Analyst
Bengaluru, Karnataka, India
KPMG India
KPMG is a global network of professional firms providing Audit, Tax and Advisory services.Job Requirements
KPMG Global Services is currently seeking an Analyst/Executive in Technology Risk Management for our Consulting practice.
Responsibilities:
• Assist in planning and executing activities related to risk, control, compliance and internal audit client engagements in the following areas: IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cybersecurity, cloud and third parties, data management and analytics, emerging technology and digital solutions, automation (robotics, cognitive, etc.), IT and transformation programs and projects, GITCs and application controls, and regulatory/compliance requirements
• Review clients' IT processes, risk, controls and compliance against leading practice, industry, or client frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client project manager
• Work with client project manager to assist in assessing, designing and implementation new IT risk and control frameworks, sustainable solutions (including applying knowledge of governance, risk and compliance tools), operating processes and people models to address key and evolving risks, as necessary
• Draft comprehensive executive summaries and final reports for delivery to client project manager and document and review engagement workpapers in accordance with KPMG requirements and common industry practice for internal audit and risk consulting client engagements
• Assist in kick-off, status, and closing meetings with engagement team and client and contribute to related KPMG knowledge bases and internal practice development initiatives
Qualifications:
• 0-3 year of experience working within an internal audit, IT risk, or IT compliance function as an internal employee or as part of a professional services firm
• Bachelor's degree from an accredited college/university or equivalent work experience; CISA, PMP, CISSP or CRISC (or similar) certifications preferred
• Familiarity with leading and executing IT audit, IT internal control, and IT risk consulting engagements, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs
• Experience in implementation of IT risk and IT internal control processes and programs
• Proficiency in executing projects in accordance with leading practice project management principles
• Strong leadership and communication skills, technical knowledge, and the ability to write at a publication quality level in order to communicate findings and recommendations to the clients and senior management team
Mandatory Skills
- Qualifications: BE/B-Tech/MCA/BSc-IT/MBA
Preferred Skills
- Excellent written and communication skills
- Self-driven
- Team Player
- Ability to work independently and motivate team member
Job Requirements
KPMG Global Services is currently seeking an Analyst/Executive in Technology Risk Management for our Consulting practice.
Responsibilities:
• Assist in planning and executing activities related to risk, control, compliance and internal audit client engagements in the following areas: IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cybersecurity, cloud and third parties, data management and analytics, emerging technology and digital solutions, automation (robotics, cognitive, etc.), IT and transformation programs and projects, GITCs and application controls, and regulatory/compliance requirements
• Review clients' IT processes, risk, controls and compliance against leading practice, industry, or client frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client project manager
• Work with client project manager to assist in assessing, designing and implementation new IT risk and control frameworks, sustainable solutions (including applying knowledge of governance, risk and compliance tools), operating processes and people models to address key and evolving risks, as necessary
• Draft comprehensive executive summaries and final reports for delivery to client project manager and document and review engagement workpapers in accordance with KPMG requirements and common industry practice for internal audit and risk consulting client engagements
• Assist in kick-off, status, and closing meetings with engagement team and client and contribute to related KPMG knowledge bases and internal practice development initiatives
Qualifications:
• 0-3 year of experience working within an internal audit, IT risk, or IT compliance function as an internal employee or as part of a professional services firm
• Bachelor's degree from an accredited college/university or equivalent work experience; CISA, PMP, CISSP or CRISC (or similar) certifications preferred
• Familiarity with leading and executing IT audit, IT internal control, and IT risk consulting engagements, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs
• Experience in implementation of IT risk and IT internal control processes and programs
• Proficiency in executing projects in accordance with leading practice project management principles
• Strong leadership and communication skills, technical knowledge, and the ability to write at a publication quality level in order to communicate findings and recommendations to the clients and senior management team
Mandatory Skills
- Qualifications: BE/B-Tech/MCA/BSc-IT/MBA
Preferred Skills
- Excellent written and communication skills
- Self-driven
- Team Player
- Ability to work independently and motivate team member
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits Automation CISA CISSP Cloud COBIT Compliance CRISC Governance ITIL NIST NIST 800-53 Risk management SOX Strategy
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Product Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Information System Security Officer (ISSO) jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open DoD-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open CEH-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs