Audit & IT Control Compliance Role (5-7 yrs)

Role Overview:

We are seeking an experienced Audit and IT Control Compliance Professional to join our team in Chennai.

In this role, you will be responsible for ensuring that the organization's financial operations and IT systems comply with internal and external audit standards and regulatory requirements.

You will also manage compliance with IT controls, including security processes, vulnerability management, patching, and ensuring adherence to industry best practices.

Key Responsibilities:

- Perform audits and assessments of financial systems and IT operations, identifying compliance gaps and proposing effective solutions.

- Coordinate internal and external audits related to IT controls, ensuring timely completion and addressing audit queries effectively.

- Review financial data and IT systems to ensure compliance with established audit standards and best practices.

- Ensure compliance with regulatory requirements such as SOX, GDPR, ISO 27001, and other relevant standards.

- Conduct assessments and reviews of IT controls, including access controls, change management, patch management, and vulnerability management.

- Identify areas of improvement in security processes such as patching, security vulnerabilities, and risk mitigation.

- Monitor and report on the status of compliance with internal IT policies and external regulatory requirements.

- Implement and maintain IT control frameworks and ensure that IT policies, procedures, and practices align with corporate governance.

- Collaborate with IT and security teams to assess, test, and validate security controls related to patch management, vulnerability remediation, and risk management.

- Participate in security audits, ensuring compliance with security standards and protocols.

- Develop and maintain documentation and records for audits, ensuring a traceable and transparent process.

- Recommend improvements and assist in the implementation of security measures to minimize risk and protect business-critical data.

- Communicate audit findings, issues, and concerns effectively with senior management and relevant stakeholders.

- Create clear and concise audit reports detailing findings, recommendations, and required actions to maintain compliance.

- Provide expert advice to business units on the implementation of best practices for IT controls and security measures.

- Assist in the development of compliance and audit strategies to improve overall business operations.

- Stay current with industry trends, regulatory changes, and audit methodologies to ensure continuous improvement in compliance efforts.

- Recommend and support the implementation of best practices to improve overall audit and IT control processes.

- Support the ongoing training of staff and stakeholders on compliance procedures and security measures.

- 5+ years of experience in audit and IT control compliance in a corporate or consultancy environment.

- Experience conducting audits in areas such as financial systems, IT controls, and security operations.

- Familiarity with regulatory frameworks, including SOX, GDPR, ISO 27001, and NIST.

- Experience in identifying, managing, and mitigating security vulnerabilities and ensuring compliance with security processes like patching and risk management.

- Strong communication skills, both written and verbal, with the ability to interact with senior management and stakeholders effectively.

- Excellent problem-solving abilities and analytical thinking skills.

- Detail-oriented and able to maintain accuracy while working with large datasets and complex systems.

- Ability to work independently and as part of a team in a fast-paced environment.

- Strong organizational skills with the ability to manage multiple priorities and deadlines effectively