4 Sox Itgc Jobs

Company: Yash Technology Title SAP Security GRC Consultant Location Pune (EON Office) (On site) Experience 8+ years Notice period: Immediate or 20 days Interested candidates and relevant experience kindly share your profiles to padma.ashwitha@gmail.com Job Description: SAP GRC Security Team is dedicated to delivering exceptional service to our business users. Collaborating closely with the IT SAP teams, we ensure the highest level of support and security. Working closely with IT Governance group, our team holds responsibility and accountability for the effectiveness of IT General Controls, the IT SOX Program, and IT Risk Management. We operate as a global team, supporting a complex, dynamic, and international organization.Our SAP teams play a crucial role in securing and managing critical data and processes within SAP systems. These teams are responsible for defining access rights through role-based access control, utilizing identity providers for authentication to enhance security. They ensure that the right users have the appropriate access to resources, streamline user provisioning and de-provisioning, and generate audit reports to maintain regulatory compliance. The SAP GRC team work closely with other IT teams to support a seamless and secure user experience across the organization. About the role – you will: Maintain and troubleshoot SAP Authorizations across our current SAP system landscape, including SAP GRC, S4HANA, BW4HANA, Enterprise HANA, Solution Manager, BOBJ, BODS, IBP, BPC, and SuccessFactors. Implement, assess, and deliver role-based SAP Security into production environments in collaboration with functional solutions and teams. Analyze, design, and translate business requirements into the SAP Security landscape. Provide Level 2 and Level 3 support for SAP Security applications. Support SOD/SOX-related cleanup initiatives and actions. Coordinate with internal and external audits. Perform deep root cause analysis and improvements at the authorization level. Identify, approach, and mitigate controls for SOD conflicts. Possess experience in resolving SOD conflicts in collaboration with business departments. Assist with conducting IT self-audits and user access recertification reviews. Your experience includes Minimum 8 years of experience in authorizations under S/4 HANA, HANA database, GRC, BW4HANA. Must have In-depth knowledge in SAP Security Authorizations in SAP S/4 HANA, Fiori Apps.Bachelor’s degree in computer science, Computer Engineering, Information systems or equivalent plus at least 5 years of hands-on experience in an SAP professional occupation. Experience supporting and dealing with a Global customer base and have worked in a Global Company. Must have SAP Fiori Skills: Activation of OData services SICF nodes.• Maintenance of Symantec Objects for Fiori Apps.• Maintenance of Target Mapping for Custom Fiori Apps.• Integration and design of Fiori ruleset for GRC.• Troubleshooting Fiori issues, including authorizations using IWFND/IWBEP Error logs and browser console.• Implementation and configuration of new Fiori design language involving Fiori Spaces and Pages based on business roles.• Implementation of Fiori App Support functionality to expedite Fiori & authorization-related issues.• Migration from distributed Fiori landscape to embedded architecture.• Fiori landscape redesign by replacing Fiori Groups with Spaces and Pages (preferred). You might also have: Experience with SOX Governance, Compliance and Segregation of Duties is a big plus. • SOX ITGC Knowledge. Regards, P. Ashwitha

