ITGC, Cyber Audit - Assistant Manager / Manager

Job Description

Position Title

Assistant Manager / Manager ITGC, Cyber Audit & SOC Compliance

Location

Mumbai (Work from Office)

Experience

4+ Years (Relevant Experience Mandatory)

Employment Type

Full-time

Notice Period

Immediate Joiners Preferred

Role Overview

The role focuses on execution and management of IT General Controls (ITGC) , Cyber / Technology Audits , and SOC (SOC 1 / SOC 2) compliance engagements for domestic and global clients.

The candidate will be responsible for end-to-end audit delivery, client interaction, team guidance, and quality reviews, working closely with senior stakeholders.

Key Responsibilities

ITGC & Technology Audit

• Plan and execute ITGC audits covering:
• Access Management (User Access, Privileged Access)
• Change Management
• IT Operations (Backup, Job Monitoring, Incident Management)
• Perform IT-dependent manual control (ITDM) testing.
• Support SOX / IFC / ICFR related IT controls testing.
• Identify control gaps, assess risk impact, and recommend remediation.

Cyber & Information Security Audits

• Execute cyber security and IT risk assessments .
• Review controls aligned to:
• ISO 27001 / ISMS
• NIST, COBIT
• Organization security policies & procedures
• Evaluate security domains including:
• Network & infrastructure security
• Endpoint security
• Identity & access management
• Vulnerability management & patching

SOC Compliance (SOC 1 / SOC 2)

• Perform SOC 1 & SOC 2 Type I / Type II engagements.
• Map controls to Trust Service Criteria (Security, Availability, Confidentiality, Processing Integrity, Privacy) .
• Perform walkthroughs, control design reviews, and operating effectiveness testing.
• Draft and review SOC reports , management responses, and client deliverables.

Client & Team Management

• Act as key point of contact for clients during engagements.
• Lead, review, and mentor junior team members.
• Manage timelines, deliverables, and engagement quality.
• Coordinate with onshore/offshore teams for global audits.

Required Skills & Experience

• 4+ years of relevant experience in:
• ITGC / IT Audit / Cyber Audit
• SOC 1 / SOC 2 compliance
• Strong understanding of:
• IT control frameworks (COBIT, ISO 27001, NIST)
• Audit methodologies and risk assessment
• Hands-on experience with:
• Access reviews
• Change management testing
• SOC reporting & documentation
• Exposure to Big4 / Large Consulting / Risk Advisory firms preferred.
• Excellent client communication and documentation skills.

Preferred Qualifications

• CA / CPA / CISA / CISM / CISSP (any one preferred)
• Experience working with global or US clients
• Prior team handling experience (for Manager level)

Role Level Expectations

Assistant Manager

• Independently execute audit areas
• Support client interactions
• Review work of associates

Manager

• Own engagements end-to-end
• Lead client discussions
• Final review of deliverables
• Team and stakeholder management

Location

Mumbai

Joining

Immediate to Short Notice Preferred