Lead Auditor - ITGC Audit

Lead Auditor - ITGC Audit Required-CEH/CISM/CISA/ISO 270001 , BE (IT/ Computer science)

KEY RESPONSIBILITY:

- Reviewing existing IT controls and risks of Clients- IT Systems, Networks and Applications and collaborating with them to devise and put in place seamless IT Security Policies and Procedures as per industry standard security frameworks.

- Conducting internal ITGC Audits for Clients.

- Conducting Third-Vendor Vendor IT Risk Assessment for the Clients.

- Conducting Cloud Security Risk Assessment activities.

- Conducting/coordinating various IT Compliance Audits such as ISO 27001, ISO 22301, SSAE18 SOC1 Type I & Type II, SSAE SOC2 Type I & Type II, SOX, HIPAA, PCI-DSS, EU-GDPR etc.

- Conducting/coordinating Vulnerability Assessment and Penetration Testing (VAPT) as well as Web Application Penetration Testing (WAPT) activities.

- Preparing IT Audit and IT Security Risk Assessment Reports along-with recommendations for remediation on identified security gaps and vulnerabilities.

EXPIERENCE- 2-3 years of relevant experience in ITGC audits, Third-party vendor, IT risk assessment, SOC Compliance audits, and VAPT activities etc.

REQUIRED EDUCATION:

- BE (IT / Computer Science / Electronics & Communications / Electronics), or

- B.Sc. - IT / Computer Science, or

- Graduation in any stream.

PREFERRED PROFESSIONAL EDUCATION:

- CEH/CISM/CISA/ISO 27001 Lead Auditor

- Hands-on training in VAPT and commonly used commercial and open source VAPT Tools.