Job
Description
Manage and oversee the Technology Risk teams daily operations, ensuring high-quality deliverables and adherence to timelines Develop and execute IT audit plans and strategies to assess the effectiveness of IT controls, compliance, and governance processes Provide expert guidance on ITGCs, ITACs, SOX 404 controls testing, Change Management, Access Management, and other relevant areas Lead SOX compliance activities, including risk assessments, controls testing, and coordinating remediation efforts Review and approve Service Organization Control Reports (SOCR) and ensure the teams understanding of related frameworks Mentor and develop team members through knowledge sharing, training, and providing performance feedback Facilitate IT process reviews and conduct stakeholder interviews, data validations, and document analysis Collaborate with cross-functional teams to identify control gaps and develop effective remediation plans Stay informed of industry trends, regulatory changes, and emerging technologies related to IT controls and compliance Prepare and present audit findings, recommendations, and status updates to core assurance teams, senior management and key stakeholders Drive continuous improvement in the IT audit process and methodologies Skills and attributes To qualify for the role you must have Qualification Experience in IT controls, ITGCs, ITACs, SOX 404 controls testing, and IT auditing Strong understanding of Change Management, Access Management, SOD, business process IT controls, and ICFR principles Proven track record of managing audit teams and delivering results Relevant professional certifications such as CISA, CISSP, or equivalent Excellent analytical, problem-solving, and project management skills Strong communication and interpersonal skills, with the ability to lead and work collaboratively with various teams Ability to adapt to a fast-paced environment and manage multiple priorities Experience 5 to 6 years of post-qualification experience with either a mid or top-tier accounting firm, focused on external or statutory audit-related matters or an MNC or a large domestic Indian company, preferably within a shared services environment
