Manager - ITGC - Big 4 (6-12 yrs)

Manager ITGC-Big 4

- Manage and direct the work streams related to IT SOX Compliance covering ITGC and IT Dependencies (ITAC, Interfaces, IPE's).

- Provide technical support in the assessment, design and implementation of ITGC requirements.

- Thorough understanding around ITGC domains such as Logical Access, Change Management, SDLC and Computer Operations.

- Exposure of testing IT Application Controls (Configurable, Non-configurable), Interfaces, IPE's, Data Migration and Platform Reviews.

- Review control evidence for adherence to accuracy, completeness and precision of control execution for all ITGC.

- Develop, implement and test controls for new acquisitions and in-scope entities.

- Work with control owners and operators to ensure quality, consistency and operability of new and existing controls.

- Collaborate and build long-term relationships with key stakeholders in a fast-paced and matrixed work environment.

- Review test findings, facilitate the remediation of ITGC control gaps, and escalate possible critical issues to senior management of client/Onshore teams.

- Plan and direct the work to team members, monitor their work, and take corrective action when necessary.

- Coaches, mentors, and develops direct reports, including overseeing new hire onboarding process and providing career development planning and opportunities; maintains a safe, secure, and legal work environment.

- Builds and maintains strong peer relationships within the team and across the organization.

- Coordinates work with External Auditors of the client if needed.

- Manage the Cyber, Risk & Regulatory (Advisory) team and client portfolio to deliver 8,000 to 12,000 of client hours.

Minimum Qualifications:

- Bachelor's degree in Information Systems, Computer Science Engineering

- B.E., B. TECH, M. TECH, MCA, BCA, CA, MBA

- Experience of business experience in technology audit, risk management, compliance, consulting, or information security including acting in the capacity of a supervisor

- Excellent knowledge of IT General Controls, automated and security controls

- Knowledge of security measures and auditing practices within various operating systems, databases and applications

- Experience in auditing financial applications, cyber security practices, privacy and various infrastructure platforms such as Unix, Linus, Windows, SQL Server, Oracle Databases

- Knowledge and concepts of auditing of cloud platforms (AWS, Azure and Google Cloud)

- Experience designing continuous auditing and monitoring tools and techniques is a plus.

- Good understanding of CoBIT 5 Domains of Access Management, SLDC & Change and Computer Operations and Control Design and Testing of SOX IT General Controls (ITGC) and/or IT Application Controls (ITAC)

- Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Management/Clients

- Knowledge of regulations impacting privacy, integrity and availability of clients PII. - Functional knowledge of major ERP suites (like SAP, Dynamics, Oracle EBS, Peoplesoft)

- Understanding of audit concepts and regulations

- Required overall experience in testing/reviewing and implementation of ITGC controls, CoBit 5 and developing COSO framework

- Candidates with 6-8 years of relevant experience in similar role, preferably with a "Big 4" or equivalent

- Chartered Accountant (would be added advantage) Certification(s)

- Preferred: CISA / CISM / CRISC / CISSP / ISO 27001 LA certifications