Skills : Information Technology (IT) ,Audit Compliance , Risk Assessment, Security Controls, Governance Cybersecurity, Data Privacy, Regulatory Compliance , Control Testing ,IT Infrastructure Policies, and Procedures
Description :
Title - IT Auditor
Exp = 3 - 8 years
Location - Delhi
Job Summary: The IT Auditor plays a crucial role in ensuring the security and compliance of an organization's IT systems and processes. They conduct thorough assessments and audits to identify weaknesses, vulnerabilities, and areas for improvement in the organization's information technology environment. By evaluating controls, policies, and procedures, the IT Auditor helps mitigate risks related to data breaches, cyber threats, and regulatory compliance.
Key Responsibilities:
Audit Planning and Preparation:
- Collaborate with stakeholders to understand business objectives, IT processes, and systems under review.
- Develop audit plans, timelines, and objectives based on risk assessment and regulatory requirements.
- Gather relevant documentation, policies, and procedures for the audit process.
Risk Assessment:
- Identify and prioritize IT risks, including cybersecurity threats, data breaches, and compliance issues.
- Assess the effectiveness of existing controls and security measures to mitigate identified risks.
- Recommend improvements to mitigate high-risk areas and enhance overall security posture.
Audit Execution:
- Conduct on-site or remote audits of IT systems, networks, applications, and databases.
- Evaluate the design and implementation of IT controls, including access controls, change management, and data security.
- Perform testing and analysis of IT processes to verify compliance with regulatory standards and industry best practices.
Report Generation and Communication:
- Prepare comprehensive audit reports detailing findings, observations, and recommendations.
- Communicate audit results to management, IT teams, and other relevant stakeholders.
- Collaborate with business units to develop action plans for addressing identified deficiencies and improving IT governance.
Compliance and Regulation:
- Stay abreast of relevant laws, regulations, and industry standards related to IT security and data privacy.
- Ensure compliance with regulatory requirements such as GDPR, HIPAA, PCI DSS, and Sarbanes-Oxley (SOX).
- Assist in regulatory audits and compliance assessments as necessary.