Lead - Information Systems AuditConfidential • India
Lead - Information Systems Audit
Confidential • India
11 days ago
Job descriptionConduct IT application reviews across all lines of business in ABHFL) in line with the nature and complexity of the business; Review the major Information System applications for each line of business within ABHFL; Perform application vulnerability assessment and recommend systemic improvements for mitigating the Information system & security risk and enhancing the maturity level of the controls Conduct IT Process review across all lines of business in ABHFL) in line with the nature and complexity of the business; Review the major Information Technology processes for each line of business within the group; Identify the area vulnerable to risk and assess the controls in place for mitigating the Information technology risk; Recommend systemic improvements for mitigating the Information technology risk and enhancing the maturity level of the controls Conduct Cyber Security / Cloud Security / Network Security / Information Security Audits at ABHFL; Recommend improvement areas for enhancing the efficiency of controls toward cyber security Conduct review of data centres and third party vendors / business partners / channel partners having customer sensitive data with regards to controls in place at the third party vendors / business partners / channel partners in line with the defined SLAs; Assess the data privacy and data leakage risk management framework with regards to processes and controls for assessment of outsourced activities and monitoring and manging of outsourcing risk with regards to data security. Conduct user access review and access to information on need-to-know basis based on the role and nature of activities to be performed, nature and complexity of the business, scale and size of the business; Review the process of access to information and monitoring of data leakage prevention across ABHFL employees; Review the processes to prevent potential data leakage which may result in detailed inquiry and strict action from Cyber Crime department / other regulators. Conduct specialised reviews through use of extensive data analysis and advanced forensic techniques on Cyber Security, Cloud Security, emerging digital technology and other aspects relating to Information Security. Effective management and execution of the audit plan for proactive identification and remediation of Information System & Security risk relating to various business products, processes and units. Provide effective recommendations for improvements to the organization policies, processes and practices based on leading industry practices and emerging risks. Review the effective implementation of audit actionable and open audit points. Maintain the working papers, audit evidence and other supporting documents in line with internal policies and procedures and regulatory requirements. Develop strategies for identification of triggers / risk hotspots and conduct unplanned reviews / investigations based on various triggers / hot spots, directives received from regulators, board committees and senior management. Keep abreast of the emerging audit trends and drive key audit initiatives for efficient and effective achievement of the audit objectives. Implement an effective continuous monitoring framework for ongoing monitoring of risk relating to various business products, processes and units; Identify and develop automated test for ongoing monitoring of Information System & Security risk across ABHFL. Active engagement with stakeholders for implementation of recommendations for effective risk mitigations and improvement in the control environment. Effective communication and reporting to various stakeholders including regulators, board committee and senior management. Develop specialised team for conducting IS Audits and assessment of complex and specialised reviews covering key IT Infrastructure, IT Applications and Information System & Security areas Develop, nurture and grow talent through effective employee engagement and management Continuous development of self and the team through regular learning and sharing of knowledge / best practices.
Key Result Areas
Supporting Actions
Development of Audit Strategy and Plan
- Develop the IS Audits strategy encompassing Information Technology (IT) Infrastructure, Information Security and IT Applications Audits covering the key Information System areas (such as Cyber Security, Applications Security, Data Security, Cloud Security, Vulnerability Assessment & Penetration Testing, Network Security, Data Privacy, Data Centre, Logical and Physical Access Management, IT Infrastructure management, Database & Operating System management, Incident management, Change management, Email management and process review, End point security, IT Disaster Recovery, IT Business Process Continuity Review, IT Helpdesk management, IT Project management and Emerging Digital & Technology Risk) within ABHFL
- Develop strategies for identification and assessment of Information System & Security risks across ABHFL factoring the diverse lines of business of ABHFL, scale of operations and complexities of the business and current maturity level of controls
- Develop IS Audits plan based on risk assessment and the legal, regulatory framework; Ensure use of advanced integrated auditing concepts and extensive use of technology and data analysis for achievement of the audit objectives
- Set up and develop specialised team for conducting IS Audits and assessment of complex and specialised reviews covering key IT Infrastructure, IT Applications and Information System & Security areas (such as Cyber Security, Applications Security, Data Security, Cloud Security, Vulnerability Assessment & Penetration testing, Network Security, Data Privacy, Data Centre, Logical and Physical Access Management, IT infrastructure management, Database & Operating System management, Incident management, Change Management, Email management and process review, End point Security, IT Disaster Recovery, IT Business Process Continuity Review, IT Helpdesk management, IT Project management and Emerging Digital & Technology Risk) across the various lines of business within ABHFL.
Execution of Audit Strategy and Plan
Continuous Monitoring
Communication and Stakeholder Engagement
People Management
Skills Required
It Project Management, Cloud Security, Network Security, Change Management, Cyber Security, Vulnerability Assessment, Penetration Testing, Incident Management, Data Analysis, It Infrastructure Management, Data Security, Email Management, Data Privacy
Create a job alert for this search
Audit Lead • India
Related jobs
)
Management Information Systems Manager
Prochant • India
We are seeking a highly experienced MIS Manager to lead and scale our Management Information Systems (MIS) function within the Revenue Cycle Management (RCM) domain.
