Manager IT Risk Management

  • Location:
    Bangalore, Karnataka, India
  • Area of Interest
    Information Technology
  • Job Type
    Professional
  • Technology Interest
    *None
  • Job Id
    1208116
New

What You'll Do

The right candidate will be responsible for monitoring and assessing the internal control environment for IT Controls. You will be responsible to oversee the execution of SOX and other compliance testing. You will oversee a team of 5-8 employees responsible for creating and updating process flows and control documentation, performing walkthroughs of controls, identifying and accessing the key controls that mitigate financial statement assertions and various compliance risks, document control deficiencies and communicate exceptions to IT Leadership.

  • Collaborate with various IT departments and control owners to understand, assess and address operational risks and exposures through a risk and control self-assessment process.

  • Maintain the 2015 COSO Framework mapping documentation and gap assessment and follow-up on remediation if necessary.

  • Monitor SOX related IT controls as well as overseeing change management for work processes.

  • Identify and recommend changes to improve efficiency as well as process for IT key controls and process flow.

  • Conduct an analysis of internal policies, guidelines, procedures and processes to evaluate the accuracy and adequacy of internal controls, operations, and reporting. Included within this responsibility is the facilitation of the Sox/404 process.

  • Identify and mitigate areas of risk which might arise from inadequate or failed internal processes or systems.

  • Team with internal and external audit to review the results of SOX testing and work with line-of-business owners to resolve deficiencies and further refine/define controls.

  • Assist with procedures to monitor those risks and related drivers using key risk indicators. Make recommendations to address and mitigate identified risks.

  • Execute the operational risk and control self-assessment process and measurement program utilizing risk control tools and key risk indicators including all core products, activities, processes and systems.

  • Provide direction and support to the IT Controls Owners for the design, collection, analysis and reporting of operational risk data.

  • Update and maintain the SOX control database; oversee the execution of control testing, review test work papers for quality and act as SOX SME for process.

  • Participate with other Risk Management teams (compliance, credit, market risk) to identify current and emerging risk exposures and develop appropriate risk mitigation strategies.

  • Support other responsibilities of the Operational Risk Department.

 

Who You'll Work With
You will be part of the IT Risk Management team. This team partners with the Financial and Risk Management organization to execute the IT Scope under a company-wide program for financial control compliance covering the existing control environment through the SOX Program Management Office and Internal Control Readiness activities for prospective changes driven by key corporate strategic initiatives. The scope also includes covering the control environment to meet local India Financial Compliance. The IT Risk Management team is also an advisor to the IT organization that includes a broad scope of IT Compliance initiatives. You will operate as a Strategic Partner with key stakeholders to include Project Teams, SOX Process Leads, SOX IT Control owner community and IT leadership, external auditors, Business Process Teams and respective cross-functional organization
Who You Are
You are an organized, driven and motivated individual with excellent organization skills with attention to detail. You are an effective communicator with strong interpersonal skills with the ability to work with cross functional teams.

Our minimum requirements for this role:
• BA/BS degree preferred with a strong academic record
• Project Management experience
• At least 8+ years’ experience with an emphasis on evaluation of internal controls or operational risk in one or more of the following areas: IT Processes and General Controls, operational/enterprise risk management, audit, accounting, Sarbanes Oxley compliance


Why Cisco
We connect everything: people, processes, data, and things. We innovate everywhere, taking bold risks to shape the technologies that give us smart cities, connected cars, and handheld hospitals. And we do it in style with unique personalities who aren’t afraid to change the way the world works, lives, plays and learns.

We are thought leaders, tech geeks, pop culture aficionados, and we even have a few purple haired rock stars. We celebrate the creativity and diversity that fuels our innovation. We are dreamers and we are doers.

We Are Cisco.