IT Audit Deputy Manager

Role Overview

India

This role offers a unique opportunity to apply your expertise in internal IT Audit, with a strong emphasis on core banking systems and IT application controls within the Financial Services (FS) industry. You will be responsible for planning, executing, managing the team and reporting on internal IT audits to assess the effectiveness of IT controls, identifying risks, and providing value-added recommendations to our BSFI clients. A solid understanding of core banking processes, IT application landscapes within financial institutions, and relevant regulatory requirements are crucial for success in this role.

Responsibilities:

• Internal IT Audit Planning & Execution

  :
• Manage and lead in the development of risk-based internal IT audit plans for BSFI clients, considering industry-specific risks and regulatory requirements.
• Plan and lead the internal IT audit engagements focusing on core banking systems (e.g., SAP, FinOne, SWIFT and T24), other related applications, and IT application controls.
• Define audit scope, objectives, and testing procedures in alignment with internal audit methodologies and client needs.
• Manage detailed reviews of IT application controls, including access controls, change management, data integrity, system interfaces, and Input - Processing - Output controls.
• Analyze plans for disaster recovery related to core banking and other critical financial applications.
• Evaluate the design and operating effectiveness of IT general controls (ITGC) and IT application controls (ITAC) within the BSFI environment.
• Perform audit testing, gather and analyze evidence, and document audit findings in accordance with professional standards.

• Core Banking Systems Expertise

  :
• Develop a strong understanding of core banking system functionalities, architecture, and associated risks.
• Assess the IT controls surrounding core banking processes, including transaction processing, account management, lending, payments, and reporting.
• Identify potential vulnerabilities and control weaknesses within core banking applications and recommend mitigating controls.
• Evaluate the integration of core banking systems with other critical financial applications.

• Financial Services Industry Focus:

• Maintain a strong understanding of the regulatory landscape relevant to the BSFI sector internationally (e.g., Central Bank regulations, Basel Accords, data privacy laws).
• Assess compliance with IT-related regulatory requirements and industry best practices within financial institutions.
• Identify and evaluate IT risks specific to the financial services industry, such as cybersecurity threats, data breaches, and regulatory compliance issues.

• Reporting & Recommendations:

• Prepare clear, concise, and well-supported audit reports outlining findings, risks, and recommendations for improvement to management.
• Communicate audit findings effectively to client stakeholders, both verbally and in writing.
• Track and follow up on the implementation of audit recommendations.
  

Qualifications

• Possess a Bachelors / Master’s Degree in Information Technology/ Management Information System / Computer Science and related discipline;
• 5+ years of experience in internal IT audit, preferably within the Financial Services (BSFI) sector, with a focus on core banking systems and IT application controls.
• Strong understanding of IT audit principles, methodologies, and risk assessment frameworks.
• Proven experience in auditing IT general controls (ITGC) and IT application controls (ITAC).
• Solid understanding of core banking systems and their associated IT control environments.
• Familiarity with IT applications commonly used in the financial services industry.
• Knowledge of relevant regulatory requirements and compliance standards for financial institutions in India and internationally.
• Excellent analytical, problem-solving, and critical thinking skills. Ability to communicate complex ideas effectively, both verbally and in writing.
• Strong written and verbal communication skills, including the ability to articulate complex technical issues to both technical and non-technical audiences in English.
• Ability to work independently and as part of a team.
• Relevant certifications such as CISA or other IT audit/security-related certifications are a plus.