Principal Analyst is responsible for conducting IT SOX Audits, ITGC/ ITAC testing and IT risk audits for in-scope Zones. The role requires doing control testing, working on RCA, supporting control remediation and doing remediation testing month-on-month as per plan to meet the defined SLAs.
2. KEY TASKS AND ACCOUNTABILITIES
Good experience in at least two or more of below domains:
o Access Management
o Change Management
o Security Management
o Configuration Management
o Backup & DR/ BCP
o SOC 1/ 2 report and contract review
Perform evidence collection, testing and reporting for the defined controls
Participate in weekly/monthly routines with the zones and respond to their queries on controls
Follow the defined policies, process & SOPs and deliver consistently on SLAs
Able to understand compliance requirements such as SOX, IT Audits, etc.
Work with the Zone teams to conduct RCA for identified gaps and prepare remediation plans
Able to operate tools such as SAP GRC, Power BI, Service Now, etc.
3. BUSINESS ENVIRONMENT
ABI is a zonally structured organization with a Global Head Quarters capability, which leads best practice and strategy. The zones are split into the following geographical groupings:
GHQ
Latin America
Europe
Middle America
Asia Pacific
North America
Africa
Within each zone and GHQ there is a Solutions organization which runs IT and Business services activity. This specific role is based on Bangalore and will need to interact and collaborate with Global & Zonal Security and Compliance teams as well as to communicate with business roles that sit within the different geographical IT, Internal Controls and Internal Audit functions within each zone, and in GHQ.
The role does not have any direct reports; however, it does require matrix management of resources across the globe to achieve strategic objectives and will require the ability to operate across all geographies and will require the ability to operate across all geographies to shape and influence management. A specific focus on this role to ensure the deliverables produced are at the right level of quality, and representative of the true compliance position, aligned with the other positions in the Compliance Cell.
4. QUALIFICATIONS, EXPERIENCE, SKILLS
3-6 years of experience into IT Audits, ITGC testing.
MBA, BE, BTech, MTech and similar degrees
Have worked in IT Compliance/ Internal controls/ Audit area
Good technical knowledge of Application security and Access Management
Hands-on experience on Excel, PowerPoint, PowerBI, etc.
Any IT certifications (Eg: CISA) are an added value