Insight into ITRA / Risk


I have an internship secured for next summer at one of the Big 4 in IT risk. Obviously I’ve done a lot of background reading into what the work involves but this has mostly come from the employer and competitor sites.

I’ve tried to delve a bit deeper and have come across contrasting accounts of what risk actually involves - some saying that it is mainly audit based and, ultimately that is what the service line entails. Whereas other accounts claim the work is varied, interesting, and the work takes a genuine advisory/consultancy role.

I understand that every person may have different experiences of this field and I won’t know until I’ve finished my internship, but I am wondering if anybody else can share insight into this service line as there isn’t a great deal available online?