Type of Experience:
1. Experience in consultancy firm/financial service in either IT Audit or Risk advisory
2. Finance industry, insurance in specific would be preferred
Purpose of Job:
To conduct technology audits and technology risk management program. Assist in ongoing sustenance and maintenance of Business continuity program
Key Tasks and Activities:
Understand technology processes and areas to conduct In-house Audits
Audit Scope document
Draft Audit observations
Recommendation in line with business requirements
Audit report drafting
Adherence to audit timelines and audit process
Data analysis for audits
Ensuring quality at all levels of audit
Support in drafting yearly audit plan
Preparing presentations for Committees/Management
Monitor the implementation of the corrective measure within required TAT and in an efficient manner.
Technology risk management
Identify, assess, and report on technology risk using standard technology risk framework processes.
Define and update key risk metrics
Monitor risks based on analysis of various data sets
Track implementation of mitigants as per time-frame
Liaison with information security team and process owners
Provide input into enterprise risk management.
Business Continuity Management
Ongoing maintenance of Business continuity plan in coordination with process owners
Conduct risk assessment and business impact
Review recovery plan for outsource vendors
Monitor organization changes and update continuity plan as applicable
Ensure documentation is available and updated yearly
Conduct annual drill for internal processes and outsource vendor as per annual plan
Demonstrated working knowledge of Risk Management, Information Security, Controls, and/or Audit practices.
Strong skills in collaboration, documentation, planning/priority setting and problem solving
A general understanding of the insurance industry & its regulators
Strong analytical skills
Effective communication at all levels.