Assistant Manager

Role Overview :

We are seeking a highly skilled and experienced

Senior ITGC Consultant / ITGC Lead

with a deep understanding of

SOC 1 and SOC 2 frameworks

to lead and execute end-to-end IT General Controls assessments. This role requires someone who can manage engagements, guide teams, and collaborate with clients on control design, implementation, testing, and remediation. The ideal candidate will have experience

leading SOC reporting projects , performing risk assessments, and interacting with both internal stakeholders and external auditors

Key Responsibilities :

Lead and managed

ITGC engagements for

SOC 1 (Type I & II)

and

SOC 2 (Type I & II)

audits from planning to final reporting.

Conduct

IT risk assessments , evaluate the control environment, and design appropriate ITGC and automated control testing strategies.

Serve as the primary client contact, handling stakeholder communication, status updates, and issue resolution.

Oversee the

execution and documentation

of ITGC controls, including access controls, change management, operations, and logical security.

Review and validate control evidence, assess the design and operating effectiveness of controls, and identify any deficiencies.

Lead walkthroughs and meetings with

process owners and external auditors .

Supervise and mentor junior staff, providing training and performance feedback.

Work closely with internal business units and third-party service providers to ensure control coverage and compliance.

Prepare high-quality reports and presentations summarizing findings, risks, and remediation recommendations.

Stay up to date with evolving

regulatory, compliance, and cybersecurity

trends, especially related to SOC, ISO 27001, NIST, and similar frameworks.

Required Qualifications :

Bachelor’s degree in

information systems, Computer Science, Accounting, or related field.

Master’s degree in a related discipline (e.g., MBA, MIS, MAcc)

preferred.

5+ years of hands-on experience

in ITGC and risk advisory services.

Strong background in managing or leading

SOC 1 and SOC 2 engagements.

Familiarity with control frameworks like

COSO, COBIT, NIST, ISO 27001.

Proven ability to lead engagements and deliver results under tight timelines.

Excellent verbal and written communication skills.

Strong understanding of IT infrastructure components such as networks, databases, OS, and cloud environments.

Demonstrated ability to analyse and improve internal controls and processes.