Compliance & Audit Specialist Job in Zs

Specialist Compliance and Audit We are currently seeking applicants for the position of Specialist Risk Management and Audit to join our India IT Governance, Risk and Compliance team. The position will support various management directed, IT risk governance initiatives which include following job requirements: Ensure risk and control activities are completed in a timely and appropriate manner Act as SME supporting functional managers in understanding and applying responsibilities towards risk and compliance providing recommendations as appropriate Lead any Security Framework Implementation (Like ISO 27001, NIST, etc.) Provide first line of defense support in assessing risk and reviewing control issues Documentation of control procedures, standards and guidelines, etc. Report control issues and follow up on non-compliances with Functional leadership to mitigate and close the issues Co-ordinate and Track the tickets / findings in areas below to closure IT Operational Risks and Information Security Risks Control Self assessments Internal/External Audit findings with appropriate CAPA BCP / Disaster recovery Problem tickets with root cause analysis Audit event co-ordination, Audit liaison and issue closure oversight (SOC 2 Type 2, ISO 27001, etc.) Lead pre-audit preparation activities with stakeholders (SOC 2 Type 2, ISO 27001, etc.) Control conformance monitoring Identification and application of required governance for risk and control issues using appropriate toolsets Generate regular reports for Senior Management Ensure that Risk and Compliance activities associated are regularly reviewed to drive continuous improvement: providing Subject advice, making recommendations and interventions as appropriate Responsibilities: Asist in prioritizing and planning risk management activities Working with Risk Lead to review, prioritize and assign identified control gaps Support Risk Owners and Tech teams in documenting control procedures, guidelines, etc. Audit / Regulator engagement & issue management (SOC 2 Type 2, ISO 27001, etc.) Technology Infrastructure Specific Risk/Compliance Metrics reporting Control Execution / Control remediation oversight and escalation Risk acceptance / Deviation review Ensure risk and control activities are completed in a timely and appropriate manner applying the correct governance route Act as SME supporting functional units in understanding and applying responsibilities towards risk and compliance providing recommendations as appropriate. Retain oversight of all active governance activity across all relevant key risks under Technology Infrastructure Operations. Create / review/ continuous update of the risk library Report and publish control issues and active non-compliances to senior leadership inclusive of providing content for Senior Leadership risk and control review forums/Committees. Ensure all governance attestations and sign-off from Senior leadership are completed including the conduct risk measures Champion and lead a culture of customer service and continuous improvement ensuring that opportunities for process and service Improvements Monitor performance and identify areas for improvement Actively look for ways of smoothing peaks and troughs and reducing time scales.