Job Description

KPMG Resource Centre (KRC) is a team of 3,000+ colleagues serving audit clients of primarily KPMG Europe and a few other countries. KRC’s services include end-to-end Audits, IT Audits, Data Analytics, Engagement Support Hub, Transaction

Assurance and ESG, among others. The business supports multiple sectors and is currently present in Bengaluru, Gurugram, Noida and Mumbai.

Through your work, you’ll build a global network and unlock opportunities that you may not have thought possible with access to great support, vast resources, and an inclusive, supportive environment to help you reach your full potential

Roles & responsibilities

oReview SOX 404 assessments in accordance with the PCAOB (Public Company Accounting Oversight Board) Auditing Standards – Using work of others
oEvaluate the design and operating effectiveness of technology controls (GITCs and ITACs) pertaining to Client’s Internal Controls over Financial Reporting.
oConduct Process understanding discussions with the Clients as part of assessing risks arising from their use of Technology and identify control gaps within their processes.
oPerform ISAE 3402, SOC 1 and SOC 2 (System and Organization Controls) assessments in accordance with the attestation standards established by the AICPA (American Institute of Certified Public Accountants), and ICAEW.
oIdentify potential opportunities to drive standardization and efficiency across engagements by the use of automation.

Understanding of the current SSAE guidelines

Mandatory technical & functional skills

·Prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2 and SQL.
·Knowledge of security measures and auditing practices within various operating systems, databases and applications.
·Experience in assessing risks across a variety of business processes.
·Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Sr. Management and Clients.
·Experience in evaluating SOC1 reports for User organizations.
·Knowledge of Business Continuity and Disaster Recovery best practices.
·Knowledge of regulations impacting the privacy, integrity and availability of customer PII.
·Exposure of having led IT Audit engagements.

Key behavioral attributes/requirements

·Personal drive and positive work ethic to deliver results within tight deadlines and in demanding situations
·Flexibility to adapt to a variety of engagement types and working hours
·Ability to effectively work through shifting priorities
·Team player who leads by example
·Has team leading experience and has been a performance manager in current or last role

Educational qualifications

·BE/B-Tech/MCA/BSC-IT/MBA
·Certifications – CISA cleared/certified preferred

Work experience

·The candidate must have a minimum of 4-5 years of experience in a similar role [Big 4 experience preferred]
·Working knowledge of frameworks including, ISA 315, COSO, COBIT, ISO 27001, NIST CSF and NIST SP 800-53 is desirable