Director, IT Risk & Compliance

We are seeking a Director, IT Risk & Compliance, to develop and lead advisory business opportunities in the marketplace with a strong focus on ERP Assurance across SAP, Oracle (EBS/Cloud), NetSuite, and Workday environments. With this role, there is an expectation of responsibility for the successful management and execution of complex, high-visibility client projects and deliverables. Equally as important will be your contribution to delivering sustainable and profitable revenue growth. Primary solution focus areas will include ERP risk assessments, ERP controls design and optimization, and ERP-focused IT assurance, including advising clients on IT controls based on leading practice frameworks and regulations (Sarbanes-Oxley, COBIT, NIST, ISO 27001, etc.). This includes leading IT audits and assessments of ERP IT general controls (ITGCs), automated application controls, segregation of duties (SoD), and ERP security, as well as cybersecurity effectiveness within ERP-integrated environments.

Base Pay Range: $170,400 - $213,000 Other Compensation: Incentive Compensation


What you will work on

• Lead technology-focused governance, risk, and compliance (GRC) initiatives with an emphasis on ERP platforms (SAP, Oracle, NetSuite, Workday) and partner with Revenue for insights related to ERP assurance opportunities during account planning.
• Represent RGP’s capabilities in client-facing meetings to drive conversations regarding opportunities across industries (financial services, manufacturing, retail, biotech), with a focus on ERP risk, controls, and transformation initiatives.
• Lead and deliver ERP assurance engagements, including: ITGC assessments within ERP environments; Automated and configurable ERP application controls; Segregation of Duties (SoD) analysis and remediation; ERP security architecture and role-based access controls (RBAC).
• Support clients through ERP implementations and transformations (e.g., SAP S/4HANA, Oracle Cloud, Workday, NetSuite), including pre- and post-implementation control assessments.
• Apply subject matter expertise to lead knowledge management initiatives and research, building ERP assurance capabilities and reusable assets across the RGP team.
• Act as GRC Delivery Leader with responsibility for deliverables, milestones, risks, and budgets across multiple ERP engagements or complex workstreams.
• Manage overall performance and delivery of ERP-focused GRC projects within large, complex organizations.
• Work with Client Service and Talent teams to support onboarding of consultants and ensure successful delivery of ERP assurance engagements.
• Demonstrate and communicate leading practices in ERP controls, GRC automation, and digital control environments.
• Provide project oversight, manage client expectations, and communicate progress across ERP programs.
• Manage all stages of the project lifecycle, including scope, schedule, risks, issues, and budget.
• Develop and maintain a network of contacts and expand client relationships through cross-functional and ERP-focused solutioning and thought leadership.
• Serve as the key contact for day-to-day operational aspects of ERP engagements and help clients overcome challenges in ERP control environments.
• Lead Consultant teams in pursuit of delivery excellence; collaborate on various projects, client meetings and presentations.
• Provide coaching and mentoring to teams to build ERP platform depth (SAP, Oracle, NetSuite, Workday) and consulting capabilities.
• Partner with Talent to build a strong pipeline of ERP-skilled professionals.
• Partner with global account teams to identify revenue opportunities and grow sustainable, trusted client relationships.
  
  

What you will bring

• Bachelor’s degree from a four-year accredited institution; MBA/Master’s preferred.
• 8 years of experience in IT audit, IT assurance, or ERP risk & controls, ideally within a Big 4 or leading consulting firm; 1-3 years project management experience.
• Strong experience with ERP platforms including SAP, Oracle, NetSuite, and Workday across audit, implementation, or advisory functions.
• Certifications: CISA required; CIA, CISSP, CRISC, CISM, and ERP certifications preferred.
• Strong GRC experience with the ability to oversee multiple concurrent ERP engagements and workstreams.
• Deep understanding of: ERP ITGCs and automated controls; ERP security, access management, and Segregation of Duties (SoD); Business process controls within ERP cycles (e.g., RTR, P2P, O2C, HCM).
• Understanding of IT risk and compliance frameworks and methodologies.
• Experience supporting SOX compliance programs within ERP environments.
• Knowledge of ERP risk assessment methodologies and deliverables, including process flows, control matrices, and audit reports.
• Experience with ERP GRC tools (e.g., SAP GRC, Oracle Risk Management Cloud, or similar) preferred.
• Proficiency in leveraging ERP and digital technologies to drive transformation and control automation.
  
  

What you can expect

• An inspirational place for you to do your best work, be engaged in meaningful ways, and continually develop the skills, competencies and qualities that set our team apart.
• Compensation commensurate with your qualifications, experience, and other factors, including geographic location, market and operational factors.
• Total Rewards based on eligibility include: Medical, Dental, Vision, Life Insurance, Disability Insurance, 401(k) Savings Plan, Employee Stock Purchase Plan, Professional Development Program, Paid Time Off, Paid Holidays and Paid Sick Time (in geographies where legally required).
  
  

What we do

At RGP, we're creating a future where businesses produce their best work without constraints. We've built a global network of over 2,600 experts across four regions, providing a comprehensive suite of solutions across on-demand talent, next-generation consulting, and outsourced services to support organizations at every stage of their growth journey. Trusted by Fortune 100 companies and emerging disruptors alike, we challenge conventional ways of working, drive growth, and pave the way for long-term success through bold innovation and fearless collaboration.

Our values guide everything we do and strengthen our commitment to people. By combining smart processes, human-centered design, and advanced technology, we celebrate our team's excellence and ensure we grow together. We believe in the power of continuous learning and development to drive both individual and organizational success. It’s time to rethink how work gets done. Dare to Work Differently® with RGP.

RGP is proud to be an Equal Opportunity Employer and committed to creating an inclusive environment for all employees. We do not discriminate on the basis of race, color, religion, national origin, gender, pregnancy, sexual orientation, gender identity, age, physical or mental disability, genetic information, veteran status, or any other legally protected trait and encourage all applicants to apply.