Description

Job Summary:
The Senior Manager IA-IT, reports into Head of Internal Audit (HIA) and help in developing risk-based IA plan, plan and execute audits, issue reports and monitor action items.  Work with business in developing ICFR framework, plan and execute testing, monitor remediation, and report to Audit Committee (AC). Engage with stakeholders to enhance risk awareness and implement best practices in business processes, IT security. Initially, it’s an individual contributor role and will be required to build team aligned with Company’s growth.
Responsibilities:

  • Assist in IA’s risk assessment and planning process to develop the IT audit plan across the globe to ensure Company’s key IT risks are audited timely.
  • Execute audits as per approved plan and issue IA reports to IT and business owners, executive management, and the AC.
  • Monitor and work with business to implement agreed upon actions.
  • Execute all aspects of audit as per International Standards issued by The Institute of Internal Auditors (IIA) & ISACA, as applicable.
  • Plan and execute Fraud Investigations as per protocol and methodology.
  • Collaborate with business owners and advice on designing internal controls (including Application and IT General Controls) over financial reporting.
  • Perform risk assessment to determine IT SOX testing scope, plan testing schedule and co-ordinate with business to timely test controls.
  • Execute IT SOX testing to assess design and operating effectiveness. Document IT SOX test results for updating the management, AC and external auditors.
  • Participate and drive Integrated audits, including operational audits, Financial Controls for SOX compliance.
  • Educate and enhance risk management awareness among business stakeholders. With the help of executive management drive efficient ERM framework.
  • Help business owners in identifying, assessing, and managing fraud risks.

Qualifications / pre-requisites:

  • A degree in Information Technology. Examples: Bachelor’s degree in engineering, Computer Science, Systems, B. Tech, and CISA.
  • 10+ years of IT Audits / IT SOX experience with Big 4s (PWC, KPMG, Deloitte, E&Y) and in multi-national companies (preferably US based) and managing relationships outside India.
  • Knowledge of International Standards (ISO 27001, 22301, HIPAA etc.) in Information Security, Data Privacy, Network Security, IT infrastructure, IT security architecture, BCP & DR, back up, SDLC, Cyber security, Email and Cloud security,
  • Experience in SOC 1 / SOC 2
  • Strong interpersonal and communication skills, including the ability to interact with employees at all levels and senior management.
  • Knowledge of the auditing standards issued by the IIA.
  • Proficiency in MS Office and knowledge of database / accounting software (e.g., SAP, Oracle, MS D365, Data warehouse)
  • Excellent research, data analytics and report writing.
  • Keen interest in learning new business processes, technology platforms, IT standards
  • Able to manage time to accommodate multiple time zones (South Korea, Malaysia, US)
  • Courage and maturity to keep objectivity, critical thinking, integrity, and confidentiality.
  • Strong relationship management approach with ability to build trusted partnership with stakeholders.
  • Languages: Proficiency in English.


 

Education

Bachelor’s degree in engineering, Computer Science