| JD || IT RISK and Control Testing || NJ at Remote, Remote, USA |
| Email: [email protected] |
| From: Shivangi, Synkriom [email protected] Reply to: [email protected] Hi, Kindly go through the JD Testing the design of a control To test the design of a control, the person (auditor) should: Obtain an understanding of the control objective and the related risk. Identify the key elements of the control. Evaluate the control to determine whether it is suitably designed to achieve the control objective. The person (auditor) may perform a variety of procedures to test the design of a control, such as: Inquiring of management and other personnel about how the control is designed to operate. Observing the control in operation. Inspecting relevant documentation, such as control procedures, job descriptions, and training materials. Performing flowcharts or other diagrams to illustrate the control's operation. Testing the effectiveness of a control To test the effectiveness of a control, the auditor should: Obtain an understanding of the control objective and the related risk. Identify the key elements of the control. Evaluate the control to determine whether it is operating as designed. Test the control's operation over a period of time. The auditor may perform a variety of procedures to test the effectiveness of a control, such as: Inquiring of management and other personnel about how the control is operated on a day-to-day basis. Observing the control in operation. Inspecting relevant documentation, such as completed control procedures, training records, and supervisory reports. Performing sample tests of transactions or account balances to determine whether the control is preventing or detecting errors or fraud. The auditor may also perform a combination of tests of design and tests of effectiveness. For example, the auditor might observe a control in operation to test its design and then perform sample tests of transactions or account balances to test its effectiveness. The nature, timing, and extent of the auditor's control testing procedures will vary depending on the auditor's risk assessment, the complexity of the entity's internal controls, and the availability of other audit evidence. Experience in Banking Industry is a must and the candidate should have worked on TOD and TOE for at least two large projects, as this is a critical need for the role. Skill Sets Knowledge of risk management frameworks and methodologies. Understanding of IT systems, networks, and infrastructure. Understanding of regulatory frameworks (e.g., GDPR, HIPAA) and industry standards (e.g., ISO 27001). Familiarity with security protocols and encryption methods. Experience with audit processes and compliance assessments. Proficiency in testing controls to ensure they meet specified requirements. Experience with vulnerability assessments and penetration testing. Knowledge of security best practices and methodologies. Strong problem-solving skills. Familiarity with tools used in control testing and security assessments. Ability to identify and assess potential risks to IT controls. Ability to use auditing and testing tools effectively. Ability to analyze complex IT systems and identify vulnerabilities. Strong knowledge of control testing processes (Evaluate, analyze , detect error, optimize efficiency, Compliance testing, reporting and follow-ups etc.) IMP-TCS Client- CNB Onsite (Initial remote) Location- NJ Keywords: information technology golang New Jersey |
| [email protected] View all |
| Thu Oct 19 01:28:00 UTC 2023 |