring accuracy and completeness, and also ensuring that all supporting information is documented in the workpapers and through appropriate testingPreparing required communications to the Client and the Audit Committee, as applicableRecognizing and applying new pronouncements to client situationsIdentifying, analyzing, and discussing alternative principles with the Manager, Senior Manager, and engagement partner and the client, as neededIdentifying complex issues and bringing them to the attention of superiors for resolutionCoaching less experienced team members in new areas
Methodology:Applies knowledge and application of BDO standards to guide effective and efficient delivery of quality services and products by:
Completing all appropriate documentation of BDO work papersEnsuring assigned work is performed in accordance with BDO methodology and requirements
Research:Applies methodology used to seek or maintain information from authoritative sources and to draw conclusions regarding a target issue based on the information by:
Researching basic and intermediate accounting topics and forming an initial opinion on the treatment independently
Other duties as requiredSupervisory Responsibilities:Provides verbal and written performance feedback to Associates on assigned engagement teamsSupervises the work assignments of Associates on assigned engagement teamsOther duties as requiredQualifications, Knowledge, Skills and Abilities:Education:Bachelor’s degree in Accounting, Computer Science, Management Information Systems, Business Administration, Managerial Marketing and Entrepreneurship, Finance, or Economics, requiredMaster’s degree in Accounting and minor or dual major in Information Systems or other relevant advanced degree, preferredExperience:More than two (2) years of prior experience in IT, internal or external audit, requiredMore than one (1) year of prior supervisory experience, preferredExperience performing internal control reviews, preferredExperience performing SOC, WebTrust, HITRUST, SOX, ISO 27001, and security/privacy advisory engagements, preferredLicense/Certifications:One or more of the following certifications are preferred:
Certified Public Accountant (CPA)Certified Information Systems Auditor (CISA)Certified Information Systems Security Professional (CISSP)ISO 27001 Lead Auditor certificationHITRUST Certified Common Security Framework Professional (CCSFP)Certified Internal Auditor (CIA)Certified Information Security Manager (CISM)Certified Ethical Hacker (C | EH)Certified in Risk and Information Systems Control (CRISC)Certified in the Governance of Enterprise IT (CGEIT)
Software:Proficiency in Microsoft Office Suite, specifically Word, Excel, and PowerPoint, requiredPrior experience with various applications (e.g., ERP systems), operating systems (e.g., UNIX, Windows), and databases (e.g., Oracle, SQL), preferredExposure to cloud platforms, SaaS applications, security and engineering tools, and other industry software, preferredOther Knowledge, Skills & Abilities:Basic understanding and experience planning and coordinating the stages to perform technology-focused audits and assessmentsKnowledge of internal controls and professional standards and regulations (SOC, ISO, WebTrust, HITRUST, Sarbanes-Oxley, etc)Knowledge of data analytics and emerging technologies desiredStrong verbal and written communication skills with the ability to adapt style and messaging to effectively communicate and interact with professionals at all levels both within the client organization and the firmAbility to successfully multi-task while working independently and within a group environmentSolid analytical and diagnostic skills and ability to break down complex issues and implement appropriate resolutionsCapable of working in a demanding, deadline-driven environment with a focus on details and accuracyAbility to travel as necessaryIndividual salaries offered to a candidate are determined after consideration of numerous factors including but not limited to the candidate’s qualifications, experience, skills, and geography.California Range: $85,000 - $125,000NYC/Long Island/Westchester Range: $80,000 - $115,000Join us at BDO, where you will find more than a career, you’ll find a place where your work is impactful, and you are valued for your individuality. We offer flexibility and opportunities for advancement. Our culture is centered around making meaningful connections, approaching interactions with curiosity, and being true to yourself, all while making a positive difference in the world.At BDO, our purpose of helping people thrive every day is at the heart of everything we do. Together, we are focused on delivering exceptional and sustainable outcomes and value for our people, our clients, and our communities. BDO is proud to be an ESOP company, reflecting a culture that puts people first, by sharing financially in our growth in value with our U.S. team.
#J-18808-Ljbffr