IT Auditor

Job Description for IT Auditor role at ICICI Securities

Need and IT Audit professionals who has a deep understanding of the IT-related risks and threats arising from the use of technology and can provide assurance over the IT controls.  A Literate in the technologies with deep industry experience and should be able to provide practical recommendations that cut through complex business problems, and help organizations enhance their internal controls and protect their information.

Roles and responsibilities

• Develop and implement Risk based IT Audit plans as per the frequency either independently or with the help of external consultants
• Planning the engagement with the external auditors for outsourced IT audits with respect to availing commercials from several vendors, deriving the best price within the budget, evaluate capability of the vendor to execute and complete the audit, onboarding the selected vendor, tracking of invoicing and payment to the vendor.
• Coordinating with the external auditor for the assigned audit engagement in terms of audit execution, reporting and closure.
• Perform reviews with external auditors over outsourced audits to ensure timely completion of audits covering the defined audit scope exhaustively
• Exhibit strong people management skill while dealing with auditees, external auditors and other stakeholders
• Adequate knowledge about IT general controls, IT compliance, application security, cybersecurity, network management and infrastructure
• Conduct independent reviews basis the requirement of the management towards concerns with regards to organization IT security
• Provide recommendations for improvements and remediation to management and stakeholders over IT risk & controls
• Document the respective audit workpapers and present it as per the requirement when needed.
• Strong drafting skill for preparing quality audit reports
• Update Audit management tool for the concluded IT audits and enhance the usage of system to its full potential overall.
• Monitor open audit issues in ATR and ensure closure on timely basis
• Contribute and support to departmental process towards compliance to policies and procedures
• Coordinate with the functional auditors for providing comprehensive assurance on IT related matters.
• Connect with ICICI group co.’s for common information applicable to Audits and utilize the same in Audits
• Where required travel outside Mumbai to carry out physical audits at Branches, Data centres, DR sites etc.

Desired Qualification

1. Bachelor’s or higher degree in Business Information Systems, Computer Engineering, Computer Science or any related field. CISA qualification will be an added advantage.
2. Junior/senior position: 0-2 years' experience in internal or external IT audit, IT risk and compliance, and business process
3. Good knowledge or ability to understand in the following areas, would be beneficial:
   1. Information security (e.g. ISO27000 series), IT governance (e.g. COBIT), and IT service management (e.g. ITIL)
   2. Audit and accounting principles
   3. Regulatory compliance
4. Demonstrate knowledge of IT operations and/or experience executing audits on IT network security architecture design including network platforms, JavaScript library, network access control, etc. and emerging technology such as cloud computing, blockchain and cyber security, would be beneficial
5. Strong leadership and communication skills
6. Good command of spoken and written English