Home

Position: Consulting Audit - Fresher


Job ID: CON-001


Location: Dombivli, Thane


Your responsibilities as a Consulting Audit - Fresher:


  1. Conduct Information Security Gap Assessments: Perform internal and external audits to ensure compliance with the information security framework as per regulatory guidelines and standards.
  2. Risk Assessments and Mitigation Strategies: Utilize ISO 27005 and ISO 31000 standards to assess client risks, identify potential vulnerabilities, and recommend appropriate mitigation strategies.
  3. Perform Information security audits and implementation. Conduct comprehensive audits to assess the implementation and effectiveness of ISMS security controls in line with organizational policies and industry standards. Assess and ensure the functionality of ISMS security controls, encompassing Access Management, Change Management, Incident Management, HR Security, Logging and Monitoring, Business Continuity & Disaster Recovery Management, Vulnerability, and Compliance Management.
  4. Collaborative Policy Development: Work closely with stakeholders to develop information security policies and procedures aligned with business compliance requirements and regulatory standards, including ISO 27001.
  5. Conduct Interviews and Assess Compliance: Interview key stakeholders across cooperative banks to assess compliance against cyber security frameworks mandated by regulatory bodies such as RBI, SEBI, IRDAI, and others. Ensure adherence to standards like NIST, ISO, COBIT, ITIL, etc.
  6. Third-Party Risk Management: Lead and execute comprehensive Third-Party Risk Assessments to develop a robust framework for third-party risk management.
  7. Data Localization Audits: Perform audits in accordance with RBI guidelines for Foreign Banks, ensuring compliance with geographical data storage limits.
  8. Business Continuity Planning: Contribute to the development of Business Continuity policies and plans for leading private Banking, Financial Services, and Insurance (BFSI) organizations as per ISO 22301 standard.
  9. Incident Preparedness and Response: Organize and conduct incident drills, including CCMP drills, to assess the organization's preparedness and response capabilities.
  10. Cyber security Training: Conduct cyber security training sessions for clients, staff, and stakeholders to enhance awareness and ensure adherence to security protocols and best practices.
  11. Privacy Impact Assessment: Conduct privacy impact assessments and provide guidance on privacy-related matters.
  12. Security Network Architecture Review: Review and assess security network architecture to identify potential vulnerabilities and recommend enhancements.
  13. Information Security Posture: Assist organizations in building their information security posture by providing guidance and support in implementing best practices and security measures.
  14. Documentation: Document audit findings, including vulnerabilities, recommendations, and corrective actions, in detailed reports for management review.


Skill sets we require:


  1. Basic understanding of cyber security principles, threats, and vulnerabilities.
  2. Strong analytical and problem-solving skills.
  3. Excellent written and verbal communication skills.
  4. A passion for learning and staying up to date with the latest cyber security trends.
  5. Excellent communication and interpersonal skills.


Pedigree and Experience:


  1. Bachelor's degree in Computer Science, Information Technology, or a related field. Master’s degree preferred and any other related field.
  2. 0 - 6 months of experience in Consulting Audit.
  3. Certifications such as ISO 27001 Lead Auditor, or equivalent are highly desirable.
  4. Deep understanding of information security principles, regulatory compliance, and risk management strategies.
View all job openings