Job Description

Role: Salesforce ITGC Audit & Control Testing Specialist

Location: Pune/Nagpur


Job type: Full Time Job


Shift: EST or UK Shift


Joining Timeline: Within 30 days of offer confirmation (immediate joiners preferred)

Job Description:


Experience: 5+ Years

We are hiring Salesforce ITGC Audit Specialists with strong experience in Salesforce security, audits, and control testing . Candidates should independently handle ITGC testing, data extraction, and audit evidence preparation across multiple Salesforce instances.

Key Responsibilities:

  • Perform Salesforce SDLC phase control testing (migration plan, UAT, security approvals, data migration).
  • Conduct ITGC controls testing across Logical Security, Change Management, and IT Operations.
  • Handle user provisioning/deprovisioning , access reviews, admin access, emergency access, and security parameter checks.
  • Validate change processes, development/debug access, infrastructure monitoring, incident/problem management, and server patching.
  • Execute data extraction, audit queries, and evidence collection .

Requirements:

  • Minimum 5 years in Salesforce security audits/ITGC testing.
  • Strong knowledge of Salesforce audit processes.
  • Excellent communication; able to work independently.

Key Responsibilities

1. Salesforce SDLC Phase Controls Testing (Approx. 5 Controls)

  • Evaluate System Migration Plans (Project Charter)
  • Validate User Acceptance Testing (UAT) Approvals
  • Review Data Migration Approvals
  • Assess System Migration Security Approvals
  • Verify Data Migration Go-Live Approvals

2. Salesforce ITGC Controls Testing (Approx. 30 Controls across 2 instances)

Logical Security Controls

  • User Provisioning (creation/change)
  • User De-provisioning
  • User Access Reviews
  • Authentication & Security Parameter Validation
  • Access to Security Parameters
  • Default Account Management
  • Admin Access Controls
  • Emergency Access Handling

Change Management Controls

  • Change Process Compliance
  • Change Settings Review
  • Development Access
  • Debug Access

Computer & Network Operations Controls

  • Infrastructure Monitoring
  • Problem & Incident Management
  • Network Security & Server Patching Validation

3. ITGC Queries, Data Extraction & Evidence Collection (Approx. 12 Controls)

  • Extract and validate audit-relevant data
  • Prepare evidence for internal and external auditors
  • Provide clarifications and respond to audit queries




Regards,

Jagannath Gaddam

Apply for this Position

Ready to join ? Click the button below to submit your application.

Submit Application