ICFR Technology Manager
- Full-time
- Technology CF Job Family: Security
- Group Function: Tesco Technology
Company Description
Tesco Bengaluru: We are a multi-disciplinary team creating a sustainable competitive advantage for Tesco by standardising processes, delivering cost savings, enabling agility, providing cutting-edge technological solutions and empowering our colleagues to do ever more for our customers. With cross-functional expertise in Global Business Services and Retail Technology & Engineering, a wide network of teams and strong governance we reduce complexity thereby offering high quality services for our customers. Tesco Bengaluru, established in 2004 to enable standardisation and build centralised capabilities and competencies, makes the experience better for our millions of customers worldwide and simpler for over 4,40,000 colleagues.
Tesco Technology consists of people from a number of different backgrounds, but having a common purpose to serve our shoppers a little better every day with our retail technological solutions. We shared a common interest in harnessing innovations in technology to enhance their shopping experience at Tesco stores. Whether making products, software or systems, our teams focuses on various aspects from taking strategic ownership of the architecture to delivering technological solutions such as design, testing, deployment, infrastructure, operation and security of the systems to ensure agile, smooth and safe operations. These help us to deliver the maximum business impact. Teams refine their internal processes to best fit their own needs, working to build core capabilities in application and services. We collaborate globally across teams to build end-to-end customer-facing solutions, as well as to share knowledge, experience, tools and techniques.
At Tesco, inclusion means that Everyone?s Welcome. Everyone is treated fairly and with respect; by valuing individuality and uniqueness we create a sense of belonging.
Diversity and inclusion have always been at the heart of Tesco. It is embedded in our values: we treat people how they want to be treated. We always want our colleagues to feel they can be themselves at work and we are committed to helping them be at their best.
Across the Tesco group we are building an inclusive workplace, a place to actively celebrate the cultures, personalities and preferences of our colleagues ? who in turn help to build the success of our business and reflect the diversity of the communities we serve.
Job Description
- Lead IT controls testing for assigned portfolio of controls/stakeholders to deliver to agreed time and quality standards
- Perform IT risk assessments for new technologies, draft IT process narratives and build Risk and Control Matrices
- Review ITGC testing in areas such as Access Management, Change and Release Management, Incident Management, for a broad range of technologies ranging from mainframes to cloud based applications.
- Review the assessments performed over automated controls and key reports across multiple business processes such as Procure-to-Pay, Order-to-Cash, Financial Statement Close Process, etc.
- As required, support ITGC testing activities in areas such as Access Management, Change and Release Management, Incident Management and SOC Report Reviews as well as testing of IT Application Controls (ITACs), IT Dependent Manual Controls (ITDM) and Key Reports"
- Assess the impact of deficient controls and lead the assessment of compensating controls.
- Build, communicate, measure and optimize the remediation plan for deficient controls.
- Support IT risk/control owners in understanding their ICFR responsibilities.
- Manage stakeholder relationship and lead internal meetings with Technology and Business Process teams.
Qualifications
- Strong experience with SOX / IT Internal Controls Testing audit, implementation and design improvement
- Strong knowledge of IT auditing concepts and principles alongside understanding of IT General Controls (ITGCs) Testing, IT Automated Controls (ITAC) testing and IT-Dependent Manual (ITDM) Controls testing
- Experience in performing IT risk assessments and building Risk and Control Matrices for a broad range of technologies.
- Knowledge of Financial Reporting, Corporate Governance and core financial end to end processes such as Customer to Cash, Procure to Pay, Record to Report
Additional Information
- SME level expertise in respect to information security (at least two domains of expertise) risk management processes, frameworks and regulatory aspects
- Experience of managing workstreams to deliver in line with time/quality expectations
- Able to adapt to suit the needs of the business and agile in approaching challenging scenarios
- Able to interpret and explain broader business risks to technology colleagues (and technology risks to business colleagues)
- Able to lead meetings with a broad range of internal and external stakeholders
- Strong written, verbal communication and presentation skills - ability to pitch to different levels of seniority and disciplines within the organisation
- Critical thinking with strong attention to detail and good organisational skills
- Able to build solid working relationships with peers as well as internal and external stakeholders
- Able to work with teams from differing backgrounds across multiple locations
Important Notice:
On behalf of Tesco Bengaluru, we must caution all job seekers and educational institutions that Tesco Bengaluru does not authorise any third parties to release employment offers or conduct recruitment drives via a third party. Hence, beware of inauthentic and fraudulent job offers or recruitment drives from any individuals or websites purporting to represent Tesco. Further, Tesco Bengaluru does not charge any fee or other emoluments for any reason (including without limitation, visa fees) or seek compensation from educational institutions to participate in recruitment events.
Accordingly, please check the authenticity of any such offers before acting on them and where acted upon, you do so at your own risk. Tesco Bengaluru shall neither be responsible for honouring or making good the promises made by fraudulent third parties, nor for any monetary or any other loss incurred by the aggrieved individual or educational institution.
In the event that you come across any fraudulent activities in the name of Tesco Bengaluru, please feel free report the incident at [email protected]