SME - IT security

Technology, Data & Digital · IT Infrastructure & Security · Cybersecurity · Database Administration

Smart sammanfattning

AI-genererad översikt av denna tjänst

HCLTech is seeking an IT Security Subject Matter Expert (SME) for an on-site role in Noida, India. This position focuses on IT General Controls (ITGC) audit support, involving the evaluation and testing of controls related to access management, change management, and IT operations. The role requires a Bachelor's degree in a related field and 3-8 years of experience in IT audit, risk, or compliance.

Job Summary

ITGC Auditor Support

The ITGC Audit support is responsible for evaluating, testing, and improving IT General Controls across the organization to ensure compliance with IT control requirements and internal policies. The role supports audit readiness, risk mitigation, and strengthens control environments across IT systems and processes.

Key Responsibilities

1. Audit Execution

Perform IT General Controls (ITGC) audits support covering:

Access Management (user provisioning, de-provisioning, privileged access)

Change Management (SDLC controls, emergency changes, approvals)

IT Operations (job monitoring, backups, incident management)

Conduct walkthroughs and document process flows.

Execute control testing (design and operating effectiveness).

2. Risk & Compliance Assessment

Identify control gaps, weaknesses, and non-compliance issues.

Map IT controls to frameworks such as:

SOX

ISO 27001

NIST

COBIT

NIS2 (where applicable)

Evaluate IT risks and recommend remediation actions.

3. Audit Documentation

Prepare clear and concise audit workpapers and evidence.

Draft audit reports including:

Observations

Risk ratings (High / Medium / Low)

Root cause analysis

Remediation recommendations

Ensure documentation meets internal and external audit standards.

4. Stakeholder Engagement

Collaborate with IT, Security, and business teams.

Conduct audit meetings and walkthrough sessions with stakeholders.

Track remediation actions and follow-ups with control owners.

5. Continuous Monitoring & Improvement

Support ongoing ITGC monitoring programs.

Recommend process improvements and automation opportunities.

Required Qualifications

Education

Bachelor’s degree in Information Technology, Computer Science, or related field.

Experience

3–8 years of experience in IT audit, IT risk, or IT compliance.

Hands-on experience in ITGC audits for enterprise systems (SAP, Oracle, Windows/Linux environments).

Deep understanding of minimum two technologies from below but not limited to:

Windows Servers

SQL

Unix Servers (RHEL, AIX, zLinux, SuSe etc)

Oracle

PostgreSQL

Mainframe (zOS)

IBMi (AS400)

SAP HAHA

Azure/AWS

Active Directory

IAM

ServiceNow(technical)

Key Skills & Competencies

Technical Skills

Strong understanding of:

Access controls (RBAC, IAM tools)

Change management processes

IT operations (backup, scheduling, incident management)

Tools

GRC tools (ServiceNow GRC, Archer, MetricStream)

Data analysis tools (Excel, Power BI)

Ticketing tools (ServiceNow)

Soft Skills

Strong analytical and problem-solving skills

Excellent documentation and reporting ability
Stakeholder communication and coordination

Attention to detail and audit rigor

Certifications (Preferred)

CISA (Certified Information Systems Auditor)

ISO 27001 Lead Auditor

Key Deliverables

Risk assessments and remediation tracking logs

Audit evidence aligned with compliance requirements 

Key Responsibilities

 IT Security audit

Skill Requirements

Access, Change Management

Other Requirements

Audit

#IT security#ITGC#auditor#Noida#compliance#risk management#access management#change management#IT operations#SOX#ISO 27001#NIST#COBIT#CISA
HCLTech Logo

Företag

HCLTech

Publicerade jobb

för 3 veckor sedan

Anställningstyp

Heltid

Arbetsform

På plats

Erfarenhetsnivå

Mellannivå

Platser

Noida, India

Kvalifikation

Kandidatexamen

Sökande

Ansök tidigt