IT Analyst - Risk & Compliance

Description :

Key Responsibilities :

- Conduct information systems audits across applications, databases, and IT infrastructure.

- Perform General IT Controls (GITC) testing on applications (e.g., SAP, Oracle) and infrastructure components (e.g., operating systems, databases).

- Evaluate and test IT controls related to SOX compliance.

- Review and audit cloud environments such as AWS, Microsoft Azure, and Google Cloud Platform (GCP).

- Prepare comprehensive audit documentation, risk assessments, and actionable recommendations following industry standards.

- Collaborate with internal teams and stakeholders to ensure timely remediation of identified issues.

- Stay updated on regulatory requirements and industry standards, particularly within financial services.

Technical Skills :

Must Have :

- Strong knowledge of GITC testing for applications and infrastructure.

- Hands-on experience auditing cloud environments (AWS, Azure, GCP).

- Solid understanding of SOX ITGC testing processes.

- Familiarity with financial services audit processes.

Good to Have :

- Understanding of network security and data privacy frameworks.

- Knowledge of tools for audit automation and cloud compliance monitoring.

Preferred Certifications :

- CISA Certified Information Systems Auditor

- ISO 27001 : 2002 Lead Auditor Certification

- CCSK Certificate of Cloud Security Knowledge

- NIST or other relevant industry certifications