Talent.com
This job offer is not available in your country.
IT Audit Risk Assessment

IT Audit Risk Assessment

Talent WorxBengaluru, Karnataka, India
21 hours ago
Job description

IT Advisory Risk Consulting—IT Audit & Assurance

Our client’s IT Advisory – Risk Consulting team is looking for Associate Consultants / Consultants / Assistant Managers to join their IT Audit & Assurance team in Bengaluru. Team provides Independent assurance on controls in place across client’s IT environment and ways to mitigate Technology risks.

Following are some of our key solution offerings

  • Risk Based IT Internal Audit
  • IT SOX 404 Controls Testing, Quality Assurance
  • Internal Financial Controls related to IT General Controls
  • IT General Controls as part of Financial Statements Audits
  • IT Risk & Control Self-Assessment
  • Business Systems Controls / IT Application Controls
  • Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc.
  • IT Attestation (SOC1 / SOC2 / ISAE 3402, ISAE 3000 etc.)
  • Third Party / Vendor Risk Assessments

Position : Associate Consultants / Consultants / Assistant Managers

Location : Bengaluru

Requirements

Industry Experience :

  • Plan, budget and execute the day-to-day activities of infrastructure audit engagements for clients
  • Assess client's security landscape, assess, evaluate and recommend most suitable security solution, tools & techniques to create a threat resilient landscape using our client's differentiated approach and methodologies. Provide security concept, framework & standards for development & support client teams for the solution design, customization build and roll out to end users.
  • Perform a holistic security risk assessment of the client’s IT landscape taking various assets, threats, vulnerabilities, business impact & legal aspects into consideration. Designing and implementing controls to mitigate identified risks by lucid communication to client stakeholders. Effective persuasive / convincing abilities while communicating gaps detected during audits, risk assessments, attestation engagements.
  • Collaborate with other practice groups to review the effects of new threats and vulnerabilities in the security space to assess, remediate, test and protect client application artefacts, data and enterprise ecosystems from threat vectors as they emerge.
  • Work with other technology groups to provide cohesive solutions in Risk assessments, Financial statement audits, Attestation engagements encompassing network architecture, application, database, , standards and implementation related mandates for development, deployment and maintenance.
  • Manage teams delivering co-working discovery workshops & support delivery teams to provide assessment, remediation, testing and standards refresh for the application security practice.
  • Present and distill complex Security solutions into simple, easy to understand concepts for both technical and non-technical audiences especially in the context of opportunity pursuit.
  • Drive Innovation through Offerings : — Drive profitable growth through the execution of the strategy and the strengthening of the audit and assurance practice
  • Building innovative & collaborative solutions to bring combined offerings such as security related combinations with J2C, API, Data security as advisory & execution footprint to capture opportunities & illustrate convergence
  • Bring the audit and assurance practice to life to achieve sales and commercial opportunities in a collaborative ecosystem and follow through with support for cost effective high quality execution.

    • Additional Responsibilities for Assistant Managers :

  • Supervise associates and interns on engagements
  • Serve as a liaison between financial services clients and upper management
  • Establish and sustain long-term profitable client relationships that drive value creation, delivery excellence and a positive client work environment
  • Works with the client to minimize delivery disruptions and effectively manages client urgencies.

