Primarily responsible for Technology audit of Yes Bank Limited and provide support on all Business / Functions audit.
- Vulnerability Assessment and Penetration testing for Windows/Unix/Linux/AIX servers & various network devices including routers, firewalls etc.
- IT General Controls Review pertaining to IT processes, Database management and Data Centre operations.
- Application Reviews to determine effectiveness of controls over individual Banking application systems.
- Participate in Special IT assessments, investigations etc.
- Track status of issues reported.
- Ensure completion of assigned audits and documentation of work papers on time.
- Keep relevant processes benchmarked to Best Practices and peer banks.
- Keep Audit Procedure Manual and checklists current and updated.
- To provide suggestions for improvement to existing process / systems to line management
- Hands on experience of approximately 2-4 years.
- Ability to independently carry out vulnerability assessments and penetration testing on various operating systems and environments.
- Ability to interpret and analyse results generated by assessment tools.
- Knowledge of bank audit procedures.
- Knowledge of other areas of banking would be an added advantage.
- Should be a clear thinker and excellent communicator
- B.E./ B.Tech from a reputed institute.
- Should possess CISA/CISSP or equivalent certification
- Possess good knowledge of one or more multiple standards such as ISO 27001, BS 25999, ITIL
- Possess working knowledge of hardening of various Operating Systems / Platforms. Should be familiar or have expertise on OWASP
- Familiarity with Regulatory guidelines from bodies such as the RBI.
- Experience in performing Information Security audits or Line experience as a Information Security Officer roles in a Banking or Financial sector organization would be preferred.
- Knowledge / understanding on implementation of security products & standards
- Impeccable integrity and risk consciousness.
Didn’t find the job appropriate? Report this Job