Job
Description
We are hiring for one of the Big 4
Immediate joiners or serving Notice period Skills Required: Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment Business Systems Controls IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL)Responsibilities: Collaborate with other members of the engagement team to plan the engagement and develop relevantworkpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT GeneralControls review covering areas such as Change Management, Access Management, Backup Management,Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and BusinessContinuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams anddocument the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including: Information Security reviews Information Technology Infrastructure reviews Application reviews Use knowledge of the current IT environment and industry IT trends to identify the engagement and clientservice issues and communicate this information to the project manager. Maintain relationships with client management and the project Manager to manage expectations of service,including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluateimpacts on the work to be performed Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment Business Systems Controls IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL) Coordinate effectively and efficiently with the Engagement manager and the client management keeping bothconstantly updated regarding projects progress. Monitoring and Tracking for Budget and Time Estimates on engagements. Conducting IT audits, IT Internal Audit, Robotics Process Automation (RPA) Audits Conducting SOX audits, Third Party Security audits Conducting controls assessment in manual/ automated environment Information Security Assessments Conducting OS/DB/Network reviews Prepare/Review of Policies, Procedures, SOPsQualification: A Bachelor's degree in engineering and approximately 2 -6 years of related work experience; or a masters orMBA degree in business, computer science, information systems, engineering Expertise in coding skills (e.g., Java, C++, C, SQL, Oracle) Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST,PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools Experience in carrying out OS/DB/Network reviews Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Experience in performing technical code reviews (understanding code logic based on business requirement)Strong project management, communication (written and verbal) and presentation skills A team player Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, andprofessionalism Preferred Certifications CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools
