Hiring For IT Audit

Roles & responsibilities

We are recruiting for an Executive in the Internal Audit & Controls Team under Managed Services. Working as an Executive in this team, your responsibilities will include:

• Assist in planning activities, development of audit program, and execution of internal audits and IT control assessments in the following areas: IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements
• Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management
• Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary
• Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard and industry-accepted internal audit methodologies
• Assist in kick-off, status, and closing meetings with engagement team and client and contribute to IT Audit knowledge base and internal practice development initiatives
• Helping AMs / Managers to manage and upskill the team.

Mandatory technical & functional skills

• IT Audit (IT General Controls - TOD / TOE) •Technology audit skills including an understanding of: •System architecture, databases, operating systems and messaging •Cloud architecture and security controls •Prior experience of testing automated IT application controls •System Development / Programming Languages •Databases •Application security principles •System development lifecycle (SDLC) •Management, monitoring and operations of technology (backups, change management, system monitoring, incident/problem management) •Business continuity planning and disaster recovery design and implementation •Security within the software development lifecycle •Experience in managing audit engagements or technology projects •Ability to work effectively across a large global audit team, understanding the teams role in the overall strategy of the firm •Strong written and verbal communication skills a must; strong interpersonal skills essential. Job requires frequent interaction with technology management •Must be able to multitask while managing both time and workload •Understanding of:

- Data analysis skills (SQL, ACL, or similar tools)

- System Architecture (Distributed/Messaging)

- Operating Systems

• Knowledge of security measures and auditing practices within various operating systems, databases and applications.
• Experience in assessing risks across a variety of business processes.
• Experience of working on Financial Services sector clients.
• Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Sr. Management and Clients.
• Hands on experience of working on IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, Third Party Risk Management.
• Knowledge of regulations impacting the privacy, integrity and availability of customer PII.
• Exposure of having worked on end-to end IT Audit engagements
• Exposure of working on Identity Access Management aspects like user management, authentication and authorization.
• Technical skills: Prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2 and SQL.

Preferred technical & functional skills

• Retail Banking IT Audit experience highly preferred (Credit cards / Checking / Savings / Loans etc.)