Cyber Audit Specialist

Job Title: Cyber Audit Specialist- ITGC & Cyber Security Audit (2-10 Years)

Company: Kirtane & Pandit LLP

Location: Mumbai (On site)

Job Summary

Kirtane & Pandit LLP is seeking skilled and motivated Cyber Audit Specialists to join its Cybersecurity and Risk Advisory practice. This is a client-facing role involving execution and management of Cyber

Security, ITGC, and Regulatory Audits across industries including BFSI, Insurance, and Financial Services. The role also includes team management, project handling, and client coordination responsibilities depending on experience level.

Key Responsibilities

• Understand audit scope, define audit objectives, and develop audit plans and audit programs
• Perform Cyber Security Audits, IT Audits, and ITGC Audits in line with industry standards and regulatory requirements
• Execute regulatory audits such as RBI, SEBI, and IRDAI Cyber Security / IT Audits
• Conduct SOX ITGC testing, PCI DSS assessments, and SOC 1 / SOC 2 audits
• Review and evaluate IT security governance, IT policies, and IT control frameworks
• Assess access management, change management, IT operations, database, network, and data center controls
• Identify risks and evaluate the design and effectiveness of IT controls
• Execute audit test procedures, review and analyse audit evidence, and document observations
• Compare client processes with industry best practices and standards such as ISO 27001, COBIT, COSO, and NIST
• Identify control gaps and provide practical, risk-based recommendations for remediation
• Prepare high-quality audit reports and client presentations
• Provide timely status updates and final deliverables to clients
• Act as a client-facing point of contact, coordinating with client stakeholders and senior management
• Manage multiple audit assignments simultaneously and ensure timely completion
• Lead and mentor junior team members, review their work, and support their technical development
• Develop and maintain audit checklists, procedures, and audit documentation
• Stay updated on emerging technologies, cyber risks, and regulatory requirements
• Collaborate with internal teams and leadership for successful project delivery
• Travel to client locations as required for audit assignments

Eligibility Criteria

Experience:

2 to 10 years of experience in Cyber Audit / IT Audit / ITGC Audit

Educational Qualification:

• B.Sc IT / MCA / B.Tech / B.E (Computer Science, IT, Cyber Security)
• CA / DISA (added advantage)

Required Knowledge and Skills

• Strong experience in Cyber Audit and ITGC Audit
• Experience in SEBI, RBI, IRDAI Audits
• Knowledge of SOX, PCI DSS, SOC 1, SOC 2
• Familiarity with audit frameworks such as:
• ISO 27001 o COBIT o COSO o NIST
• Understanding of:
• Access Controlso Change Management o IT Operations o Network Securityo Databases and Applications o Data Center Controls
• Experience in risk assessment and control evaluation
• Strong client handling and communication skills
• Experience in team handling and project management (for senior roles)

Preferred Certifications

• CISA
• DISA
• CISM
• CISSP
• ISO 27001 Lead Auditor / Implementer

Tools Knowledge (Preferred)

• MS Excel
• ACL
• IDEA
• Tableau
• Other data analytics tools

Key Competencies

• Client-facing and stakeholder management skills
• Strong analytical and problem-solving abilities
• Ability to manage multiple projects and deadlines
• Leadership and team mentoring skills
• Excellent report writing and presentation skills