key responsibility:
you will be responsible to perform walkthrough, design/ perform/ review tests of controls either independently or as part of our team utilizing our integrated it audit approach of it application controls. you can expect to work with external & internal client/s personnel to execute compliance, financial and operational risk projects.
skills and attributes for success:
- experienced in conducting it general control reviews, application controls testing, key report controls and reviewing soc reports and auditing key reports for sox compliance
- plan, monitor & manage operational delivery to ensure adherence to agreed quality parameters & timelines. implement work management trackers, define roles & responsibilities of team members and roll out a work allocation / delivery plan to track completion
- work with on-shore managers to agree on scope of work, key stakeholders, escalation matrices, project milestones & timelines
- design & implement management information systems (mis) for periodic status updates and to identify trends around business processes identified as high on risk / low on controls
- participate in operational responsibilities with team members basis project requirements. evolve as the 'face' of team to review working papers, draft observations & communicate them to key stakeholders
- demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services
- introduced to concepts of big data analytics, automation & process digitalization in various business processes. ability to identify opportunities, drive poc (proof of concept), manage un-certainty & define success parameters
- exceptionally good understanding of exl consulting and its service lines and actively assess what the firm can deliver to service clients
- familiarity with tools and technologies such as active directory, unix, sql, oracle, mainframes, cloud, or at least one major erp such as sap\oracle\workday
- knowledge of cyber security and information security frameworks such as nist, sans, csc
- effectively discuss all control weaknesses with management, propose recommendations for controls and professionally reach agreement in a timely manner as to required actions; within it audit management and it clients at all levels.
- holds relevant industry certifications such as cisa, cissp, cism, ceh, iso 27001 la, ia etc.
- a good understanding of it data center operations and a variety of technology platforms.
- exposure of reviewing itgc and itac over various erps
- excellent communication, documentation and report writing skills
- ability to interact and establish relationships across all levels
experience & professional pre-requisites
- 7+ years of professional experience in areas of risk & compliance (operational risk, sox compliance, internal audit, it application reviews etc.).
- bachelor's degree in technology/computer science/information systems
- certifications such as cisa, cissp, cism, ceh, iso 27001 are highly desirable but not mandatory for candidates with excellent it audit experience
- strong understanding of it risks, system infrastructure auditing concepts and standards