    • Qualifications

  • Engineering / MBAs with atleast 6+ years of experience
  • 3+ years of experience with hands on exposure to Infrastructure / Mobile / Web application security spanning across various technologies.
  • Working level familiarity of advanced security assessment concepts, including but not limited to –, Malware analysis, OT / ICS security, Cloud security, security in IoT, Blockchain, RPA and emerging technologies, etc.
  • Working level familiarity with Static and Dynamic Analysis tools (SAST, DAST, IAST). Ability to manage deployment & use of OWASP tools and methodologies.
  • Ability to elucidate vulnerabilities and weaknesses in the OWASP Top10,WASCTCv2, SANS Top-25 and CWE25 to client IT / ISO audiences and discuss effective defensive techniques.
  • Comprehensive understanding and previous oversight of IT hardware, software, networking, databases, API services, J2C storage, licensing and related hosting needs.
  • Infrastructural configuration reviews to identify the security related gaps within the IT environment
  • Preference would be given to significant experience in relevant technical knowledge : (a) financial statement – IT  Audits; (b) IT internal or IT operations audits; (c) IT SOX engagements (d) Emerging Technology Risks (e) Data Privacy and PCI-DSS risks
  • Good to have, add on skills - Working level familiarity with relevant vulnerability scanning tools (e.g., Qualys, Nessus, Nexpose, Saint or any other open source tools). Working level familiarity with web application vulnerability scanning tools (e.g. IBM AppScan, HP Fortify, Accunetix, NTO Spider, Burpsuite Pro or any other open source tools), SIEM tools (SolarWinds, Splunk, LogRhythm, IBM QRadar)
  • Ability to understand / identify best practices for infrastructure process and controls.
  • CISA, CISM, CISSP, CRISC, TOGAF certifications would be an added advantage
  • Prior experience in client facing / account management roles
  • Possess strong domain knowledge, understanding of IT processes supporting business and possible risks in operations of at least two industry sectors
  • Demonstrate integrity, values, principles, and work ethic and lead by example

    • Benefits

    Work with one of the Big 4's in India

    Healthy work Environment

    Work Life Balance

    Create a job alert for this search

    It Audit • Bengaluru, Karnataka, India

    Related jobs
    • Promoted
    IT Audit Manager

    IT Audit Manager

    Skill Connect HR ConsultingBangalore
    Must have : - End-to-end IT audit OR controls assurance engagements across ITGC,Applications, OS, Networks, Middleware and Regulatory Compliance.Deep hands-o...Show moreLast updated: 15 days ago
    IT Audit

    IT Audit

    Talent WorxBengaluru, KA, IN
    Quick Apply
    Associate Consultant / Consultant / Assistant Manager (2 to 6 years experience).Perform testing of IT Application Controls (ITAC), IPE, and Interface Controls through code reviews, IT General Controls ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Information Technology Audit Manager

    Senior Information Technology Audit Manager

    Bahwan CyberTekBengaluru, IN
    Role : Information Technology Auditor.We are seeking a highly experienced and motivated.Information Technology Auditor.Group Internal Audit team of BCT. This role requires a minimum of 12 years of ex...Show moreLast updated: 4 days ago
    • Promoted
    Information Systems Audit-Manager

    Information Systems Audit-Manager

    Ujjivan Small Finance BankBengaluru, Karnataka, India
    Execution of IT audits assigned in line with Internal Audit Annual Plan.Conduct regulatory audits for various banking applications including critical applications such as Core Banking System, Inter...Show moreLast updated: 11 days ago
    • Promoted
    AVP IT Audit Infra Enterprise [T500-19867]

    AVP IT Audit Infra Enterprise [T500-19867]

    MUFGBengaluru, Karnataka, India
    Japan’s premier bank, with a global network spanning in more than 40 markets.Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to busin...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Analyst, SOX and External Reporting Assurance(Non - IT Audit)

    Senior Analyst, SOX and External Reporting Assurance(Non - IT Audit)

    Palo Alto NetworksBengaluru, Karnataka, India
    At Palo Alto Networks® everything starts and ends with our mission : .Being the cybersecurity partner of choice, protecting our digital way of life. Our vision is a world where each day is safer and m...Show moreLast updated: 30+ days ago
    • Promoted
    Consultant / Assistant Manager - IT Audit + Code Review

    Consultant / Assistant Manager - IT Audit + Code Review

    KPMG IndiaBengaluru, Karnataka, India
    IT Audit + ITGC + ITAC + Code Review.Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews. Change Management, Access Management, Backup Management, Incident a...Show moreLast updated: 30+ days ago
    • Promoted
    Information Technology Governance Consultant

