Manager - Audit/Strategic Assurance & SOC Services

Role Summary:

Strategic Assurance and SOC Services

We are seeking an IT Audit professional who specializes in SOC 1/ 2/ 3, SOC 2+, HITRUST in support of assurance and attestation engagements - including applications, operating systems, ERPs and databases. It's important the person should also have good understanding on how the business processes works. In addition, the candidate person should possess the skills and knowledge to contribute to a high-functioning team that will shape the future of the firm which includes an offshore strategy. This is a full-time internal/ client facing and highly visible position based in Bengaluru/ Kolkata India. As a practice, SASS service line is involved in the service deliverables to the end clients as listed below :

Location: Bangalore, India

Client Responsibilities:

- Performing work on SOC1, SOC2, SOC2+, HITRUST/ RegAB engagements: conducting control design and operating effectiveness tests, ensuring high-quality work through complete and accurate testing documentation.

- Manage a portfolio of engagements by leading a team of Assistant managers, Senior Associates, and Associates/ Analyst

- Ensure the work delivered is high quality through spot checks, periodic reviews, and quality review/ assurance processes. Ensure established turnaround times and the allotted budget are met.

- Ideal to have client facing role experience, ability to conduct walkthrough, perform observations at client sites, design & test controls effectiveness.

- Acting as the firm representative for key accounts or functional areas; and striving to ensure effective integration of high-quality services to clients within clients' and firm's strategy.

- Ability to establish expectations and clear direction to meet goals and objectives of the engagements.

- To develop plans for employees to gain necessary knowledge, skills, and abilities to successfully perform their duties.

- 2024 Grant Thornton LLP | All rights reserved | U.S. member firm of Grant Thornton International Ltd.

- Proactively engage with stakeholders to identify, develop, and implement new work areas and enable growth of existing client work, in alignment with the firm's growth strategy (e.g., alignment with key industries and clients) by seeking and leading opportunities

- Demonstrate industry expertise (detailed understanding of the industry, trends, issues/ challenges, and leading practices)

- Preparation of reports/ deliverables/ status updates/ audit committee presentations etc.

- Actively establish & strengthen client (functional heads & key influencers) and internal relationships.

- Assist Associate Directors and Directors in developing new methodologies, internal initiatives, marketing collaterals, and business proposals etc.

- Should have good written communication and excellent interpersonal skills.

People Responsibilities:

- Manage larger teams by motivating, coaching, and developing junior colleagues.

- Conceptualize and translate lessons learned from client engagements into training sessions.

- Provide real-time constructive feedback and facilitate timely completion of engagements.

- Define performance expectations, evaluate performance of team members, and provide guidance to CLEARR Career Continuum

- Support knowledge sharing efforts and continually improves processes so that the work team can capture and leverage knowledge.

- Demonstrate the ability to mentor, coach, and manage the total competencies of staff in multiple engagements or for a region.

- Support talent acquisition by participating in or leading university/entry-level and/or experienced recruiting; building a talent pipeline, conducting interviews; and seeking and providing referrals.

Skills Required:

Candidates should have proficient knowledge (both in leading and performing including reviewing work) in the areas of :

- IT General Controls testing (ITGC), in support of SOC audits with proficient understanding in the information technology architecture including applications, Operating Systems, ERPs and databases (from Information Security perspective)

- Performing Test of Design & Operating Effectiveness testing by applying the components of relevant frameworks (e.g., COSO, ERM, COBIT, ISO)

- SSAE 18/ SOC 1 testing and reporting - for IT as well as Business Process controls

- SOC 2 and SOC 2 + testing and reporting - for various trust principles including HITRUST engagements.

- Moderate understanding in Cloud Security Audit (hands on experience is preferred but not mandatory) in leading Cloud Services Provider such as AWS, Azure, GCP

Experience: 7-12 years of postgraduate experience in external audit/ SOC audit experience preferably in big 4-6 or related business experience

Qualification:

- Bachelor of Engineering/ B. Tech/ master's in business administration with primary in Information Technology &

- Systems/ Masters in Computer Applications/ MBA - Information technology

Certifications:

- Certified Information Systems Auditor (CISA)/ HITRUST Certified CSF Practitioner (CCSFP)/ Certified Information

- Systems Security Professional (CISSP)/ Certified Information Systems Manager (CISM)