Job Description

\xc2\xb7 POSITION SUMMARY:This role is responsible for leading and overseeing IT internal auditors throughout the three phases of the project - planning, execution, and reporting. Lead Analysts work with senior stakeholders to update them regarding timelines, requirements, and any potential risks. They engage in planning, managing, and driving activities to ensure completion of all IT Change Management processes initiatives of the organization.The Compliance and Process Management team ensures that the organization is accomplishing its objectives by bringing a systematic, disciplined approach to evaluating and improving the effectiveness of IT risk management, IT control and governance processes. The team helps in driving adherence to compliance and regulatory IT controls across the organization. The team works on implementing the Corporate IT Compliance Program including identification of gaps and recommendation of risk mitigation alternatives to management. They are also responsible for ensuring that solution change meets all governance and user requirements.\xc2\xb7 PRIMARY DUTIES AND RESPONSIBILITIES:\xc2\xb7 Monitors and analyzes internal process metrics for continuous improvement and creates standard operating procedures and metrics based on best practices\xc2\xb7 Leads and oversees IT internal auditors throughout the three phases of the project - planning, execution, and reporting\xc2\xb7 Interacts with external and client auditors as part of required reviews of Compliance Controls and prepares clear, detailed, and accurate compliance documentation, including narratives, control descriptions, risk control matrices, test programs, and performance metrics\xc2\xb7 Leads the monitoring and tracking of remediation plans and follow-up actions to validate implementation and risk mitigation\xc2\xb7 Diagnoses findings, drafts internal controls reports and presentations to senior management, establishes and communicates timelines, requirements, and issues to the management in a professional and timely manner\xc2\xb7 Provides coaching & technical guidance to Analysts I/II/III in executing their responsibilities & tasks\xc2\xb7 Supports IT Change Management processes strategies, policies, and activities, and finds remedies on out-of-compliance items\xc2\xb7 Reviews and provides feedback on vendor proposals for new service, hardware, and software\xc2\xb7 Implements reviews of controls programs that are required to mitigate compliance risks and vulnerabilities and works with appropriate stakeholders to address and enhance as appropriate\xc2\xb7 Evaluates risk assessments priorities, back out and verification plans against change management standards and documents results of the review\xc2\xb7 Ensures completeness and accuracy of all documentation for assigned work products and proper adherence to guidelines for change lead times, notifications, and approvals\xc2\xb7 Maintains a high level of awareness of compliance related changes and developments in the industry\xc2\xb7 Escalates resource challenges and other conflicts to audit management\xc2\xb7 Ensures IT audit fieldwork and findings are adequately documented\xc2\xb7 Assists the IT Internal Audit Lead with presentations to mid-level management in discussing deficiencies during and at the end of the audit\xc2\xb7 Additional Additional EDUCATIONAL QUALIFICATIONS:Education:\xc2\xb7 Bachelors Degree in Computer Science, Information Technology or any other related discipline or equivalent related experience.Preferred Certifications:\xc2\xb7 Certified Internal Auditor (CIA)\xc2\xb7 Certified Information Systems Auditor (CISA)\xc2\xb7 Certified Information Systems Security Professional (CISSP)\xc2\xb7 Risk and Information Systems Control (CRISC) CertificationWORK EXPERIENCE:\xc2\xb7 2-5 years of directly-related or relevant experience, preferably in IT compliance or audit.SKILLS & KNOWLEDGE:Behavioral Skills:\xc2\xb7 Conflict Resolution\xc2\xb7 Creativity & Innovation\xc2\xb7 Decision Making\xc2\xb7 Planning\xc2\xb7 Presentation Skills\xc2\xb7 Risk-takingTechnical Skills:\xc2\xb7 Change Management\xc2\xb7 Cyber Attack Mitigation\xc2\xb7 Data Security\xc2\xb7 IT Audit\xc2\xb7 IT Controls\xc2\xb7 IT Risk Management\xc2\xb7 IT Regulatory Compliance like SOX ComplianceTools Knowledge:\xc2\xb7 Enterprise Resource Planning (ERP) Systems like Sage, ASW, SAP\xc2\xb7 Microsoft Office Suite

Zensar