Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

RATE NOW!
- ABECA 2025
  
  RATE NOW!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Engaged Employer

SustainEdge Global

Compare

4.3

based on 8 Reviews

4 SustainEdge Global Jobs

Senior IT Advisor

Sustainable BPO

4.3

based on 8 Reviews

5-10 years

Gandhinagar

1 vacancy

Senior IT Advisor

SustainEdge Global

posted 17d ago

Job Role Insights

Flexible timing

Key skills for the job

Back Office Quality Assurance Consulting Oracle ERP Systems PeopleSoft

+ 4 more

Job Description

The individual will be responsible for planning engagements, supervising staff, and executing IT Risk Advisory, IT Risk Management, Application Controls Security Assessments, ERP Security & Controls, Embedded Risk Management, and other IT Audit projects as needed. Specifically, the responsibilities of this position will include but not limited to the following:

Managing the delivery of timely engagement results and high-quality deliverables in accordance with professional and industry standards

Hands-on delivery and execution of project tasks for complex technology environments

Presentation and communication of project status and risk-based observations and proposed solutions to client s senior management

Developing and maintaining relationships with stakeholders and identifying technological and operational risk mitigating opportunities as a first choice advisor

Supervising, training, and mentoring staff level personnel and coordinating with client resources as needed
Establishing performance expectations for staff level personnel and providing performance feedback

IT Specific:

Developing and managing the execution of IT Risk Assessments in conjunction with the implementation of Enterprise Risk Management governance structures/programs and the develop of client annual audit plans

Planning and managing the execution and delivery of client s risk-based IT audit plans, which may include IT general control reviews, IT application control reviews, IT infrastructure reviews, IT operational process reviews, IT governance & strategy design assessments, and SOX compliance related activities

Leading the execution of highly specialised reviews such as data integrity, Information security risk assessments, technical compliance reviews, etc.

Developing leading practice IT integrated Internal Audit Methodologies, for internal use and client service delivery

Identifying and assessing business / operational processes, IT risks, and internal controls to evaluate the design and operating effectiveness of the overall control environment

Developing and leading ERP (e.g., SAP B1, SAP ECC, Hana, PeopleSoft, Oracle, Microsoft Navision, Finacle) advisory and assurance related activities, which may include business process improvement, Security risk & controls review, SoD analysis, SoD conflict management design, and application security assessments

Experience or knowledgeable of practices related to delivering data protection, breach management and regulatory privacy assessments

Experience of knowledge of practices related to delivering NIST based information security reviews based on the clients implementations of frameworks such as, NIST 800.53r4 and NIST 800.171

Business development:

Advising area leadership on the development and execution of the IT Risk service line growth program and overall go-to market strategy

Identifying opportunities within current engagements to expand the scope of services rendered and the ability to be market facing to identify and potentially pursue new client prospects

Participating in professional organizations and developing leading practice point of views of relevant IT Risk related topics for internal marketing and external organizational branding

Integrated Audits:

Partnering with financial audit teams to effectively integrate and coordinate appropriate IT General controls testing procedures in accordance with ISA 240 and ISA 315

Partnering with management to develop and validate draft IT audit reports and establish practical corrective action plans in response to technology and operational risks / observations

Knowledge area requirements:

Individual project assignments will be performed under the RAS leadership. Working knowledge of industry standards and governance frameworks (e.g., COBIT5, etc.), strong analytical abilities, and exceptional project management skills are keys to success in this unique and challenging position.

The individual must possess the following knowledge, skills, and abilities and be able to perform the essential functions of the job, with or without reasonable accommodation.

Understanding of control concepts/frameworks (e.g., COBIT 4/5, NIST 800.53, COSO, ISO/IEC 27001 etc.)

Experience/knowledge of auditing IT processes and controls, including flowcharting and risk identification

Thorough understanding of complex information systems, emerging IT trends/best practices and proven ability to apply in diverse and continuously evolving client/company environments

Knowledge of frameworks such as GTAG and Sarbanes-Oxley Act provisions and prior implementation of cost-effective approaches for achieving IT compliance