IT Risk and Controls Analyst

BDO IndiaPune, Republic Of India, IN

23 hours ago

Job description

Core Roles & Responsibilities :

Evaluate, design, and implement ITGC and ITAC controls for SAP and Oracle environments to ensure alignment with industry standards and regulatory requirements.
Perform detailed reviews of SAP and Oracle applications to assess control effectiveness and identify areas for improvement.
Conduct regular SoD reviews and audits to identify any violations and provide recommendations for remediation.
Work closely with IT and business teams to ensure seamless integration of controls within the existing IT infrastructure.
Develop, document, and maintain ITGC / ITAC frameworks, policies, and procedures for ongoing compliance.
Support internal and external audits, providing necessary documentation and explanations related to ITGC and ITAC controls.
Manage risk assessment processes, identifying potential vulnerabilities and recommending mitigation strategies.
Monitor and report on the effectiveness of controls, ensuring compliance with applicable regulations and internal policies.
Provide training and guidance on ITGC / ITAC best practices to team members and stakeholders.

Experience

At least 4-6 years of relevant experience into ITGC, ITAC and other Frameworks

Qualification

Bachelor’s degree in information technology, Computer Science, or a related field.

Minimum of 4-6 years of experience in ITGC / ITAC, with a focus on SAP and Oracle applications.

Strong knowledge of Segregation of Duties (SoD) principles and their application in SAP / Oracle environments.

Experience in managing IT controls and security frameworks (e.G., SOX, GDPR, NIST).

Familiarity with risk management, control testing, and audit processes.

Strong problem-solving skills and attention to detail.

Excellent communication and interpersonal skills, with the ability to work collaboratively across teams.

CISA Certification is a plus.

Risk Analyst • Pune, Republic Of India, IN