Provide Network Security Strategy for the organization. Provide Security advisory role in the design of Secure Network Architecture. Develop Security Policies & Standards and reference Architecture for Network design and deployment. Proactive analysis of Network for secure deployments, secure configurations against Global Security Best Practices. Assisting network design team with security inputs while designing an architecture for new offices/ branches/ data centres etc. for Security by Design. Developing network security standards and guiding network design to meet corporate requirements. Strategize and formulate high and low-level monitoring mechanism for security posture of network deployments and advise measures to improve them. Possess and maintain technical and business knowledge of aspects of Firewall, IPS, Internet Proxy, VPN, DDoS mitigation, NAC, Honeypot, Wi-Fi, DNS etc. Possess and maintain broad technical and business knowledge of aspects of Infrastructure technologies including Active Directories, Authentication Mechanisms, Cloud Computing, Cryptographic technologies etc. Conducting analysis of network security and Strategize and formulate high and low-level monitoring mechanism for Security posture of Network Security solutions. Taking proactive measures for enhancing the security posture of the Bank's network by studying the vulnerabilities issued/ published by various OEMs, internal and external agencies such as CERT, CSITE, CISA etc. Provide Security advisory role in network security technology acquisition and project origination. Provide Security advisory role in implementation of network security technology procured. Produce and track metrics for the effectiveness and maturity of Secure network deployments.

Hiring, Head of Information Security Job Purpose The Head of Information Security is tasked with creating and sustaining the enterprise vision, strategy, and program to safeguard the integrity, availability, and confidentiality of the organization's information assets. This involves implementing and maintaining comprehensive security measures and practices. This leadership position includes overseeing the development and execution of a strong cybersecurity framework, leading a team of security professionals, and working collaboratively with other departments to mitigate risks. Roles and responsibilities Strategy & Governance Development and implement a comprehensive information security strategy aligned with the organization goals and leading industry practices. Establish and maintain information security policies, standards and procedures to ensure compliance with relevant regulations and frameworks. Manage budget for IT security related activities and initiatives, ensure ROI on the same. Establish IT security governance frameworks, policies and procedures to ensure integrity and availability of information assets. Security Architecture Design Oversee design and implementation of a robust and resilient security architecture including network security, infrastructure and information security, and application security. Evaluate and select appropriate security technologies, tools and vendors to protect the organizations information assets. Review and assess the security controls and configurations of existing systems and applications and provide recommendations for improvement. Collaborate with enterprise architects/ technology partners to ensure security is integrated into the design and development of new systems and applications. Security Operations & Incident response Oversee the day-to-day operations of the organizations security infrastructure and develop incident response plans to address and mitigate security incidents effectively. Drive regular security, risk & vulnerability assessments to identify vulnerabilities and weaknesses in the organizations systems and infrastructure. Manage and resolve security incidents and lead incident response efforts, including investigations, containment, eradication and recovery in case of cyber attack Security incident & Threat Intelligence Stay updated on the latest security threats, vulnerabilities, and industry trends through continuous benchmarking and research. Proactively identify emerging threats and vulnerabilities and develop strategies to mitigate their impact. Collaborate with internal and external stakeholders to conduct penetration testing, vulnerability assessment and security audits. Develop standard operating procedures for incident response during ransomware attacks Vendor & Third-Party Risk Management Assess and manage security risks associated with third-party vendors and service providers. Provide input during vendor evaluation and selection based on their security capabilities and compliances with security standards. Compliance & Regulatory Requirements Ensure organization’s compliance with relevant laws, regulations and industry standards pertaining to information security. Monitor and interpret changes in security regulations and standards and assess their impact on the IT landscape. Lead and coordinate audits, assessments and certification processes related to information security. Collaboration Work closely with IT, legal, compliance, and business units to integrate security practices into daily operations. Act as the primary point of contact for security-related matters with external partners, vendors, and regulatory bodies Security awareness and Training Collaborate with learning & development team to implement security awareness and training programs about information security risks, leading practices and policies. Conduct regular security awareness campaigns, monitor and evaluate the effectiveness of security awareness efforts. Conduct Cyber War game drills with business users to enhance preparedness for handling ransomware attacks. People Management Provide direction and guidance to the team and foster a collaborative and high-performance environment. Qualification and Experience : A post-graduate or bachelor's degree in engineering with 18-22 years of work experience, including 7-10 years in leading a cybersecurity organization, is required. The role demands extensive experience in identifying and mitigating information & cyber security risks and a comprehensive understanding of regulatory requirements. Professional security certifications like CISA, CISSP, CISM, ISO 27001:2013 LA, etc., are highly desirable. Familiarity with security technologies is crucial, including firewalls, network access control, IDAM & ITDR, EDR, secure web gateways, email security gateways, data leak prevention (DLP), MFA, WAF, DDoS, PAM, SIEM & SOAR, and micro-segmentation. Other Skills: Excellent Communication, Presentation & inter-personal Skills Should possess knowledge of various Security Solutions (Endpoint Protection, Advanced Threat Protection, Data Leak Prevention), Network Security, Databases, OS, etc. Knowledge of the industry's standards and regulations in the Healthcare or Pharma industry is preferred.

About Vara: The Vara Group is the front runner in embracing innovation and leveraging world-class Infra tech to deliver maximum business value to organizations and the government. For over 7 years, Vara has been helping businesses to adopt new technologies to stay ahead of change. Our rigorous attempts to build platforms that are futuristic and need-based are backed by our research, design thinking-driven approach, and unmatched solutions in technology and operations. This creates an innovative roadmap to help Indian enterprises transit from conventional technology to smarter and quicker means. Vara excels in delivering niche solutions in the following domains: Blockchain | Cyber Security | Tolling Platform & Logistics | 3D Printing | IoT | Data Science Our offices are currently in Mumbai, Kolkata and Delhi. Please Visit www.varainfrovate.com / www.varatechnology.com for more details. Designation Manager / Senior Manager Major roles : End to end sales cycle. New client acquisition. Developing pipeline and sourcing strategic accounts with field sales, partners, marketing, technical and operational resources to create sales strategies and execute revenue goals. Enterprise Sales of Cyber Security Software. Develop and maintain commercially productive relationships. Develop and execute sales strategy and tactics that maximize Cyber Security opportunity within the customer environment. Demonstrated ability to manage solution based sales at multiple levels in our customers organization. Work closely with CXOs of the top enterprises across India. The person should have industry connects with CIOs/CTOs/CISOs across various verticals. The person should have sales & account management experience in Cyber Security services / IT Software / Hardware /Service Demonstrated ability to meet/exceed sales quotas. Roles and Responsibilities Lead presales efforts for cybersecurity solutions, focusing on application security. Collaborate with cross-functional teams to design and deliver comprehensive security architectures for clients. Develop and maintain strong relationships with key decision-makers at target accounts to drive business growth. Conduct product demonstrations, presentations, and workshops to showcase our cybersecurity offerings. Identify new sales opportunities through market research, competitive analysis, and industry trends.

As the third line of defense, Internal Audit s mission is to independently assess the firm s internal control structure, including the firm s governance processes and controls, and risk management and capital and anti-financial crime frameworks, raise awareness of control risk and monitor the implementation of management s control measures. In doing so, internal Audit: Communicates and reports on the effectiveness of the firm s governance, risk management and controls that mitigate current and evolving risk Raise awareness of control risk Assesses the firm s control culture and conduct risks; and Monitors management s implementation of control measures Goldman Sachs Internal Audit comprises individuals from diverse backgrounds including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm s businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber-security and technology risk, and engineering. Who We Look For Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, building relationships and are able to evolve and thrive in teamwork and in a fast-paced global environment. C orporate Controllers &Tax - Technology Audit As a Corporate Controllers & Tax auditor, you will be involved in auditing various Technology System Applications used within the firm to provide assurance on the data quality, data flows, data calculation processes used for both Financial and Regulatory Reporting, along with other General Technology Controls including Application entitlement, Data Retention and Software Change Management. Your Impact As part of the third line of defense, you will be involved in independently assessing the firm s overall control environment, and communicating the results to the firm s local and global management the effectiveness of the firm s controls that mitigate current and emerging risks, and monitoring the management s implementation of control measures. In doing so, you are supporting the provision of independent, objective and timely assurance around the firm s internal control structure, and supporting the Audit Committee, the Board of Directors and Risk Committee in fulfilling their oversight responsibilities. Responsibilities You will play a vital role in audit execution focusing on the review of Technology processes and analyzing the risks involved and assessing the design and operating effectiveness of the controls implemented to mitigate the risk. You will be responsible in documenting the assessments and testing conducted and discussing the results with the firms local and global management. In addition, you will also monitor and follow up with management on the resolution of the open audit findings. Basic Qualifications Degree / Certifications in Information Technology 4+ years of experience as a Technology auditor covering IT applications and processes Strong written and verbal communication skills Understanding of software development concepts and system architecture Basic level understanding of databases, operating systems and messaging Proficiency in data analysis using Excel or SQL Must be highly motivated with strong analytical skills, willing and able to learn new business and system processes quickly Preferred Qualifications Ability to review / develop code (Java, C++, Python, etc) Experience with Data Analytics tools and techniques Relevant certification or industry accreditation (eg CISA) Knowledge of Financial Products and Services

This role is responsible for leading a team to staff and execute complex audit assignments and investigations, providing valuable insights into Gartner s risk management, control, and governance processes. This role will work closely with the VP, Risk & Controls and Internal Audit team managers . This role will be based in Gurgaon, India and report to the VP, Risk & Controls. Key responsibilities: Support team leadership to staff and manage comprehensive audits of financial, operational, and compliance areas, ensuring adherence to and timely completion of the annual audit plan. Identify, assess, and document risks and controls within business processes, providing recommendations for improvement. Utilize advanced data analytics techniques to enhance audit procedures, identify trends, and uncover root causes of issues. Prepare and present clear, concise audit reports to senior management, highlighting key findings and actionable recommendations. Collaborate with cross-functional teams to drive process improvements and enhance risk management practices. Stay abreast of industry best practices, emerging risks, and regulatory changes, incorporating them into audit strategies. Key qualifications: 6-10 years of experience in internal audit, external audit, or a related field. Experience in a Big Four or large accounting firm is advantageous. Strong understanding of internal control frameworks, risk management, and governance principles is required. Proficiency in data analytics tools such as ACL, IDEA, or similar platforms, with the ability to apply advanced techniques. Expertise in ERP systems (e.g., SAP, Oracle) and IT control frameworks (e.g., COBIT, ITIL) is advantageous. Proven ability to manage multiple priorities, meet deadlines, and deliver high-quality work. Hire, train, coach and performance manage a team of 3-5 direct reports, with a focus on driving continuous improvement. Manage team s assignments with an eye for both productivity and cross-functional development. Other requirements: Bachelor s degree in Accounting, Finance, Business Administration, or a related field. A Master s degree or professional certification (e.g., CIA, CISA, CA, CPA, CFE, etc.) is highly preferred. Excellent analytical, problem-solving, and communication skills, with the ability to influence and engage stakeholders at all levels. Experience with data visualization tools (e.g., Tableau, Power BI) is a plus. Knowledge of regulatory requirements and industry standards relevant to the company s sector. Demonstrated leadership skills and experience in managing audit teams or projects.

AVP - DATA PRIVACY AND BUSINESS INFORMATION SECURITY - LEADING MNC - 8-12 YRS - MUMBAI B.E./ B.Tech./ MCA in IT or CS. ROLE: Understand the key assets and processes, identify and evaluate risks and controls, and suggest incremental controls or risk mitigation strategies Responsible for complex privacy and/or security matters and privacy programs in compliance ISO 27001, #GDPR and other global privacy laws and regulations (with additional consideration for sector-specific experience in financial services, insurance, education, telecom, biometrics, or digital advertising Drive data breach preparation, risk mitigation, coordination and responses Drive Technology transactions related to privacy and security-related due diligence and advising. Ensure business compliance with Information Security Policies and Standards while continuously monitoring and reporting on risks and documented exceptions Develop and maintain in depth understanding of region/business unit processes, systems, technologies, data, customers, consumers, partners Review and audit the Information Security Policies and Standards and technical implementations of security solutions required to meet business objectives Identify noncompliance and areas of potential improvement, and issue corrective actions Provide escalation path for security issues, incidents and inquiries Review work of the Security Incident Response and Crisis Management teams to ensure effectively driving incidents to acceptable resolution; assist with investigations as needed Work with the Compliance and Information Risk Management team to drive policy and regulatory compliance. EXPERIENCE: Certification pertaining to information security and data privacy protection (#CISSP, #CISA, #CRISC, #CISM, etc.) Experience in the design and implementation of information security programs Experience in compliance, government or financial industry. Expert level understanding of key network and technical security controls Security best practices including experience with #ISO27001 and PCI DSS Certifications: CISA/ CISSP/ COBIT/ ITILv3/ CISM/ CRISC/ ISO27001

Assist the team in planning engagements, conducting fieldwork, discussing findings and observations with the clients, preparing work papers to support conclusions and preparing written reports. Conduct IT, Data Privacy & Information Security audits. Develop policies and procedures inline with Information Security & Privacy international and local standards. Attend preliminary meetings with clients; offer advice and develop a client understanding for the overall service process; communicate access and information requirements. Support Engagement partners and Directors to lead business development initiatives including, but not limited to, review pre-engagement activities, contracting and setting up meetings with prospective clients. Keeping up to date with developments in Technology, UAE markets, relevant professional standards (eg: ISO 27001, Data Privacy Law etc.) and specific industry sectors. Pursuit of highest professional standards, specialist skills in technology and credibility in the market through continuous professional education, certification, contributions to professional groups and appropriate networking. Contribute towards managing the overall client service delivery in accordance with BDO quality guidelines & methodologies. Contribute towards managing accounts on a day-to-day basis & explore new business opportunities for the firm. Maintain professional relations with clients, answer queries, offer expert advice. Ensure thorough project documentation and maintain electronic filing in accordance to BDO guidelines. Complete project assignments with minimum supervision and within the timelines provided by the management. Required Skills: Bachelors degree in Computer science, Engineering, or related field Post-qualification work experience of 6 to 8 years, with at-least 6-year experience in implementing the regulatory & compliance framework requirements (e.g. ISO 27001, ISO 27701, GDPR, ADHICS) Experience in international and local regulatory requirements related to Data Privacy & Protection Two (2) or more industry certifications strongly preferred. Example certifications include: CISA, CISSP, CIPM/CIPP, CISM, CCSP

Security threats from computer viruses to denial-of-service attacks to information theft, are becoming more frequent and menacing just as the value of information assets increase. Thats why SAP dedicates expertise to develop the most secure enterprise solutions - to help ensure the security of SAP s customer s business operations. Within the Adoption Service Center as an employee, you will have the opportunity to work and provide solution for our customers to Run Simple Run Secure. Experience in Security Design & Blueprinting, Customization, Implementation and Auditing of SAP Roles and Authorization (S/4HANA, Fiori, BW/4HANA, HANA cloud, BTP, SAC etc.) with Greenfield implementation or Conversion projects Expert consulting knowledge in one or more of the following solutions GRC Access Control (AC), Identity Access Governance (IAG), GRC Process Control (PC), GRC Risk Management (RM), Single Sign On, SAP BTP Cloud Identity services, GRC Audit Management (AM) or Business Integrity Screening (BIS) would be a big plus. Strong knowledge and understanding of SAP Technologies and Methodologies Strong skills in the advanced security area like identity theft, data security breaches, data leakages cloud, cyber security and data privacy Ability to assist team members in the development and implementation of technical solutions (implementations, upgrades and Migrations). Responsible for maintaining a high degree of customer satisfaction in addition to growing and developing referenceable customers. Ability to adapt and function effectively in a fast-paced, changing environment while working under deadlines. A record of taking initiatives, driving results and accepting increasing levels of responsibility. Build credible relationships with peers and clients, and continuous professional learning of SAP products. Ability to learn quickly and apply knowledge effectively. What you bring Education and Qualifications/Skills and Competencies Bachelors or Master s degree in: Information Systems, Engineering, Computer Science or similar degree. Must be able to work as a team player, yet can work independently. Analytical, results-driven and have a solution oriented approach. Possess exceptional interpersonal and communication skills including verbal, written presentation and listening. Must be open to travel. Must be willing to relocate to Bangalore / Gurgaon. Certifications in SAP (Security Professional, GRC or a combination of either of them) Vendor Neutral Security certifications (Like ISO 27001/31000,CISSP, CISM, CISA, GSEC, CEH, Security+) will be a big plus Technical Skills Strong foundation on S/4HANA Security is a prerequisite. Should be able to identify and build portfolios in S/4HANA Security implementation and Conversion topics Strong in Technology security fundamentals and hands on experience on SAP specific products and solutions like SAP GRC suite of products including Access Control, Process Control, Risk Management, Audit Management, Business Integrity Screening, SAP Single Sign-On, SAP Identity Management Technical Knowledge and experience in SAP Business Technology Platform and related solutions like SAP Business Technology Platform Identity Authentication, Identity Access Governance, m Identity Provisioning is a big plus Technical Knowledge and Experience in working with SAP Application security including SAP SaaS and On-premise products Working knowledge of Operating Systems security and Database Security Secure Coding practices and Security Testing knowledge and experience in any capacity will be a big plus Technical coding skills in SQL, JavaScript and any one of programming language like JAVA or Python Work Experience Minimum 3 to 10 years of relevant work experience. Hands-on experience in implementing SAP Application Security, SAP GRC products , SAP IDM , SAP SSO (End user support profile / Application Maintenance Support need not apply ) W

The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will Understand client s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, knowledge sharing sessions etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the clients business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills and attributes for success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor s or master s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in the areas of IT Risk Management in the areas of Emerging Tech and Cloud Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Understanding of common IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS and information security frameworks such as COSO, COBIT, ISO, NIST etc. Design and Implementation of IT general controls, IT application controls, Business Process controls, etc. on cloud environments such as Azure, AWS, Google Cloud etc. Identify risks during Digital Transformations and Cloud migrations. Design or implement controls in emerging technologies such as AI/ML, Blockchain, RPA, Cloud environments etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent teaming skills, with ability to train, coach and manage team members Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CCSK or others (as relevant)

We help TMT companies create compelling employee and customer experiences, retaining skills and talent while achieving enterprise-wide operational excellence. We help them guard their data, brand and reputation. We also enable the pursuit of MA strategies that methodically create value, reduce risk and transform TMT companies into powerhouses that will lead the technology revolution of the future - building a better working world for all. ASU - TR - Technology Risk Assurance s purpose is to inspire confidence and trust to enable a complex world to work. We do so by protecting and serving the public interest, promoting transparency, supporting investor confidence and economic growth and fostering talent to provide future business leaders. We help clients by 1) Ensuring their accounts comply with the requisite audit standards 2) Providing a robust and clear perspective to audit committees and 3) Providing critical information for stakeholders. Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting implementation support etc. Your key responsibilities 1. IT General Controls/ IT SOX 2. IT Application Controls testing 3. Exposure to DevOps/CI-CD 4. Understanding emerging technologies such as AI Skills and attributes To qualify for the role you must have Qualification CA, CISA, BE/ B.Tech,, or MSC in Computer Science, Experience 2 years of experience in IT General Controls Testing/ IT Application Controls Testing

1) Ensuring their accounts comply with the requisite audit standards 2) Providing a robust and clear perspective to audit committees and 3) Providing critical information for stakeholders. Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting implementation support etc. Your key responsibilities - IT SOX - SOX 404 Testing - IT General Controls - Evaluation of IT Risk and Control Matrices, Logical Access, Change Management, Backups and Recovery, Batch Jobs, Interfaces, APIs, DevOps CI-CD Pipelines - IT Application Controls Testing - Information Produced by Entity (IPE) Testing - Evaluation of SOC 1 and SOC 2 Audit Reports - Server and Database Testing - GRC knowledge will help Skills and attributes To qualify for the role you must have Qualification CISA, CA, BE/ B.Tech,, or MSC in Computer Science, M.C.A Experience 4-6 years of relevant experience

