COMPLETE Technology Auditor - Bangalore

Our Company

Changing the world through digital experiences is what Adobe’s all about. We give everyone—from emerging artists to global brands—everything they need to design and deliver exceptional digital experiences! We’re passionate about empowering people to create beautiful and powerful images, videos, and apps, and transform how companies interact with customers across every screen. 

We’re on a mission to hire the very best and are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere in the organization, and we know the next big idea could be yours!

The Opportunity

Adobe’s Risk Advisory and Assurance Service (RAAS) function formally Global Audit is seeking an experienced Information Security professional. The candidate must have a good insight and understanding of the Technology and Cyber Security risks in line with regulatory and other compliance requirements. This position will be based in Adobe's Bangalore Office reporting to the Senior IT Manager, Risk Advisory & Assurance Services.

What you'll Do

• Conduct InfoSec risk assessments activities via close collaboration with Cloud Technology, Engineering, and other Business Units
• Support the delivery and scaling of the SOX program. Hands on with design and testing of IT General Controls (ITGC) & IT App Business controls
• Plan and deliver on technology operations audits, system implementation & integration reviews, M&A compliance efforts, and applicable advisory initiatives with full involvement in planning, fieldwork & reporting.
• Plan and deliver on the business transformations/new system implementations and/or acquisitions’ compliance efforts and support technology assurance & advisory reviews to address key enterprise technology risks including assessing the adequacy, design and operating efficiency of technology and internal controls.        
• Perform Information Security related assessments to cover domains like User Access management, Network, OS & Application Security, Encryption, Backup Management, Disaster Recovery, Training & Awareness, etc.
• Leverage data analytics & automation to support risk assessment, planning, audit procedures, continuous monitoring, and present visualization to support the results
• Research and know the latest on new guidance/publications/standards and emerging technologies applicable to the InfoSec function.
• Ensure proper identification and disposition of internal control issues and perform quarterly follow-up on required management actions.
• Prepare accurate, logical, & detailed audit work papers and reports while ensuring overall quality & consistency of audit work, and alignment to department and professional standards for audits.
• Support and prepare quarterly Audit Committee meetings/presentations/newsletters and other supporting documentation; prepare other CAE/CIO meeting presentations, as needed.

What you need to succeed

Education:

• B.E./B.Tech/MBA in Information Technology, Information Systems, or similar.
• CISA, CISSP, CIA, CPA or similar certification preferred.

Knowledge & Experience:

• Minimum 3-5 years of InfoSec/IT SOX audit experience with an accounting firm or large global public company internal audit.
• Solid Experience in one or more of the following IT audit areas: ITGCs, SAP/ ERP audit, process controls, security, system implementations & integrations, e-commerce, microservices, data analytics, cloud computing (AWS, Azure) or similar.
• Knowledge of common IT technologies (OS, databases, network devices, applications)
   
• Knowledge of SAP and GRC tools like SAP GRC and RSA Archer is a plus
   
• Experience in using RPA, analytics, and business intelligence tools (e.g. UiPath, Snaplogic, Tableau, Power BI, etc.)
• Exposure to engagements like Wireless Security audits, Network & Firewalls security reviews, OS & Infrastructure audits, API Security, DLP audits, Ransomware audits, etc.
• Working knowledge of Information Security & Governance frameworks like COBIT, NIST, ISO 27001, and regulatory compliances like SOX, GDPR, PCI-DSS
• Capable of interpreting these requirements and translating them into meaningful considerations for GRC processes, risks management, and controls.

Skills

• Strong organizational and leadership skills; ability to deliver multiple projects efficiently & prioritize tasks to meet project requirements.
• Outstanding interpersonal, oral, written, and presentation skills with the ability to comfortably communicate to all levels of management.
• Ability and desire to accept ambiguity, problem tackle, and deliver solutions in a fast-paced and multifaceted environment.
• A results-oriented team-player with a self-motivated, proactive, and positive can-do attitude.
• Strong EQ to optimally collaborate with people on shared goals.
• Detail oriented, analytical, tech savvy and can navigate through tools, systems and platforms
• Good teamwork, interpersonal, verbal and written communication skills and ability to communicate with all levels of management
• Highly motivated and proactive with strong organizational and project management skills to multitask, thrive and succeed in a fast-paced environment

Adobe is proud to be an Equal Employment Opportunity and affirmative action employer. We do not discriminate based on gender, race or color, ethnicity or national origin, age, disability, religion, sexual orientation, gender identity or expression, veteran status, or any other applicable characteristics protected by law. Learn more.
 

Adobe aims to make Adobe.com accessible to any and all users. If you have a disability or special need that requires accommodation to navigate our website or complete the application process, email accommodations@adobe.com or call (408) 536-3015.

Adobe values a free and open marketplace for all employees and has policies in place to ensure that we do not enter into illegal agreements with other companies to not recruit or hire each other’s employees.