IT Audit & Information Security - Manager / Senior Manager

Job Description

Role:

Location:

Experience:

Notice Period:

Role Overview

IT and Information Security Audit engagements across India

Key Responsibilities

IT Audit & Advisory

• Lead and execute

  IT SOX / ITGC, SOC 1 / SOC 2, ITACs, IPEs, and Information Security Audits

  .
• Develop and maintain

  Risk & Control Matrices (RCMs)

  and lead walkthroughs and control testing.
• Assess IT infrastructure controls, application controls, and security governance frameworks.
• Provide value-added recommendations through risk-based audit insights and advisory support.
• Build and maintain strong professional relationships with clients and engagement leadership to deliver exceptional client service.

Emerging Technology & Regulatory Exposure

• Preferred experience or strong working knowledge of:

• Cloud infrastructure audits

• Regulatory compliance requirements

  for Financial Services / FinTech entities (SEBI, RBI guidelines)

• Data Privacy and Information Security compliance audits

• If hands-on experience is limited, demonstrable knowledge of the above areas is mandatory.

Project & Team Management

• Act as

  Project Manager

  responsible for end-to-end planning, execution, monitoring, and closure of audit engagements.
• Define project scope, timelines, resource allocation, and risk mitigation strategies.
• Manage workflow and deliverables across team members, coordinating closely with onshore and offshore counterparts.
• Ensure seamless service delivery through effective communication with engagement directors and global stakeholders.
• Mentor, coach, and develop team members; act as a role model and primary counselor for direct reports.
• Drive performance management processes including regular touchpoints, quarterly reviews, and annual evaluations in collaboration with leadership and Talent teams.

Quality Assurance & Risk Management

• Perform

  quality reviews of audit workpapers and reports

  to identify gaps and ensure adherence to internal and external quality standards.
• Conduct

  root cause analysis

  for identified deficiencies and recommend corrective and preventive actions.
• Ensure timely implementation and closure of action items to maintain consistent quality delivery.

Desired Skills & Competencies

• Strong expertise in

  IT SOX / ITGC, SOC 1 / SOC 2, and Information Security Audits

  .
• Excellent

  report writing, audit documentation, and presentation skills

  .
• Strong stakeholder management and client-facing capabilities.
• Proven experience in

  team leadership and global delivery models

  .

Certifications (Preferred)

• CISA
• CISM
• ISO 27001 Lead Auditor / Lead Implementer
• CCSK
• Data Privacy-related certifications

Background Preference

• Candidates from

  consulting firms

  or industry professionals with experience handling

  global IT audit engagements

  and cross-border delivery models are preferred.