Audit Complaince Risk lead

1. Audit Complaince Risk lead

Location: Pune Mumbai Bangalore

Audit Compliance & Risk Role Description

With a primary focus on leading audit & compliance engagements you are required to participate manage and coordinate regulatory and non-regulatory internal and external audits and compliance audit activities. This role is of great importance to the overall level of security risk and compliance to protect Capgemini data and client information. You are empowered to make decisions based on your role (for example challenge the auditors if there is a misunderstanding or a finding) and to escalate in a timely and effective manner to your manager ensuring the facts are well documented.

As part of the overall audit engagement you may also be required to input into risk and remediation activities.

We operate and support many audits in different regions and time zones. While the regulatory audits are generally focused on Group IT functions and based in India (IST) time zone the non-regulatory audits are often based in their own time zone thus flexibility is required in terms of working hours and time zone.

Quality of Deliverables

Quality of data submitted and in all aspects of auditing is the upmost importance. You need to ensure you understand the control its relevance and applicability to Group IT the evidence required (including format dates level of details) to ensure that we are right first time and address the auditors requirements. Less is more in many cases; filter and assess the evidence submission to only provide the evidence that is required to answer the audit question.

Reporting and metrics including key performance indicators must be accurate and the timeliness of delivery met.

Work Location

We have successfully delivered audits though local face-to-face engagements and using collaborative tools such as Microsoft Teams and remotely supporting the engagements. You will work from your local business office and/or home in in Hybrid work environment (subject to meeting regional business and HR requirements). Some travel may be required which may require national or international travel to meet the business deliverables.

Working Hours

Full-Time as per local geographic/ Contract.

Please note: This is a global role and will require flexibility to meet the business demands in terms of hours worked and time zone.

Job profile:

• Good knowledge of auditing standards including but not limited to ISO 27001 ISO 9001 ISO 23001 PCI DSS SoX SOC TISAX and other regional and international standards.
• Prior auditor experience (c. minimum of 4 years) conducting and leading audit engagements.
• Experience of planning preparing and delivering internal and external audits including Compliance Audits.
• Able to act as Auditee or Auditor and facilitate the communication between all teams.
• Good English writing verbal communication and documentation skills a must.
• Self-Managed gets on with task in hand.
• Experience of using Service Now for management of all audits including tracking of audit findings and managing these to conclusion.
• Ability to liaise and work with all levels and across Group IT locally and globally including internal and external teams.
• People with following certifications or equivalent experience are preferred:
  • CISSP
  • CISA
  • CISM
  • ISO 27001 Lead Auditor

Responsibilities

• Manage all aspects of the audit engagement and deliverables as required.
• Liaise with people at all levels and across teams including senior management and L1 leadership as required.
• Create dashboards / reports in MS Office based on need basis including PowerPoint presentations detailing Audit Management Status strategy training and awareness.
• Utilize Service Central for the planning preparation of audits and delivery of audits in addition to tracking of audit findings and ensuring mitigation of the same.
• Provide accurate and timely status reports.

• Meet or exceed goals and performance objectives as defined by your manager.

• Manage the audit engagement leading from the front providing direction and leadership of auditing best practices.
• Maintain audit standards as defined in key performance indicators and/or performance goals as agreed and defined when required.