Assistant Manager - Technology Risk
Bengaluru, Karnataka, India
KPMG India
KPMG is a global network of professional firms providing Audit, Tax and Advisory services.Team Overview
The position in discussion is with the Technology Risk team at KPMG Global Services (KGS), which is KPMG’s global delivery center and is an integral part of the firm’s strategy to enhance innovation, build scalability, and improve profitability, globally.
Roles and Responsibilities
Designation Assistant Manager Reporting to Manager Role type Individual contributor/Supervisory Employment type Full-time- Design and execute the day-to-day activities of Information Technology (IT) audit engagements, with a focus on strategic, operational and regulatory/compliance related risks
- Plan activities related to development of audit program, and execution of internal audits and IT control assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, General Information Technology Controls (GITCs) and application controls, and regulatory/compliance requirements
- Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management
- Contribute to IT Audit knowledge base and internal practice development initiatives
- Supervise and provide performance management for IT audit staff working on assigned engagements
Mandatory Skills
- Qualifications: BE/B-Tech/MCA/BSC-IT/MBA
- Knowledge of security measures and auditing practices within various operating systems, databases and applications.
- Experience in assessing risks across a variety of business processes.
- Experience of working on Financial Services sector clients.
- Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Sr. Management and Clients.
- Hands on experience of working on IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, Third Party Risk Management.
- Knowledge of regulations impacting the privacy, integrity and availability of customer PII.
- Exposure of having led IT Audit engagements
- Exposure of working on Identity Access Management aspects like user management, authentication and authorization.
- Has team leading experience and has been a performance manager in current or last role
- Technical skills: Prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2 and SQL.
- Certifications – CISA, CRISC, CISSP, CCSK etc. cleared/certified preferred
- Total Experience: The candidate must have 6-8 years of relevant experience in a similar role, preferably with a Big 4 firm
Preferred Skills
- Excellent written and verbal communication skills
- Team player
- Self-driven
- Ability to work independently and motivate team member
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Automation CCSK CISA CISSP Cloud Compliance CRISC ERP Governance Linux Oracle Privacy Risk assessment Risk management SQL Strategy UNIX Windows
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Cyber Security Architect jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs