Audit and Compliance Analyst

1 day ago


Johnson Controls India Pune Johnson Controls Ltd Full time ₹ 9,00,000 - ₹ 12,00,000 per year

GRC Audit and Compliance Analyst

Job Description

The Audit and Compliance Analyst is responsible for ensuring IT and business operations adhere to internal controls, regulatory standards, and corporate policies. This role supports SOX compliance, access reviews, audit coordination, and privileged account monitoring across SAP and other enterprise systems.

Key Responsibilities

SOX Controls Monitoring (Production deployment checks)

  • Conduct monthly and emergency SOX checks to validate:
    • UAT completion and approval prior to production deployment
    • Final IT approvals for code migration
    • Valid change requests and proper documentation
    • Business and IT approval workflows
  • Review support messages for emergency changes and validate UAT results

Firefighter ID (FFID) Usage Oversight

  • Monitor and review Firefighter account activity across SAP systems
  • Update weekly scorecards and audit repositories
  • Send re-confirmation emails to business owners
  • Track exception approvals and ensure compliance documentation
  • Conduct Firefighter uPerform training sessions

Audit Coordination

  • Respond to adhoc audit requests including:
    • IT SOX, financial compliance, integrated audits, statutory audits
  • Support internal and external audit teams with required documentation

Access and Account Management

  • Monitor default, generic, and shared accounts for compliance
  • Review privileged access and critical transactions in SAP
  • Validate batch job and interface processes
  • Conduct annual user access reviews and remediate findings
  • Ensure timely removal of terminated users and inactive accounts
  • Perform SoD checks and validate dialog account validity dates

Admin and Developer Access Control

  • Restrict super user access for system and security administrators
  • Monitor developer access to ensure no production deployment rights
  • Track code changes in test/QA environments

Reporting and Documentation

  • Generate SM20 reports for FFID usage on sensitive transactions
  • Monitor system configuration changes and login attempts
  • Maintain audit repositories and compliance logs

Operational Oversight

  • Submit weekly status reports and time tracking
  • Validate and update approver lists for access and change requests
  • Ensure compliance with corporate password management policies
  • Restrict access to critical application/data files and utilities

Required Qualifications

  • Bachelor's degree in information systems, or related field
  • 2+ years of experience in IT audit, compliance, or risk management
  • Strong understanding of SOX, SAP security, and access controls
  • Familiarity with Firefighter ID management and SM20 reporting
  • Experience with GRC ARM , GRC SoD analysis, and batch job monitoring
  • Excellent documentation and communication skills
  • Ability to manage multiple audits and compliance tasks simultaneously
Experience LevelMid Level

  • Johnson Controls (India) Pune Johnson Controls Ltd Full time ₹ 6,00,000 - ₹ 12,00,000 per year

    SDLC Technical Analyst Role Overview We are seeking a highly organized and detail-oriented SAP Change and Release Management Specialist to oversee transport activities across SAP landscapes and ensure compliance with SDLC governance. This role involves close collaboration with cross-functional teams to manage scheduled releases, support SAP ChaRM and...


  • IND - Pune, Kalyani Nagar, India Wolters Kluwer Full time ₹ 4,00,000 - ₹ 8,00,000 per year

    Auditing & Compliance Analyst About the Role: Advance your career by deepening your engagement in our auditing and compliance efforts. In this slightly above entry-level role, you'll conduct routine audit assessments, support compliance initiatives, and work together with our team to maintain high standards. Your contributions will help ensure we meet...


  • Pune, India Johnson Controls Full time

    Description The Audit and Compliance Analyst is responsible for ensuring IT and business operations adhere to internal controls, regulatory standards, and corporate policies. This role supports SOX compliance, access reviews, audit coordination, and privileged account monitoring across SAP and other enterprise systems. Key Responsibilities  SOX Controls...


  • Pune, Maharashtra, India Johnson Controls Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Job DescriptionThe Audit and Compliance Analyst is responsible for ensuring IT and business operations adhere to internal controls, regulatory standards, and corporate policies. This role supports SOX compliance, access reviews, audit coordination, and privileged account monitoring across SAP and other enterprise systems.Key ResponsibilitiesSOX Controls...

  • GRC Engineer

    3 days ago


    Johnson Controls (India) Pune Johnson Controls Ltd Full time ₹ 5,00,000 - ₹ 15,00,000 per year

    GRC Engineer We are seeking a highly skilled and detail-oriented GRC Engineer to lead the design, development, and implementation of SAP Governance, Risk, and Compliance (GRC) solutions. This role is critical in managing segregation of duties (SoD), user access provisioning, access controls, and process controls, while supporting audit and compliance...

  • Compliance Analyst

    2 weeks ago


    Hyderabad, Telangana, India, Telangana Phenom Full time

    Job DescriptionWe're seeking a full-time, phenomenal Compliance Analyst to ensure Phenom's adherence to regulatory and industry information security and privacy standards. This role involves conducting audits, managing compliance initiatives, assessing risk, and collaborating with teams across the organization to enforce compliance policies and standards....


  • Pune, India ZS Full time

    Job Description ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, we transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Here you'll work side-by-side with a powerful collective of thinkers and...


  • Kochi, Kerala, India, Ernakulam Art Technology and Software Full time

    Job Title: GRC AnalystPosition Summary As a GRC Analyst, you will play a pivotal role in supporting and enabling Governance, Risk, and Compliance (GRC) operations across our cybersecurity services. Your primary focus will be to enhance risk management processes, strengthen compliance frameworks, and support strategic initiatives that drive the...


  • Bengaluru, India Anumana Full time

    Job Description Position: Security and Compliance Analyst Experience Range: 2 to 4 yrs Job Location: Bangalore Work Mode: Hybrid (3 days in the office, 2 days remote) Job Summary Anumana is seeking a detail-oriented and proactive Security and Compliance Analyst to ensure our organization's adherence to international security standards and regulatory...


  • Pune, India Onit Full time

    Senior InfoSec Compliance Analyst The Senior InfoSec Compliance Analyst will play a pivotal role in ensuring that Onit adheres to industry standards and regulatory requirements. This position involves analyzing, implementing, and maintaining compliance protocols, collaborating with internal teams, and providing strategic insights to enhance our security...