T he Area: Morningstar is a leading global provider of independent investment insights. Our core competencies are data, research, and design, and we employ each of these to create products that clearly convey complex investment information. Our mission is to empower investor success and everything we do at Morningstar is in the service of the investor. Reporting to the Audit Committee of the Board of Directors, the purpose of the Global Audit and Assurance (GAA) function is to strengthen Morningstar s ability to create, protect, and sustain value by providing the Company with organizationally independent, risk-based, and objective assurance and consulting services to evaluate and improve Morningstar s governance, risk management, and control processes. The Role: Morningstar s GAA function seeks a highly motivated Senior IT Internal Auditor who thrives on new experiences and challenges. As a Senior IT Internal Auditor, you will play an integral role in evaluating the company s information technology and information security processes and effectiveness of internal controls. You will have the opportunity to work on a variety of information technology integrated reviews as well as evaluate the effectiveness of IT general controls over external financial reporting as part of the company s Sarbanes-Oxley Section 404 compliance activities. Based in Mumbai, the Senior IT Internal Auditor may be required to travel to a number of domestic and international locations in support of our IT internal audit plan. You will work closely with all levels of management across the organization, recommending changes to strengthen controls for increased efficiencies and reduced risks. The Senior IT Internal Auditor will have the opportunity to utilize and reference world-class audit tools and audit methodologies in the performance of his or her duties. Key responsibilities: Planning and execution of information technology and integrated audit reviews. Perform walkthroughs of complex information technology and information security processes and test the design and effectiveness of internal controls. Document work and prepare observations and recommendations for corrective action. Supervise audit staff and/or external consultants, review workpapers, and provide appropriate coaching and feedback. Effectively apply the COSO internal control framework, COBIT IT governance framework, NIST Cybersecurity framework and IIA International Professional Practices Framework. Assist audit management with the execution of continuous risk assessment and audit plan development. Serve as a consultant and business partner with management. Requirements: Action-oriented, self-starter with strong verbal and written communication skills. Comfortable working both independently or in teams and working within a complex environment. Ability to diagnose problems, determine root causes, and recommend solutions to complex challenges. Strong understanding of information technology general computer controls, system development life cycle, and IT auditing techniques; including a broad knowledge of IT technologies, operating systems, databases, and application platforms. Knowledge of recognized IT audit and governance frameworks such as COBIT, ITIL, NIST, ISO, etc. Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). Undergraduate degree in information technology, management information systems, or a related field. Minimum of 7 years of internal or external audit experience assessing information technology/security controls and/or internal controls over financial reporting. Proven ability in performing multiple projects and working with varying team members. Flexibility/ adaptability to work a non-standard schedule as needed to accommodate various time zones where some process owners are located. Willingness to travel to domestic and international offices. Experience in working for a Big 4 or Tier-Two public accounting firm is highly preferred. Experience performing data analytics and using data analysis or automated audit software is highly preferred. Professional accreditation (e.g., CIA, CISA, CPA) is highly preferred . Morningstar is an equal opportunity employer. Morningstar s hybrid work environment gives you the opportunity to work remotely and collaborate in-person each week. We ve found that we re at our best when we re purposely together on a regular basis, at least three days each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you ll have tools and resources to engage meaningfully with your global colleagues. I10_MstarIndiaPvtLtd Morningstar India Private Ltd. (Delhi) Legal Entity

T he Area: Morningstar is a leading global provider of independent investment insights. Our core competencies are data, research, and design, and we employ each of these to create products that clearly convey complex investment information. Our mission is to empower investor success and everything we do at Morningstar is in the service of the investor. Reporting to the Audit Committee of the Board of Directors, the purpose of the Global Audit and Assurance (GAA) function is to strengthen Morningstar s ability to create, protect, and sustain value by providing the Company with organizationally independent, risk-based, and objective assurance and consulting services to evaluate and improve Morningstar s governance, risk management, and control processes. The Role: Morningstar s GAA function seeks a highly motivated Senior IT Internal Auditor who thrives on new experiences and challenges. As a Senior IT Internal Auditor, you will play an integral role in evaluating the company s information technology and information security processes and effectiveness of internal controls. You will have the opportunity to work on a variety of information technology integrated reviews as well as evaluate the effectiveness of IT general controls over external financial reporting as part of the company s Sarbanes-Oxley Section 404 compliance activities. Based in Mumbai, the Senior IT Internal Auditor may be required to travel to a number of domestic and international locations in support of our IT internal audit plan. You will work closely with all levels of management across the organization, recommending changes to strengthen controls for increased efficiencies and reduced risks. The Senior IT Internal Auditor will have the opportunity to utilize and reference world-class audit tools and audit methodologies in the performance of his or her duties. Key responsibilities: Planning and execution of information technology and integrated audit reviews. Perform walkthroughs of complex information technology and information security processes and test the design and effectiveness of internal controls. Document work and prepare observations and recommendations for corrective action. Supervise audit staff and/or external consultants, review workpapers, and provide appropriate coaching and feedback. Effectively apply the COSO internal control framework, COBIT IT governance framework, NIST Cybersecurity framework and IIA International Professional Practices Framework. Assist audit management with the execution of continuous risk assessment and audit plan development. Serve as a consultant and business partner with management. Requirements: Action-oriented, self-starter with strong verbal and written communication skills. Comfortable working both independently or in teams and working within a complex environment. Ability to diagnose problems, determine root causes, and recommend solutions to complex challenges. Strong understanding of information technology general computer controls, system development life cycle, and IT auditing techniques; including a broad knowledge of IT technologies, operating systems, databases, and application platforms. Knowledge of recognized IT audit and governance frameworks such as COBIT, ITIL, NIST, ISO, etc. Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). Undergraduate degree in information technology, management information systems, or a related field. Minimum of 7 years of internal or external audit experience assessing information technology/security controls and/or internal controls over financial reporting. Proven ability in performing multiple projects and working with varying team members. Flexibility/ adaptability to work a non-standard schedule as needed to accommodate various time zones where some process owners are located. Willingness to travel to domestic and international offices. Experience in working for a Big 4 or Tier-Two public accounting firm is highly preferred. Experience performing data analytics and using data analysis or automated audit software is highly preferred. Professional accreditation (e.g., CIA, CISA, CPA) is highly preferred . Morningstar is an equal opportunity employer. Morningstar s hybrid work environment gives you the opportunity to work remotely and collaborate in-person each week. We ve found that we re at our best when we re purposely together on a regular basis, at least three days each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you ll have tools and resources to engage meaningfully with your global colleagues. I10_MstarIndiaPvtLtd Morningstar India Private Ltd. (Delhi) Legal Entity

