Senior Associate - IT Audit and Controls

Senior Associate 1

 Roles & responsibilities 
Demonstrate strong subject-matter knowledge in ITGCs and ITACs, including the ability to review complex control testing across ERP systems such as SAP, Oracle, Workday, etc. 
Possess thorough understanding of SOC 1, SOC 2, SOC 2+ (HITRUST) and SSAE 18 attestation standards, including trust services criteria, testing methodologies, and reporting expectations.
Perform independent quality reviews of IT testing work delivered by GTA teams. 
Evaluate whether GTA’s risk assessments, IT audits, and control testing align with KPMG US Audit Methodology and professional standards. 
Assess complex issues, perform root‑cause analysis, and provide technically sound solutions. 
Provide expert consultation and escalate high‑risk/complex matters appropriately.
Provide clear, constructive review feedback to enhance documentation quality and audit execution.
Govern the stakeholder feedback process and ensure insights are captured and acted upon. 
Stay current on Professional Practice Letters (PPLs) and communicate relevant updates to teams.
Contribute to automation and tooling initiatives by testing or supporting development of bots and efficiency tools. 
Support practice-level quality improvement through insights, best‑practice sharing, and process enhancement opportunities
Provide ongoing coaching and review-based guidance to junior team members.

 

 

 

 

 

Roles & responsibilities 
Demonstrate strong subject-matter knowledge in ITGCs and ITACs, including the ability to review complex control testing across ERP systems such as SAP, Oracle, Workday, etc. 
Possess thorough understanding of SOC 1, SOC 2, SOC 2+ (HITRUST) and SSAE 18 attestation standards, including trust services criteria, testing methodologies, and reporting expectations.
Perform independent quality reviews of IT testing work delivered by GTA teams. 
Evaluate whether GTA’s risk assessments, IT audits, and control testing align with KPMG US Audit Methodology and professional standards. 
Assess complex issues, perform root‑cause analysis, and provide technically sound solutions. 
Provide expert consultation and escalate high‑risk/complex matters appropriately.
Provide clear, constructive review feedback to enhance documentation quality and audit execution.
Govern the stakeholder feedback process and ensure insights are captured and acted upon. 
Stay current on Professional Practice Letters (PPLs) and communicate relevant updates to teams.
Contribute to automation and tooling initiatives by testing or supporting development of bots and efficiency tools. 
Support practice-level quality improvement through insights, best‑practice sharing, and process enhancement opportunities
Provide ongoing coaching and review-based guidance to junior team members.

Mandatory  technical & functional skills
Experience in evaluating and testing ITGC, SOX, SOC1 and SOC2, SAP,ERP, Oracle and Cloud controls
Experience in evaluating risks across a variety of IT platforms (including ERPs, UNIX/Linux, Windows, Mainframe, iSeries (AS400), SQL, Sybase, Oracle, DB2 and popular Cloud Hosted solutions)
Strong understanding of different Industry sectors and business.

 

 

 

 

 

 This role is for you if you have  the below
Educational qualifications 
BE / B-Tech; Post-Graduates (MBA (IT / Systems / Data & Analytics / SCM) / MCA / MTech)
Work experience
Must have at least 4-5 years of experience in ITGC and ITAC aeras. Experience in leading quality initiatives for the delivery of Audit engagements.

 

Experience Level

Mid Level