Information Systems Auditor - IT Audit & Compliance

Education: CA

Key Responsibilities:

- Conduct information systems audits across applications, databases, and IT infrastructure.

- Perform General IT Controls (GITC) testing on applications (e., SAP, Oracle) and infrastructure components (e., operating systems, databases).

- Evaluate and test IT controls related to SOX compliance.

- Review and audit cloud environments such as AWS, Microsoft Azure, and Google Cloud Platform (GCP).

- Prepare comprehensive audit documentation, risk assessments, and actionable recommendations following industry standards.

- Collaborate with internal teams and stakeholders to ensure timely remediation of identified issues.

- Stay updated on regulatory requirements and industry standards, particularly within financial services.

Technical Skills:

Must Have:

- Strong knowledge of GITC testing for applications and infrastructure.

- Hands-on experience auditing cloud environments (AWS, Azure, GCP).

- Solid understanding of SOX ITGC testing processes.

- Familiarity with financial services audit processes.

Good to Have:

- Understanding of network security and data privacy frameworks.

- Knowledge of tools for audit automation and cloud compliance monitoring.

Preferred Certifications (Any one or more):

- CISA - Certified Information Systems Auditor

- ISO 27001:2002 Lead Auditor Certification

- CCSK - Certificate of Cloud Security Knowledge

- NIST or other relevant industry certifications