Risk Advisory - IT Risk Director

In today’s dynamic environment, business leaders face constantly shifting risks. Riveron helps organizations implement leading governance, risk and compliance practices by combining deep expertise with pragmatic partnership, using a hands-on approach to understand the specific needs of the organization and create tailored solutions to address key compliance risks.  

Our Risk Advisory services include SOX readiness, managed internal controls testing and monitoring, co-sourced/outsourced internal audit, segregation of duties and access risk review, policy and procedure development, enterprise risk management, and IT and cybersecurity risk assessment.  

As a Director in Riveron’s IT Risk Advisory group, you will serve as a senior client leader and strategic advisor across multiple engagements. You will partner closely with Managing Directors to expand the practice, drive business development, and ensure exceptional project delivery. You will lead and mentor teams to deliver high-quality IT risk advisory services, while cultivating long-term client relationships and practice-wide thought leadership. 

Who You Are:

• Bachelor's and/or Master’s degree in Accounting, Finance, Management Information Systems, or another relevant field

• Relevant certification preferred, such as CISA, CISSP, CISM, CGEIT, or CIPP; CPA or CIA is also valued but not required

• 10+ years working as IT auditor or IT risk advisor for a public accounting firm, or other operational roles with a focus on information technology compliance. Experience should include performing internal or external IT audits

• Proven track record in IT audit, IT risk management, general and application controls, cybersecurity principles, and regulatory frameworks such as SOX, NIST, or ISO

• You have strong business development skills with a history of sourcing and winning new engagements

• You have a passion for developing and maintaining client relationships

• You have demonstrated leadership in mentoring, coaching, and growing high-performing teams

• You get the job done and have fun doing it

• You communicate skillfully with a variety of audiences and can create compelling stories from data

• You thrive in an ever-changing, dynamic work environment

• You readily identify problems and instinctively look for solutions

• You enjoy participating in internal and external company initiatives such as community service, training, recruiting, and firm events

• You have the ability and desire to travel as required based on client location

What You’ll Do: 

• Act as the primary client relationship owner, understanding each client’s business objectives, IT environment, and risk landscape

• Lead projects in the areas of IT General Controls (ITGC) assessments, Sarbanes-Oxley (SOX) IT compliance, ERP/application control reviews, and cybersecurity risk assessments

• Drive business development efforts: identify new opportunities, develop proposals, and present Riveron’s capabilities to executive leadership

• Oversee multiple concurrent engagements, ensuring project plans, budgets, deliverables, and timelines are consistently met

• Evaluate technology risks across industry-specific systems, applications, and infrastructure, and counsel clients on mitigating actions

• Assess the design and operating effectiveness of critical IT controls (access management, change management, system operations, data integrity)

• Analyze system-generated data, configurations, and logs to detect control gaps and recommend enhancements

• Develop and review IT control process flows, risk/control matrices, and testing strategies for both general and automated application controls

• Maintain technical excellence in accordance with COSO, COBIT, ISO standards, and best practices for IT auditing and risk management

• Mentor and develop staff at all levels; provide performance feedback and foster career growth

• Collaborate with Managing Directors on practice strategy, thought leadership, and service offering innovation

• Present findings and recommendations to client executive teams, clearly articulating risk insights and improvement roadmaps

• Stay current on emerging technology risks, regulatory updates, and industry trends to proactively inform clients and internal stakeholders

About Riveron:

At Riveron, we partner with clients—from global multinationals to high-growth private entities—to solve complex finance challenges, guided by our DELTA values: Drive, Excellence, Leadership, Teamwork, and Accountability. Our entrepreneurial culture thrives on collaboration, diverse perspectives, and delivering exceptional outcomes. We are committed to fostering growth, both for our clients and our people, through mentorship, integrity, and a client-centric approach. This inclusive environment offers flexibility, progressive benefits, and meaningful opportunities for impactful work that supports well-being in and out of the office.

Check us out on social media:

LinkedIn Glassdoor Instagram Facebook

Riveron Consulting is an Equal Opportunity Employer and believes that we are stronger together through our diversity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, disability status, protected veteran status, sexual orientation, gender identity or any other characteristic protected by law.

Please beware of fraudulent schemes or impersonations when going through the job application process. A Riveron employee will never recruit via text or extend unsolicited employment offers. Additionally, a Riveron employee will never ask you to exchange money or purchase anything as part of the recruiting process.