Scope of Role This is a hands-on role that will actively lead and/or participate in a variety of audits which includes all phases of audit planning, execution and communication of results to management. This role serves as an important member of the Corporate Internal Audit team, contributing to the development of standard frameworks and practices that enable accurate and timely audits. Individual should be self-directed with willingness to work in a team environment that encourages personal and professional growth, must maintain high degree of professionalism and objectivity, and demonstrate strong integrity and ethical values. This role will collaborate with a broad network of individuals across the global organization to fulfill the responsibilities of the role. Opportunity enables development and exposure for future career growth opportunities within the IT organizations within Regal Rexnord. Key Responsibilities You will be responsible for leading and/or assisting with information technology audits at all U.S. and foreign business operations. Participate in all phases of the audit process including risk assessment, planning, execution and communicating audit results. Evaluate business processes to identify areas of risk, identify related IT controls, assess efficiency and effectiveness of controls and processes, as well as assist in developing recommendations for improvements. Assess risks and controls over operating systems, databases, infrastructure, and applications. Identify and evaluate control and process weaknesses, communicate audit findings to management and assist in preparing and presenting audit reports to management. Perform testing of internal controls over financial reporting to assist management in complying with Sarbanes-Oxley Section 404. Perform data analytics utilizing data extraction / analysis tools. Collaborate with the company s external audit firm on various projects and assignments, as needed. Model and demonstrate the use of 80/20, continuous improvement to deliver measurable improvements in processes that align with the Corporate Internal Audit s organizational strategy. Functional Expertise Based on previous audit experience, is able to be self-directed and execute audits within business, finance and IT teams. Ability to identify opportunities to simplify processes and enhance value of internal audit for the enterprise. Professional Experience/ Qualifications The successful candidate will have experience in developing collaborative relationships across the organization. This professional must have the passion, energy and intellectual curiosity necessary for a fast-paced, growth-driven environment. Be able to employ forward thinking and have the ability to expeditiously execute audits and projects with a continuous improvement mindset. Education BS in Information Technology, Accounting or Finance CISA, CIA or CPA certification preferred Technical Skills and Prior Experience Minimum three years prior experience in an external audit firm or internal audit Fundamental understanding of business processes, IT systems, risks and controls Experience in auditing IT systems including operating systems, databases, and applications (SAP and Oracle preferred) Effective written and verbal communication skills Good interpersonal and facilitation skills Self-motivated, good organization and planning skills Ability to work in a team environment Working knowledge with Microsoft Suite Proven ability to be hands on, roll up sleeves and demonstrate resourcefulness, initiative, results-orientation. A mindset of continuous improvement and can embrace Regal Rexnord s 80/20 principles. Demonstrated ability to develop strong partnerships and influence resources outside one s direct responsibility Ability to travel 10% domestically and internationally, as needed Ability to work in a hybrid in-office/remote working model About Regal Rexnord Regal Rexnord is a $6.5B publicly held global industrial manufacturer with 30,000 associates around the world who help create a better tomorrow by providing sustainable solutions that power, transmit and control motion. The Company s electric motors and air moving subsystems provide the power to create motion. A portfolio of highly engineered power transmission components and subsystems efficiently transmits motion to power industrial applications. The Company s automation offering, comprised of controls, actuators, drives, and precision motors, controls motion in applications ranging from factory automation to precision control in surgical tools. The Company s end markets benefit from meaningful secular demand tailwinds, and include factory automation, food & beverage, aerospace, medical, data center, warehouse, alternative energy, residential and commercial buildings, general industrial, construction, metals and mining, and agriculture. Regal Rexnord is comprised of three operating segments: Industrial Powertrain Solutions, Power Efficiency Solutions, and Automation & Motion Control. Regal Rexnord has offices and manufacturing, sales and service facilities worldwide. For more information, including a copy of our Sustainability Report, visit RegalRexnord.com.

Position SAP Security GRC DevOps Experience 4+ years Job Summary The SAP Security GRC DevOps will be responsible for the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security practices are integrated into the DevOps lifecycle. Key Responsibilities Design and implementation of SAP GRC solutions to ensure compliance with internal policies and external regulations. Individually contribute to resolving production support tickets in Security , GRC area Collaborate with development, operations, and security teams to integrate security measures into CI/CD pipelines. Conduct risk assessments and audits to identify vulnerabilities and recommend remediation strategies. Develop and maintain security policies, procedures, and standards related to SAP security and GRC. Monitor and analyze security incidents and breaches, providing timely responses and resolution. Stay updated on industry trends and regulatory changes affecting SAP security and compliance. Requirements Bachelor s degree in computer science, Information Technology, or related field. 4+ years of experience in SAP security and GRC, with a focus on DevOps practices. Strong knowledge of SAP security architecture, role-based access control, and GRC frameworks. Experience with cloud platforms and containerization technologies (e. g. , AWS, Azure, Docker). Proven ability to manage multiple projects and priorities in a fast-paced environment. Excellent problem-solving skills and attention to detail. Strong communication and interpersonal skills to work effectively with diverse teams. Preferred Qualifications Relevant certifications in SAP security or GRC (e. g. , CISA, CISSP, SAP Certified Technology Associate). Experience with automation tools and scripting languages (e. g. , Python, PowerShell).

About The Role : Experience in Risk, Compliance, Assurance and Regulatory areas. Preferred candidate with professional consulting experience in risk management ideally with a Big4 or similar large consulting firm. Good understanding of Technology Risk and Compliance frameworks is preferred. Ensure strategic objectives are implemented, risks managed, and benefits realised. Advise the projects and programs on how to identify, monitor, measure and manage existing and emerging risks. Provide independent oversight and challenge the effectiveness of risks and controls during pre and post implementation of projects. Good communication and presentation skills with a proven track record in stakeholder engagement and influencing skills. Ability to plan and prioritise to manage multiple work streams/tasks simultaneously. Candidates with certifications like CISA, CRISC, and PRINCE2/Agile will be preferred. Primary Skills Risks and Controls Management within technology space Technology Insight (Infrastructure, Data, Cloud and Service Management) Project Lifecycle Management Stakeholder engagement Secondary Skills Team Management Presentation skills Inclusive Communication Multi-Tasking

Location- Bangalore, Hyderabad, Kolkata, Kerala, Pune, Noida, Gurgaon Exp- 3-6 Years To qualify for the role, you must have A bachelors or masters degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Risk Assessment – Assessment of internal processes to identify security findings, vulnerabilities, and control gaps/deviations identified on applications and infrastructure. Develop risk control matrix in line with COBIT, ISO, NIST and ITIL Best Practice and recommendations. Asses. Control Monitoring / Testing - Understanding of Cyber and compliance standards like PCI, ISO27001, perform test the design and operational effectiveness of the controls. Control Automation – Identify controls automation opportunities through analytics platform to monitor the operational effectiveness on the regular basis. Defect / Gap Identification: Identify the confidentiality, integrity and the availability related deficiencies in the client environment and evaluate against industry standards. Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, ISO 27001, and others (as relevant)

Location -Kolkata, Trivandrum, Bangalore, Chennai, Hyderabad, Noida, Gurgaon, Pune Experience- 3-6Years To qualify for the role you must have A bachelors or masters degree and at least 3-5 years of related work experience Deep understanding of Oracle business processes (e.g., purchase-to-pay, record-to-report, order-to-cash). Oracle Fusion Cloud/EBS Experience: Experience in Internal controls within Oracle Applications and their integrations and strong understanding of IT application controls, IT general controls and interface controls. Securing application and DB layer within Oracle EBS/Fusion AND/OR Strong understanding of Segregation of Duties and User provisioning, experience implementing, assessing, or implementing controls monitoring tools like Oracle Advanced Controls, Oracle Risk Management or other GRC tools AND/OR Experience implementing and supporting at least one Oracle Fusion Cloud or Oracle EBS implementations in a Functional role. Excellent teaming skills, with ability to train, coach and manage staff Excellent communication, documentation and report writing skills Professionals with Oracle certification preferred, Good to have additional Industry related certification such as CISA, CISM etc.

Control & Compliance Position: Lead-Client Ops Education: CA/CA inter Exp: 12+ yrs Exp in Risk assessment, ToD/ ToE for process controls relating to P2P, O2C, & R2R,SOX principles, COSO Frameowrk. Loc: Jaipur Salary upto.30LPA Regards, Js4u Team

Job Title: Senior Analyst - Regional IT Governance (Asia) Reports To: Senior Manager - Regional IT Governance (Asia) Job Type: Full-time Job Overview: We are seeking a highly skilled and motivated Senior Analyst - Regional IT Governance, to join our IT governance team. In this role, you will coordinate IT governance, risk, and cost management initiatives across Yamaha s Asian regional companies, ensuring alignment with Yamaha s global policies and standards. Key Responsibilities: IT Governance Strategy Alignment: Assist in implementing and maintaining IT governance frameworks, policies and best practices in line with Yamaha s global policies and local regulations across the Asia region. Act as a liaison to ensure progress of key themes/projects across all regional IT teams and share the progress and key milestones with Yamaha s HQ. Enhance communication across Asia member group of companies and holding Regional IT Governance Committee meetings. IT Risk Management: Identify, assess, and mitigate IT risks in collaboration with local IT teams, ensuring robust cybersecurity measures across the region. Oversee regular IT audits to monitor risk controls, ensuring alignment with HQ s expectations and compliance with regulatory requirements. Work closely with HQ to report on risk management, identifying proactive strategies to address emerging threats. IT Resource Optimal Allocation: Collaborate with IT teams across Asia to collect, validate and consolidate IT Investment budgets, facilitating cost-effective resource allocation and adherence to financial targets. Provide regular reports to HQ on budget status, cost-saving initiatives, and value-driven spending across regional projects. Stakeholder Communication and Regular Reporting: Provide detailed, regular reports to HQ on IT initiatives, compliance, risk mitigation efforts, and project status, tailored to inform HQ leadership s strategic decisions. Facilitate cross-regional knowledge sharing, promote best practices, and encourage a collaborative approach to IT governance in alignment with HQ s goals. Qualifications and Skills: Educational Background: Bachelor s degree in information technology, Computer Science, or a related field. Experience: 4 to 6 years of experience in IT governance, risk management, compliance, or IT project management, ideally within a multinational organization. Certifications: Relevant certifications such as CRISC, CISA, ITIL, COBIT etc. are preferable. Technical Skills: Deep understanding of IT governance frameworks (COBIT, ITIL, ISO 27001), compliance standards, risk management and IT cost management. Regional Expertise: Familiarity with regulatory environments in Asian countries and experience managing cross-country IT governance. Communication: Excellent communication, and interpersonal skills, with demonstrated ability to engage and influence stakeholders at all levels. Analytical Skills: Strong analytical skills, capable of providing detailed, data-driven insights to HQ to support effective decision-making. Efficiency in Excel, PowerPoint and reporting tools. Job Title: Senior Analyst - Regional IT Governance (Asia) Reports To: Senior Manager - Regional IT Governance (Asia) Job Type: Full-time Job Overview: We are seeking a highly skilled and motivated Senior Analyst - Regional IT Governance, to join our IT governance team. In this role, you will coordinate IT governance, risk, and cost management initiatives across Yamaha s Asian regional companies, ensuring alignment with Yamaha s global policies and standards. Key Responsibilities: IT Governance Strategy Alignment: Assist in implementing and maintaining IT governance frameworks, policies and best practices in line with Yamaha s global policies and local regulations across the Asia region. Act as a liaison to ensure progress of key themes/projects across all regional IT teams and share the progress and key milestones with Yamaha s HQ. Enhance communication across Asia member group of companies and holding Regional IT Governance Committee meetings. IT Risk Management: Identify, assess, and mitigate IT risks in collaboration with local IT teams, ensuring robust cybersecurity measures across the region. Oversee regular IT audits to monitor risk controls, ensuring alignment with HQ s expectations and compliance with regulatory requirements. Work closely with HQ to report on risk management, identifying proactive strategies to address emerging threats. IT Resource Optimal Allocation: Collaborate with IT teams across Asia to collect, validate and consolidate IT Investment budgets, facilitating cost-effective resource allocation and adherence to financial targets. Provide regular reports to HQ on budget status, cost-saving initiatives, and value-driven spending across regional projects. Stakeholder Communication and Regular Reporting: Provide detailed, regular reports to HQ on IT initiatives, compliance, risk mitigation efforts, and project status, tailored to inform HQ leadership s strategic decisions. Facilitate cross-regional knowledge sharing, promote best practices, and encourage a collaborative approach to IT governance in alignment with HQ s goals. Qualifications and Skills: Educational Background: Bachelor s degree in information technology, Computer Science, or a related field. Experience: 4 to 6 years of experience in IT governance, risk management, compliance, or IT project management, ideally within a multinational organization. Certifications: Relevant certifications such as CRISC, CISA, ITIL, COBIT etc. are preferable. Technical Skills: Deep understanding of IT governance frameworks (COBIT, ITIL, ISO 27001), compliance standards, risk management and IT cost management. Regional Expertise: Familiarity with regulatory environments in Asian countries and experience managing cross-country IT governance. Communication: Excellent communication, and interpersonal skills, with demonstrated ability to engage and influence stakeholders at all levels. Analytical Skills: Strong analytical skills, capable of providing detailed, data-driven insights to HQ to support effective decision-making. Efficiency in Excel, PowerPoint and reporting tools.

