AM/LAM - Risk and Compliance - Audit & Risk Management

Role Overview

• Shall be responsible for executing audit job (incl. Information security and cyber security audits)
• Shall be responsible to understand & write the exceptions/issues along with the relevant risks in the technology areas
• Should be able to manage the work papers and close them in GRC as per the timelines
• Should be able to validate audit issues noted across the technical audits
• Should be able to demonstrate technical skills in areas like cyber security, data privacy, information security (access management, change management, incident monitoring, threat management, etc.)
• Should strongly demonstrate skills for risk identification
• Should demonstrate basic knowledge of security standards such as NIST CSF, ISO 27001:2013, etc.
• Should be able to evaluate action plan submitted by relevant stake holders post audit closure
• Should be able to close the audit testing within defined audit timelines

Requirements

• Bachelor of Engineering / B.Tech (E&C or CS or IT) / MCA / MBA with 3
• 6 years of work experience in audit
• At least 3-6 years of experience in information security / Internal Audit, technology areas
• One or more Certifications such as CISA / CISSP / CISM / ISO 27001 Lead & having Big 4 experience shall be add-on advantage
• Candidate having Banking / NBFC experience will a plus

Tech Stack

• Cyber Security

Benefits

• Health insurance
• Retirement plans
• Paid time off
• Flexible work arrangements
• Professional development