Job Description:
- Familiarity with RBI and CERT- IN guidelines applicable to NBFC.
- Interpret IT control requirements from regulatory guidelines and circulars.
- Evaluate and assesse information technology systems, processes and controls to ensure that they comply with relevant regulatory, legal and industry standards.
- Analyze potential threats and risks, evaluate the impact and likelihood of security incidents and update the risk register.
- Assist in developing, designing of IS audit plan using a risk based approach and execution.
- Collaborate with cross functional teams to verify the effectiveness of implemented controls and provide recommendation wherever applicable.
- Develop reports/presentations on findings and communicate to the auditee.
- Ensure adequate follow-up for timely closure of observations.
- Acquainted with use of CAATs tools.
- Coordinate with external auditors on IT/IS related matters.
- Thorough understanding or practical experience of technology audit assignments including cyber security, data privacy, business continuity, cloud security, IT application controls, network perimeter security etc.
- Conduct process reviews through stakeholder interviews, data validations and document analysis.
- Monitoring and ensuring quality of audit artefacts generated by information assets and technology departments.
- Understanding of industry standards and frameworks such as NIST, COBIT, OWASP.
- Experience in evaluating and testing process level manuals, automated controls and IT General controls.
- Evaluating the effectiveness of vendor SOC Type 2 reports.
- Conduct any special assignments if required in consultation with the reporting Manager.
- Other projects and duties as assigned.
Didn’t find the job appropriate? Report this Job
Download the iimjobs app to
apply for jobs anywhere, anytime
Download on
App Store
Get it on
Google Play
Scan to Download