Global IT Audit & Compliance Lead
Hyderabad, India
Applications have closed
IQ-EQ
Our know how and know you allows us to provide a comprehensive range of compliance, administration, asset and advisory services to investment funds, globalCompany Description
IQ-EQ is a leading Investor Services group which combines global expertise with an unwavering focus on client service delivery. We support fund managers, global companies, family offices and private clients operating worldwide.
Job Description
Responsibilities
As a result of continued growth, we have a fantastic opportunity for an experienced IT Audit and Compliance Lead to join our Global Technology team.
The IT Audit and Compliance Lead is responsible for partnering with risk owners throughout the Global Technology services function, Regional IT, and other business units to design and maintain internal controls in line with our risk appetite and to maintain the quality of our processes.
The role requires to work closely with stakeholders from multiple departments and, to have a strong focus on the big picture focus but, when required still be able to zoom in and out of the details to ensure full process understanding with a broader vision of what needs to be accomplished.
Responsibilities and skills required for the IT Audit and Compliance Lead role are tightly linked to the Capability Area they work for. In Risk Management, the focus is on risk identification, analysis, evaluation and treatment as well as ensuring our IT control environment is monitored and controls are operating as expected.
The IT Audit and Compliance Lead role requires solid stakeholder management skills, and to be comfortable with challenging risk owners to come up with robust, pragmatic and scalable solutions which mitigate key risks while enabling successful business operations.
You’ll have a strong background and experience in Group Technology internal controls, internal audit, and/or risk related roles with Technology.
This will include experience working in assessment of policies and standards, risk, assessment of the design and operating effectiveness of mitigating controls and recommending improvements. You’ll have strong knowledge of regulatory and compliance environments and ability to apply it appropriately.
Tasks (what does the role do on a day-to-day basis)
Build knowledge of internal IT controls, systems, and process landscape to enable clear understanding of impact and Lead Initiative affecting wider organisations
Promote control of owner’s accountability for IT control performance and documentation
Looks for ways to increase the business impact of the team and improve the team’s services and how the team functions.
Provide advice on control & risk indicators design that are both sustainable and right-sized (i.e., a simple solution for a simple problem, no over-engineering)
Enable continuous improvement, maintaining our Global Technology controls catalogue, by providing general and technical guidance on how to maintain relevant controls
Coordinate new requests from the business functions for support with controls
Support business functions and units in ongoing compliance with IT Group Controls and other control areas
Provide support to IT Audits, Access Reviews, and IT Global Controls with needed walk-thoughts, documentation and follow ups
Assist in the development and leading regular training/awareness programs to train and educate risk owners on internal controls topics
Stay flexible to meet the dynamic business needs, while maintaining robust solutions that strengthen the control environment
Be able to split large tasks into logical, manageable and decoupled actions which are managed effectively and delivered on time
Control mapping of internal control to industry frameworks and standards.
Qualifications
Key behaviours we expect to see
In addition to demonstrating our Group Values (Authentic, Bold, and Collaborative), the role holder will be expected to demonstrate the following:
Action oriented
Collaborates
Communicates effectively
Interpersonal savvy
Builds networks
Balances stakeholders
Tech savvy
Optimises work processes
Required Experience
Education / professional qualifications
Example ie. Graduate degree, preferably in IT related disciplines
Professional certifications such as PMP, ITIL or equivalent
ITIL Foundation qualification essential
Background & Technical experience
At least 3-5 years of relevant experience.
Work experience in IT Governance, Risk & Compliance (GRC), IT auditing, corporate governance, risk management or internal controls
Ability to build and develop solid relationships with business partners to drive the adoption of the risk management culture
Thorough technical understanding of IT General Control requirements and design and experience in applying them in various businesses
Able to split large tasks into logical, manageable, and decoupled actions which are managed effectively and delivered on time.
Knowledge of Regulatory and Compliance frameworks affecting Technology - SOX, PCI, NIST, COBIT, ISO/IEC 27001
Familiar with ServiceNow, Google Suite, Jira tools (or similar), Cloud environments is a plus, but not mandatory
Familiarity with a DevOps environment is a plus, but not mandatory
Solid understanding of Data Protection and Information Security principles
Excellent program management skills.
Strong stakeholder engagement skills (control/process owners, audit)
Demonstrates the ability to make decisions, assess and resolve problems effectively
Enthusiastic, self-starting and enjoys change.
Hands on experience with large e-commerce or tech companies is preferable
Be flexible and agile in response to the change in business, change in stakeholder expectations and/or change in regulatory/operating environment of Global Technology Services
Strong independent contributor, while still a strong collaborator
Company, product, and market knowledge
Experience of working in a complex, multi-country professional services, financial services or BPO organisation with complex processing requirements
Multi-country experience and demonstrates an ability to work in a multi-cultural, talented, and demanding team environment.
Possess the skills and the personality to operate effectively in a very fast-paced complex global business with an in-depth knowledge of program management
Excellent communication skills in both written and oral form, with staff members, customers, suppliers, and the management team with the ability to make decisions, act and get results
Passion, dynamism, and drive
Intellectual curiosity
Personal presence, integrity, and credibility
Ability to solve problems either independently or by utilising other members of the team where necessary
Languages
Fully proficient spoken and written English, additional European languages will be an asset
Additional Information
At IQ-EQ we want you to reach your full potential. We offer an inclusive and diverse environment to support your career aspirations. With a strong emphasis on continuous learning and a holistic approach to your professional and personal development. We also offer opportunities across our service lines and our international network of offices.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Cloud COBIT Compliance DevOps E-commerce Governance ITIL Jira NIST Risk management SOX
Perks/benefits: Career development Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Manager Pentest H/F jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Operations Analyst jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open EDR-related jobs
- Open DoD-related jobs