IT Auditor - IT Risk Management

- Responsible for execution of consultancy projects in the Information Technology Risk domain

Job profile includes :

- Perform or assist with internal IT Audit, Application Control Reviews, IT process reviews, IT Infrastructure Reviews, Sarbanes Oxley/ agreed upon procedures, developing Standard Operating Procedures

- Develop / review Business Continuity Plans / Disaster Recovery Plans

- Provide consultancy services for standards and best practices like ISO 27001, ISO 22301, ISO 20000, COBIT, PCI DSS etc

- Plan and Execute Vendor Risk Management programs

- Provide consultancy for developments of metrics and dashboard for IT Senior management

- Develop and conduct training for the concepts in Technology Risk Domain

- Maintain strong client focus by building strong relationships with clients, scheduling and conducting key client meetings.

- Play a key role in the development of less experienced staff through mentoring, training and advising.

- Support sales efforts through creation of collaterals and client interactions

- Travel in India and Overseas at a short notice

- Able to work with teams from multiple geographies and clients from US / Europe

Educational & Professional Credentials :

Minimum Qualification : MBA / CA / BE / CWA

- Candidates with CISA / CIA / CISSP / CFE preferred

- 2 - 5 years of experience in large accountancy, consultancy or relevant industry segment

- Prior Big 4 experience a plus

- Experience in IT Audit / Technology Risk / In-fosec / IT Governance / BCP for varied industry segments preferred

Required Knowledge & Skills :

- Strong understanding of IT Risk and information security regulatory requirements and compliance issues.

- Knowledge of general security concepts and methods such as vulnerability assessments, privacy assessments, intrusion detection, incident response, security policy creation, enterprise security strategies, architectures and governance

- Experience in process definition, workflow design and process mapping.

- Strong Interpersonal skills to interact in team environment and foster client relationships

- Good written communication skills including documentation of findings and recommendations

- Good understanding of technical platforms and risk management practices

- Able to work independently with multi-tasking

- Strong project management abilities, solid understanding of IT risks and controls and proven decision-making and analytical skills

- Strong PC / Microsoft Office skills

- Expertise in Microsoft Excel / SQL / Audit Tools will be an added advantage

- Excellent planning and organization skills