Associate Manager - IT Audit

Business Unit:

Compliance, Risk and Internal Audit

Reporting To:

Senior Manager, Internal Audit – EMEA

Shift:

India Standard (India)

About Russell Investments, Mumbai:

Russell Investments is a leading outsourced financial partner and global investment solutions firm providing a wide range of investment capabilities to institutional investors, financial intermediaries, and individual investors around the world. Building on an 89-year legacy of continuous innovation to deliver exceptional value to clients, Russell Investments works every day to improve the financial security of its clients. The firm is “Top 12 Ranked Consultant (2009-2024)” in P&I survey 2024 with $906 billion in assets under advisement (as of December 31, 2024) and $331.9 billion in assets under management (as of March 31, 2025) for clients in 30 countries. Headquartered in Seattle, Washington in the United States, Russell Investments has offices around the world, including London, New York, Toronto, Sydney, Tokyo, Shanghai – and has opened a new office in Mumbai, India in June 2023.

Joining the Mumbai office is an incredible opportunity to work closely with global stakeholders to support the technology and infrastructure that drives the investment and trading processes of a globally recognized asset management firm. Be part of the team based out of Goregaon (East) and contribute to the foundation and culture of the firm’s growing operations in India. The Mumbai office operates with varying shifts to accommodate time zones around the world.

For more information, please visit https://www.russellinvestments.com.

Job Description:

Department: Internal Audit / Risk & Compliance

Experience Required: A minimum of 6 years of total audit experience is required, including at least 2 years of IT audit experience. Candidates with a background in Big Four firms or consulting are preferred.

About the Role

We are seeking a detail-oriented and proactive IT Auditor to join our Internal Audit and Risk function. The IT Auditor will play a critical role in assessing the design and effectiveness of IT controls, identifying risks across applications, infrastructure, and processes, and providing recommendations that strengthen the firm’s technology governance, cybersecurity posture, and overall resilience.

This position is ideal for a professional with a minimum of 6 years of total audit experience, including at least 2 years of IT audit experience who is looking to broaden their expertise in a fast-paced and highly regulated environment.

Key Responsibilities

• Plan, execute, and report on IT audits covering applications, infrastructure, cybersecurity, and IT processes.
• Assess the design and operating effectiveness of IT general controls (ITGCs), including access management, change management, backup/recovery, and logical security.
• Evaluate technology and business risks, including emerging risks such as cloud security, data governance, and cyber resilience.
• Perform testing in alignment with information security framework (e.g., COBIT, NIST, and ISO 27001).
• Collaborate with cross-functional teams to ensure IT processes support business continuity, data protection, and regulatory compliance.
• Prepare audit workpapers, risk/control matrices, and evidence documentation consistent with professional standards.
• Present findings, risks, and recommendations to stakeholders in a clear, actionable manner.
• Support follow-up reviews to verify the remediation of audit issues.
• Contribute to the annual audit planning process by identifying IT risk areas and suggesting audit coverage.
• Assist with special projects, advisory reviews, and investigations related to technology risk and resilience.

Qualifications & Skills

• Bachelor’s degree in Information Technology, Computer Science, Accounting, or related field.
• Professional certification (i.e. Certified Internal Auditor (CIA), Certified Public Accountant (CPA), Chartered Accountant (CA) or equivalent)
• A minimum of 6 years of total audit experience is required, including at least 2 years of IT audit experience (internal audit, Big 4, or consulting background preferred).
• Working knowledge of ITGCs, cybersecurity controls, cloud environments, and data management practices.
• Familiarity with frameworks such as COBIT, NIST, ISO 27001, ITIL, and regulatory expectations (e.g., SOX, GDPR, DORA, FFIEC).
• Strong understanding of financial services or investment management industry
• Comprehensive knowledge of internal auditing practices, procedures, and principles
• Strong analytical, problem-solving, and documentation skills.
• Excellent verbal and written communication, with the ability to explain technical issues to non-technical stakeholders.
• Professional certification (or working toward one) such as CISA, CISSP, CIA, or CRISC preferred.

Core Values

• Strong interpersonal, oral, and written communication and collaboration skills with all levels of management
• Strong organizational skills including the ability to adapt to shifting priorities and meet frequent deadlines,
• Demonstrated proactive approach to problem-solving with strong judgment and decision-making capability.
• Highly resourceful and collaborative team-player, with the ability to also be independently effective and exude initiative and a sense of urgency.
• Exemplifies our customer-focused, action-oriented, results-driven culture.
• Forward looking thinker, who actively seeks opportunities, has a desire for continuous learning, and proposes solutions.
• Ability to act with discretion and maintain complete confidentiality.
• Dedicated to the firm’s values of non-negotiable integrity, valuing our people, exceeding client expectations, and embracing intellectual curiosity and rigor.