    Information Technology Governance Consultant

    INSPYR Solutionshosur, tamil nadu, in
    Job Opening : Governance, Risk & Compliance (GRC) Analyst – Level 2 / 3.Governance, Risk, and Compliance (GRC) Analyst.SaaS applications while helping define governance frameworks and risk processes.S...Show moreLast updated: 3 days ago
    • Promoted
    Amagi - Analyst - IT Governance / Risk & Compliance

    Amagi - Analyst - IT Governance / Risk & Compliance

    Amagi Media LabsBangalore, India
    Purpose of the role : - This role has been established to support the business in building sustainable governance and compliance practices at Amagi. The basic factor required to ...Show moreLast updated: 30+ days ago
    • Promoted
    Justdial - Internal Auditor - Information Security Compliance

    Justdial - Internal Auditor - Information Security Compliance

    JustdialBangalore
    Company name : Justdial Ltd Location : Bangalore Level : Internal Auditor, Lead auditor Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager - IT Auditor

    Senior Manager - IT Auditor

    NaviBengaluru, Karnataka, India
    The Governance & Control team at Navi is responsible for overseeing internal audits across various domains, ensuring compliance with internal policies and regulatory requirements.The team proactive...Show moreLast updated: 30+ days ago
    • Promoted
    Email Fraud Reviewer

    Email Fraud Reviewer

    TransPerfecthosur, tamil nadu, in
    We’re looking for a detail-oriented contractor to review incoming emails and identify potential phishing, social engineering, spam, or fraud attempts. This is a non-technical role – you won’t need t...Show moreLast updated: 30+ days ago
    • Promoted
    Business Risk Manager (Technology)

    Business Risk Manager (Technology)

    Revoluthosur, tamil nadu, in
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 29 days ago
    • Promoted
    IT Consultant

    IT Consultant

    US Tech Solutionshosur, tamil nadu, in
    Blue Yonder – Enterprise Supply Planning (BY-ESP) Functional Consultant.Work closely with business users to understand requirements and design solutions within. Blue Yonder – Enterprise Supply Plann...Show moreLast updated: 11 days ago
    • Promoted
    IT Audit & Compliance Role

    IT Audit & Compliance Role

    ESK Technologies Private LimitedBangalore, India
    Company Description : ESK Technologies, based in Hyderabad, India, with a global presence in Texas, Ohio, and Malaysia, provides comprehensive IT solutions in areas such as Sal...Show moreLast updated: 15 days ago
    • Promoted
    Assistant Manager - IT Audit

    Assistant Manager - IT Audit

    TalinkdBangalore
    Our client is a Big4 consulting firm with the base office (for the role) at Bengaluru.Client is looking to hire people with experience on Information Security, SOX, SOC along ITGD, SAS 70, ISO 2700...Show moreLast updated: 30+ days ago
    • Promoted
    Manager Enterprise Risk

    Manager Enterprise Risk

    Ujjivan Small Finance BankBengaluru, Karnataka, India
    ROLE PURPOSE & OBJECTIVE (These responsibilities are representative and the role holder is also responsible for any other job assigned by the superior authorities from time to time.This section in ...Show moreLast updated: 20 days ago
    • Promoted
    IT Auditor - NIST / ITIL

    IT Auditor - NIST / ITIL

    Talent WorxBangalore
    Summary : This role is responsible for performing IT audits and controls testing, ensuring compliance with regulations and standards.Succ...Show moreLast updated: 30+ days ago
    • Promoted
    Market Audit - Global Risk & Compliance

    Market Audit - Global Risk & Compliance

    Biocon BiologicsBengaluru, Karnataka, India
    At Biocon Biologics, we are creating a model for the future of healthcare for all.We are a leading company in the biosimilars revolution where patients come first. Our ambition is to impact a billio...Show moreLast updated: 11 days ago
    • Promoted
    • New!
    Immediate Start : Senior Manager - IT Auditor

    Immediate Start : Senior Manager - IT Auditor

    NaviBengaluru, Karnataka, India
    About the Team The Governance & Control team at Navi is responsible for overseeing internal audits across various domains, ensuring compliance with internal policies and regulatory requirements.Th...Show moreLast updated: 1 hour ago