Manager

Job Description

Role: Internal Audit Manager – 6A

Birlasoft is looking for a subject expert to lead, coordinate, communicate, integrate, and be accountable for the overall success of the Internal Audits, and managing independent and objective assessment of the organizational security functions, and internal controls, and compliance with the Company s policies and procedures. Internal Audit also provides advisory to other functions designed to add value and improve Birlasoft’s operations through bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, controls, operations, and governance processes.

Responsibilities:

• You Are: An agile, highly motivated, innovative thinker with a background in audit, risk, or compliance.
• Manage Internal Audits at the organization level from Infosec point of view. Participate in the creation and execution of the risk-based audit plan, reporting results to Birlasoft Leadership and the Audit Committee of the Board of Directors. Conduct a wide-ranging scope of audits with an emphasis on assessing cyber security and privacy risks.
• Develop the Audit plans and Risk Control framework across the functions based on ISMS & PIMS.
• Reporting the process and control weaknesses along with suggestive corrective actions to the Function heads and ensuring remediation.
• Co-ordinate with external auditors on the internal audit scope and deliverables for audits such as ISO 27001, ISO 27701, NIST CSF, SOC 2 Type II etc.
• Shape the future of the Birlasoft Internal Audit through involvement in departmental initiatives that enable us to become more efficient and effective in everything we do.
• Ensure your technical skill set and business acumen stay current and relevant through participation in our robust training program.

Requirements:

• Graduate degree in Computer Science, Information Systems, Accounting, or Business Administration.
• Minimum of 8 years of relevant experience in IT auditing, information security, or related technical role focusing on compliance activities.
• Experience conducting external and internal audits or assessments based on ISO 27001, ISO 27701 controls, preferably for a global organization.
• Strong IT knowledge in infrastructure technologies (networking, data centers and hosting, virtualization, cloud etc.), application development and support, and emerging technologies.
• Experience leveraging predictive models and custom analytics in audit planning and execution is preferred.
• Technical knowledge and familiarity with control requirements in areas including ERP/SAP applications, Windows and Unix operating systems, cyber security, privacy and vendor management.
• Demonstrated analytical thinking, leadership, teamwork, and collaboration skills.
• Possession of active ISO/IEC 27001:2013 Lead Auditor certificate is mandatory. ISO/IEC 27001:2022 is plus.
• Possession of a relevant professional certification (CISA, CISSP, CIA, CPA, CCSK) is preferred.

Soft Skills:

• Strong verbal and written communication skills and proficiency with the English language.
• High level of personal integrity, as well as the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity.