Governance, Risk & Compliance (GRC)-Senior IT Auditor

GSSTech Group is seeking a highly experienced Governance, Risk & Compliance (GRC) - Senior IT Auditor to join our dynamic team within the banking sector. The successful candidate will have a strong understanding of IT audit, risk management, and compliance processes, particularly within banking or financial institutions.

Key Responsibilities

• Conduct comprehensive IT audits to assess the adequacy and effectiveness of IT controls.
• Evaluate organizational compliance with internal policies and applicable regulations.
• Identify risks related to IT projects, processes, and systems and work with management to mitigate these risks.
• Prepare and present audit findings and recommendations to senior management and stakeholders.
• Assist in developing, updating, and implementing IT audit methodologies and practices.
• Collaborate with Clients' business units to provide guidance on IT governance, risk management, and compliance considerations.
• Provide insights into potential areas of improvement for IT governance framework.
• Monitor industry trends and regulatory requirements to ensure the organization remains compliant.
• Support and drive the implementation of GRC tools and frameworks.

Qualifications

• Bachelor’s degree in Information Technology, Computer Science, or a related field.
• Professional certifications such as ISO 27001 Lead Auditor, CISA, CISM, CISSP or similar are highly preferred.
• Minimum 5 years of experience in IT audit, risk management, or compliance, preferably in the banking sector.
• Experience working as IT Auditor or GRC team in a Big 4 firm (EY, PwC, Deloitte, KPMG) or equivalent consulting environment.
• Proven experience in conducting audits or assessments based on:
• ISO/IEC 27001
• ISO 22301
• NIST CSF
• PCI DSS
• Strong knowledge of data privacy laws, cybersecurity, and regulatory compliance requirements (e.g. PCI-DSS).
• Solid understanding of ISO, business continuity, information security management systems (ISMS), and regulatory compliance frameworks.
• Excellent analytical and problem-solving skills.
• Exceptional communication skills, both verbal and written, with the ability to present complex information clearly.

Join us at GSS Tech Group, where your expertise will help drive our mission of maintaining robust risk and compliance standards to ensure the integrity of our operations!

We offer a collaborative and innovative environment for our employees to grow and excel.

Requirements

Job Knowledge

• In-depth knowledge of IT governance frameworks and audit methodologies
• Understanding of risk management and compliance requirements specific to the banking sector
• ISO frameworks relevance to IT Audits.
• Experience in auditing instant payment systems , RTGS, SWIFT
• Experience in auditing UPI compliance is desirable
• Experience in auditing against Central bank regulations such as Central bank of the UAE , SAMA is a plus

Technical & Professional Skills

• Proficiency in IT audit tools and methodologies
• Knowledge of regulatory compliance (e.g., GDPR, PCI-DSS) and risk frameworks (e.g., COSO, COBIT)

Managerial & Leadership Skills

• Ability to manage multiple audits simultaneously while meeting deadlines
• Leadership qualities to mentor junior auditors and collaborate with various teams

Prior Work Experience Required

• Minimum of 5 years of experience in IT auditing, risk management, or compliance.
• Experience in banking and financial services is a highly preferred.

Benefits

• Visa Sponsorship
• Private Premium Health Insurance
• Paid Time Off