Summary
Overview
Work history
Education
Skills
Accomplishments
Timeline
Generic

Emilly Barongo

Manchester,Salford

Summary

Strategic, results-oriented, and highly skilled Technology Risk Assurance Manager with over years of progressive experience in global consulting firms, including EY, BDO, PwC, and KPMG. Proven ability to lead complex IT audit and risk engagements, drive SOX compliance programs, and assess IT controls across various sectors such as financial services, insurance, manufacturing, public sector, logistics, and health. Demonstrated expertise in project management, stakeholder engagement, and developing high-performing teams. Certified CISA, PRINCE2 Agile Practitioner, and COBIT 5 professional with a deep understanding of IT governance, cyber risk, core banking systems, and business process controls. Recognized for delivering value-added
insights and driving continuous improvement in audit quality.

Overview

9
9
years of professional experience
4
4
years of post-secondary education

Work history

Technology Risk Assurance Manager

Ernst & Young LLP
Manchester
2025.10 - Current
  • Led complex technology risk engagements end-to-end, delivering high-quality outcomes and consistently achieving strong client satisfaction and retention.
  • Operated as a trusted advisor to senior stakeholders, clearly articulating strategic deliverables and insights to both executive audiences and cross-functional teams.
  • Provided leadership, coaching, and formal mentorship to junior and mid-level staff, driving capability development and high-performing team culture.
  • Managed team dynamics by implementing conflict resolution strategies.
  • Optimised resource allocation for increased profits.
  • Cultivated strong relationships with clients to secure repeat business.
  • Identified growth opportunities through comprehensive market research.
  • Coordinated cross-departmental collaboration for improved workflow.
  • Negotiated vendor contracts to secure favourable terms and conditions.
  • Piloted change management initiatives successfully improving organisational adaptability.
  • Facilitated staff training, resulting in better customer service.
  • Enforced safety regulations to reduce workplace accidents.
  • Liaised with suppliers to ensure timely deliveries.
  • Supervised project timelines for timely completion.
  • Developed accurate sales forecasts for improved strategic planning.
  • Boosted department efficiency by streamlining operational processes.
  • Implemented cost reduction measures, reduced overhead expenses.
  • Secured new business opportunities with successful networking events.
  • Analysed market trends to inform strategic decision-making processes.
  • Led performance reviews, identified areas for improvement.
  • Streamlined communication channels, enhanced internal information flow.
  • Delivered high-quality products to increase customer satisfaction.
  • Fostered a positive work environment with regular team-building activities.
  • Maintained inventory control, reduced stock shortages.
  • Delegated tasks efficiently to maximise productivity.
  • Maintained smooth-running business operations by delegating priorities to staff abilities.
  • Led and managed administrative staff to maintain smooth daily operations.
  • Monitored health and safety measures for guaranteed compliance.
  • Handled negotiations with outside vendors and service agencies to meet group needs.
  • Coordinated hiring, recruitment and training strategies to build successful administrative team.
  • Organised financial and operational data to help with yearly budgeting and planning.
  • Designed and implemented training to further develop staff based on business goals.
  • Established clear budgets and cost controls strategies to meet objectives.
  • Planned revenue generation strategies designed for growth.
  • Investigated issues affecting group operations, prepared reports and helped correct problems.
  • Translated senior management directives into actionable front-line policies and implemented changes with staff.
  • Developed organisational policies for administrative oversight and internal controls.
  • Oversaw facility maintenance and allocated needed resources to meet standards.
  • Analysed and resolved complex resource management issues for optimised scheduling.
  • Streamlined processes to improve and optimise office operations.
  • Represented organisations at seminars, conferences and business events.
  • Created classification systems to manage archives.
  • Drafted procedural statements and guidelines for company-wide use.
  • Created digital file classification system for company-wide use.
  • Shaped and enhanced enterprise-wide IT risk strategies, embedding robust governance frameworks aligned with organisational objectives and regulatory expectations.
  • Collaborated with senior subject matter experts and cross-functional leaders to deliver integrated, risk-informed solutions across complex client environments.
  • Drove optimisation of technology risk management functions by strengthening IT controls, improving governance processes, and enhancing operational efficiency at scale.

