JD: Technology Risk and Governance Professional
- Lead and act as SPOC for the Internal and External audits as part of Information Technology function.
- Provide clarity to IT stakeholders pertaining to requirements/queries raised by auditor wherever required.
- Ensure timely submission of data to auditors
- Ensure appropriate management responses provided along with reasonable and achievable timelines for the observations
- Publish progress tracker and ensure timely completion of audit as per plan
- Lead or conduct regular assessments of IT processes and systems to identify areas for improvement (In terms of security and compliance) which are identified as part of Assurance program.
- Ensure closure of open findings with technology leaders and auditors
- Create awareness among IT teams for Audits, compliance and legal requirements
- Prepare IT audit Assurance program in collaboration with Risk, Security and Compliance Team considering Design and implementation of IT Controls
Skills Required:
- Min 4-12 years of Work Experience as Internal Auditor/GRC team
- Knowledge of Internal controls, auditing standards and statutory compliance (RBI, UIDAI, NCIIPC regulations)
- Sound understanding of Banking/Fintech industry and frameworks such as COSO, COBIT
- Ability to add value and improve operations by bringing a systematic approach to the effectiveness of Risk management, control and governance processes
Certification
- ISO 27001/CISA or equivalent Certification
