Senior Analyst, IT Internal Audit
Who are we looking for?
Reporting to the Manager- Internal Audit, this position is a highly visible and impactful role across the company. The Sr. Analyst - IT Internal Audit, based in India and will work with all levels of management to promote business integrity and robust internal control structures, compliance with Sarbanes-Oxley legislation, and recommendation for process improvements and IT internal Audit projects.
Essential Functions/duties:
- Assist in IT SOX 404 planning, scoping, and risk assessment process through close collaboration with external auditors and business process owners
- Engage in Internal audit projects, ERM, operational and IT audits.
- Participate in the IT risk assessment process and development of the audit plan for assigned entities
- Conduct IT walkthroughs and controls testing according to established audit standards
- Develop high-quality process and audit testing documentation for design effectiveness and operating effectiveness of ITGCs, ITAC, SOC1 restricted access controls
- Perform testing of application controls, key reports, interfaces, integrations, and segregations of duties rules
- Develop and maintain comprehensive documentation including flow charts, process narratives and risk and control matrices and any others required
- Evaluate audit findings and coordinate remediation of deficiencies
- Strong understanding of US GAAP, SOX requirements, and internal audit standards
- Understanding of SDLC principles.
- Develop business relationships and proactively interact with process owners to gather information, resolve problems, and make recommendations for improvement and optimization
- Demonstrate initiative and provide timely updates to internal audit management
- Manage multiple tasks effectively and deliver projects timely
- Documentation and activities remain current and in compliance with the IIA's IPPF Standards and are consistent with best practices. Develop metrics for ongoing operational activities and leverage technology and data analytics to enhance IA operations.
- Help manage governance of the Internal Audit function and mature and evolve our audit methodology and operational audit program
- Perform other tasks and projects as assigned in support of the internal audit team and corporate objectives
Qualifications:
- Bachelor's degree in Computer Science, Accounting & Finance, Information Systems, or related field preferred CA/CPA/CISA/CIA/CISSP/CISM
- Minimum of 5+ years of audit experience, preferably within the technology industry.
- Experience with Big 4 accounting firms or global public companies is strongly preferred.
- Detail and team orientated; ability to work both independently and as a team member.
- Ability to take direction, learn quickly, work independently, and maintain a level of professional skepticism
- Ability to handle multiple priorities and deadlines, with high standards for quality, accuracy, and attention to detail
- Demonstrate basic research capabilities with strong analytical and creative problem-solving skills
- Working knowledge of data analysis and business intelligence tools is a plus (PowerBI, Tableau)
- Strong written and verbal communication skills
- Proven experience and knowledge in auditing the following IT audit domains
- Information Security
- Network and Internet Security
- Cloud Computing
- Data Governance and Management
- Business Continuity and Planning and Disaster Recovery
- User Access
- Data Centre and IT Operations, IT Governance
- Systems Development Life Cycle (SDLC), Project Management Life Cycle (PMLC), and Application Change Management
- Websites and Mobile Applications
- IT Asset Lifecycle Management
- IT Problem Management, Help Desk and Service Level Management
- Enterprise Applications including the following control areas:
- Application security architecture
- Application access, Server-level access and controls, Database-level access and controls
- System interface controls to ensure completeness, accuracy, and data integrity
- Relevant industry certifications such as CISA, CIA, or information security related certifications such as CISSP, GIAC, CISM a plus.
Didn’t find the job appropriate? Report this Job