Nagendra Avula
Bengaluru
Summary
Chartered Accountant (CA) and Certified Information Systems Auditor (CISA) with nearly five years of experience in IT audits and cybersecurity governance, risk, and compliance (GRC). Proficient in assessing IT general controls (ITGC), IT application controls (ITAC), and cyber controls across various platforms. Expertise in cloud infrastructure evaluations and risk advisory services. Seeking opportunities in the UAE focused on Cyber Audit and Risk Advisory.
Overview
4
4
years of professional experience
1
1
Certification
Work History
IT Auditor
S&P Global
Bengaluru
01.2025 - Current
- Lead ITGC and ITAC control testing aligned with SOX and internal compliance frameworks.
- Developed detailed test plans to evaluate the accuracy, completeness and reliability of data processed by automated systems.
- Performed technical validations of post audit action items in the areas of endpoint protection (VDI, DLP), AD server encryption, and trust configurations.
- Leading MAP-based audits across network security, Active Directory infrastructure, and identity governance (e.g., Vulnerability Scans, AD trust, DLP, etc.).
- Assess IAM practices, including the onboarding of applications to SailPoint, MFA configuration, and recertification flows.
- Track and report audit findings, control gaps, and remediation status.
Consultant
Deloitte USI
Bengaluru
04.2021 - 12.2024
- Performed SOX control testing across ITGC and business process areas, validating design and operating effectiveness through walkthroughs and evidence-based assessments.
- Assessed key IT general controls, including access provisioning, user access reviews, change management, and privileged access across critical applications, to ensure system integrity and compliance.
- Conducted audits on customer data protection practices, and contributed to SOC 1 testing efforts by evaluating control design and effectiveness against regulatory standards.
- Collaborated with control owners to investigate deficiencies, supported remediation efforts, and ensured timely closure of exceptions to strengthen the control environment.
Education
Chartered Accountant - Auditing
Institute of Chartered Accountants of India
Skills
- IT general controls (ITGC) / application controls (ITAC)
- Cybersecurity GRC
- Risk assessment and compliance
- Analytical skill
- Attention to detail
- Agile environment/ICFR
- Stakeholder management
Certification
- CISA
- AWS certified cloud practitioner
- Microsoft Certified - Azure Fundamentals
- Certified in Cybersecurity (CC)
- ISO 27001 LA (Planned July 2025)
Languages
English - Proficient
Hindi - Intermediate
Telugu - Native
Relocation And Visa
Open to relocation to UAE, Ready to join within notice period (or immediately if required)
Timeline
IT Auditor
S&P Global
01.2025 - Current
Consultant
Deloitte USI
04.2021 - 12.2024
Chartered Accountant - Auditing
Institute of Chartered Accountants of India
Similar Profiles
SUSHANTH REDDY MyakaSUSHANTH REDDY Myaka
Senior Data Quality Researcher at S&P GlobalSenior Data Quality Researcher at S&P Global
Ismail MohammedIsmail Mohammed
Data Specialist at S&P GlobalData Specialist at S&P Global
Varshith VajinapallyVarshith Vajinapally
Senior data scientist at S&P GlobalSenior data scientist at S&P Global
Manish KumarManish Kumar
Senior Salesforce Developer at S&P GlobalSenior Salesforce Developer at S&P Global
Ayushi SharmaAyushi Sharma
Emerging Architect at Shell India Markets Pvt LtdEmerging Architect at Shell India Markets Pvt Ltd