Assistant Manager Tech Risk

Job Description

• Proposed designation
  
  
  

• Role type
  
  
  

• Reporting to
  
  
  

• Geo to be supported
  
  
  

• Work timings
  
  
  

• Interview process: Expect a minimum of 3 rounds of interviews (with minimum one round with US Onshore Leadership)
• Does the job role involve travelling: No
• Does the busy season apply to this role?: No
  
  
  

• Conduct or support the completion of IT audits (in areas such as cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITC, and application controls), focusing on strategic, operational, and regulatory/compliance risks in accordance with Internal Audit Department’s policies, procedures, and methodologies.
• Assist the onshore team in conducting walkthroughs and preparing process documentation, narratives, and flowcharts.
• Execute Test of Design (TOD) and Operating Effectiveness (TOE) of internal controls, identify audit issues and propose findings.
• Support the creation of high-quality deliverables, ensuring timelines and budgets are met; proactively communicate in advance at risk deadlines and budgets.
• Assist in kick-off, status, and closing meetings with engagement team and auditee.
• Serve as 1st level escalation for issues and concerns and perform 1st level review of team member deliverables.
• Effectively communicate information and execution status to the internal IA management.
• Identify departmental improvement opportunities and participate in knowledge sharing sessions with a focus on enhancing audit efficiency and effectiveness.
• Supervise, coach, or mentor other KGS team members.
• Comply with firm’s CPE requirements.
• Ensure compliance with KPMG and KGS Risk Management policy.
  
  
  

• Knowledge of security measures and auditing practices within various operating systems, databases, and applications (e.g., ERP suites, Windows, Unix/Linux, iSeries, Oracle, DB2, SQL).
• Experience in assessing risks across a variety of business processes.
• Experience identifying and assessing control gaps and communicating audit findings and control redesign recommendations to senior management and clients.
• Hands-on experience with IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, Third Party Risk Management.
• Knowledge of regulations impacting the privacy, integrity, and availability of customer PII.
• Exposure to Identity Access Management aspects like user management, authentication, and authorization.
• Strong working knowledge of Microsoft Office Suite, Teams and Visio
• Strong communication (both written and spoken) and interpersonal skills.
  
  
  

• BE/B-Tech/MCA/BSC-IT/MBA
• CISA, CRISC, CISSP, CCSK, etc. (cleared/certified preferred)
  
  
  

• Minimum of 6 years of relevant experience in a similar role performing Internal Audit, internal controls work, preferably with a Big 4 firm.