Why Choose Bottomline? Are you ready to transform the way businesses pay and get paid? Bottomline is a global leader in business payments and cash management, with over 35 years of experience and moving more than $16 trillion in payments annually. Were looking for passionate individuals to join our team and help drive impactful results for our customers. If youre dedicated to delighting customers and promoting growth and innovation - we want you on our team! Job Summary As a Data Loss Prevention (DLP) Analyst, you will play a key role in protecting our organization s sensitive data from accidental or malicious loss, leakage or theft. This role reports to the Head of Product Security and is responsible for implementing and managing various DLP strategies and technologies to monitor and control the movement of confidential information. Essential Functions and Responsibilities: Implement and manage DLP solutions to monitor data flow and detect potential security breaches. Support the Incident Management team with expert analysis in matters of data loss or leakage. Enforce data protection policies and procedures, and contribute to continuous process improvement. Conduct regular assessments of data protection controls to identify and quantify data loss risks Collaborate with IT and Development teams to develop risk mitigation plans to promote secure data management practices and compliance with key security controls. Contribute to training and awareness programs for employees on data protection best practices. Stay updated with the latest data protection regulations, industry standards and DLP technologies. Required Experience & Qualifications 3+ years of experience in Cybersecurity or Data Loss Prevention Bachelor s degree in Computer Science, Information Security, or a related field. Proven experience in data loss prevention, data protection or data privacy roles. Strong understanding of data classification, DLP technologies and data protection regulations. Knowledge of security tools and technologies such as DLP software, encryption and access control. Excellent problem-solving skills and attention to detail Strong communication and collaboration skills to work effectively with cross-functional teams. Preferred Experience & Qualifications Cyber certifications (e.g., CISM, CISSP, CDPSE, CISA, GISF, GSEC, CASP+, CEH) or equivalent Note: This job description is not intended to be an exhaustive list of all duties, responsibilities, or qualifications associated with the position. We welcome talent at all career stages and are dedicated to understanding and supporting additional needs. Were proud to be an equal opportunity employer, committed to creating an inclusive and open environment for everyone.

Role - IS/IS Audit Location- Noida or Mumbai Roles and Responsibilities OVERALL RESPONSIBILITY: The IT/IS Auditor has a primary responsibility to assist in audit engagement, planning and reporting activities. The candidate should have clear understanding of IT audit methodologies. Further, the candidate will be expected to work with other team members on similar assignments and ability to work under pressure in a fast-paced environment. Key Responsibilities: Independently execute technology audit assignments including Cloud security ,Cyber security, Data privacy, Business Continuity, IT Application controls, IT Planning, Implementation, Operations, Contract evaluations, Network Perimeter DMZ Security, Enterprise Architecture etc. Financial and IT application experience (Like CBS, Mob Banking app, SAP and etc.) Evaluation of control design and operating effectiveness, documentation of Standard Operating Procedures and flowcharts. Identify and evaluate risk areas covering processes related to Applications, Network and IT systems and provide comprehensive input to risk-based plan. Conduct process reviews through stakeholder interviews, data validations, and document analysis. Preparing detailed audit documentation including Audit report, working papers, process analysis, case study and process benchmarking. Support in preparation of audit committee decks and reports. Desired Candidate Profile A degree in information technology/computer information systems or related. 2 to 8 years of experience in IT audits / InfoSec audits. Excellent Oral Written and Communication Skills Certifications like CISA, CISSP, CISM, ISO27001 LA (preferred)

Staff Cybersecurity Engineering As a Staff cybersecurity engineer with Convera, we are looking for the primary administrator of an automated GRC platform to support the Convera cybersecurity program and all the IT stakeholders. You will also support efforts using this system for responding to regulator questions, independent audit, and customer assurance. You will be responsible for: Represent the Convera cybersecurity team in the India region with respect to compliance and cybersecurity activities. Ensure controls are followed continually and without material audit findings or qualifications. Respond and assist with urgent new cybersecurity requirements, security incidents, outages, and customer grievances. Participate and report on multi-regional projects to identify and track appropriate corrective measures to resolve issues as they arise. Develop and manage project plans and budget/resource estimates as needed. Participate in Vendor / Supply Chain Risk Management to ensure availability Perform vendor due diligence Cyber risk reviews to ensure supply chain compliance Assist in Vendor Onboarding/Contract Negotiations related to cybersecurity Perform cyber resiliency assessments to detect and identify weaknesses in the security posture of the organizations resiliency and recovery strategies Assist with vendor due diligence risk reviews and questionnaires to ensure supply chain compliance. Assist in working with Convera vendors, contactors, and third parties to confirm compliance to Convera policies, service level agreements, and acceptable usage policies. Find, report, and help remediate cybersecurity risks and compliance gaps to Convera and Convera-contracted services by working with IT teams, business teams, and other stakeholders. Oversee regular vulnerability assessments, internal technical reviews, and penetration testing of cloud environments and applications Partner with IT teams to develop and implement remediation strategies for identified security issues Develop metrics and reports to track vulnerability management program effectiveness Evaluate and recommend security tools and technologies Provide security guidance to technical teams Facilitate, coordinate, and obtain vulnerability reporting requirements from multiple stakeholders. Assist on Risk Assessments Document, analyze, and report control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities. Partner with IT teams to develop and implement remediation strategies for identified security issues Assist in investigating internal and external information security risk and exceptions assessments Partner with SecOps Enterprise Tech on new business solutions architecture Help assess incidents, vulnerability management, scans, patching status, secure baselines, penetration test result, phishing, and social engineering tests and attacks. Inform the proper stakeholders of important concerns and hazards. Be proactive in seeking out areas for improvement and offer insightful advice and value-added guidance on process and control enhancements. Operate with a high degree of independence regarding cybersecurity project and program activities. Manage multi-regional projects to identify and track appropriate corrective measures to resolve issues as they arise. Respond and assist with urgent new requirements, security incidents, outages, and customer grievances. Develop and manage project plans and budget/resource estimates as needed. Assist in security incident response and forensic investigations when needed Assist in internal and external audit efforts. Support new security and privacy compliance changes from all over the world. About You Have 5+ years experience in cybersecurity with a focus on compliance and risk in the finance and payment industry. CompTIA Security+, (ISC)2 SSCP, GSEC, AWS Certified Cloud Practitioner, Azure Security Engineer Associate, Certificate of Cloud Security Knowledge or other industry recognized technical, or security certification(s). CISSP, CISA, CISM, or other industry recognized security certification(s) are preferred. Hands on experience with vulnerability scanning tools and penetration testing methodologies Skilled at analyzing complex problems, impact analysis, and enabling informed decision making. Excellent interpersonal, communication, and presentation skills, including a strong customer service orientation. Up to date with technology and compliance risks facing dynamic organizations, with an excellent understanding of the regulatory environment and the challenges to meet a rapidly evolving landscape. Expertise in planning and delivering a wide range of projects including embedding risk and governance frameworks, introducing new policies and processes, and implementing IT systems. Successful at stakeholder engagement and experienced at operating at both strategic and tactical levels. Can quickly identify key operational risks, material impacts, risk indicators and controls within the business area. Experience with working on IT systems in a global 24x7 operation with varying levels of uptime and security requirements. Have a strongly motivated to work independently, desire to learn and grow in a fast-paced, complex environment. Develop and manage project plans and budget/resource estimates as needed. A fast learner, able to manage details and complex needs. Are up to date with technology and compliance risks facing dynamic organizations, with an excellent understanding of the regulatory environment and the challenges to meet a rapidly evolving landscape. Have strong and honest communication skills as well as confident communicating verbally and in writing. Have a basic understanding of the finance industry, risk management, and cloud technology. Familiar working with industry-standard regulatory requirements (SOC1/2, PCI, GDPR, etc.) and technical standards (CIS, NIST, STIG, etc.) Excellent interpersonal, communication, and presentation skills, including a strong customer service orientation and confident in communicating verbally and in writing with respect to local cultures and languages. About Convera Convera is the largest non-bank B2B cross-border payments company in the world. Formerly Western Union Business Solutions, we leverage decades of industry expertise and technology-led payment solutions to deliver smarter money movements to our customers - helping them capture more value with every transaction. Convera serves more than 30,000 customers ranging from small business owners to enterprise treasurers to educational institutions to financial institutions to law firms to NGOs. Our teams care deeply about the value we bring to our customers which makes Convera a rewarding place to work. This is an exciting time for our organization as we build our team with growth-minded, results-oriented people who are looking to move fast in an innovative environment. As a truly global company with employees in over 20 countries, we are passionate about diversity; we seek and celebrate people from different backgrounds, lifestyles, and unique points of view. We want to work with the best people and ensure we foster a culture of inclusion and belonging. We offer an abundance of competitive perks and benefits including: Competitive salary Opportunity to earn an annual bonus. Great career growth and development opportunities in a global organization A flexible approach to work There are plenty of amazing opportunities at Convera for talented, creative problem solvers who never settle for good enough and are looking to transform Business to Business payments. Apply now if you re ready to unleash your potential. #LI-KP1

