Project location: Pune, India - Pune, Maharashtra, India(Hybrid)
Duration: 12 months
Project context
About The Job
As an IT Internal Controller, you will be part of the CISO Office team, which defines the global Cyber Strategy, establishes security governance, aligns and manages cyber risks, and oversees OT Cybersecurity.We are seeking a highly motivated and detail-oriented IT Internal Controller to join our Risk, Control & Audit team within the CISO Office. In this role, you will be responsible for evaluating IT processes, identifying risks, and ensuring that systems and controls meet the highest standards of compliance and quality. You will collaborate closely with IT and business stakeholders to strengthen governance, improve processes, and support a culture of continuous improvement.
Goals and deliverables
Key responsibilities:
- Internal Control & Audit campaigns execution
- Plan, prepare and execute IT Internal Control and Compliance audit campaigns across the organization, identifying areas of improvement and compliance risks, ensuring quality and timely delivery of results
- Walkthrough and design assessment documentation in liaise with the IT and Business Applications Owners
- Operative effectiveness testing and documentation for IT applications controls, and IT dependencies
- Assess and monitor IT controls, systems, and processes to ensure compliance with policies, regulations, and best practices
- Review and update the Risk Control Matrix (RCM)
- Documentation and Reporting
- Document findings and initiate the reporting presentation for management
- Ensure that the documentation is well updated on our GRC Tool application
- Stakeholder Collaboration
- Closely works with control owners to ensure a good understanding of Internal Control requirements
- Collaborate with IT, information security, and business teams to strengthen governance frameworks and support the implementation of IT policies, standards, and procedures
- Continuous Improvement and Awareness
- Stay up to date with emerging technologies, cybersecurity threats, and regulatory requirements
Education And Experience
- Bachelor's degree in IT, Computer Science, Information Systems, or related field (Master's degree preferred)
- Professional certifications such as CISA, CISM, CISSP, or ISO 27001 Lead Auditor strongly preferred
- At least 3 to 5 years experience in IT audit, IT risk management, or IT governance
- Solid knowledge of IT general controls, cybersecurity frameworks, and regulatory standards (e.g., SOX, GDPR, ISO, NIST, COBIT)
- Experience with audit methodologies and risk assessment practices
- Strong analytical, problem-solving, and communication skills
Skills And Behavioral Competencies
- Strong analytical and critical-thinking skills with the ability to identify risks and propose practical solutions
- High attention to detail and accuracy in evaluating systems, processes, and documentation
- Excellent communication skills, with the ability to explain complex IT and risk concepts to non-technical stakeholders
- Strong organizational skills, able to manage multiple priorities and deadlines effectively
- Proactive and self-motivated, with a continuous improvement mindset
- High ethical standards, integrity, and commitment to confidentiality
- Collaborative team player, able to build strong relationships across IT, compliance, and business functions
- Adaptability and resilience in a fast-paced, evolving technology and regulatory environment
Language Skills
- Fluent in English
- Other language is a plus particularly French (not mandatory)
What's In It For The Candidate
- Grow your IT control, audit, and risk expertise
- Work with diverse systems and frameworks
- Collaborate across IT and business teams
- Gain training and certification support
- Build a career path in IT governance
- Willing to be part of a team that is going to tackle big bets
- Have a fun and work at a high pace
- Be part of a forward-thinking company committed to innovation and excellence.
- Work in a collaborative and inclusive environment that values diverse perspectives.
- Contribute to actions that have a meaningful impact on advancing humanity.
Additional Information
European time working hours (adaptability to work with Asia and Americas)
