Must Have Technical/Functional Skill
IT Audit, ITGC, SOX Compliance, ISO 27001 (ISMS), Risk & Compliance, Control Testing, Audit Governance, Stakeholder Management
Act as Senior IT Audit Lead responsible for executing IT audit engagements.
Perform assessment of ITGC and ISO 27001 Annex A controls across access management, change management, IT operations, asset management, vendor risk, and business continuity.
Support SOX and ISO 27001 audits, including control design, operating effectiveness testing, evidence validation, and audit reporting.
Review compliance against information security policies, ISMS processes, and risk treatment plans.
Identify gaps in ISMS implementation, control effectiveness, and compliance adherence, and recommend remediation.
Support internal and external audits including ISO 27001 certification / surveillance audits.
Prepare audit documentation including control matrices aligned to SOX + ISO 27001 frameworks.
Track remediation and validate closure in line with audit and compliance timelines.
Engage with stakeholders across IT, Cybersecurity, Engineering, Operations, and compliance teams.
Strong experience in IT Audit / ITGC / SOX compliance.
Hands-on experience in ISO 27001 implementation, audit, or ISMS governance.
Strong understanding of ISO 27001 Annex A controls, including:
Experience in control design and operating effectiveness testing across SOX and ISO 27001.
Ability to assess ISMS maturity, risk treatment plans, and policy compliance.
Strong experience in audit documentation, workpapers, and governance reporting.
Experience working with external auditors for SOX / ISO audits.
Strong stakeholder management (client IT, cybersecurity, audit teams, leadership).
Roles & Responsibilities
Tools & Technologies / Frameworks
Audit / GRC Tools
ServiceNow GRC / Archer / AuditBoard
Compliance Frameworks
ISO 27001 Governance Areas
ITGC Areas
Enterprise Technology Areas
Reporting & Governance
Audit dashboards
ISO compliance status
Risk reporting & remediation tracking
Responsibility of / Expectations from the Role
Perform ITGC and ISO 27001 control assessments (Annex A).
Evaluate ISMS maturity, policy compliance, and control effectiveness.
Support ISO 27001 certification, recertification, and surveillance audits.
Conduct audit walkthroughs, collect evidence, and perform control testing.
Identify gaps in security controls, ISMS processes, and compliance adherence.
Prepare audit observations aligned to risk and compliance impact.
Coordinate with IT, cybersecurity, and compliance teams for remediation.
Track audit findings and ensure timely closure.
Provide audit and compliance updates to leadership and customer stakeholders.
Ensure audit artefacts are aligned with SOX + ISO 27001 standards and audit expectations.
Work closely with offshore teams (if applicable) for audit support and documentation.
Salary Range: $160,000-$180,000 a year
TCS Employee Benefits Summary:
Discretionary Annual Incentive.
Comprehensive Medical Coverage: Medical & Health, Dental & Vision, Disability Planning & Insurance, Pet Insurance Plans.
Family Support: Maternal & Parental Leaves.
Insurance Options: Auto & Home Insurance, Identity Theft Protection.
Convenience & Professional Growth: Commuter Benefits & Certification & amp; Training Reimbursement.
Time Off: Vacation, Time Off, Sick Leave & Holidays.
Legal & Financial Assistance: Legal Assistance, 401K Plan, Performance Bonus, College Fund, Student Loan Refinancing.
#LI-SP1