Technology Risk Assurance Manager

BDO UK LLP
Manchester
2024.02 - 2025.10

• Spearheading the delivery of IT SOX audit programs by setting strategic directions, reviewing
methodology, and overseeing execution to ensure alignment with client risk and compliance
objectives.
• Providing strategic oversight on ITGC and ICFR audit planning, collaborating with Financial
Audit leadership to define testing strategies and integrate IT risk considerations into the
broader audit approach.
• Leading the end-to-end management of SOX 404 engagements, ensuring high-quality
documentation, risk-based scoping, and timely delivery of key milestones.
• Proactively identifying and evaluating internal control weaknesses, gaps in documentation,
and other IT-related audit exceptions, ensuring issues are communicated effectively and
remediated appropriately.
• Partnering with Directors and Partners to maintain and enhance SOX IT Risk and Control
Matrices (RCMs), test plans, and automated documentation tools across client portfolios.
• Managing geographically dispersed teams of IT auditors, providing coaching, performance
feedback, and technical oversight to ensure consistent execution and professional growth.
• Driving the adoption of tech-enabled audit approaches, leveraging data analytics and
automation to enhance efficiency, coverage, and insights in areas such as ITGCs, application
controls, and cyber risk.
• Maintaining rigorous quality standards by reviewing and challenging team outputs, ensuring
audit work is robust, risk-aligned, and defensible under regulatory and internal quality review.
• Delivering value-added reporting and insights to clients’ executive leadership and audit
committees, positioning the firm as a trusted advisor on IT risk and governance matters.
• Acting as regional coordination leading, supporting Technology Risk Assurance teams across
markets to ensure consistent delivery quality and scalability of services across the pipeline.
• Championing people leadership by developing talent, leading training initiatives, and building
an inclusive, high-performing culture aligned with the firm’s values.
• Serving as a key escalation point for complex technical and delivery issues, providing risk-
informed solutions and strategic judgment in collaboration with senior leadership.
• Contributing to innovation by enhancing audit methodologies, embedding best practices, and
introducing emerging technologies and frameworks to maintain competitive service delivery.
• Representing the firm in client-facing and industry forums, supporting marketing initiatives,
cross-functional solutioning, and business development efforts to expand the firm’s footprint.
• Staying ahead of emerging technology trends, cybersecurity threats, and regulatory changes,
and translating insights into strategic value for the firm and its clients.

IT Risk Assurance Assistant Manager

PWC Ireland and Kenya
Ireland and Kenya
2022.01 - 2023.12

• Increased revenue by $4M by implementing integration projects and meeting aggressive
budget constraints.
• Leading teams in executing audit methodologies and developing key internal and external
audit deliverables to complete the annual IT SOX audit plan for clients.
• Reviewing key IT controls based on Internal Controls over Financial Reporting (ICFR)
program requirements and discussing related testing approaches with the Financial Audit
teams and SOX Audit management.
• Managing a team of IT Seniors and Staff in both domestic and international locations.


• Effectively planning and executing SOX 404 IT general controls program.
• Identifying internal control deficiencies, inadequate documentation/evidence, and other
irregularities.
• Working with the SOX Audit Directors and Partners to implement and maintain SOX IT
RCMs, test plans and supporting documentation into the SOX tool.
• Planning and budgeting accurately to provide business with resources needed to operate
smoothly.
• Maximizing performance by monitoring daily activities and mentoring team members and
assisting in organizing and overseeing assignments to drive operational and client’s
excellence.
• Developing and maintaining relationships with clients through business development.
• Monitoring and analyzing client performance to identify areas of improvement and make
necessary adjustments.
• Developing and implementing business strategies to achieve business goals and stay
competitive.
• Communicating clearly with employees, clients, and stakeholders to keep everyone on the
same page and working toward established business goals.
• Streamlining and monitoring quality programs to alleviate overdue compliance activities.
• Successfully managing budgets and allocated resources to maximize productivity and
profitability.
• Leveraging data and analytics to make informed decisions and drive business.
improvements.
• Establishing performance goals for employees and providing feedback on
methods for reaching those milestones.
• Using industry expertise, client service skills and analytical nature to resolve client
concerns and promote loyalty.
• Evaluating employee performance and conveying constructive feedback to improve
skills.
• Maintaining positive client relations by addressing problems head-on and
implementing successful corrective actions.

