Junior IT Risk Consultant

Náplň práce, právomoci a zodpovednosti:

We are looking for a detail-oriented and technically adept IT professional with 2–3 years of experience who is interested in transitioning into IT Audit or IT Risk & Controls. This role is ideal for someone with a foundational understanding of IT systems who wants to grow their expertise in IT governance, risk management, and compliance (GRC). The position will provide hands-on exposure to both audit engagements and risk control assessments, helping shape a well-rounded career in IT assurance.

This role provides a foundation for career paths in IT Audit, IT Risk & Controls, Cybersecurity Risk, or Compliance. The position offers opportunities to gain cross-functional experience, work on regulatory initiatives, and pursue professional certifications.

Key Responsibilities:

• Support the execution of IT audits, risk assessments, and control testing activities.

• Assist in evaluating IT processes, systems, and controls to identify potential risks and recommend mitigations.

• Contribute to the development and maintenance of IT risk registers and control frameworks.

• Participate in walkthroughs and interviews with IT and business stakeholders to document processes and assess control design and effectiveness.

• Analyze system access, change management procedures, security configurations, and third-party/vendor risk practices.

• Help ensure compliance with industry standards (e.g., NIST, ISO 27001, COBIT) and regulatory requirements (e.g., SOX, GDPR, AI Act).

• Collaborate with stakeholders on remediation planning and follow-up of audit and risk findings.

• Stay informed on evolving IT risks, threats, and best practices related to cybersecurity, cloud security, and operational resilience.

Zamestnanecké výhody, benefity:

What we can offer you:
Join our dynamic team of experts and enthusiasts and enjoy a range of KPMG benefits designed to make your work-life balance exceptional:

• Hybrid Work Model: Enjoy the flexibility of working both from the office and remotely.

• Career Growth: Unlock endless opportunities for career advancement within our international company.

• Learning Programs: Boost your career with access to learning programs and earn financial rewards for completing professional certifications. (ACCA, CFA)

• Flexible Benefits: Customize your perks with our KPMG4You cafeteria system, offering contributions towards health, shopping, sports, culture, or education.

• Meal Contributions: We fully cover your financial meal voucher expenses, even during your vacation!

• Summer Short Fridays: Kickstart your weekends early with half-day Fridays during the summer.

• Holiday Break: Enjoy a closed office during Christmas with two extra days of paid leave.

• Recovery Days: Take three days per year to recharge when you’re not feeling your best.

• Volunteering Opportunities: Make a difference with our volunteering activities and get two days off for CSR initiatives.

• Access to MultiSport Card: Stay active with access to various sports facilities.

• Wellbeing Program: Benefit from free health checks, workplace massages, office breakfasts, fresh fruit, teambuilding, workshops, and sports activities.

• Employee Assistance Program: Access free psychological counseling for you and your family members.

• Buddy Program: Get support from an experienced colleague to help you settle in.

• Tech Perks: Receive a laptop and mobile phone, both equipped with data packages that may also be used for private purposes.

• Corporate Discounts: Enjoy exclusive discounts with our partners like KIA, SND, Raj Zdravia, MMG Barbers, BeBe Hair, Union, Qawa coffee and bistro, and more.

• Referral Rewards: Earn financial rewards for recommending candidates who get hired.

• Birthday and Christmas Gifts: Celebrate your special days with small but thoughtful gifts from us.

Požiadavky na zamestnanca:

Qualifications:

• 2–3 years of experience in IT roles (e.g., support, systems/network administration, IT operations, or development).

• Strong interest in IT audit, risk, compliance, or cybersecurity.

• Basic understanding of IT control frameworks, such as COBIT, NIST, or ISO 27001.

• Familiarity with access controls, incident response, change management, and data protection principles.

• Strong analytical, organizational, and documentation skills.

• Excellent verbal and written communication skills.

• Proficiency in Excel, and familiarity with data tools (e.g., SQL, Power BI) is a plus.

Preferred (Not Required):

• Exposure to internal/external audits, risk management, or compliance efforts.

• Progress toward relevant certifications such as CISA, CRISC, CISSP, or CompTIA Security+.

• Experience with GRC tools or IT service management platforms (e.g., ServiceNow, Archer).