Manager - Technology Risk

Role:

Assessment of information technology risks and controls regarding the confidentiality, integrity and availability of business information. Identify areas of risk; Assess control environment, Key Risk indicators and the Change control mechanism for assigned processes or functions of the company.

• The Risk Manager will work with IT and ITS organization and become familiar with the overall businesses strategy to effectively execute each risk & control program.
• Assisting internal clients in implementing and deploying an operational risk strategy, including services such as: operational risk governance/ framework development, risk and control self assessments, key risk indicators.
• Conduct risk based assessments on processes in order to better determine areas of focus for internal controls.
• Evaluating the design effectiveness of internal control processes.
• Manage special projects as assigned.
• Assist in creating governance standards and necessary tools required to support requirements.
• Developing, implementing and monitoring compliance.
• Support day to day management of relationships and communications with business partners at various levels of the organization, as well as other internal and external resources.
• Draft audit plans to test internal controls and compliance with applicable requirements. Conduct and document testing performed.
• Perform special reviews and analyze findings of the same.
• Develop report outs in standard formats to ensure all of the above.
• Ensure effective reporting, communication and follow-up on various audit findings and recommendations.
• Travel in company locations in India for achieving above stated objectives.
• To work in a six sigma controlled and process oriented environment

Must Have:

Qualifications

• CISA / CISSP (with relevant IT risk and internal controls experience)
• The individual should have a minimum of 6-8 years of experience in the area of auditing, with a minimum of three years of auditing of information technology activities preferably from IT / BPO industry and / or Big 4 Audit Firms.
• Significant working experience in BPO / Big 4 IT risk department / working experience in Financial Services or Banking Industry.
  In depth knowledge of Risk based assessments

Competencies / Technical Skills:

• Ability to manage smaller and larger teams
• Candidate must have excellent verbal and written communication skills and effective interpersonal skills.
• Self-starter with the ability to work within and across teams/locations to accomplish goals in a timely manner.
• Analytical and presentation skills.

Good to Have:

Qualifications

• CA / CIA / CFE / MBA (Compliance Certification)
• Prefer candidate to have an advanced degree along with 7-8 years experience in Operational IT Risk and Internal Audit.
• Experience of auditing Applications (including ERP applications), Databases, Operating Systems and Network Devices
• Core banking compliance monitoring and implementation

Competencies / Technical Skills:

• Audit and Compliance frame of mind.
• Strong cross-cultural and inter personal skills commensurate to audit roles.
• Self-starter with ability to deal with and thrive in ambiguity and adversity.