IT Risk & Assurance

  • Share

<< Back to Advisory

IT Risk and Assurance (ITRA) plays a vital role in providing independent assurance in the boardroom to our clients, and subsequently helping to restore and maintain public confidence in the world’s capital markets. Managing IT risks are more important than ever before, and our clients value our independent opinion as to how they are tackling the evolving IT risk environment.

Across a wide range of global, listed and high profile clients, our team are responsible for the identification of key IT risks in our client’s environment, and we advise our clients on areas of improvement.

The role of ITRA spans across two of EY’s service lines; Advisory and Assurance. We play a critical role in providing assurance over the most pressing IT risks facing our external audit clients, and we are also responsible for advising our clients on how best to improve how they manage their ever changing business environment, and the risks that come with it.

As part of our team you will be expected to take on responsibility early; providing you with real experience dealing with our wide range of leading clients and allowing you responsibility to take ownership for our team’s work. You will have a great team around you, and we will help you succeed.

Alongside ITRA specific training to follow a consistent, globally recognised methodology and use the most current support tools, you will also receive the encouragement, financial support and approved time off to study for the world-leading, industry-recognised ACA certification - laying the groundwork for a fast-moving, high-potential career with us.


From day one you will play an integral role within ITRA engagements, working directly with our global and local clients. You may be auditing major global organisations across various sectors, helping them to gain confidence over the quality of their data and IT security controls to support our financial audit opinion.

You will quickly develop a strong working knowledge of EY’s global audit methodology, and working as part of a wider team you will be responsible for a variety of challenging tasks, including taking ownership for testing and reviewing the effectiveness of key IT controls, reviewing business processes, assessing large scale business change projects and performing data analysis over critical financial information. You will also be responsible for helping to communicate the impact of your results and recommendations for improvement directly with clients.

Working on a variety of UK and global IT audit engagements, you will begin to lead by coaching others by your second year while developing your client relationship skills – in some cases, already owning client relationships as well as building up your exceptional project management and teaming skills.


The breadth and challenge of our graduate scheme offers you the chance to be promoted to Senior Consultant after just two years.

Successful individuals in ITRA are people who are inquisitive, analytical, ambitious, and great at working with others, as well as people who demonstrate the potential to become a future business leader.

We are also a key part of the EY Global network and international travel opportunities are common in our team. The environment we work in and the needs of our clients are changing fast, creating lots of different opportunities to get involved in a range of assignments and make a difference.

You will gain exposure to a variety of client projects where we may be assessing and/or helping our clients to manage IT risk. This variety includes where we are internal auditors, external auditors or advisors. In addition to IT controls and business process understanding, our team have significant experience of using the power of data analytics to provide insight into our client’s data; working with our clients in managing cyber security risk and in providing assurance over our client’s most significant and complex change programmes.

Entry requirements:

  • Grade B or above for GCSE Mathematics and English Language (or equivalent);
  • At least 320 (26) UCAS points (or equivalent), excluding General Studies or re-sits;
  • A 2.1 or above degree in any discipline.

Please note: in exceptional circumstances we will accept applications from candidates who do not meet our academic requirements. If this is your case, you will need to provide strong justification for why we should consider your application. You will also need to provide documentary evidence of any mitigating circumstances.

The above entry requirements are not applicable for our Schools Programmes.

>> Find and apply for roles