Audit Analyst Ii - It Audit & Compliance Job in Swiggy Careers

Audit Analyst II - IT Audit & Compliance

Location: Bangalore, Karnataka Full Time

Experience: 3-4 Years

Work Environment: Work from Office (Occasional travel required)

About the Team & Role:

We are seeking a motivated and detail-oriented IT Audit Analyst to join our Audit & Compliance team. This role involves planning, executing, and reporting on IT audits across various domains, including IT infrastructure, cloud environments, SaaS applications, and compliance frameworks like ISO 27001, ISO 27701, and PCI DSS. The successful candidate will evaluate IT controls, identify risks, and recommend practical solutions to improve the organization's IT governance, risk management, and control environment. You will work independently on moderately complex audits and assist senior auditors on larger engagements.

Key Responsibilities:

• Audit Planning & Execution: Assist in the development of risk-based IT audit plans. Plan and execute audits covering infrastructure, cloud services (AWS), and SaaS applications. Develop audit programs and testing procedures to evaluate IT controls.
• Compliance & Framework Audits: Conduct audits against IT security and privacy frameworks, including ISO 27001 (Information Security), ISO 27701 (Privacy Information), and PCI DSS (Payment Card Industry Data Security Standard).
• Risk Assessment & Analysis: Identify IT risks and control weaknesses during audits. Analyze findings and assess potential business impacts. Evaluate risk mitigation strategies.
• Reporting & Communication: Document audit work, prepare draft reports with findings and recommendations, and communicate results to management and stakeholders.
• Collaboration & Improvement: Collaborate with IT teams, business units, and external auditors. Stay up-to-date with emerging technologies, IT security threats, and audit methodologies. Contribute to continuous improvement efforts for the audit function.

Qualities We re Looking For:

Education & Experience:

• Education: Bachelor s degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field.
• Experience: 3-4 years of progressive experience in IT Audit, Information Security, IT Risk Management, or a related field.

Technical Skills:

• Strong understanding of IT infrastructure components (networks, operating systems, databases, servers, virtualization).
• Solid knowledge of cloud computing, specifically auditing cloud environments (AWS focus).
• Experience auditing SaaS solutions and assessing third-party/vendor risk management.
• Knowledge of IT general controls (ITGCs) and application controls.

Framework & Standard Knowledge:

• Demonstrated experience with ISO 27001, ISO 27701, and PCI DSS standards.
• Familiarity with other frameworks such as NIST Cybersecurity, COBIT, and SOX ITGCs is a plus.

Audit Skills:

• Proficiency in IT audit methodologies, risk assessment techniques, and control testing procedures.
• Strong analytical, problem-solving, and critical-thinking skills.
• Excellent written and verbal communication skills, with the ability to articulate technical issues to both technical and non-technical audiences.
• Attention to detail and ability to manage multiple tasks and deadlines.
• Proficiency with Microsoft Office Suite.

Certifications & Tools:

• Professional certifications such as CISA, CISSP, CISM, CRISC, AWS Certified Security Specialty or similar are highly desirable.
• Experience with GRC (Governance, Risk, Compliance) tools.
• Experience with data analysis tools like ACL, IDEA, or Excel PowerQuery/Pivot.

Why Join Us?

Joining our team means becoming part of a dedicated, high-performing group focused on IT governance, risk management, and compliance. As an IT Audit Analyst, you'll have the opportunity to work on exciting, challenging audits, develop your skills, and contribute to continuous improvement initiatives. We offer a collaborative and innovative environment where you can grow professionally while making an impact on the organization s success.

Equal Employment Opportunity:

We are an Equal Employment Opportunity employer. We do not discriminate based on race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics.