Assistant manager - Risk and SOX Compliances (IT)
Position summary
As a SOX-IT Assistant manager, the individual should be a qualified B.Tech with CISA, IT Specialist or CA/CPA/ACCA with a good understanding of the business processes, IT and their interrelationships; In-depth technical knowledge of IT systems and IT controls, including areas such as network security, logical access, systems maintenance and change management controls at an infrastructure, application and database levels.
Primary responsibilities
Conduct reviews and walkthroughs of IT infrastructure, applications and programs
Perform IT risk assessments
Create Risk and Control Matrix (RACM)
Prepare Process Documentation (Narratives & Flowcharts) for applications
Preparation of test scripts and test workpapers
Conduct test of Design and Operating effectiveness of internal controls
Discuss the gaps & other issues, if any, with the application owner
Document test results
Report Sox testing results to the application owners and management
Qualifications, skills and experience
B. Tech with CISA, IT Specialist or CA/CPA/ ACCA with CISA certification
3 to 5 years of post-qualification experience with either a mid or top-tier accounting firm with experience in IT risk assessments, IT audit (ITGC & ITAC), system security reviews
Experience of IT risk assessments, IT audit (ITGC & ITAC), System security reviews
Experience of performing and interpreting gap analysis and development of risk remediation strategies
In-depth technical knowledge of IT systems and IT controls