Job Description

DesignationTechnical SpecialistNo. of Positions2Experience2.5-5 YearsSkill (Primary)Domain Competencies-Finance-SOXQualificationB-Tech (Posting)."KEY RESPONSIBILITIES & JOB DESCRIPTION Proven experience on leading and executing compliance & risk management processes
Excellent knowledge in ISAE 3402 SOC 1&2 attestations
Hands on experience in end to end ISAE 3402 SOC 1& 2 assessments and reporting
Proficient in implementing, monitoring & reporting of SOX ITGC controls for customers
Ensure timely and effective corrective actions are taken to correct deficiencies and provide status reporting on SOX ITGC controls
Perform testing of internal controls specified in Information Security Policies and Perform internal audit reviews to assess the effectiveness of current information security control
Expertise in Risk Management including conducting risk assessments, gap analysis and remediation for gaps found in SOX/Internal Audits
Experience in performing remediation activities based on gaps found in audit reviews
Conducting regular training for on Client Security Policy and Standard requirements.
Present reports and recommendations on SOX controls compliance and SOC assessments to the client stakeholders
Excellent understanding & experience in IT infrastructure management which includes Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc.
Regulations Knowledge: SOX ITGC, GDPR, UK DPA, Privacy Shield, SOC Reporting
QUALIFICATIONS B.E/B. Tech (IT, CSE, Electronics) with MBA preferred. Candidates with following Certifications will be preferred:
CISA/CGEIT/CISM/CISSP/CIPP/CIPM
ISO 27001 Lead Auditor/Implementer
"
(1.) To clearly understand the client\'s cybersecurity environment and respective product. (2.) To monitor, configure, and troubleshoot cybersecurity issues and related monitoring tools (3.) To analyse and validate cybersecurity incidents in-detail and help the L3 team with RCAordata or logs collection (4.) To enable knowledge transferortrainings through creationor maintenance of configuration documents, test plans, operational manuals and provide operational training to L1 team. (5.) To analyse and fine-tune cybersecurity policies, participate in cybersecurity review calls pertaining to change requests and recommendations on cybersecurity policy changes. (6.) To implement changes, monitor security device performance and implements performance tuning when necessary. (7.) To prepare analyses and reports to highlight the project progressorchallenges and ensure quality and accuracy to the client

HCLTech