Risk And Compliance Analyst
Share
Job Location:
Monthly Salary:
Posted on:
5 hours ago
Vacancies:
1 Vacancy
Job Summary
| Job Description: | Experience: 3 years in Audit / Compliance Key Responsibilities: 1. Perform compliance reviews enterprise security audits( both application and infrastructure) which involves a. Verify IT General application and cyber security controls to ensure effective delivery of functional processes within operations to mitigate risks. b. Verify technology risk management processes application development and deployment processes database management vendor management etc. c. Publish reports with actions and provide closure guidance as needed 2. Prepare Risk Control Matrix (RCM) workpaper documentation manage discussion with stakeholders. 3. Apply guidance from enterprise policies and procedures and control testing industry best practices in workpaper documentation and effective challenge 4. Design and execute testing procedures to evaluate the effectiveness of controls related to technology risks. 5. Responsible to identify control gaps and communicate findings and control redesign recommendations to Management/Clients. Experience and skills: 1. Experienced in conducting IT audits that includes conducting and leading IT audits risk assessments and compliance reviews with a focus on IT controls. 2. A solid understanding of information technology systems infrastructure and security is crucial. This includes knowledge of network architecture operating systems databases cloud computing cybersecurity principles and IT governance frameworks (e.g. COBIT ITIL). 3. Excellent communication skills are necessary to effectively communicate complex technical concepts to non-technical stakeholders including senior management and executives. The IT Auditor should be able to articulate audit findings risks and recommendations clearly and concisely in both written reports and verbal presentations. 4. Strong analytical and critical-thinking abilities are essential for analyzing complex IT systems identifying control weaknesses and assessing potential risks. The IT Audit Manager should be skilled in using data analysis techniques and tools to draw insights from large volumes of IT data. 5. Keeping up-to-date with emerging technologies industry trends and regulatory changes is crucial for an IT Audit Manager. 6. The IT Auditor must maintain the highest standards of professional ethics and integrity. They should adhere to auditing standards and confidentiality requirements handle sensitive information with care and maintain impartiality and objectivity throughout the audit process. The following skills will be an added advantage 1. Familiarity with relevant regulations and standards (e.g. SOX PCI DSS GDPR). 2. Having experience in evaluating IT controls against these regulatory and standards requirements and providing guidance for compliance improvement. 3. Pursuing relevant certifications such as CISA or CISSP will demonstrate the commitment to professional growth and competence Preferred Qualification: CISA CISSP ISO 27001 Cyber and cloud experience preferred Shift timings 5 pm to 2.30 am IST 100% Work from Office (Mon Fri) |
|---|
Key Skills
- ISO 27001
- Microsoft Access
- Risk Management
- Financial Services
- PCI
- Risk Analysis
- Analysis Skills
- COBIT
- NIST Standards
- SOX
- Information Security
- Data Analysis Skills
