Lead - Information Security Audit

Lead IS Audit

Job description

The primary objective of Technology audits includes :

• Ensure IT systems and processes are compliant with internal standard / policies and regulatory requirements.
• Evaluate security and resiliency of IT systems and processes in place.
• Determine risks to a company's information assets, and help identify methods to minimize those risks
• Understand the IS environment to determine the size and complexity of the systems and the extent of dependence on information systems by the bank
• Undertake reviews of internal control procedures and security for systems under development and / or enhancements to current systems.
• Perform Application controls, Network Devices, Security devices reviews for simple to complex information systems in a risk-based manner.
• Perform information control reviews to include system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenance.
• Communicate the audit finding to respective business heads / senior management and Audit Committee
• Follows-up on audit findings to ensure that management has taken corrective action(s)
• Identify opportunities to add value beyond defined the scope specifically in cyber security and emerging technology like cloud, devops.

(ref : iimjobs.com)