United Airlines Senior Information Security Auditor – Internal Audit in Gurgaon, India
We have a wide variety of career opportunities around the world — come find yours.
The Finance department, which manages the company's budgets, forecasts and investments, and provides analysis of our financial performance and strategies.
Job overview and responsibilities
Conduct internal audit activities (specifically in the security space) within the organization, providing independent, objective assurance and consulting activity designed to add value and improve the organization's digital technology operations. You will be responsible in assisting the organization in accomplishing its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of IT risk management, control, and governance processes. You will be accountable for developing and implementing a risk-based IT audit plan, assisting management in complying with applicable internal control policies and regulations, and working with management to bring cost effective and efficient leading practices.
Lead high quality, professional day-to-day execution of IT internal audit engagements including audits of, networks, security, internet/intranet infrastructure, system implementations and IT general controls.
Perform walk throughs to understand the control objectives, risks and controls associated to the process area under review
Create process narratives, flow-charts, document key controls, and test assigned key controls to reflect processes are designed and operating effectively
Evaluate key risks and internal controls, develop and/or review audit programs/risk & control matrices, including adapting an audit program to align with the client’s specific control environment and design controls evaluation and test procedures to address risks within assigned areas of the audit
Benchmark IT operational processes and controls, and identify opportunities for efficiencies/performance improvement based on leading practice
Work with Director or Audit Manager to communicate findings/recommendations to senior management
Identify/document audit issues clearly articulating issue/root cause, risk/exposure, and recommendations for improvement
Lead the drafting of complex internal audit reports and other audit deliverables
Work primarily on auditing IT systems and practices, including audits of networks, security, IT infrastructure, system implementations, IT operations and governance and IT general controls
Analyze standards, processes, and procedures of IT activities to assess IT controls and compliance with generally accepted IS standards
This position is offered on local terms and conditions. Expatriate assignments and sponsorship for employment visas, even on a time-limited visa status, will not be awarded.
Demonstrates high level of competence with interpersonal, oral and written communications skills
Excellent organization skills
Ability to plan, manage time budget and administer segments of audits to bring projects to closure within context of overall audit plan
Must be legally authorized to work in India for any employer without sponsorship
Must be fluent in English (written and spoken)
Successful completion of interview required to meet job qualification
Reliable, punctual attendance is an essential function of the position
Master's Degree in Information Security, Information Technology, Management Information Systems
2-3 years in Information Security, Infrastructure & Engineering, and other security role
CISSP, OSCP, CISA
Strong analytical abilities and ability to interpret large volume of data to identify potential audit issues and develop practical cost-effective solutions
Experience acquiring client data, then transforming, mapping, cleansing, and preparing data for analysis
Working knowledge of COBIT, NIST, ITIL
Equal Opportunity Employer – Minorities/Women/Veterans/Disabled/LGBT
Division: 40 Finance
Equal Opportunity Employer – Minorities/Women/Veterans/Disabled