Description The Assistant Department Manager - Finance Technology will lead and manage the Financial Automation and Financial Systems teams and ensure seamless integration of technology and finance operations. This role combines financial expertise with technological acumen to drive efficiency, innovation, and data-driven decision-making within the finance department. The Assistant Department Manager will collaborate with US Finance Managers and Controller and implement strategic plans to achieve long-term US Corporate Financial Services goals. This role requires strong leadership, organization, and communication skills as well as a strong background in finance and technology to drive team performance and achieve departmental objectives. Key Responsibilities: Collaborate with US finance leadership, BMI department managers, and implement strategic plans to achieve long-term US Corporate Financial Services vision and goals. Lead and manage the Automation and Financial Systems teams. Conduct performance evaluations and provide professional development opportunities. Mentor and develop team members, providing guidance and support. Oversee the discovery and implementation of automation solutions to enhance efficiency and accuracy as well as manage the development, implementation, and maintenance of financial systems Collaborate with IT and other departments to integrate financial systems with other business systems. Monitor industry trends and advancements in financial technology to keep the organization at the forefront of innovation. Identify opportunities for automation within finance processes. Identify and develop Subject Matter Experts (SME) within financial systems and automation teams Foster a collaborative and innovative team environment. Ensure financial systems are aligned with organizational goals and regulatory requirements. Qualifications Professional / Masters s degree in Finance, Accounting, Information Technology, Computer Science or a related field. Professional certification (e.g., CA, CPA, CFA, CISA, BE) is preferred. Minimum of 12 years of experience in financial management, technology, or a related role. Strong understanding of financial systems and automations and having experience of ERP Implementation/Support, RPA, UI Path, Alteryx, Data Analytics, Microsoft Power Platform, Python etc. An expert collaborator, who builds active strategic partnerships and mutually beneficial relationships to pre-empt sources of conflict and ensure continued collaboration that drives performance for the organization A proven track record of driving successful transformation and change It shows courage and confidence to speak up and challenge competently even when confronted with resistance or unfamiliar circumstances. Strong leadership, Strategic Thinking and team management skills. An experienced people-leader, who can deliver optimal work design, development, and drive performance through their team. Excellent communication and interpersonal skills. Strong problem-solving and decision-making abilities. Job Accounting/Finance Primary Location India-Maharashtra-Mumbai Schedule: Full-time Travel: No Req ID: 250566 Job Hire Type Experienced Not Applicable #BMI N/A

Job Description in brief including Roles Responsibilities : Project delivery for skills - ISO 27001, SOC 12, GDPR, Risk Assessment, SOX, HIPPA, HITRUST, etc. Hands on experience and/or working knowledge. Knowledge on laws, framework, and regulations pertaining to information security standards - ISO27001, NIST CSF, SOC, Privacy. Conduct third party risk assessments vendor risk assessments in alignment with company security policies and industry standards. As part of the SRC team deliver on engagements related to information security, cyber security, risk management and privacy for our customers across the globe. Responsible for managing and delivering on accounts in accordance with SISA quality guidelines methodologies. Execute the engagement requirements, prepare and validates reports and schedules that will be delivered to clients and other parties. Work effectively as team lead and managing the team members, sharing responsibility, providing support, maintaining communication and updating management on progress. Develop and maintain productive working relationships with client personnel. Prepare status updates and prepare management presentations etc. Actively contribute to improving operational efficiency on projects internal initiatives. Assist in creating innovative insights for clients, adapt methods practices to fit operational team needs, contribute to thought leadership documents and develop new methodologies. Understand and follow workplace policies and procedures. Flexible to travel to client location for the project delivery. Conducting research, surveys and interviews to gain understanding of the business. Assessing the pros and cons of possible strategies. Compiling and presenting information orally, visually and in writing. Mandatory Skills required for the role: Have min 2 years of experience doing assessment for - ISO 27001, SOC 1 / SOC 2, Risk Assessments, GDPR assessments, SOX. Have 2+ years of experience in internal auditing (ISO 27001). Have ~1yr of experience in HIPPA HITRUST CSF Education Requirements: Any Graduation - BCA, B.E. or Post Graduation - MCA, M. Tech in Computer science (CS) / Information Science/ Forensic analysis / Cybersecurity Certification: ISO 27001 LA or LI, CISA, CISM optional Personal Attributes: Excellent verbal and email Communication Skills. Strong interpersonal and presentation skills. Ability to handle difficult situations effectively. Ability to analyse and solve complex issues. Able to prioritize and execute tasks in a high-pressure environment. Keen attention to detail. Experience working in a team-oriented, collaborative environment. Flexible and multi-tasking ability, coordinating work effort over numerous projects.