Location
Secunderabad | India
Job description
About The Role
The Team: S&P Global is a leader in credit ratings, benchmarks and analytics for the global capital and commodity markets. Reporting to the Audit Director, you will be part of a global and diverse Audit team with coverage for enterprise-wide Applications. The S&P Global Internal Audit function is a global team with auditors located in the U.S., London, India, Tokyo, & Taiwan. The Divisional Technology Audit team is a critical unit of the global Audit function and performs audits focusing on S&P Global Technologies (IT Applications and Information Security).
The Impact This role will be part of Application audit team, focusing on audit plan management and execution of Technology audits globally. This role will provide you a companywide perspective of the state of the internal technology environment and act in a trusted advisory capacity.
What's In It For You The role provides extraordinary learning opportunities and interact with senior management across the Company. If you're right for this role, you will interact meet and work with several key stakeholders in interesting and meaningful engagements. You'll love this job because it provides new opportunities for professional growth daily. You will leverage cutting edge digital next generation capabilities and data analytics practices to improve the audit testing techniques. The role provides opportunities to be flexible by adopting Agile methodology to perform audits. This role will be primarily accountable for S&P Global annual audit plan development, internal audits execution (planning, fieldwork and reporting phases). You will be responsible for performing annual and on-going risk assessment activities focused on Applications, Information and Cyber Security and the associated risks for S&P Global worldwide. The incumbent will be expected conduct independent audit and work effectively with members of the Audit Leadership team.
Responsibilities - Assist in execution of Application and Information Security Audit with responsibility of ensuring the efficient and timely delivery of the approved Audit Plan.
- Execute end-to-end audits as per the annual audit plan in the timely manner.
- Review the outcomes and audit results, interface with key auditees for the agreement of remedial action plans and help enable smooth audit execution.
- Partnering with the S&P Global Divisional Application and Technology functions to deepen stakeholder engagement.
- Assist the Audit Leadership in development of the Annual Audit Plan by ensuring appropriate risk assessment of divisional applications, Cloud Technologies, IT Process, Operating Systems, Databases, Platforms and supporting technology systems in the enterprise.
- Utilize digital next generation auditor capabilities, adopt agile practices, data analytics and automation to improve efficiency and quality of Audit execution.
- Participate in external as well as Internal forums for staying up to date on Information and Cyber Security strategy, Compliance, Forensics, Internal Auditing, emerging trends, and successful practices in audits related to Information Security reviews.
- Assist others in identifying and solving complex problems using audit expertise, judgment, and precedents.
- Works with senior management of the business, external auditors, regulators, and professional counterparts to complete audits.
What We're Looking For - 5+ years of experience handling technology audits working with multi-function teams across diverse geographical regions.
- Experience in financial services industry with deep industry knowledge and best practices in audit execution.
- Knowledge of risk management frameworks, Cybersecurity emerging trends and proficient carrying out in-depth security review of Applications configurations.
- Experience and deep understanding of security assessment / penetration testing tools such as Burpsuite, Metasploit, NMAP, Nessus, etc.
- Experience in dealing with web applications and/or network security.
- In-depth understanding of information security policies and related compliances.
- Use of data analytics tools such as Alteryx, Power BI and Tableau is a plus.
- Excellent report writing skills a must; good understanding of technology and proficient spreadsheet skills
- Strong written and oral communication, approachable style, and well-developed negotiation and listening skills
- Strong work ethic, initiative, teamwork, and flexibility to assist IA department in meeting organizational goals.
- Excellent team collaboration skills and ability to work with people in a way that inspires, develops, and delivers results; demonstrated track record of integrity, innovation, and excellence.
Basic Qualifications - A Bachelor/master's degree in information technology or Computer Science or related major
Preferred Qualifications - Certified Information Systems Auditor (CISA), or Certified Information Systems Security Professional – CISSP, Certified Information Security Manager – CISM.
Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment.
If you need an accommodation during the application process due to a disability, please send an email to: [HIDDEN TEXT] and your request will be forwarded to the appropriate person.
US Candidates Only: The EEO is the Law Poster describes discrimination protections under federal law.
202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), FINANC202.2 - Middle Professional Tier II (EEO Job Group)
Job ID: 295678
Posted On: 2023-12-26
Location: Hyderabad, Telangana, India
Job tags
Salary
