BMC Staff Assurance Analyst 

India, Maharashtra 

607344256

Research and assist in the development of audit programs. The types of audits that the Staff IT Analyst generally helps plan include IT security, IT Governance, Cybersecurity, and System Development Life Cycle audits. Additionally, the Staff IT Analyst may help plan the testing of systems, applications, and technology supporting key operations.

Conduct reviews and assessments of internal controls relating to financial reporting (i.e., Sarbanes-Oxley) to ensure controls are effective and compliant with regulations and organizational policies. The Staff IT Analyst will learn processes, procedures, systems and controls and then evaluate the effectiveness of the organization's IT systems that ensure confidentiality, integrity, reliability of data, as well as the reliability of IT controls. The Staff IT Analyst is expected to learn and apply IT standards and control frameworks such as: COBIT, ISO/IEC 27001, NIST SP 800 series, and ITIL.

Monitor the implementation of audit recommendations and track progress to ensure that corrective actions are implemented timely. The Staff IT Analyst will work closely with management to address any concerns and provide support as needed.

Assist in the communication of audit findings, observations, and recommendations to management in clear and concise reports. This helps stakeholders understand areas for improvement and make informed decisions to mitigate risks.

The Staff IT Analyst is expected to participate in continuous professional education, which is essential to maintaining professional competence, meeting professional certification requirements (e.g., CISA, CISM, CIA, CPA) and improve capabilities for utilizing emerging technologies. BMC views formal CPE training as an investment in both personal and organizational success in the dynamic field of internal auditing.

A bachelor's degree in a relevant field is required. Preferred majors include: information technology, computer science, accounting, finance, or business administration with a focus on information systems. Postgraduate degrees are not required but deemed a plus.

Certifications are highly desirable and expected for career growth. Preferred certifications include Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Internal Auditor (CIA), and Certified Information Systems Security Professional (CISSP).

Previous full-time work experience in IT auditing (e.g., IT controls, Business process controls, automated controls), information security, risk management, or related fields is strongly desired. Audit internships or co-op opportunities completed during college will also be considered a plus.

Staff IT Analyst candidates are expected to demonstrate an understanding of information technology concepts, systems, and controls. Proficiency in network security, database management, operating systems, and IT governance frameworks is deemed a plus. Candidates should also be familiar with auditing techniques, data analysis tools, and relevant software applications. Coding experience with, and ability to read/interpret SQL, Visual Basic, and/or Python is highly desired.