Audit Assignment Execution - Execute the audit plan to ensure complete coverage of internal audit while adhering to the timelines - Collaborate with the internal teams to ensure timely and smooth availability of necessary documents from the auditee - Track that the complete audit check list is taken care of in audit of each file and the same is suitably recorded. - Complete defined audit plan & schedule discussion and meetings with auditee for timely completion of the assigned tasks Corrective and Preventive Action, Follow up & Testing - Monitor implementation of all corrective and preventive action agreed with the auditee and notify Lead Internal Audit in case of anomalies - Provide suggestions for process improvements based on the audit results - Meet auditees at defined intervals to monitor the progress on implementation on agreed points of action. - Check updated manuals and SOPs for insertion / modification on points of agreed recommendations. - Track repeated audit observations on specific areas/non- corrective action despite the mutual agreement and highlight the same to Lead Internal Audit Audit Reports - Create audit reports while ensuring correctness and completeness of audit reports in a timely manner - Discuss with Lead-internal audit on reports to ensure timely finalization of audit reports with corrective and preventive action plans along with timelines Monitor quality assurance reports to ensure adherence to process guidelines by the claims teams Internal Audit Process - Track and follow updates of internal audit templates and tools to ensure adherence to defined processes - Follow the defined audit process (engagement communication, work-paper documentation, final report release) for each audit being performed by self - Execute open action plans to ensure closure of action plans within the stipulated time - Complete documentation of work-papers for each audit

Job Title: GRC Analyst Location: Hyderabad, Onsite Job Overview: We are seeking a detail-oriented and proactive GRC Analyst to join our team. The successful candidate will be responsible for assisting in the development, implementation, and monitoring of governance, risk, and compliance (GRC) programs. The GRC Analyst will help ensure the organization adheres to regulatory standards and industry best practices, while minimizing risks and maximizing operational efficiency. Key Responsibilities: Governance, Risk, and Compliance Management : Support the development and execution of GRC frameworks and processes aligned with regulatory requirements and industry standards. Risk Assessment & Management : Assist in identifying, evaluating, and documenting potential risks to the organization s operations, information, and assets. Compliance Monitoring : Track and ensure compliance with internal policies, regulatory standards, and external laws such as GDPR, DPDPA, SOC 2, & industry standards ISO 27001, NIST etc and others. Audit Support : Help prepare for audits by gathering necessary documentation, conducting internal audits, and addressing audit findings. Policy and Procedure Development : Collaborate in creating, reviewing, and updating policies and procedures to align with governance, risk, and compliance requirements. Training and Awareness : Provide training and awareness programs for employees on GRC best practices and the organization s compliance requirements. Incident Management : Support the investigation of compliance breaches or risk events, help document findings, and assist with corrective actions. Reporting : Prepare regular reports on risk and compliance status for senior management, ensuring clear communication of potential issues and mitigation strategies. Continuous Improvement : Recommend and assist in implementing improvements to the GRC processes and tools to enhance efficiency and effectiveness. Security and Privacy Assurance Third-Party Risk Management Required Qualifications: Bachelor s degree in Business, Information Technology, Risk Management, or related field. 4-6 years of experience in Governance, Risk, and Compliance or related areas. Familiarity with GRC frameworks, regulatory requirements (GDPR, DPDPA, SOC 2, & industry standards ISO 27001, NIST etc.), and risk management methodologies. Knowledge of industry standards and best practices in risk management, compliance, and security. Strong analytical and problem-solving skills. Excellent communication skills, both written and verbal. Detail-oriented with the ability to handle sensitive and confidential information. Knowledge of cybersecurity principles and data privacy laws Ability to manage and collaborate with cross-functional teams in product and IT environments. Preferred Qualifications: Professional certifications such as Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or similar. Experience in IT risk management or cybersecurity. Ability to work independently and as part of a team. Expertise in GDPR and DPDPA Act/Laws

Monitoring and analysis of cyber security events with the use of RSA SIEM solutions Conduct security assessments regularly to identify vulnerabilities and performing risk analysis. Execution of SOC procedures analyse the breach to reach the root cause. Triage security events and incidents, detect anomalies, and report remediation actions. Generate reports for IT administrators, business managers, and security leaders. These reports serve as an input to evaluate the efficacy of the security policies. Keep the security systems up to date and contributing to security strategies. Document incidents to contribute to incident response and disaster recovery plans. In the case of third-party vendors, verify their security strength and collaborate with them. Ensure completeness of the incident information. Analysis of phishing emails reported by internal end users. Escalation of incidents to be handled to L2 SOC team, when relevant. Follow up on remediation activities Triage on general information security tickets. Skills: SOC analysts are expected to be proficient with various skills of the operating system, SIEM, application security and more. Successful SOC analysts bring an analytical mind, has interpersonal skills, and are team-players. The candidate must be knowledgeable Cortex XSOAR, Gurucul UEBA, Cyware TIP, PCAP, NBAD. Qualifications: B.E/B. Tech/B.Sc. with Minimum 2-3 years of experience in Security Operation Centre. Preferable Certification: CCSP/CEH/CISA/CISM/CISSP

Role & responsibilities Job Purpose (State in one sentence the overall objective of the job) As part of the Security Architecture and Advisory team, the OT Security Lead will review, implement, and enhance security architecture standards for OT infrastructure and ICS systems and provide comprehensive end-to-end security. Major Accountabilities (Describe the main results of the job to be achieved) Create and execute the strategy, vision, and roadmap for Organizations OT security Define and document the overall OT network security architecture (including OT network segmen-tation approach) Create standard frameworks and configuration standards across OT security capabilities Maintain and operate technology related to ICS security to prevent unauthorized access and busi-ness disruption Coordinate OT security risk assessments, develop risk treatment plans, produce assessment re-ports on a regular basis, and ensure that metrics are tracked Assess and implement required security controls, and identify recommendations for improvement in line with industry standards to maintain an effective security posture Drive change management processes for the OT environment and support the OT asset inventory (systems, machines, firmware and software) by orchestrating OT asset collection, tracking, and maintenance Partners with security architects to identify and evaluate the impact of emerging technologies in the OT environment (e.g.: introduction of newly developed tools into the production facilities) Collaborate with the different security teams, such as: Collaboration with the Governance Risk and Compliance (GRC) team to create the nec-essary policies, and procedures for the cybersecurity domains listed above Collaboration with the Incident Response team to perform IR activities within the OT en-vironment Collaboration with the Culture and Awareness team to jointly develop internal communi-cation and trainings plans to increase security awareness, e.g.: in manufacturing sites Enable strategic decisions to provide secure OT capabilities Develop and maintain strong relationships with vendors and strategic external partners Deliver high quality work outcomes in a high-pressure, fast paced setting to meet company needs Education: • Bachelors in engineering/Masters in Science • Certification or accreditation in Information Security (e.g.: CISM, CISA, CISSP, etc.) a plus but not required Languages: • English Experience and Skills: Secure IT OT Integration Architecture • Zero Trust and Network Segmentation design in OT • Knowledge on IEC 62443 , NIST 800-82 • Minimum 12 years experience in OT security solution design and engineering • Previous experience of running an OT security organiza-tion in regulated environment • Excellent negotiation, communication, and interpersonal skills ability to develop influential relationships with differ-ent stakeholders across all levels • Change Management Champion with experience in lead-ing teams through large-scale IT change/transformation programs • Highly experienced people leader with the ability to lead and develop diverse teams across wide geographies • An entrepreneurial mindset driven by curiosity, continuous improvement, and interest in technical advancements and trends • Strong project management skills with the ability to multitask and properly delegate work. company Name : Sandoz Location : Hyderabad Contract for 6 months and will be renewed on performance base. share resumes to nedunuri.saikumar@manpower.co.in

Roles and Responsibilities: Take end-to-end ownership over advisory and validation of residual risk issues Lead and execute formal risk reviews and assessments Review and challenge risk exception requests Collaborate with internal stakeholders to ensure remediation dependencies are captured and managed Identify and act upon opportunities to improve Risk Governance processes Participate in global and regional governance committees Act as a role model for Risk Excellence Interface Regulator Exams (RBI/IFTAS/SEBI/NPCI) Identify/Assess/Manage Risks against LRR and internal policies, and Track them to closure through Issue Management Experience Required: Bachelor's degree in Information Technology, Risk Management, Audit, or related field Experience in Technology Risk & Control, Risk Assurance, IT Security or Technology Operations Ability to break complex problems down into manageable action plans Ability to effectively balance multiple tasks through careful prioritization Ability to work independently while sharing expertise with others Strong communication and stakeholders management skills Preferred Qualifications: A minimum of 5 years of experience in IT Risk, IT Audit, IT Security, Project Management or Technology Operations. Consulting experience is a plus. Evolving expertise in several of the following areas: financial services, information technology, information security, systems development, change / release management, access security and physical access controls and procedures Proven experience in risk assessment and measurement Proven experience in IT security remediation, implementation of technical safeguards and validation of automated controls Risk / Security Certification (CRISC, CISA, CISM, CISSP) Practical knowledge of risk analysis methodologies, frameworks, standards, and best practices (NIST, COBIT)

Job Responsibilities: Cyber Security Analyst will lead the planning, development, and delivery of multiple security and compliance technologies, projects for customers as well as in-house project. This position will also assist with the review, revision, and rollout of security standards, Application assessments, VAPT, SIEM, Policies, and Procedures, SOC monitoring. Projects will include but are not limited to the implementation of Cyber Security Tools, risk assessments, Internal & External audits, Audit observation closures , and BAU activities etc. Key Accountable: Knowledge of cyber security risk management concepts, cybersecurity frameworks, controls, standards, secure coding principles, and security technologies. Well-versed in cyber threat actors, attack methodologies, and mitigation/remediation methods. Good understanding and hands on experience on vulnerability management Network & System VAPT, Web Application Security, Mobile App sec, OWASP, Application Threat modelling, Source Code Review. Identifying and tracking vulnerabilities till closure. Manage & Monitor 24*7 external SOC and ensure cyber security posture of company Knowledge of security architecture, operating systems and tools such as SIEM, PIM, FIM, Anti-APT, DLP & DDoS, email security, DNS security, IPS, Digital Risk Monitoring, Network access control, API gateway, GRC products, Cyber security awareness tool, PII and Critical data discovery tool, etc. Knowledge of statutory audits i.e RBI, NPCI, Master Card, VISA & customer audits Oversee the development and implementation of hardening procedures for the firm's servers, workstation (desktops and laptops) and mobile devices, as per CIS bench mark. Execute & Close all assigned project management activities related to information security, compliance, and data privacy Co-ordinate with the internal stakeholders (Application, IT, Database Teams, Legal, HR, Admin) for Internal/External audit point closure, Assessment Observation closures etc Participate in technical meetings/Audits and working groups to address issues related to malware security, vulnerabilities, and issues of cyber security and preparedness Responsible for MIS/Reporting on established security metrics on a regular basis Responsible for performing and coordination of various PCI-DSS compliance activities associated with Cyber security vertical. Firewall rule base review, NMAP scanning, WIFI scanning, External PT, ASV scanning, PII & Critical Data discovery, Risk acceptance tracking, User access review, SIEM & SOC team management, Advisory compliance etc Participate in all the Core certifications (PCI-DSS, PA-DSS, ISO 27001 Perso Bureau NPC, Master Card, VISA) and with closure of Internal, external audit findings. Drive PCI-DSS certification process for organization. Enhance the cyber security posture by implementing latest cyber security tools.

