IT Audit Specialist
Northern Trust · Bengaluru, Karnataka, India
Northern Trust · Bengaluru, Karnataka, India
- **Role** Functions in various roles on audit engagements including leading audits, performing audits and providing consulting and oversight functions based on the needs of the team - Review audit work including workpaper documentation, findings and recommendations, and final audit reports to ensure adherence to the Corporation s/Department s Policies and Standards and ensuring work is performed appropriately within established timeframes - Lead a team of information technology and information security professionals by overseeing and supporting the team through guidance, coaching and mentoring on projects - Develops staffing strategy for the audit engagement, evaluate and identify necessary skillsets of the audit team to determine if they are aligned to complete the deliverables; escalate any gaps as required - Provides technical expertise to the IT Audit Team on the use of sound IT audit practices - Maintains familiarization and technical expertise with the assigned business unit(s) including organizational structures, key personnel, ongoing activities and products, new product development, financial performance and risk and problem areas - Responsible for staying current on regulatory rules and changes within the industry - Interacts and partners with Senior and Executive Management to understand risks within the business and the impact of operational changes or other significant events that could affect the business and/or the audit plan - Manages and performs special projects as assigned - Engage with business units to discuss audit results and monitor issue remediation progress - Communicates with partners at all levels, developing and presenting recommendations on operations and controls for the business unit - During audit engagements, assigns work to auditors, sets priorities and monitors activity - Utilizes understanding of various Corporate units to ensure operations, services, and systems have proper controls in place (i.e., design of the control environment) - Reviews audit work including work paper documentation, findings and recommendations and the final report to ensure appropriate adherence to the Corporation s/Department s Policies and Standards and ensuring work is performed within established timeframes - Evaluates corporate management, business processes, business controls and operating practices during audits and consulting/monitoring engagements - Applies analytical skills to review information and determine potential control weaknesses - Participates in the planning, budgeting, and implementing of strategic IT Audit Team objectives and initiatives - Nurture the overall team spirit of the technology audit function as we continue to grow and develop **Skills / Knowledge** - Knowledge and experience performing risk-based information technology and/or information security audits; experience auditing within the financial services industry is a plus - Comprehensive understanding of ITGC and related processes (e.g., Configuration Management, Vendor Management, Access and Identity Management) - Understanding of Information Technology Service Management (ITSM) controls (e.g., Change Management, Incident Management, Problem Management) - Skills as needed to perform testing of application controls (e.g., BC/DR, Application Security Testing, Interface Controls) - Skills as needed to perform testing of information security and cybersecurity controls (e.g., Identity and Access Management, Incident Response, Penetration Testing, Security Information and Event Monitoring, Data Security) - Knowledge of risks related to newer technologies (e.g., Infrastructure as Code, Cloud Access Management, Kubernetes, Containers, CI/CD) - Knowledge of financial industry standards and frameworks (e.g., NIST CSF, FFIEC, GDPR) - Knowledge of cloud environments and related technologies (e.g., AWS, Azure, Google Cloud) - Experienced in the documentation, reporting, and presentation to senior management and operating committees - Professional certifications (e.g., CISA, CISSP, CCSP) preferred - Strong analytical, leadership, and organizational skills are needed - Strong report writing and work paper documentation skills **Required Experience** - College or University degree is preferred - Minimum 15-20 years in related experience in Information technology or cybersecurity auditing (or equivalent experience) preferably in a financial institution, public accounting company or other large, complex or global organization Disclaimer : This job posting has been aggregated from external source. Role details, content, and availability are subject to change. Applicants are advised to confirm the latest information directly on the company website before applying.