IT Audit Professional

About the Role

This exciting opportunity involves coordinating with various IT domain teams to collect and validate audit evidence. Key responsibilities include supporting walkthroughs, gap analysis, and response preparation for internal and external audits.

• Coordinate with IT domain teams to gather and validate audit evidence.
• Support walkthroughs, gap analysis, and response preparation for internal and external audits.
• Track status of remediation actions and support validation exercises.

Documentation & Controls Management

Maintain accurate audit documentation, including SOPs, control checklists, risk registers, and evidence logs. Additionally, support the creation of compliance dashboards and internal audit scorecards.

• Maintain audit documentation including SOPs, control checklists, risk registers, and evidence logs.
• Support creation of compliance dashboards and internal audit scorecards.

Compliance Monitoring & Reporting

Conduct regular self-assessments and spot checks to ensure the effectiveness of implemented controls. Identify and alert gaps to the lead specialist.

• Conduct periodic self-assessments and spot checks.
• Monitor effectiveness of implemented controls and alert gaps to the lead specialist.

Stakeholder Coordination

Develop strong relationships with Infra, Cloud, Service Delivery, Cybersecurity, and Business IT teams for audit preparedness. Support training logistics and documentation for compliance awareness programs.

• Interface with Infra, Cloud, Service Delivery, Cybersecurity, and Business IT teams for audit preparedness.
• Support training logistics and documentation for compliance awareness programs.

Improvement Initiatives

Identify opportunities for automation in compliance processes and support the implementation of tool-based audit management platforms.

• Identify automation opportunities in compliance processes.
• Support tool-based audit management platforms (e.g., Archer, ServiceNow GRC).

Specialized Knowledge Requirements

Familiarity with IT general controls, SOX, GxP, ISO 27001 is essential. Additionally, experience with ITIL processes (Change, Incident, Problem) and exposure to audit lifecycle, compliance reporting, and evidence collection is desired.

• Understanding of IT general controls, SOX, GxP, ISO 27001
• Familiarity with ITIL processes (Change, Incident, Problem)
• Exposure to audit lifecycle, compliance reporting, and evidence collection
• Knowledge of tools like Excel, SharePoint, ServiceNow GRC preferred

Internal Stakeholders & Nature of Interaction

The successful candidate will interact with various stakeholders, including Lead Audit & Compliance, Infra, Cloud, App & Service Teams, PMO & Compliance Team, and Internal/External Auditors.

• Lead Audit & Compliance: Daily coordination, status reviews, remediation validation
• Infra, Cloud, App & Service Teams: Evidence submission, control reviews, audit walkthroughs
• PMO & Compliance Team: Coordination on process documentation, control changes, and reporting
• Internal/External Auditors: Support during data requests, audit walkthroughs, and clarification rounds
• Consulting Partners: Coordination during control testing or audit co-sourcing

Nature of Communication

The role requires clear, structured communication during walkthroughs and audit Q&A. The successful candidate will be able to convey complex information in a concise manner.

• Formal audit evidence, tracker updates, control summaries, dashboards
• Clear, structured communication during walkthroughs and audit Q&A

Role Played in Negotiations

The successful candidate will support the Lead in framing responses or remediation timelines for audit queries.

• Supports Lead in framing responses or remediation timelines for audit queries

Key Decision-Making Expected

The successful candidate will be responsible for recommending evidence sufficiency, escalating control gaps, and prioritizing documentation readiness.

• Recommend evidence sufficiency, escalate control gaps, prioritize documentation readiness

Extent and Nature of Innovation Required

A moderate level of innovation is required, focusing on suggesting improvements in evidence workflows, adopting templates for reusability, and using dashboards to simplify control visibility and audit traceability.

• Moderate: Suggest improvements in evidence workflows, adopt templates for reusability
• Use dashboards to simplify control visibility and audit traceability

Job RequirementsEducational Qualification

A Bachelor's degree in IT, Computer Science, or a related field is essential. A Master's degree is desirable.

• Masters, Bachelors degree in IT, Computer Science, or related field

Certifications

CISA or CRISC certification is preferred but not mandatory for entry-level candidates. ITIL Foundation / GRC platform exposure is a plus.

• CISA or CRISC (preferred but not mandatory for entry level)
• ITIL Foundation / GRC platform exposure is a plus

Experience

A minimum of 5 years of experience in IT audit, controls, or compliance roles is required. Experience in pharma or highly regulated industries is desirable.

• 5-12 years of experience in IT audit, controls, or compliance roles
• Exposure to pharma or highly regulated industries is desirable

Skills

The successful candidate should possess strong analytical skills, attention to detail, and excellent communication skills. Proficiency in Excel, SharePoint, and audit tools is essential.

• Detail-oriented with good documentation practices
• Strong Excel/SharePoint skills; familiarity with audit tools
• Ability to handle multiple tasks and communicate with cross-functional teams

---