Manager, Technology Risk Consulting

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You'll find an environment that inspires and empowers you to thrive both personally and professionally. There's no one like you and that's why there's nowhere like RSM.

Our Risk Advisory Services Technology Risk Consulting (TRC) professionals serve complex global clients, helping transform their IT risk management and assurance capabilities to align with their organization's key risks and strategic priorities.

We work with large and middle-market clients across a wide variety of industries, developing strong relationships built on a deep understanding of their businesses, challenges, risks, and IT requirements. Our professionals also play a critical role in testing SOX internal audit financial controls, supporting compliance efforts by evaluating the design and operating effectiveness of both IT and business process controls in alignment with regulatory requirements.

Responsibilities

• Consult with client leadership on the design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies.
• Create internal control documentation for the engagement, including narratives, process, and data flows.
• Consult with client leadership on strategic plans and other business matters, helping our clients to anticipate emerging risks and information technology opportunities.
• Manage SOC attestation and other third-party opinion services.
• Support external financial statement and SOX compliance engagements for application and information technology general computer controls, assisting financial audit and Sarbanes-Oxley compliance teams in the identification of control objectives and the design of control procedures to address those objectives.
• Evaluate and enhance IT security policies, procedures, and controls of clients' business applications, networks, operating systems, and other components of their technology infrastructure.
• Supervise the review, documentation, evaluation, and testing of application controls, particularly automated controls on a wide range of ERP systems and software applications across various client business processes.
• Identify internal IT controls, assess their design and operational effectiveness, determine risk exposures, and develop remediation plans. Determine the technical and business impact of identified security and control issues and provide remediation guidance to clients.
• Communicate findings and recommendations to client personnel.
• Drive business growth by actively participating in business development and client sales opportunities, contributing to the expansion of RSM's market presence.

Required Qualifications

• Must be based in or willing to work from the Los Angeles office.
• Comfortable with a hybrid schedule, including 2-3 days per week in the office or at client sites.
• Demonstrated ability to serve as a culture builder and team leader, fostering collaboration and a positive team environment.
• Bachelor's degree or equivalent.
• Four or more years of experience in business process controls and IT risk management, internal audit, IT security, or other IT compliance-related work.
• Experience leading engagements and managing staff; experience managing project financials and managing projects to completion within agreed-upon budgets.
• Experience mentoring staff, providing performance feedback, and monitoring workloads of the team while meeting stakeholder and client expectations.
• Strong understanding of information technology controls and security.
• Ability to interpret and convey technical information to all levels of technical aptitude, including senior management. This includes written and oral communications.
• Ability to articulate, write, and present information in a clear and understandable manner.
• Strong time management and organizational skills with the ability to manage multiple priorities successfully within a deadline-driven environment.

Preferred Qualifications

• Experience in a widely used financial application (SAP, Oracle, JD Edwards, PeopleSoft, etc.).
• Strong understanding of relevant regulations and industry standards (e.g., FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA, and GLBA) and best practices and methodologies to address these requirements. Ability to apply these requirements to organizational internal control frameworks.
• Professional certifications including Certified Public Accountant (CPA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), and/or Certified Information Privacy Professional (CIPP).

At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life's demands, while also maintaining your ability to serve clients. Learn more about our total rewards at

All applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law.

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at or send us an email at

RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate.

RSM will consider for employment qualified applicants with arrest or conviction records in accordance with the requirements of applicable law, including but not limited to, the California Fair Chance Act, the Los Angeles Fair Chance Initiative for Hiring Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the San Francisco Fair Chance Ordinance. For additional information regarding RSM's background check process, including information about job duties that necessitate the use of one or more types of background checks, click here.

At RSM, an employee's pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.

Compensation Range: $101,000 - $203,000

Individuals selected for this role will be eligible for a discretionary bonus based on firm and individual performance.