We are looking for an Information Security Auditor.
Any of the below
BE, B.Tech, MSc (Information Technology), CISA, CISSP, CEH
Candidates must possess hands-on audit experience in IT general controls.
As Information Technology Auditor, you will examine, evaluate and verify policies, procedures and internal controls around information systems and networks.
Exposure to ISO27001, SSAE16, Vulnerability Assessment and Penetration Testing, Security Technologies is an added advantage.
. Timely completion of information technology and information security audits in a manner that is consistent with the professional standards set by Qadit.
. Adequately analyze and document all information systems and related controls, and develop an appropriate audit program to test the controls identified.
. Evaluate the adequacy of security and processing controls as they relate to each audit, and the effectiveness of general IT controls in effect in the IT environment.
. Review the means of safeguarding information assets and monitor ongoing performance metrics established by the IT and Security Departments of clients.
. Prepare audit work papers according to established corporate guidelines and industry standards, and as applicable create audit reports.
. Maintain and enhance audit work paper templates.
. Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively.
. Team with partners and senior managers on proposals and business development calls.
Preferable experience in:
1. Conducting vulnerability assessments & penetration testing - analyzing related reports.
2. Running VA PT tools
3. Web application security
4. IT general computer controls audits
5. Network audits
Position will be based in Chennai, but will need to travel extensively both within and outside India.