Manage cyber Security projects out sourced to vendor like Red team exercise, cyber security drills, implement ASM tools, Implement continuous Red Team Assessment tool, execute BAS Monitor, follow up, closure VAPT results, SEBI CSCRF compliance status Required Candidate profile Revamp management of vendor for Informatio Security policies procedures, conduct risk assessment, source code reviews, clasify apps Implement automated CSCRF tool & automated test/patch management tol

About The Role : for Security Delivery Analyst Position Title: Security Delivery Analyst (Level 10/11) Location: Mumbai Employment Type: Full Time Must have skills: Security & Risk Management Good to have skills: NA About CF/S&C Corporate Functions include Human Resources, Finance, Legal, Marketing Communications, and Workplace Solutions"that power Accentures people across industries and functions to keep our business leading in the New. Join the heart and soul of Accenture, partnering with our extraordinary people to bring innovation into every organization. About Accenture: Accenture is a global professional services company with leading capabilities in digital, cloud and security. Combining unmatched experience and specialized skills across more than 40 industries, the company offers Strategy and Consulting, Song (Interactive), Technology and Operations services"all powered by the world's largest network of Advanced Technology and Intelligent Operations centers. With net revenues of $64 billion for 2023, their 774,000+ employees deliver on the promise of technology and human ingenuity every day, serving clients in more than 49 countries and over 200 cities. Job Summary : Provide ISMS related operational support and guidance to Information Security (IS) Leads and the local IS team members to ensure they can successfully carry out their roles and responsibilities; this includes ensuring that questions or requests submitted to the central ISMS team are accurately and timely addressed. Roles & Responsibilities: Provide ISMS related operational support and guidance to Information Security (IS) Leads and the local IS team members to ensure they can successfully carry out their roles and responsibilities; this includes ensuring that questions or requests submitted to the central ISMS team are accurately and timely addressed. Conduct management reviews for each ISMS instance, which ensure the ongoing suitability, adequacy and effectiveness of the local ISMS instances and provides opportunities for improvement Conduct regular global forums (webinar) for IS leads and accountable security leaders. Provide support with the annual Asset Register refresh and annual Risk Assessment refresh. Review the Annual Asset Register & Risk Assessment Refresh outcomes of the local ISMS Instances, identify improvement actions gaps/findings with the local IS Leads/Teams, and drive them to closure Conduct reviews of the critical controls, prepare and issue actions for deficiencies identified Prepare timely and accurate reports and scorecards to keep IS and business leadership updated. Administer and maintain the ISMS SharePoint and the Archer GRC ISMS tool. Professional & Technical Skills: Above all else, the candidate must be deeply passionate about the information security and privacy domain. Without this fire in the belly, meeting all the other requirements listed is completely pointless. The candidate must be self-motivated, a quick learner, take ownership of activities and be proactive. Must have a working knowledge of the ISO27001 standard requirements. Should have been exposed to ISMS implementation, deployment and/or auditing. Being a global team, daily work involves cross-country interaction, therefore strong communication skills, both written and verbal are a must. High proficiency (minimum 8/10) on Microsoft office tools (Outlook, Excel, Word, PowerPoint etc.) Hands on experience working on and administration of SharePoint sites. Exposure to the information security risk management domain, other ISO standards such as 27701 etc. Industry certifications such as ISO27001 lead auditor/lead implementer, CISSP, CISA, Security+ Working experience with the Archer GRC risk management platform. Experience with data visualization tools such as Qlik Sense/Power BI etc. will be an advantage. Auditing of information security and data privacy controls. Proficiency with office automation tools like excel macros, VB scripting and Power Automate Job Qualification: Exposure to the information security risk management domain, other ISO standards such as 27701 etc. Industry certifications such as ISO27001 lead auditor/lead implementer, CISSP, CISA, Security+ Working experience with the Archer GRC risk management platform. Experience with data visualization tools such as Qlik Sense/Power BI etc. will be an advantage. Auditing of information security and data privacy controls. Proficiency with office automation tools like excel macros, VB scripting and Power Automate Additional Information: NA Qualifications Experience: Minimum 2 year(s) of experience is required Educational Qualification: B.Tech/BE

Administration windows sever 2012 & 2016 server Operating system Active directory EVENT LOG and System Error Handling Operating System Security Management Operating System Security Patch application Server Networking Knowledge of CISCO Routers Required Candidate profile Proxy Server Adminisration Making access rules Knowledge of Firtinet Firewall INTERVIEW: 1st Round Virtual & 2nd F2F FOR DETAIL JD https://forms.gle/EW13ZqSSbe3WSc646 CALL HR JOHRA @ 9398664031 Perks and benefits NEED URGENT JOINING EXP 6 TO 15 YRS AT MANESHAR

This is client-facing role in a rapidly growing practice, where you ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, youll gain the experience you need to become an exceptional IT Risk Advisor Your Key Roles and Market Leadership and client management Executive-level skills in client relationship management and the hold conversations with senior executives. Partnering with onshore teams to understand client s business & related industry issues / trends for global clients. Contribute to new solution development basis the industry trends and client s problem statement in the areas of IT Risk Management Conduct knowledge sharing discussions & contribute to EY thought leadership. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Identify buyers, influencers & stakeholders in existing client engagements and build strong relationships. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Assist Partners/Directors in driving the account management agenda by focusing on high impact opportunities. Create innovative insights for clients, adapts methods & practices to fit operational team needs & contributes to thought leadership documents. Delivery and Team management Understanding our clients overall technology strategy to effectively manage risk while transforming their business. Plan & schedule client engagements. Determine and deploy the right team with adequate skill sets for executing engagements and periodically review status of engagements and work products. Lead large engagements in the areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits Actively contribute to improving operational efficiency on projects & internal initiatives by leveraging on lessons learned from other projects. Monitor engagement economics & ensure timely billing of invoices & actively follow-up on collections by managers/seniors. Manage a team of Managers and Seniors (across locations) to manage delivery of engagements for multiple processes across clients and conduct comprehensive risk assessments to identify and prioritize potential IT risks against technology strategies, business applications and platforms, and digital transformations. Maintain a strong client focus by effectively serving client needs and developing productive working relationships with client personnel. Stay abreast of current business and economic developments and new pronouncements/standards relevant to the clients business. Demonstrate subject matter & industry expertise (deep understanding of the industry, emerging trends, issues/challenges, key players & leading practices). Stay up to date with emerging industry trends and technologies, suggest innovative solutions to engagement teams and provide recommendations to clients on potential risks and opportunities. Operational Excellence Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Manage engagement budgets and ensure compliance with engagement plans and internal quality & risk management procedures. People related Display teamwork, integrity and leadership. Work with team members to set goals and responsibilities for specific engagements. Foster teamwork and innovation. Utilize technology & tools to continually learn and innovate, share knowledge with team members and enhance service delivery. Understand EY and its service lines. Actively encourage team members to contribute ideas. Conduct workshops and technical training sessions for team members. Contribute to the learning & development agenda and knowledge harnessing initiatives. To qualify for the role, you must have Chartered accountant (CA) or Masters degree in Management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 8- 10 years of a Big 4 or professional firm or professional industry experience in risks & controls, with more than 10 years of experience in IT Risk Management, IT & Cyber Compliance areas such as Risk Assessment - Assessment of internal processes to identify security findings, vulnerabilities, and control gaps/deviations identified on applications and infrastructure. Develop risk control matrix in line with COBIT, ISO, NIST and ITIL Best Practice and recommendations. Control Monitoring- Understanding of Cyber and compliance standards like PCI, ISO27001, perform test the design and operational effectiveness of the controls. Control Automation - Identify controls automation opportunities through analytics platform to monitor the operational effectiveness on the regular basis. Defect / Gap Identification Identify the confidentiality, integrity and the availability related deficiencies in the client environment and evaluate against industry standards. IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Good to have relevant industry certifications such as CISA, CISM, CISSP, ISO 27001, and others (as relevant) Cognitive problem-solving capabilities, quick decision-making skills and ability to handle complex situations with a calm demeanor Exceptional interpersonal, written, and verbal communication skills Effective organization and time management skills with the ability to work under pressure and adhere to project deadlines. Globally mobile and flexible to travel to onsite locations. Team player with strong interpersonal skills Ability to think differently and innovate Ideally, you ll also have Responsible for the performance and appraisal of direct reports, including training and developing necessary skill sets to enable them to grow in their careers. Mentor and coach junior team members, enabling them to meet their performance goals and successfully grow their careers.

Chartered accountant (CA) or Master s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 3-4 years of a Big 4 or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) Cognitive problem-solving capabilities, quick decision-making skills and ability to handle complex situations with a calm demeanor Exceptional interpersonal, written, and verbal communication skills Effective organization and time management skills with the ability to work under pressure and adhere to project deadlines. Globally mobile and flexible to travel to onsite locations. Team player with strong interpersonal skills Ability to think differently and innovate

We are seeking a highly motivated and experienced IT & OT Security manager to join our dynamic security team You will play a pivotal role in protecting our organization s IT and OT systems from cyber threats by developing, implementing, and maintaining a comprehensive security program This role requires a unique blend of IT security knowledge and understanding of OT specific security principles Responsibilities Design, implement, and manage a holistic IT/OT security program that addresses vulnerabilities and risks across both IT and OT environments Conduct regular security assessments and penetration testing to identify and remediate vulnerabilities in IT systems (networks, applications, servers) and OT systems (industrial control systems, SCADA) Design and implement a secure IT/OT architecture, including network segmentation, firewalls, access controls, and specific OT security measures Design secure system architectures for critical infrastructure, implementing network segmentation, access controls, and intrusion detection systems Their expertise ensures reliable operations in OT/ICS environments Develop, enforce, and maintain security policies, procedures, and best practices for both IT and OT domains Oversee incident response activities for both IT and OT, including detection, containment, eradication, and recovery, ensuring business continuity and minimal disruption Stay uptodate on the latest IT and OT security threats and trends to maintain a proactive security posture Deliver security awareness training programs to educate IT and OT personnel on best practices and potential threats specific to their domains Design and specification of OT architecture and systems from an OT/cyber security perspective (SCADA/Automation network design and configuration) Acting as the lead/project manager on multidiscipline projects along with the project team in close collaboration with clients Manage and maintain IT and OT security tools and technologies, ensuring optimal performance and effectiveness Collaborate effectively with IT and OT teams to integrate security considerations seamlessly into operational procedures Report on the organization s overall security posture and key security metrics to senior management Mandatory Skill Sets OT Security Preferred Skills Sets Experience in relevant industries (e g , manufacturing, utilities, energy) a strong plus Certifications in IT security (e g , CISSP, CISA, CISM, OSCP) and OT security (e g , IEC 62443 Cybersecurity or GICSP, GSEC, SSCP) highly desirable (one in IT & one in OT is must) Working knowledge of IT and OT architectures and protocols Experience in incident response and disaster recovery planning for both IT and OT environments Understanding/experience on Advance Metering Infrastructure is a plus

Assist in developing and overseeing the functions enablement strategy, including tooling, reporting, intake, and demand management. Assist in leading the selection, implementation, and management of tools and technologies that support compliance activities and enhance efficiency. Manage and continuously enhance comprehensive reporting mechanisms to track compliance metrics, progress, and risks. Assist in designing, managing, and refining intake processes to effectively prioritize and manage compliance requests and projects. Implement demand management strategies to align resources with the functions needs and objectives. Collaborate with cross-functional teams to ensure integration and alignment of enablement activities with broader organizational goals. Collaborate with compliance specialists and be responsible for supporting the enablement infrastructure and operations. Skills and Attributes for Success Strong function enablement skills, experience, and leadership in Information Security or a related field. Strategic thinking and the ability to develop long-term enablement plans that support the functions goals. Excellent organizational skills and a proactive approach to developing and optimizing processes. Effective communication and interpersonal skills for collaborating with various stakeholders and promoting enablement initiatives. Experience in project management, tool selection, and implementation within a compliance or security context. Familiarity with compliance frameworks and the ability to integrate them into enablement strategies. To Qualify for the Role, You Must Have A minimum of 5 years of experience in a role with leadership and focus on function enablement, tooling, or operations. A degree in Business Administration, Information Systems, Cyber Security, or a related discipline. Relevant certifications such as PMP, ITIL, CISSP, CISM, or CISA are highly desirable. A proven track record of developing and managing enablement functions within a large, complex organization. Strong analytical skills and the ability to make data-driven decisions. Experience with GRC platforms and other compliance and security tools. Ideally, You ll Also Have Exceptional problem-solving and decision-making abilities. The ability to adapt to new challenges and rapidly evolving technology landscapes. Strong leadership presence and the ability to inspire and motivate teams. Experience in change management and the ability to drive adoption of new tools and processes. We are looking for individuals with a passion for information security and demonstrated ability to apply their knowledge to new and emerging technologies that are supporting the growth strategy of a global professional services firm.

As a Third-Party Risk Analyst, you will play a critical role in assessing and managing the risks associated with our third-party relationships. You will work closely with various stakeholders across the organization to evaluate the security and compliance risks posed by third-party vendors and partners. About the Role: Conducting risk assessments of third-party vendors and partners to identify potential security, compliance, and operational risks. Reviewing and analyzing third-party contracts, agreements, and security documentation to ensure alignment with TRs risk management policies and standards. Developing and implementing risk mitigation strategies and controls to address identified risks and vulnerabilities. Monitoring and tracking third-party risk metrics and performance indicators to ensure ongoing compliance and effectiveness of risk management measures. Collaborating with cross-functional teams, including Legal, Compliance, IT Security, and Procurement, to address third-party risk issues and concerns. Providing guidance and support to internal stakeholders on third-party risk management best practices and procedures. Staying informed about emerging trends, threats, and regulatory requirements related to third-party risk management. About You: Bachelor s degree in information technology, or related field. 5-7 years of experience in risk management, vendor management, or related field. Strong understanding of risk management principles, practices, and methodologies. Knowledge of relevant regulations, standards, and frameworks (e.g., GDPR, ISO 27001, NIST Cybersecurity Framework). Excellent analytical, problem-solving, and decision-making skills. Effective communication and interpersonal skills, with the ability to collaborate and influence stakeholders at all levels of the organization. Certifications such as Certified Third-Party Risk Professional (CTPRP), Certified Information Systems Auditor (CISA), or Certified Information Security Manager (CISM), ISO 27001 LA are a plus. Experience with third-party risk management tools and platforms is desirable. What s in it For You? Join us to inform the way forward with the latest AI solutions and address real-world challenges in legal, tax, compliance, and news. Backed by our commitment to continuous learning and market-leading benefits, you ll be prepared to grow, lead, and thrive in an AI-enabled future. This includes: Industry-Leading Benefits: We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, and hybrid model, empowering employees to achieve a better work-life balance. Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrow s challenges and deliver real-world solutions. Our skills-first approach ensures you have the tools and knowledge to grow, lead, and thrive in an AI-enabled future. Culture: Globally recognized and award-winning reputation for inclusion, innovation, and customer-focus. Our eleven business resource groups nurture our culture of belonging across the diverse backgrounds and experiences represented across our global footprint. Hybrid Work Model: We ve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Social Impact: Make an impact in your community with our Social Impact Institute. We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives.

Executives are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of other solutions of GRCS Executives may lead a small team of analysts/trainees on engagements. Consistently deliver quality client services and take charge of the project area assigned to him/her. Monitor progress, manage risk and verify key stakeholders are kept informed about progress and expected outcomes. Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability to assimilate to new knowledge. Possess good business acumen. Remain current on new developments in advisory services capabilities and industry knowledge. The job would require travel to client locations within India and abroad. THE INDIVIDUAL Have experience in process consulting/ internal audit/ risk consulting. Possess strong domain knowledge, understanding of business processes and possible risks in operations of various Sectors. Ability to perform and interpret process gap analysis. Understanding of control rationalization, optimization, effectiveness, and efficiency Strong analytical and problem-solving skills. Possess strong data analytics skills and knowledge of advanced data analytical tools will be an advantage. Strong written and verbal communication skills (presentation skills) Ability to work well in teams. Basic understanding of IT systems, Knowledge of MS office (MS Excel, PowerPoint, Word etc) Have the ability to work under pressure - stringent deadlines and tough client conditions which may demand extended working hours. Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic. Qualification Qualified CAs/ MBAs with 0 - 2 years OR Graduates with 4 - 7 years of relevant experience in risk consulting/ operations or compliance function role (Understanding of internal audit, business processes, sector understanding). Certifications like Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) would be an added advantage. Compensation Compensation is competitive with industry standards. Details of the compensation breakup will be shared with short-listed candidates only. People BENEFITS Continuous learning program Driving a culture of recognition through ENCORE our quarterly rewards and recognition program Comprehensive medical insurance coverage for staff and family Expansive general and accidental coverage for staff Executive Health checkup (Manager & above, and for staff above the age of 30) Les Concierge desks. Internal & Global mobility Various other people friendly initiatives Strong commitment to our Values such as CSR initiatives

FOR DETAILS JD CLICK ON BELOW LINK: https://forms.gle/dRcsScyW4pkaw8EA9 We are seeking a Senior Auditor who is passionate about advancing and growing our audit coverage across the Global Merchant and Network Services (GMNS) audit portfolio. Required Candidate profile BA, BS, or equivalent degree in accounting, data analytics, information technology Ability to break down a complex problem into components experience in the application of control theory

