IT Security Audit Manager | 9 to 12 years | Mumbai

Capgemini Technology Services India
Mumbai, Maharashtra, India
Competitive salary
16 Sep 2020
18 Sep 2020
Job role
Experience level
Job Description

  • Perform audit of the Capgemini Group IT Organization and the Cyber Security / Information Security functions (objectives, governance, key controls on security policies and procedures, etc.)
  • Proficiency in auditing security controls for the Applications and Infrastructure Components (e.g. servers), data center environments, physical and environmental security etc.
  • Ability to identify security risks and associated security controls for the business units
  • Ability to understand, interpret and accordingly audit cybersecurity controls applicable to delivery environment (e.g. security controls for accounts/engagements delivered to clients)
  • Should be well versed with security standards such as ISO 27001, ITGC controls and NIST framework
  • Should have knowledge about industry standard security tools such as vulnerability scanners
  • Should have ability to make strong and relevant recommendations around the Cybersecurity and other key IT risks, overall contributing to the improvement of the internal control environment
  • Support other functional auditors (e.g. Delivery Auditors, Finance auditor, HR auditor) during the audit assignments

Primary skills
  • CISA Mandatory
  • At least 8 to 10 years of experience in Information Security, with minimum 5-6 years as an IT / Systems Auditor preferably in an IT company
  • Willing to travel up to 30%-50% of time outside of India (Capgemini businesses in more than 40 countries). Expect to have 2 working weeks travel in a month. In a year, international travel may be up to 8-10 times

Secondary Skills
  • CISSP or ISO27001 LA/LI (Good to have)