Senior Lead - IT Audit/Risk & Control - Financial Firm

- Exciting opportunity with one of the leading Financial organization Bank to hire a strong Senior professional for its IT audit in the Risk and Control Function team in India.

- This role is open only for a Female candidate.

Some of the key responsibilities will include:

- Enabling strong operational risk management - Identify, escalate & debate risks across business units.

- Enabling process owners to identify and monitor Key Risk & Control indicators with triggers and limits.

- Ensuring Quality Assurance is implemented in adherence to GT&O QA minimum standards.

- Periodic testing of key controls for critical functions, and supporting gap remediation as needed

- Support delivery teams on Issues management and Audit management

- Functionally lead scope of activities with a team in the Process Risk team who may not directly

- Ability to front end with auditor and facilitate corporate audits.

- Ability to engage with Compliance and Operation Risk Leaders and Executives in managing the control environment and provide action plans.

To be eligible for this role you will require:

- Thorough understanding of the Banking systems, Technology processes and internal control programs related to Global Functions and offshore Delivery environments

- Through an understanding of various Technology processes like Software Development, Quality Assurance Testing, Application Support, Incident Management, Change Control, Problem Management, User Access Management, Backup & Recovery etc.

- Well-acquainted with software development methodologies like SDLC, RAD, Agile, DevOps etc.

- Understanding, working experience and auditing of IT general controls.

- Demonstrable IT Risk Management skills.

- Master in Computer Application/ Bachelor of Technology/ Bachelor of Engineering.

- Masters / Bachelors in Science (with relevant IT risk & internal controls experience).

Exp Range:

- 10 - 14 years- experience in Internal Audit, IT Risk Management and/or Information Security Management preferably from IT / BPO industry and / or Big 4 Audit Firms.

- Experience of auditing Applications (including ERP applications), Databases, Operating Systems and Network Devices will be added advantage.

- Thorough knowledge of metrics based risk management.

Certifications:

- Certified Information Systems Auditor (CISA)

- Certified in Risk and Information Systems Controls (CIRSC)

- Certified Information Systems Security Professional (CISSP)

- Certified Information Security Manager (CISM)

- Certified Internal Auditor (with relevant IT risk and internal controls experience)