EisnerAmper is seeking an Assurance Financial Consultant to join our Assurance and Technology Control Services practice at our Mumbai office. We are seeking someone who thrives in a growing environment and providing clients with exceptional services. What it Means to Work for EisnerAmper: You will get to be part of one of the largest and fastest growing accounting and advisory firms in the industry. You will have the flexibility to manage your days in support of our commitment to work/life balance. You will join a culture that has received multiple top Places to Work awards. We believe that great work is accomplished when cultures, ideas and experiences come together to create new solutions. We understand that embracing our differences is what unites us as a team and strengthens our foundation Showing up authentically is how we, both as professionals and a Firm, find inspiration to do our best work. Numerous Employee Resource Groups (ERGs) to support our Diversity, Equity, & Inclusion (DE&I) efforts What Work You Will be Responsible For: Supporting teams in the delivery of technology consulting and compliance engagements in one or more of the following areas: SOC 1, 2, 3 HITRUST HIPAA ISO 27001 NIST Privacy, GDPR, CCPA, etc. Cybersecurity Working with clients to provide project updates, professional advice, giving presentations to management Assisting in issuing written and oral reports Leading and mentoring more junior staff Identifying value-added suggestions from engagements through a course of continuous process improvement Assisting in the timely completion of projects Gaining technical expertise and a strong reputation in technology as well as their given speciality service line Maintaining relationships with key business contacts and developing new contacts Basic Qualifications: Bachelor s degree required in Information Systems, Computer Science, Cybersecurity, Accounting, or related field of study. Relevant experience in a professional services firm providing SOC 2, HITRUST, ISO 27001, NIST, Security and/or Privacy services. Preferred/Desired Qualifications: Holds one or more of the following credentials: HITRUST CCSFP, ISO 27001 Lead Auditor, CIPP, CISSP, CISA, CPA or equivalent. About Our Audit Team: In the EisnerAmper Audit Group, we re transforming the traditional reputation of auditing. By operating on the core tenets of profound trust, professional integrity, and consistent results, we strive to create lasting partnerships with our clients based on solutions rather than simply identifying issues in their financial statements. To stay up to date with evolving industry processes and regulations, we place a heavy emphasis on continued education and the consistent adoption of new technologies. This enables us to effectively innovate, grow as individuals, and provide faster, more accurate solutions and due diligence for our partners. Acting as a trusted third party to our clients, we provide solutions that create assurance and peace of mind. Because we understand trust comes with time, we define success by the relationships we create and foster. We act as a trusted business advisor every step of the way, from a client s first financial report to their close of business. EisnerAmper is one of the largest accounting, tax, and business advisory firms, with approximately 450 partners and 4, 500 employees across the world. We combine responsiveness with a long-range perspective; to help clients meet the pressing issues they face today and position them for success tomorrow. EisnerAmper (India) Consultants Pvt. Ltd. ( EA India ) is a subsidiary of Eisner Advisory Group LLC ( EA Group ), which practices in an alternative practice structure with EisnerAmper LLP. EA India employees provide advisory services to clients of EA Group and audit services to clients of Eisner Amper LLP and comply with the professional standards applicable to each of EA India, EA Group and EisnerAmper LLP. EA India employees also provide operational services to EA Group and EisnerAmper LLP. The policies and procedures of EA India, including obligations of confidentiality and non-disclosure, apply to all services provided by EA India employees. All applicants are applying to positions for employment with EA India, and not EA Group or EisnerAmper LLP. Should you need any accommodations to complete this application please email: indiata@eisneramper. com Preferred Location: Mumbai

Role SOX ITGC Team Manager Location Bangalore (1 week WFO & 3 weeks WFH) & Shift - 3pm to 12pm Qualification CA with 4+ yrs of experience Certification CISA mandatory *************************************************** IMMEDIATE JOINERS REQUIRED Send your updated CV directly to: 9152808909 **************************************************** Job Description: Plan implement, coordinate, and execute all phases of SOX testing compliance process (including leading walkthroughs, identifying/validating key controls, developing testing procedures, execute and document testing, reporting results to management). Manage updates to process documentation and control matrices for existing SOX processes and assist in the preparation and review of documentation for new processes. Perform reviews over SOX deliverables (including testing support and process documentation) of junior resources to ensure work paper documentation standards are consistent with quality expectation. Collaborate and build relationships with key stakeholders and leverage those relationships to influence process/internal control enhancements. Coordinate with external auditors on a consistent cadence to align on testing approach to drive SOX testing reliance strategy. Partner with stakeholders to consult on remediation conditions for SOX control deficiencies and perform independent validation of managements action plans for issue closure. Responsible for quality and timeliness of deliverables, including conclusions on control effectiveness and impact of control deficiencies. Act as a key contact person for all internal and external groups on matters related to SOX and Internal controls. Work with technology leads and identify automation opportunities of SOX planning and testing activities. Identify opportunities to implement data analytics in SOX testing using knowledge of the risk environment and interdependencies within multiple business processes. Consults through ad-hoc advisory engagements while working closely with business units to share risk considerations as they undergo strategic projects. Promotes staff development through real-time coaching and feedback. Actively participates or leads department strategies and initiatives. Desirable Skills SOX experience Has worked in BIG4 consulting firm for at least 2 years. Strong critical thinking and problem-solving skills around complex business issues Project, and time management skills. Effective verbal and written communications, including active listening skills and skills presenting findings and recommendations. Ability to effectively influence individuals to action at different levels of internal and external organizations. Flexibility, adaptability, and comfort in dealing with new business areas and situations. Educational and Qualification: CPA & CIA is a strong plus. Work Experience: CA with 4+ years of relevant experience (Highly Preferred) MBA Finance only (with minimum 7+ years of relevant SOX experience)

Internal Audit Specialist We Are: Accenture is helping transform leading organizations and communities around the world. Choose Accenture and make delivering innovative work part of your extraordinary career. Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. Accenture is consistently recognized on FORTUNE's 100 Best Companies to Work For and DiversityInc's Top 50 Companies for Diversity lists. The Internal Audit Department provides the Audit Committee of the Board of Directors with an independent and objective assessment of the reliability and integrity of financial and select operating information, the effectiveness and efficiency of Accenture plc and its consolidated subsidiaries' (the "Company") systems and internal controls, and compliance with the Company's policies and procedures. Internal Audit Services also provides advisory services designed to add value and improve the Company's operations through bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, controls, operations, and governance processes. You Are: An agile, highly-motivated, innovative thinker with a background in audit, risk, or compliance looking to join a fast-paced, global internal audit organization that has embraced transformative capabilities including advanced analytics, dynamic risk assessment processes, and automation to retain its role as a trusted advisor to the business. The Work: Participate in the execution of the risk-based audit plan, reporting results to Accenture Leadership and the Audit Committee of the Board of Directors Conduct a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things. Through advisory services, work with our business partners to help them proactively identify and manage risk in new technologies, new go-to-market offerings, and critical corporate initiatives. Shape the future of the Accenture Internal Audit through involvement in departmental initiatives that enable us to become more efficient and effective in everything we do. Ensure your technical skill set and business acumen stay current and relevant through participation in our robust training program. Support the departmental annual risk assessment and audit planning effortsWhy Should I Join the Accenture TeamYou are looking for an internal audit role that provides you with exposure to senior levels of leadership, enables you to work with emerging technologies, provides opportunities for international travel and flexible work arrangements (work from home), requires little to no SOX testing, and offers a competitive salary and benefits package. Qualifications Desired Skills Qualifications Undergraduate degree in Computer Science, Information Systems, Electronics, or Business Administration. Minimum of 6 years of experience in IT auditing, information security, or related technical role focusing on compliance activities. Experience conducting IT external and internal audits or assessments, preferably for a global organization. Strong IT knowledge in infrastructure technologies (networking, data centers and hosting, virtualization, cloud etc.), application development and support, and emerging technologies. Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Experience leveraging predictive models and custom analytics in audit planning and execution is preferred. Technical knowledge and familiarity with control requirements in areas including ERP applications, Windows and Unix operating systems, cyber security, cloud security and vendor management. Strong verbal and written communication skills and proficiency with the English language. Demonstrated leadership, teamwork, and collaboration skills. Possession of a relevant professional certification (CISA, CISSP, CIA, CPA, CCSK) is preferred. Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

