Information Technology Auditor

You are Responsible for:

● Facilitate the deployment, maintenance and implementation of technology risk models

using industry standards like COBIT, ITIL, and NIST as references.

● Enhance technology risk management practices by improving processes, tools, and

templates for risk identification, assessment, and reporting.

● Coordinate with cross-functional project teams to integrate risk management into

project planning and ensure timely, high-quality completion.

● Produce comprehensive risk reports in collaboration with key stakeholders, analyzing

significant risks and recommending mitigation strategies.

● Develop and maintain risk monitoring structures, including dashboards, risk registers,

and supporting documentation.

● Track and work for implementation of ISMS and BCMS frameworks to ensure

compliance with ISO 27001 and ISO 22301 standards.

● Conduct Tech reviews to identify risks and evaluate controls to ensure compliance with

internal and external standards.

● Foster continuous improvement of risk management practices by staying updated on

industry trends and emerging threats.

● Support vendor and third-party risk management to ensure adherence to the

organization’s risk management policies.

To succeed in this role – you should have the following:

● Should have good knowledge on Risk management, Information Security, Business Continuity,

Software development tools and technology.

● Experience of IT Audits / working on risk & governance frameworks like ISMS, BCMS,NIST

● Strong problem solving, quantitative and analytical abilities.

● Strong ability to plan and manage numerous processes and projects simultaneously.

● Excellent communication and strong interpersonal collaboration skills. Being able to both work

in groups or as an individual contributor.

● Industry relevant certifications (CISA/CRISC/CEH/PMP etc.) shall be an added advantage.

● 10-12 Years of experience in Technology Risk Management, IT Audits, IT GRC etc.