Senior / Supervisor – Risk Assurance & IT Assurance

San Francisco Bay AreaAssurance – Risk Assurance /Full-time /HybridBPM – where caring and community is in our company DNA; we are always striving to be our best selves; and we're compelled to ask the questions that lead to innovation. As Risk Assurance/ IT Assurance Senior, you will execute audits, review work, consult and communicate with leaders and client personnel to complete assurance engagements. Working with BPM means using your experiences, broadening your skills, and reaching your full potential in work and life—while also making a positive difference for your clients, colleagues, and communities. Our shared entrepreneurial spirit drives us to see and do things differently. Our passion for people makes BPM a place where everyone feels welcome, valued, and part of something bigger. Because People Matter. What you get: · Total rewards package: from flexible work arrangements to personalized benefit structures and financial compensation options that give you choice and flexibility · Well-being resources: interactive wellness platform and incentives, an employee assistance program and mental health resources, and Colleague Resource Groups (CRGs)· Balance & flexibility: 14 Firm Holidays including 2 floating, Flex PTO, paid family leave, winter break, summer hours, and remote work options, so you can balance challenging yourself with taking care of yourself · Professional development opportunities: A learning culture with CPA exam resources and bonuses, a coach program, and live classes, workshops, and seminars through BPM University Who is successful at BPM:· Caring people who put others first · Self-starters who embody the BPM entrepreneurial spirit · Authentic individuals with a diverse point of view · Lifelong learners with a drive to excel · Resilient people who rise to the occasion Responsibilities: · Assist with SOX ITGC and ITAC testing for clients· Conduct IT Audits in accordance with standards like SSAE 18· Perform audit activities from walkthroughs to report preparation relating to SSAE-18 SOC 1 & 2/ SOX ensuring timely deliverables.· Performs testing and provides technical expertise to clients and team members.· Managing other audit related documentationRequirements: · 3–8 years of post-qualification experience conducting information technology audits· Licensed professional or actively pursuing the Certified Information Systems Auditor (CISA) designation· Certified Information Systems Auditor (CISA); Certified Information Systems Security Professional (CISSP) is an added advantage; CPA license· Working knowledge of SOC 1, SOC 2, and SOC 3 reports, including ITGC and ITAC testing· Expertise and ability to perform IT SOX audits independently· Familiarity with IT general controls (ITGCs) and IT application controls (ITACs), and their applicability to financial reporting and information systems support processes· Excellent oral and written communication skills· Competently analyzes and prioritizes information to make appropriate recommendations· Ability to synthesize research into clear, thoughtful, and actionable deliverables· Ability to run multiple engagements simultaneously and communicate as a team with the Domestic (US) engagement teams.$85,000-$115,000/yearThe salary range provided is intended for candidates in the San Francisco Bay Area who meet the minimum requirements of the position. Candidates who do not reside in the San Francisco Bay Area, do not meet the minimum requirements, or exceed the requirements are encouraged to apply and a recruiter will provide you with a range specific to your location and qualifications.This position is not eligible for third-party or agency submissions. We will not accept unsolicited resumes from search firms or staffing agencies.We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.