Executive - IT Audit

KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. 
KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment

KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term.

Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature.

Seeking a highly skilled Cyber Security Auditor with expertise in auditing cyber security Process, risks and controls. Individual must have a high-level of understanding of HITRUST Common Security Framework (CSF) Controls and HIPAA. Will have responsibilities that include standard project execution and client service activities.

 Responsibilities:

 ▪ Plan and execute engagements under the direction of a member of the management team 

▪ Lead assessments and onsite testing 

▪ Lead scoping discussions about system boundaries 

▪ Communicate clearly with clients regarding evidences/ required documentation Experience required:

 ▪ Excellent interpersonal and written communication skills

 ▪ Demonstrated ability to work effectively with a multi-disciplinary set of stakeholders with minimal supervision 

▪ Strong project management skills with demonstrated ability to effectively manage multiple initiatives and priorities

 ▪ Strong understanding of the business impact of processes, policies, tools, as well as high proficiency in how to assess risk and business impact 

▪ Ability to evaluate issues/problems of high complexity and make required decisions

 ▪ Strong team player skills with demonstrated experience to work collaboratively and effectively, across various levels in an organization

 ▪ Strong understanding of processes, technology, and operational concepts related to IT and Information risk management 

▪ 2+ years of relevant Information Security / IT Audit and compliance experience 

▪ Experience of 1-2 HITRUST/ HIPAA assessmentS