Chat

iimjobs

jobseeker Logo
Now Apply on the Go!
Download iimjobs Jobseeker App and get a seamless experience for your job-hunting
20/03 Sneha
Recruiter at Uber

Views:3851 Applications:55 Rec. Actions:Recruiter Actions:26

Uber - IT Auditor - Payment Specialist (3-7 yrs)

Hyderabad Job Code: 677468

About the Role

Uber Internal Audit is looking to hire a Payments Auditor, who will be responsible for conducting risk based audits of Payments Systems and Security in an objective, thorough and timely manner. The candidate is a self-starter, customer-obsessed, analytical and has a curious mindset. This candidate will work with process/control owners that include stakeholders from Engineering, Infrastructure, and Security to identify risk from Uber's homegrown systems and related processes as well as support management to build out a comprehensive payments controls program.

What You'll Do

- Your Role Support the delivery of the Payments Audit Plan and work collaboratively with stakeholders globally to develop strong client relationships.

- Executing the audit plan including documentation of audit scope, process understanding, risk & control identification, and testing strategies.

- Complete audit fieldwork by testing key controls and documenting your audit work.

- Support audit leads by writing high quality issues and recording managements action plans.

- Follow up with stakeholders on the due finding remediations to drive closure. Complete testing of remediation actions confirmed as closed by the business. Through continuous monitoring, keep up to date with risks, issues and changes across relevant business units and use this knowledge to amend the audit approach where necessary.

- Take part in citizenship activities and contribute positively to the communities in which we operate.

- Ad hoc work on firm-wide projects around new processes or activities and investigation of incidents

- Participate in Advisory projects to perform risk assessments of the new payment systems, applications or upgradations to determine and report the risk.

What You'll Need

- 4-6 years of relevant Payments audit experience or experience in Payments Compliance Management

- Experience in Payment systems risk assessments with focus on technology, operational and security risks

- Understands industry standards such as PCI DSS, PA DSS, PCI PTS, etc. and technologies, products, solutions used to collect, share, access and use credit card or payments data

- Understands security methods and technical elements to protect payment systems and data, i.e., controls in the operating system, application and network environment, firewall, SSL, IDS, VPN, DMZ, encryption, digital certificates, biometrics, monitoring tools, mobile data protection

- Experience managing global payment compliance requirements beyond PCI - such as PSD2 technical and security standards, GLBA, etc.

- Ability to understand and comprehend how payments and cardholder data flows from its source till settlement covering data acquisition, transfer, storage, disposal (via data flow diagrams)

- Ability to understand network architecture diagram in-scope for the Payments System and technology environment

- Prior experience in testing payments security controls including, but not limited to, threats and vulnerabilities, confidentiality, integrity, and availability, security risk management, defense-in-depth, security event and incident handling, hardening practices, and configuration management

- Experience in managing audit engagements or technology projects and comfortable in communicating, collaborating with Infrastructure, Products and Development Teams

- Essential Skills Payments Processing knowledge is must. Bachelors / Masters degree in Computer Science or similar engineering discipline including Software Engineering and / or relevant professional qualifications (e.g. CPA, CIA, CISA)

- Desirable Skills Banking and Financial services industry knowledge. Knowledge about new and emerging financial products and services.

Bonus Points

- Experience developing or integrating new and/or advanced Payments or Payments security solutions (e.g. SCA)

- Current or former PCI Internal Security Assessor (ISA) or Qualified Security Assessor (QSA).

- Exposure to European regulatory environments (payments or other financial services).

About the Team

- IA provide assurance and advisory work through collaborative engagement with business and functional leaders focused on governance, risk management processes and controls in a variety of financial, technology, operational, legal, regulatory and reputational risk areas.

- Our priorities are designed to strengthen Uber's financial integrity, support ethics and anti-corruption initiatives, enable Uber's success through smart risk management and create a high performing internal audit team. We are growing and expanding internationally and are looking to move up the maturity curve

- We welcome people from all backgrounds who seek the opportunity to help build a future where everyone and everything can move independently. If you have the curiosity, passion, and collaborative spirit, work with us, and let's move the world forward, together.

- We enable business agility while intelligently managing risks through: Internal Controls, SOX Compliance, Fraud Risk Management, Operation Excellence, ERM, Investigations, Business Enablement, Cyber Security and Compliance Audits.

- At Uber, we ignite opportunity by setting the world in motion. We take on big problems to help drivers, riders, delivery partners, and eaters get moving in more than 600 cities around the world.

- We welcome people from all backgrounds who seek the opportunity to help build a future where everyone and everything can move independently. If you have the curiosity, passion, and collaborative spirit, work with us, and let's move the world forward, together.

This job opening was posted long time back. It may not be active. Nor was it removed by the recruiter. Please use your discretion.

Women-friendly workplace:

Maternity and Paternity Benefits

Add a note
Something suspicious? Report this job posting.