Senior Consultant | Cyber Assurance & IT Audit | Technology Risk

We’re a large and growing professional services firm that still feels like a community. With over 76,000 professionals in more than 150 countries, we combine global scale with local expertise to help dynamic organizations unlock their potential for growth. We truly care about our colleagues, our clients, and the communities where we work and live.

As a Senior Consultant, you’ll empower the team, deliver excellence, lead the way in shaping strategies and exceeding client expectations, and make a meaningful impact. Discover your purple and join our Business Risk Services Team today! 

Let us paint a picture for you

Imagine being part of a team that puts “we before me”, where flexibility is a mindset, and where you trust your colleagues to have your back.

Imagine working for an organization that believes in the power of authenticity in everything that we do. Whether you're steering discussions in a client meeting, tackling your fear of heights at the top of the Burj Khalifa or ziplining across Jebel Jais – bring your true self to work. Be a part of a team driven by a purpose of shaping the world that we live in, based on trust and integrity in markets, dynamic businesses, and communities where businesses and people thrive.

Join us to expand your horizons, be inspired, face challenges, and most importantly, be yourself.

About the Business Risk Services Line

Discover tailored risk solutions with our BRS team. From proactive risk detection to optimizing internal controls, we empower your organization with strategies that drive efficiency and safeguard against threats. With a focus on transparency and collaboration, we build robust audit frameworks that ensure resilience and foster growth in an ever-changing business landscape. 

As a Senior Consultant some of your responsibilities will include:

• Leading end‑to‑end IT audits and technology risk reviews for public sector, government‑related entities, and large private sector clients across the UAE, in line with Grant Thornton UAE methodologies
• Evaluating IT General Controls (ITGCs), ERP application controls (Oracle, SAP, Microsoft Dynamics), cloud environments, and data protection requirements, including UAE data regulations, GDPR (where applicable), and business continuity arrangements aligned to ISO 22301 and NCEMA
• Designing and executing risk‑based audit plans and testing approaches tailored to complex IT and business application landscapes, supporting ICFR/SOX, internal audit, and regulatory assurance engagements
• Participating in client and audit committee–facing meetings, discussing scope, observations, and remediation actions; contribute to the preparation of clear, defensible audit reports and track closure of agreed management actions
• Performing third‑party risk management (TPRM) reviews, including assessment of vendor contracts for governance, cybersecurity, data privacy, BCP/DR (ISO 22301), audit rights, and regulatory alignment relevant to the UAE operating environment
• Building and maintaining trusted relationships with client stakeholders, including IT, Finance, Risk, and Internal Audit, acting as a reliable GT UAE point of contact
• Providing practical insights on technology and cyber risk trends impacting UAE organizations, including cloud adoption, ERP transformation, AI enablement, and operational resilience
• Supporting business development and practice growth activities, including proposal development, client presentations, and contribution to GT UAE knowledge assets and thought leadership
• Collaborating with broader GT service lines (Internal Audit, Cybersecurity, Enterprise Risk, Data & Analytics) to deliver integrated and value‑driven assurance outcomes

Think you've got what it takes to be a Senior Consultant? Like the color purple? Great. Here's a few more boxes we're also hoping you can tick:

• 4+ years of related work experience in Technology Risk, IT Audit, ICFR, SOX, or ERP assurance engagements
• Bachelor’s or Master’s degree in Information Systems or Technology, Computer Science, Engineering, or a related discipline
• Professional certifications such as CISA, CISM, CISSP, ISO 27001 (Any 2)
• ERP platform certifications or hands‑on experience in Oracle ERP / Oracle Fusion, SAP (Preferred)
• Prior experience delivering ICFR / ITGC / SOX‑style controls, technology risk, or assurance engagements within UAE or GCC organizations
• Working knowledge of UAE and regional regulatory frameworks, such as: UAE Internal Audit Standards, IA 2025 Controls, ISO 27001, NESA, NCEMA, ADGM FSRA, DIFC, or sector‑specific regulations (government, financial services, energy)
• Experience working with government, semi‑government, or large enterprise clients in the UAE
• Familiarity with outsourced IT environments, managed service providers, and third‑party risk considerations common in the region
• Strong stakeholder management skills, with experience interacting with senior management, internal audit, compliance, and IT leadership
• Arabic language skills are an advantage (spoken and/or written), but not mandatory
• Ability to work in onsite client environments and meet UAE client delivery and security clearance requirements
• Having the ability to manage multiple engagements and competing priorities in a rapidly growing, fast-paced, interactive, results-based team environment
• Having the ability to document testing in a highly detailed and exacting manner
• Ability to supervise staff members and word on multiple projects simultaneously
• Experience of preparing and delivering presentations

.