Who we are About the role: Samsara Technologies India Private Limited is looking for a Senior Auditor - Business Operations Internal Audit to be part of our growing Internal Audit (IA) team in Bengaluru, India. The Internal Audit & Risk Governance team focuses on providing risk assurance and business insights through audit and operational projects that identify opportunities for management to enhance risk management, controls posture, and improve business operations. We strive to provide value to our stakeholders, insights to the Audit Committee/Board and help management to achieve their strategic goals while mitigating risks and maximizing opportunities. Focus areas include enterprise risk, internal controls, financial reporting, risk governance, business processes, and technology risks. The Senior Auditor - Business Operations Internal Audit, will be responsible for executing IA s Sarbanes-Oxley (SOX) testing program and supporting a variety of business operational and data analytics-driven internal audits. They will utilize data analytics and Large Language Model (LLM) skills to identify pragmatic observations and recommendations for improved processes and governance, while also playing a key role in developing IA s data analytics capabilities. The scope also includes working closely with business stakeholders across the company to share our insights on risk gaps and recommendations to improve the maturity of Samsara s financial, operational, technology, strategic and compliance processes. This individual should have a motivated and agile mindset, SOX control testing & quality review experience, specifically deep knowledge in business process SOX control areas, as well as experience executing other business operational risk based audits. They should also be able to analyze and summarize data into thoughtful audit insights and observations. This role will report into the Manager, Technology Internal Audit and Risk Governance, Samsara Technologies India Private Limited, who will also be based in Bengaluru, India. This is a hybrid position requiring 3 days per week in our Bangalore, India office and 2 days working remotely. Relocation assistance will not be provided for this role. You should apply if: You want to impact the industries that run our world: Your efforts will result in real-world impact helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely. You are the architect of your own career: If you put in the work, this role won t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment. You re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers. You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. In this role, you will: Independently execute IA s SOX testing program while adhering to agreed upon timelines, meeting quality expectations and building relationships across the business Drive improvements in the testing process, including implementing best practices, improving documentation to meet reperformance standards, and driving consistency across the team deliverables Execute internal audit projects that provide effective coverage over financial, operational, technology, strategic and compliance risks and controls Collaborate with the IA team to identify opportunities and incorporate the use of data analytics, GenAI and LLM applications in audit engagements, risk assessments, department metrics, and other initiatives Champion, role model, and embed Samsara s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices Minimum requirements for the role: 3+ years of relevant SOX / internal audit / risk / compliance experience 1+ experience utilizing Data Analytics, GenAI and LLM tools and applications (e.g. Python Tableau, Gemini Advanced, etc.) Strong verbal and written communication skills and experience to coordinate operations in India to provide regular and effective updates to the US Demonstrated experience working with US-based teams Ability to juggle multiple projects, being agile and adapting quickly to dynamic situations Attention to detail and keeping a high bar on the quality of audit deliverables An ideal candidate also has: A bachelor s degree or equivalent in Business, Accounting, Analytics or related field Professional certification(s) in Audit such as Chartered Accountant (CA), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) or other audit related certifications Experience with reporting in applications like Salesforce, NetSuite and data repositories like Databricks

About the role: Samsara Technologies India Private Limited is looking for a Senior Auditor - Business Operations Internal Audit to be part of our growing Internal Audit (IA) team in Bengaluru, India. The Internal Audit & Risk Governance team focuses on providing risk assurance and business insights through audit and operational projects that identify opportunities for management to enhance risk management, controls posture, and improve business operations. We strive to provide value to our stakeholders, insights to the Audit Committee/Board and help management to achieve their strategic goals while mitigating risks and maximizing opportunities. Focus areas include enterprise risk, internal controls, financial reporting, risk governance, business processes, and technology risks. The Senior Auditor - Business Operations Internal Audit, will be responsible for executing IA s Sarbanes-Oxley (SOX) testing program and supporting a variety of business operational and data analytics-driven internal audits. They will utilize data analytics and Large Language Model (LLM) skills to identify pragmatic observations and recommendations for improved processes and governance, while also playing a key role in developing IA s data analytics capabilities. The scope also includes working closely with business stakeholders across the company to share our insights on risk gaps and recommendations to improve the maturity of Samsara s financial, operational, technology, strategic and compliance processes. This individual should have a motivated and agile mindset, SOX control testing & quality review experience, specifically deep knowledge in business process SOX control areas, as well as experience executing other business operational risk based audits. They should also be able to analyze and summarize data into thoughtful audit insights and observations. This role will report into the Manager, Technology Internal Audit and Risk Governance, Samsara Technologies India Private Limited, who will also be based in Bengaluru, India. This is a hybrid position requiring 3 days per week in our Bangalore, India office and 2 days working remotely. Relocation assistance will not be provided for this role. You should apply if: You want to impact the industries that run our world: Your efforts will result in real-world impact helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely. You are the architect of your own career: If you put in the work, this role won t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment. You re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers. You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. In this role, you will: Independently execute IA s SOX testing program while adhering to agreed upon timelines, meeting quality expectations and building relationships across the business Drive improvements in the testing process, including implementing best practices, improving documentation to meet reperformance standards, and driving consistency across the team deliverables Execute internal audit projects that provide effective coverage over financial, operational, technology, strategic and compliance risks and controls Collaborate with the IA team to identify opportunities and incorporate the use of data analytics, GenAI and LLM applications in audit engagements, risk assessments, department metrics, and other initiatives Champion, role model, and embed Samsara s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices Minimum requirements for the role: 3+ years of relevant SOX / internal audit / risk / compliance experience 1+ experience utilizing Data Analytics, GenAI and LLM tools and applications (e.g. Python Tableau, Gemini Advanced, etc.) Strong verbal and written communication skills and experience to coordinate operations in India to provide regular and effective updates to the US Demonstrated experience working with US-based teams Ability to juggle multiple projects, being agile and adapting quickly to dynamic situations Attention to detail and keeping a high bar on the quality of audit deliverables An ideal candidate also has: A bachelor s degree or equivalent in Business, Accounting, Analytics or related field Professional certification(s) in Audit such as Chartered Accountant (CA), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) or other audit related certifications Experience with reporting in applications like Salesforce, NetSuite and data repositories like Databricks

Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or related fields. A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. Profound knowledge of cybersecurity frameworks, industry standards, and best practices. Proficiency in using various security assessment and techniques. Strong analytical and problem-solving skills, with the ability to think critically and strategically. Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. Demonstrated experience in project management and handling multiple assessments simultaneously. A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. Network Security, infrastructure assessment and network architecture design review. Conceptual knowledge of OT Security/ISA 62443 standard is preferable. Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls. Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments. Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation. Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments. Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders. Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies. Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments.

Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or related fields. A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. Profound knowledge of cybersecurity frameworks, industry standards, and best practices. Proficiency in using various security assessment and techniques. Strong analytical and problem-solving skills, with the ability to think critically and strategically. Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. Demonstrated experience in project management and handling multiple assessments simultaneously. A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. Network Security, infrastructure assessment and network architecture design review. Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

Bachelors or Masters degree in Computer Science, Cybersecurity, Information Technology, or related fields. A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. Profound knowledge of cybersecurity frameworks, industry standards, and best practices. Proficiency in using various security assessment and techniques. Strong analytical and problem-solving skills, with the ability to think critically and strategically. Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. Demonstrated experience in project management and handling multiple assessments simultaneously. A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. Network Security, infrastructure assessment and network architecture design review. Conceptual knowledge of OT Security/ISA 62443 standard is preferable. Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls.Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments.Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation.Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments.Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders.Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies.Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments.

Who we are About the role: Samsara Technologies India Private Limited is looking for a Senior Auditor - SOX ITGC and Technology Internal Audit, to be part of our growing Internal Audit (IA) team in Bengaluru, India. The Internal Audit & Risk Governance team focuses on providing risk assurance and business insights through audit and operational projects that identify opportunities for management to enhance risk management, controls posture, and improve business operations. We strive to provide value to our stakeholders, insights to the Audit Committee/Board and help management to achieve their strategic goals while mitigating risks and maximizing opportunities. Focus areas include enterprise risk, internal controls, financial reporting, risk governance, business processes, and technology risks. The Senior Auditor - SOX ITGC and Technology Internal Audit, will play a key role in executing IA s Sarbanes-Oxley (SOX) IT General Controls (ITGCs) testing program and supporting a variety of technology-related internal audits (in areas such as IT infrastructure & operations, information security, and software development lifecycle). Their role will entail identifying pragmatic observations and recommendations to improve controls around people, processes, and technology, and will also include leveraging AI, large language models (LLMs), and automation to streamline audit execution, drive efficiencies, and strengthen the Internal Audit team s AI capabilities. Further, their scope will include working closely with stakeholders in key business and technology functions across the company to share insights on risk gaps and recommendations to improve the maturity of Samsara s technology, operational, financial, strategic, and compliance-related processes. This individual should have a motivated and agile mindset, with SOX control testing & quality review experience, specifically deep knowledge in the IT general control areas, as well as experience executing operational technology and cybersecurity risk based audits. This role will report into the Manager, Technology Internal Audit and Risk Governance, Samsara Technologies India Private Limited, who will also be based in Bengaluru, India. You should apply if: You want to impact the industries that run our world: Your efforts will result in real-world impact helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely. You are the architect of your own career: If you put in the work, this role won t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment. You re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers. You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. In this role, you will: Independently execute IA s SOX testing program for ITGCs while adhering to agreed-upon timelines, meeting quality expectations, and building relationships across the business Drive improvements in the testing process, including implementing best practices, improving documentation to meet reperformance standards, and driving consistency across the team deliverables Execute internal audit projects that provide effective coverage over technology, operational, financial, strategic and compliance risks and controls Collaborate with the IA team to identify opportunities to incorporate the use of AI capabilities (e.g. via LLMs, GenAI) into audit engagements, risk assessments, department metrics, and other initiatives Champion, role model, and embed Samsara s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices Minimum requirements for the role: 3+ years of relevant experience in IT audit, cybersecurity, SOX, internal audit, risk and compliance, or related field Working knowledge of SOX ITGC, cloud security, and IT governance frameworks (e.g. COBIT, NIST, ISO 27001, SOC 2 etc.) Strong verbal and written communication skills to coordinate operations in India to provide regular and effective updates to the US Demonstrated experience working with US-based teams Ability to juggle multiple projects, being agile and adapting quickly to dynamic situations Attention to detail and keeping a high bar on the quality of audit deliverables An ideal candidate also has: Experience with automation technologies (e.g., scripting) and GenAI/LLM tools (e.g., Gemini, ChatGPT, Claude) is preferred A bachelor s degree or equivalent in Business, Management Information Systems (MIS), Accounting, Computer Science, or related field Professional certification(s) such as Certified Information Systems Auditor (CISA), Chartered Accountant (CA), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or other certification(s) relevant to audit, technology, and/or risk