Skip to main content

IT General Controls Auditor

Mumbai, India Full Time

Close

Reporting Structure

Reports to Sr. Manager - Systems Audit

Education

Graduate in IT/Computer Science or B. Tech or BCA

Industry

Information technology / Financial services

Experience
  • 5 years of experience in Audits and Risk assessment services of IT General controls Audits/Reviews

  • Must have at least 2 years of ISO 27001 and/or PCI-DSS audits of Information Systems in a medium to large sized enterprises

  • Experience in handling ITGC controls of SOX will be a plus

  • Candidate should have hands-on experience in Test of design controls and Test of operating effectiveness review of IT operational controls

  • Candidate should be familiar with Technical Security controls of Identity & Access Management, Network, Server, Application and process controls reviews

  • Must have experience in conducting risk assessment of business and support applications

  • Must have experience in preparing quality audit reports

  • Excellent written, oral communication and presentation skills

  • Excellent organizational, communication and interpersonal skills

  • Ability to work independently or as part of a team

Responsibility
  • Developing project plans, work programs, evaluating IT Systems controls, documenting results, making recommendations and communicating information to stakeholders

  • Conduct IT Security audits for regulated entities as per the schedule

  • Review/Assess the security architecture, IT security controls for compliance against published framework and standards

  • Audit IT processes including change management, configuration Management, backup and security incident management

  • Review draft reports for improving quality of the Audit reports

  • Develop and maintain audit checklist and documents

  • Manage all audit related documentation and records

  • Keep updated with latest threats and vulnerabilities researched/discovered

Certifications
  • CISA

  • ITIL Certified