We are hiring for IT Audit and compliance based in Hyderabad for MNC private equity organization
This role will be suitable to someone who has technical audit experience as well 4 to 5 years of experience in an IT department (preferably in the financial sector) working with audits and evidence management.
Responsibilities:
- Support internal and external customer needs and be the champion in establishing and sharing the IT governance details and framework.
- Support Client Requests by collecting evidence and providing responses to IT and Information Security questionnaire, based on company posture.
- Assist with implementation of ISMS across the organization entities
- Ensure key information security risks and issues are identified, addressed, and resolved in a timely manner.
- Assess efficacy of IT and security controls, document and report control failures and gaps to stakeholders. Provide remediation guidance and prepare management reports to track remediation activities.
- Ensure third party security assessments - Assist with Third Party Risk Management framework including policy updates, procedures, due diligence questionnaires and the monitoring of third parties' adherence to information security and data privacy obligations.
- Develop relevant metrics, analyze data, identify trends, and help drive improvements to the control environment.
- Remains current on best practices and technological advancements
Knowledge:
- Applicable IT and Security audit management, governance, and compliance principles /regulations
- Well versed with well-known security frameworks such as ISO 27001 / NIST CSF / PCI DSS / SOC 1 and SOC 2.
- Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols
- Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, etc.
- Information systems auditing, monitoring, controlling, and assessment process
- Risk assessment and management methodology
Skills:
- Strong IT and security mindset
- Questions status quo and navigates through roadblocks
- IT and Security project management and planning
- Defining problems, collecting and analyzing data, establishing facts and drawing valid conclusions
- Using judgment and ingenuity in maintaining objectives and technical standards
Didn’t find the job appropriate? Report this Job