Senior Manager – IT Risk, Audit & Compliance (ITGC/SOX/ERP Controls)

About the Role

RGP is seeking a highly experienced Senior IT Risk & Assurance Consultant with a strong background in SOX 404 / ICOFR Assessments, IT General Controls, ERP Security & Controls, Cybersecurity, Data Privacy, and Risk Advisory services . This role requires a leader who can manage complex global assurance engagements, drive compliance programs, and partner with senior stakeholders across Fortune Global 500 and multinational environments.

What You Will Work On

• Lead and deliver ITGC, ITAC, SOX 404/ICOFR audit and compliance programs across global, regulated enterprises.
• Conduct assessments of IT governance frameworks, cybersecurity controls, data privacy compliance, and emerging technology risks.
• Review and assess SAP, Oracle, PeopleSoft, JD Edwards, Navision and other ERP security configurations including GRC/SoD analysis.
• Manage and execute risk assessments, walkthroughs, RCMs, and issue remediation strategies.
• Support IT policies, cybersecurity frameworks, SOP development, vulnerability assessments, and data migration audits.
• Serve as a trusted advisor to senior stakeholders, internal audit teams, business process owners, and IT leadership.
• Manage end-to-end engagement delivery, including planning, execution, reporting, client relationship management and team oversight.

What You Bring

• Bachelors degree in Commerce, Accounting, IT, or related field; MBA preferred.
• Professional Certifications Required: CISA
• Additional Certifications Preferred: CDPSE, CMA, SAP Power User
• Minimum 12+ years of progressive experience in:
• SOX / IFC / ICOFR audits
• ERP Security & Controls
• ITGC, ITAC, Cybersecurity, and Compliance reviews
• Third-party assurance (SSAE16/SOC1/SOC2)
• Hands-on experience with multiple ERP platforms, including:
• SAP R/3, S/4HANA, SAP GRC, Oracle EBS, PeopleSoft, JD Edwards, Navision
• Strong communication skills with experience engaging global stakeholders, regulators, and executive sponsors.
• Proven ability to lead and deliver engagements across multiple industries including BFSI, Manufacturing, Telecom, and Technology.

Preferred Experience

• Exposure to Data Privacy frameworks (GDPR or equivalent).
• Hands-on execution of vulnerability assessments and cybersecurity audits.
• Project delivery experience with global firms or Big 4 consulting background.