IT & AI Audit Role

Job Title:Assistant Manager/Manager - Risk Management & Controls (Insurance)
Location: USA

Job Type: Full Time
Experience: 6-8 years

Job Description: EXL is seeking a highly skilled and experienced Assistant Manager/Manager in IT Risk Management & Controls to join our team. The candidate should have at least 6 years of experience in Information Risk Management, Regulatory Audit Advisory, IT General Controls (ITGC) testing, and Financial Risk Assessment. This role requires proficiency in implementing controls for significant systems, with additional expertise in automation, business process transformation, and dashboard/reporting solutions to streamline operations. Additionally, you will lead efforts to establish and maintain effective governance frameworks for AI applications.

You will work on key client engagements and be responsible for designing and testing controls, identifying risks, proposing mitigation solutions, and implementing transformational initiatives to enhance operational efficiency and compliance.

Key Responsibilities:

1. SOX & ITGC Testing: Plan, execute, and document testing procedures for Sarbanes-Oxley (SOX) compliance, with a focus on controls governing AI-related processes, data governance, model development, algorithmic decision-making processes and technologies.
2. Identity & Access Management: Design and assess IAM controls, addressing SoD conflicts and access control gaps

• Collaboration with internal audit team and external auditors: Collaborate with external auditors to ensure consistent audit methodologies, joint walkthroughs, and control testing, identify control deficiencies, assess risks, and recommend corrective actions related to AI governance, IT General Controls, business controls, and compliance.

3. Remediation Plans: Develop and manage remediation plans for control deficiencies, ensuring timely resolutions and improvements in internal controls
4. System Implementations:Lead risk identification, control mapping, and validation for significant system implementation projects
5. Automation & Transformation: Implement automation tools for controls and streamline processes through technology-driven transformation

• Emerging Risk: Stay abreast of emerging trends and regulatory changes in AI governance, risk, and compliance, and propose proactive measures to address evolving threats and vulnerabilities.

6. Process Optimization & Reporting: Enhance business processes, implement dashboards for real-time project monitoring, and drive continuous improvement

Qualifications:

• Bachelor's degree in Information Technology, Computer Science. Advanced degree or relevant certifications (e.g., CISA, CIA, CRISC, AI-related certifications) preferred.
• 6-8 years of experience in risk management, compliance, and audit, with a demonstrated understanding of AI technologies and their governance implications.
• Strong knowledge of Sarbanes-Oxley (SOX) compliance requirements, audit methodologies, IT General Controls (ITGC) principles, and business controls testing.
• Familiarity with ethical AI principles, algorithmic transparency, and fairness considerations in AI-driven decision-making processes.
• Excellent analytical, problem-solving, and communication skills, with the ability to effectively interact with diverse stakeholders at all levels of the organization.
• Proven ability to work independently, prioritize tasks, and meet deadlines in a fast-paced environment.
•