Technology Risk Assurance Assistant Manager

KPMG East Africa
Kenya
2017.09 - 2022.01

Successfully led a team for a number of financial services, insurance, and manufacturing industry IT external audit engagements (half-year and year-end audit). My responsibilities
included assigning responsibilities to team members, management of engagement time and
fee (budget), scheduling and attending meetings with key management personnel, review
of IT governance, management, and operations, performing test of general and application
IT controls and substantive tests on significant general ledgers (GL) lines.
• Successfully led a team for an IT internal audit engagement across Kenya, Rwanda,
Burundi, Tanzania, Ethiopia, and Uganda clients. My responsibilities included assigning
responsibilities to team members, management of engagement time and fee (budget),
scheduling and attending meetings with key management personnel, review of IT governance,
infrastructure, operations and performing test of general and application IT controls on
different systems. Performed IT due diligence as part of a financial due diligence for one of the
Tier 1 and 2 banks in the financial services industry in Kenya. This involved the review of
information systems environment, IT planning and control, key systems and platforms,
organization resilience, alternate delivery channels, facilities


management, IT initiatives and maintenance cost.
• Responsible for the evaluation of test of design, implementation and operating
effectiveness of IT controls embedded in client's business processes, application systems
and general information technology platforms (i.e., operating systems and databases).
• Performed data/revenue assurance for a number of clients both in the financial services and
manufacturing industry.
• Successfully provided project management services for the implementation of COBIT 5
Framework across Equity Bank and its six subsidiaries across Africa.
• Worked with a Senior Manager and Partner to deliver quality assurance services for one of
the Banks implementing a core banking solution. My responsibilities include continuous
monitoring of project timelines, risk, and activities; participating actively in project
decision making meetings; reviewing project documents for quality standards; guiding and
advising the project management office using the global project management standards.
• Performed analysis of customer central liability report (loan portfolio) to identify performing
and non-performing risk assets for varied clients in the financial services industry.
• Successfully developed ICT policies and procedures for some of government institutions
in Kenya.
• Performed IT assessment and current state assessment engagements for varied clients in
the financial service industry.
• Performed internal audit for one of the largest banks in Kenya.
• Participated in assessment Center interviews and training for some new hires.
• Possesses knowledge and experience of auditing client’s internal control
procedures.
• Possess knowledge and experience in the development of business continuity strategy
and plan.
• Possesses very good knowledge of auditing core banking systems. This includes
Finacle, T24 and Flexcube.
• Good knowledge of auditing Core banking systems. This includes T24 and
FlexCube.
• Possess strong data analysis and problem-solving skills.
• Possess advanced skills in the use of computer assisted audit techniques (CAAT)
such as interactive data extraction and analysis (IDEA) software.
• Possess a strong knowledge of PMI and COBIT 5 framework.

Education

Bachelor of Business Information Technology - Information Technology

Strathmore University
Kenya
2013.06 - 2017.06

Prince 2 Agile Practitioner -

AXELOS
2022.01 -

Prince 2 Foundation -

AXELOS
2021.10 -

Certified Systems Information Auditor (CISA) -

ISACA
2021.07 -

COBIT 5 Foundation Certification -

APMG International
2018.11 -

Cisco Certified Networking Associate (CCNA 1 and 2 -

Strathmore University
2017.01 - 2017.05

Skills

    Industry Knowledge: IT Internal Controls, SOX 404, IT Controls, IT Governance, IT Risk Assessment, Agentic AI
    Technical Skills: SOX, ITIL, COBIT, ISO 27001
    Soft Skills: Project Management, Team Building, Public Speaking, Time Management, Strategic Planning and Exceution, Excellent
    Communication Skills, Conflict Management, Problem Solver, Self-motivated, Strong Presentation Skills, Proficient in Microsoft packages

Accomplishments

    Women Tech Global Awards 2025

    Top 35 under 35 Youth of the year ICT category 2020

Timeline

Technology Risk Assurance Manager

Ernst & Young LLP
2025.10 - Current

Technology Risk Assurance Manager

BDO UK LLP
2024.02 - 2025.10

IT Risk Assurance Assistant Manager

PWC Ireland and Kenya
2022.01 - 2023.12

Prince 2 Agile Practitioner -

AXELOS
2022.01 -

Prince 2 Foundation -

AXELOS
2021.10 -

Certified Systems Information Auditor (CISA) -

ISACA
2021.07 -

COBIT 5 Foundation Certification -

APMG International
2018.11 -

Technology Risk Assurance Assistant Manager

KPMG East Africa
2017.09 - 2022.01

Cisco Certified Networking Associate (CCNA 1 and 2 -

Strathmore University
2017.01 - 2017.05

Bachelor of Business Information Technology - Information Technology

Strathmore University
2013.06 - 2017.06
Emilly Barongo