Team Lead - IS Audit - BFS

PURPOSE OF THE JOB

- Lead a team of auditors (at minimum 3 audit staff to a maximum of 4) in carrying out audit of IT General Controls and Information Security Controls

- Assess compliance of the Bank's IT operations and security with Bank's IT related policies and regulatory guidelines.

- Assess the current processes followed in the bank against international best practices.

- Undertake Special assignments and management audits as per the needs of the Senior management from time-to-time.

- Identify areas of Automation within the IS Audit domain and get those projects executed

Job Responsibilities (JR) : Actionables

- Supervising the team to ensure audits/adhoc work assigned done accurately with the given TAT

- Ensure that Audits are performed as per the Quarterly Audit calendar

- Guide the audit staff in the team and supervise the progress of the audit assignments

- Ensure timely completion of audits

- Review the audit findings and discuss with senior auditee staff at Function Head levels

- Resolve disputes of "issue ownership" between various Audit Teams

- Supervise the team in auxiliary tasks related to IS-Audit e.g. organizing evidence collection, follow-up with auditee for status of audit recommendations till closure of the reports, MIS on audit assignments etc.

- Provide guidance to various business groups (IT, BPRG, Admin, ISG, IT-Governance etc.) from IS Audit perspective

- Prepare IS Audit Key Risk Indicators for high-lighting to GH-IA on a monthly-basis

- Liaise with External Auditors (RBI Inspectors, Statutory Auditors, SOX Auditors, ISO 27001 Auditors, ISO 22301) as needed

- Review and finalize MIS reports on IS audits, for various purposes for submission to Head-IS Audit

- Review and finalize Work done notes for Audit Committee of the Board for submission to Head-IS Audit

REQUIREMENTS

Educational Qualifications Key Skills

- At least a Bachelor of Science, Bachelor of Engineering/Technology, Master of Computer Application/Computer Science or Master in Business Admin/Post Graduate Diploma in Business Administration/Post Graduate Program in Management in Computer Science/Information Technology or equivalent

- Should have a certification such as CISA / CISSP - Should have deep knowledge of IT General Controls, international acts such as SOX, IT Governance Frameworks such as COBIT, standards such as ISO 27001, BS 15000 / ISO 20000 / ITIL, BS25999, Payment Cards Industry Data Security Standard (PCI DSS) etc.

- Should have excellent drafting and communication and presentation skills.

Experience Required

- At least 10 years of working experience in IS audit or related field is required for this position at D1 level

Major Stakeholders

- Staff of IT / BTG / ISG