This role requires strong leader...Show more
Last updated: 18 hours ago • Promoted • New!
Information Technology Infrastructure Manager
Dodla Dairy Ltd • India
Oversee the management and maintenance of our core IT infrastructure, including servers, operating systems, databases, and IT assets & accessories including surveillance system.Ensure the reliabili...Show more
Last updated: 18 hours ago • Promoted • New!
Information Technology Operations Manager
Confidential • India
TransFi powers the world's payments, helping businesses and individuals access better ways to move money.Combining industry-leading coverage of currencies and payment methods, we deliver compliant ...Show more
Last updated: 24 days ago • Promoted
Systems Admin, Global Data Analytics (GDA)
Confidential • India
Are you an experienced Business Intelligence Engineer or Systems Admin interested in an opportunity to help drive Amazon's flywheel and develop your A to Z business understanding Do you enjoy learn...Show more
Last updated: 30+ days ago • Promoted
System Integration Specialist
Alp Consulting Ltd. • Nagpur, IN
AI Automation & Integration Developer.AI Automation & Integration Developers.You’ll design and implement automation workflows using.
APIs and enhancing business productivity with AI-driven solutions...Show more
Last updated: 19 days ago • Promoted
Information Technology Risk Manager
National Payments Corporation Of India (NPCI) • Republic Of India, IN
We are looking for Operational IT Risk professional who have good experience into IT Risk.Mode of Operation : work from office.
Education : Engineering Background (BE / BTech into computer or equivalent...Show more
Last updated: 6 days ago • Promoted
Business System Analyst
Amazure Technologies Pvt Ltd • Pune, Republic Of India, IN
Detailed JD (Roles and Responsibilities).The Business Systems Analyst III at Arch Insurance is responsible for collaborating with the digital product managers (DPM), business system owners, and use...Show more
Last updated: 6 hours ago • Promoted • New!
Risk Consulting-Senior-IT Auditor-ITGC And ITAC
Confidential • India
At EY, we're all in to shape your future with confidence.We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ...Show more
Last updated: 13 days ago • Promoted
Business Systems Analyst (BSA)
Enterprise Minds, Inc • Nagpur, IN
We’re Hiring : Mid-Level Business Systems Analyst (5–7 Years Experience).CRM, ERP, and Quote-to-Cash workflows.If you excel at process design, data storytelling, and cross-functional collaboration—t...Show more
Last updated: 13 hours ago • Promoted • New!
Information Technology Governance Manager
Kotak Mutual Fund • Republic Of India, IN
Position : Governance, Risk & Compliance (GRC) Specialist.We’re seeking a skilled GRC professional to lead governance, risk management, and compliance initiatives across IT and cybersecurity domains...Show more
Last updated: 2 days ago • Promoted
Lead - Internal Auditor
Ola • India
Internal Audit will be responsible for driving the organization’s end-to-end internal audit function, strengthening the control environment, leading enterprise-wide risk assessments, and partnering...Show more
Last updated: 18 hours ago • Promoted • New!
Information Technology Operations Manager
Anunta • Republic Of India, IN
Job Description : Corporate IT Manager.The Corporate IT Manager will be responsible for overseeing the company’s overall technology infrastructure, ensuring secure, seamless, and scalable IT operati...Show more
Last updated: 19 days ago • Promoted
Lead Expert - Information Systems (SAP PP / QM) Business
Suzlon Group • Nagpur, IN
Seeking an experienced S / 4HANA PP / QM Consultant with 5-6 years of hands-on experience in SAP Production Planning (PP) and Quality Management (QM) modules within the S / 4HANA environment.The ideal ca...Show more
Last updated: 8 days ago • Promoted
Manager / Sr. Manager - Infosec Audit & Compliance
EXL • India
Activities pertaining to InfoSec – Audit Assurance- First Line Compliance (including but not limited to) : .Regular reviews of Policy, Process reviews basis cyber security best practices & standards....Show more
Last updated: 18 hours ago • Promoted • New!
Information Technology Audit Manager
EliteRecruitments • India
Design and execute the day-to-day activities of Information Technology (IT) audit engagements, with a focus on strategic, operational and regulatory / compliance related risks.Plan activities related...Show more
Last updated: 18 hours ago • Promoted • New!
Information Technology Auditor
Deloitte • India
To plan, lead, and conduct risk-based audits.This includes evaluating the design and operational efficiency, identifying risks, and making strategies accordingly.
To set a risk profile, you will ass...Show more
Last updated: 18 hours ago • Promoted • New!
Management Information Systems Specialist
Vikram Solar • Chennai, Republic Of India, IN
To lead the development and governance of MIS, analytics, and performance reporting frameworks for.EPC, solar, and infrastructure projects.
The role ensures data-driven decision making by consolidat...Show more
Last updated: 6 days ago • Promoted
Management Information System (Mis) Analyst
Pine Labs • Republic Of India, IN
We at Pine Labs are looking for those who share our core belief - “Every Day is Game day”.We bring our best selves to work each day to realize our mission of enriching the world through the power o...Show more
Last updated: 2 days ago • Promoted