Back to all jobs
Cosette Network

IT Audit- Jaipur

Jaipurhybrid2.0 - 10.0 years

Apply for this position

All fields marked * are required

Name & contact details are extracted from your resume automatically.

Job Description

JOB DESCRIPTION
Information Systems Audit – Cloud & Technology Risk

Location: Jaipur
Reporting To: Team Lead– Information Systems Audit

Role Objective
The role is responsible for providing independent assurance over information systems, cloud infrastructure, and cybersecurity controls, ensuring technology risks are effectively identified, assessed, and managed in line with organizational policies, regulatory expectations, and industry best practices.

Key Responsibilities
• Plan and execute risk-based IS audits covering cloud environments (AWS, Azure, GCP, OCI), network and security infrastructure, and identity and access management controls.
• Review design and operating effectiveness of IT General Controls (ITGC) and key automated controls.
• Assess cloud governance, configuration management, logging, monitoring, and encryption controls.
• Evaluate cybersecurity controls covering vulnerability management, patching, monitoring, incident response, and resilience testing.
• Perform thematic reviews on emerging technology risks including cloud misconfigurations, privileged access, and third-party risks.
• Validate audit evidence, track remediation actions, and independently verify closure.
• Prepare concise audit reports highlighting risk, impact, and root cause.
• Engage with IT, Information Security, Cloud, and vendor teams to discuss observations and recommendations.

Experience Expectations (Exp 5–10 Years)
• Possesses strong conceptual understanding of cloud and cloud services.

·  Having knowledge of cloud and cloud costing.

·  Leads complex audits and multiple audit themes.
• Maintain workpapers, mentors team members and manages stakeholders.

Technical Knowledge

·       Cloud Platforms: AWS and Google Cloud Platform (OCI and Microsoft Azure exposure preferred).

·       Cloud Security & Governance: CSPM concepts, secure cloud architecture, shared responsibility model, logging, and encryption controls.

·       Cloud IAM: Cloud IAM policies, RBAC, privileged access, service accounts, and access recertification.

·       Cloud Network Security: VPC/VNet design, security groups/NSGs, firewall rules, and environment segregation.

·       Cloud Resilience: Backup, availability, disaster recovery, and regional resilience concepts.

·       DevSecOps (Audit View): CI/CD pipeline risks and container/Kubernetes security awareness.

Cloud Compliance: Mapping cloud controls to ISO 27001, NIST, SOC reports, and regulatory requirements.

Educational Qualification
• B.E. / B.Tech (IT) or MCA / M.Sc. (IT / CS) or equivalent

Candidate having following certificate will be given preference
• CISA/CISSP / CISM/ ISO 27001 Lead Auditor

·  CCSP/ CCSK/ Cloud Security & Architecture certificates similar to AWS Certified Security/ AWS / Azure Solutions Architect.


Key Attributes
• Strong analytical and risk-based mindset
• Clear documentation and communication skills
• High integrity and independence suitable for 3rd Line of Defense role

Note: Designation and compensation will be aligned based on experience and role fit.

Skills

Required

awsgcpazurecloud securitycloud governancecloud iamcloud network securitycloud resiliencedevsecops

Preferred

cisacisspcismisoccspccsk
IT Audit- Jaipur at Cosette Network | Talynce Jobs