Team Manager SOX ITGC 5+ Years – [Bangalore] Are you a certified IT audit professional with extensive experience in SOX ITGC and team management? Location: Bangalore Your Future Employer Join a global organization committed to strong internal controls, compliance excellence, and a collaborative work environment. Responsibilities: Lead planning, fieldwork, and reporting phases for assigned SOX ITGC audit engagements. Design and execute detailed testing for IT General Controls and Automated Controls. Validate Test of Design (ToD) and Test of Effectiveness (ToE) for key control areas including Logical Access, Change Management, Backup & Restoration, and Incident Management. Manage and mentor a team, taking full responsibility for performance reviews, appraisals, and goal setting. Ensure audit documentation meets professional standards and internal quality benchmarks. Collaborate with stakeholders and effectively communicate findings and recommendations. Participate in internal initiatives and support continuous process improvements. Maintain updated knowledge on IT auditing best practices, COSO, and SOX regulations. Requirements: CISA certification is a must. Bachelor’s or advanced degree in Information Technology or a related field. Minimum 5 years of experience in SOX ITGC audits. At least 2 years of hands-on team management experience, including appraisal and performance management. Strong knowledge of IT General and Automated Controls. Proficiency in validating ToD/ToE documentation. Excellent interpersonal and stakeholder communication skills. Strong analytical thinking and attention to detail. Proficient in Microsoft Office Suite. Ability to manage multiple priorities in a fast-paced environment. What’s in it for you: Competitive salary and perks. Hybrid working model (1 week/quarter from office). Opportunity to lead high-impact IT compliance audits. Work in a growth-driven and evolving audit environment. Reach us: If you feel this opportunity is well aligned with your career progression plans, please feel free to reach me with your updated profile at sonaly.sharma@crescendogroup.in Crescendo Global specializes in Senior to C-level niche recruitment. We are passionate about empowering job seekers and employers with an engaging, memorable job search and leadership hiring experience. Crescendo Global does not discriminate on the basis of race, religion, color, origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Note: We receive a lot of applications on a daily basis so it becomes a bit difficult for us to get back to each candidate. Please assume that your profile has not been shortlisted in case you don't hear back from us in 1 week. Your patience is highly appreciated. Keywords: SOX ITGC, CISA, IT General Controls, Audit Manager, Team Management, Risk Assessment, Change Management, Logical Access, IT Audit

Job description Role & responsibilities: Working knowledge on IT General Controls (ITGC) and IT Automated Controls (ITAC) including detailed testing on Logical Access, Change Management, Backup & Restoration, and Incident Management. Experience in validating Test of Design (TOD) and Test of Effectiveness (TOE). Basic understanding of professional audit standards, COSO, SOX, and risk assessment practices. Good Interpersonal skills, including listening, verbal, written and presentation communication skills, with the ability to communicate effectively with a range of stakeholder. Strong critical thinking, analytical, and problem-solving skills with excellent attention to detail. Working knowledge in Microsoft applications. Participate in initiatives in a fast paced environment and comfortable implementing and assimilating to change. Good Customer service focus and the ability to strike a balance between oversight and getting buy-in from the businesses. Execute on individual performance goals. Maintain knowledge of current information technology and auditing practices through continuing professional education. Highly motivated with ability to meet deadlines and ensure quality in every aspect of assigned work. Good organizational and project management skills. Ability to manage/balance multiple priorities. Minimum 2 years end to end Team Management (should be involved in performance management, review cycle, appraisal cycle etc.) Preferred candidate profile Location: Bangalore Shift time: 3pm to 12 am Work mode: Hybrid mode (1 week WFO every Quarter )Role & responsibilities Must Have - 1) CISA Certified 2) minimum Experience 5 years of experience in SOX ITGC 3) Team handling Experience.

Client interface for understanding the SOX IT General Controls as applicable to Application &Infrastructure operations Conducting assessment of existing processes and align them to COBiT 2018 standard. Conducting TOE and TOD for ITGCs Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environment. Identify process exceptions and risk with respect to materiality defined by the SOX controller. Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports Create Process Summaries, Compliance runbooks and RCMs. Define RACI for Control owners, executioners etc. Work with Senior Management of the organization and business teams in getting assertions. Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined. Provide strategic guidance& consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation Conducting regular training for technical teams for SOX control implementation & audits Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory) CGEIT, COBiT Experience & COSO ERM execution (preferred) Excellent understand & experience in IT applications &infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc. Excellent understanding of IT Service Management processes. ITIL certified. Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps Should have experience in executing end-to-end SOX ITGC audit life cycle Exposure to other regulatory compliances such as Data Protection Act Candidate should have client facing experience B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: CISA/CGEIT/CISM/CISSP ISO 27001 Implementer, Lead Auditor ITIL V3.0