Thomson Reuters

Senior Cyber Compliance & Audit analyst

Join Thomson Reuters in Bangalore as a Senior Cyber Compliance & Audit Analyst. Assess controls, ensure compliance, and enjoy a hybrid work model with great benefits.

ServiceNow Role Type:
Department - JobBoardly X Webflow Template
Business Process Analyst
ServiceNow Modules:
Department - JobBoardly X Webflow Template
Governance, Risk, and Compliance
Department - JobBoardly X Webflow Template
Security Operations
ServiceNow Certifications (nice to have):
Department - JobBoardly X Webflow Template
Certified Implementation Specialist - Risk and Compliance
Department - JobBoardly X Webflow Template
Certified Implementation Specialist - Service Mapping

Job description

Date - JobBoardly X Webflow Template
Posted on:
 
January 27, 2025

We are hiring a Senior Cyber Compliance & Audit analyst to advance your career in IT Audit. As a Compliance Program Technical Auditor, you will assess, challenge, and test the design and operational effectiveness of controls using TR's control framework. You will work collaboratively with control owners and stakeholders to improve the control testing process, identify non-compliance issues, and propose efficiencies and automation where possible.

Requirements

  • Bachelor's degree in IT, Accounting, Finance or equivalent education and experience
  • At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations
  • One of these certifications in order of preference is essential CISA, CISSP, CCAK, CISM, CRISC
  • Strong ethical principles and understanding of business and IS ethics
  • Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top 10 and Cloud Security Alliance (CSA).
  • Excellent oral and written communication skills in English.
  • Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like.

Benefits

  • Hybrid Work Model: We’ve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected
  • Wellbeing: Comprehensive benefit plans; flexible and supportive benefits for work-life balance: flexible vacation, two company-wide Mental Health Days Off; work from another location for up to a total of 8 weeks in a year, 4 of those weeks can be out of the country and the remaining in the country, Headspace app subscription; retirement, savings, tuition reimbursement, and employee incentive programs; resources for mental, physical, and financial wellbeing.
  • Culture: Globally recognized and award-winning reputation for equality, diversity and inclusion, flexibility, work-life balance, and more.
  • Learning & Development: LinkedIn Learning access; internal Talent Marketplace with opportunities to work on projects cross-company; Ten Thousand Coffees Thomson Reuters café networking.
  • Social Impact: Ten employee-driven Business Resource Groups; two paid volunteer days annually; Environmental, Social and Governance (ESG) initiatives for local and global impact.

Requirements Summary

Bachelor's degree in IT, Accounting, Finance or equivalent education and experience, 4+ years of relevant work experience in SoX, ITGC, SOC, PCI, and one of these certifications in order of preference: CISA, CISSP, CCAK, CISM, CRISC