**Job Description:** Responsible for facilitating internal and external audits with AT&T’s internal Data and Control Owners and external Auditing Firms. Audits in scope include ISO 9001, ISO 27001, SOC 1, 2, and 3, and Service Provider Payment Card Industry Data Security Standards (PCI DSS). **Key Role and Responsibilities:** 1. Facilitate training for internal employees covering in scope requirements, standards, and controls. 2. Conduct meetings to obtain, review, and analyze information from complex systems to include applications, operating systems, databases, and Network devices data in order to identify risk, exposures, and help identify compensating controls to reduce identified security gaps and risk. 3. Conduct meetings with internal employees and external auditors in order to address security control gaps identified in the information provided for review and evaluation by the external auditor. 4. Prepare weekly and month status reports providing details of outstanding audit items and overall status of each audit. 5. Conduct weekly meetings to review the status of each audit and facilitate working sessions to help address open audit issues. 6. Closely manage multiple audits with varying deliverable dates across numerous stakeholders in order to drive successful completion of each audit engagement and provide visibility of roadblocks that could jeopardize an audit completing on time. 7. Perform research and analysis for various audit topics to gain insights and make recommendations to properly address in scope issues. 8. Contribute to the overall success of the team and assist in capturing lessons learned and conducting postmortems to improve the processes and tools for our internal partnering teams and the PCI audit management team. 9. Create postmortem presentations identifying issues encountered during the audit that must be addressed to ensure compliance with all applicable requirements, standards, and controls. 10. Ensure the appropriate Data and Control Owners visibility to the postmortem issues and they provide remediation plans to address all open issues. Required Skills: 1. Advance audit management, project management, time management, Microsoft PowerPoint, Excel, Outlook, and Word skills. 2. Advanced verbal and written skills. 3. Proven ability to perform complex analysis of data to determine trends and develop action plans. Desired Skills: 1. Bachelor’s degree in Computer Science, Information Systems, or Accounting is preferred. 2. 5 – 10 years’ experience in IT operations, Security Operations, and Auditing is preferred. 3. In-depth knowledge and experience in IT Security, access controls, network security, logging and monitoring, vulnerability assessments, system hardening, and secure software development is preferred. 4. In-depth knowledge of auditing practices and experience with ISO 9001, ISO 27001, PCI DSS, and AICPA SOC audits is preferred. 5. The following certifications are an asset, CISSP, CISM, CCSK, CCSP, Project Management, and CISA. **Weekly Hours:** 40 **Time Type:** Regular **Location:** Bangalore, Karnataka, India It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T will consider for employment qualified applicants in a manner consistent with the requirements of federal, state and local laws We expect employees to be honest, trustworthy, and operate with integrity. Discrimination and all unlawful harassment (including sexual harassment) in employment is not tolerated. We encourage success based on our individual merits and abilities without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, disability, marital status, citizenship status, military status, protected veteran status or employment status