This is for our Indian global telecommunications servicescompany based in New Delhi, India. It operates in more than 20 countries acrossthe globe
Job Title : Internal Audit Job Level : B
Location : Gurgaon
Reporting to : Audit Head
Purpose of the Job
The incumbent will be responsible for conducting Informationsecurity audit for the bank.
Â·To carry out IS Audit planning using the RiskBased Audit Approach. The approach would involve aspects like IT riskassessment methodology, defining the IS Audit Universe, scoping and planningthe audit, execution and follow up activities.
Â·To ensure IS Audit Plan (either separately or aspart of the overall internal audit plan) be a formal document, duly approved bythe Audit Committee initially and during any subsequent major changes.
TheAudit plan to be prepared in compliance with appropriate externalregulatory / legal requirements, in addition to well-known IS Auditing Standards.
Â·Would be responsible for follow up and closureon ATR
Â·To implement IS Audit policy / charter subjectedto an annual review / approval to ensure its continued relevance and effectiveness.
Â·To build the IS Audit Universe around various ITpeople and processes like application systems, information or data,infrastructure (technology and facilities like hardware, operating systems,database management systems, networking, etc.
and the environment that housesand supports them that enable the processing of the applications) and people(internal or outsourced personnel required to plan, organize, acquire,implement, support, monitor and evaluate the information systems and services).
Â·To finalize annual IS Audit Plan and strategywhich is prepared based on the scoping document and risk assessment.
Â·To report on the status of planned versus actualIS audits, and any changes to the annual IS audit plan (to be presentedperiodically to the Audit Committee and Senior management)
To cover IT governance, information securitygovernance related aspects, critical IT general controls like data centercontrols and processes and critical business applications / systems havingfinancial / compliance implications including MIS and regulatory reportingsystems and customer access points (like delivery channels)