646 Cisa Jobs - Page 4

Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description Job Summary We are seeking a highly motivated and detail-oriented IT Compliance Analyst to join our Risk & Compliance team. The ideal candidate will be responsible for performing comprehensive IT compliance assessments, testing IT general controls and IT Automated controls and ensuring the organization adheres to internal policies and external regulatory requirements, including Sarbanes-Oxley (SOX). This role plays a critical part in maintaining a strong internal control environment and driving process improvement across the organization. Key Responsibilities Assist in planning and scoping IT compliance and internal control assessments. Identify risk areas and develop internal control testing programs. Perform end-to-end IT compliance assessments, including evaluating effectiveness of risk and control frameworks. Test IT General Controls (ITGCs) across domains like change management, logical access, SDLC and IT operations. Assess IT Automated Controls across business functions such as payroll, inventory, and revenue. Document control walkthroughs using narratives and flowcharts. Develop, maintain, and present compliance workpapers and reports highlighting control deficiencies and recommendations. Collaborate with management to communicate findings and ensure timely remediation of audit issues. Support external audit activities by coordinating information requests and walkthroughs. Stay up to date with regulatory and industry developments in IT compliance and risk management. Engage in continuous improvement efforts to enhance the efficiency and effectiveness of compliance processes. Qualifications Bachelors degree in Information Technology, Computer Science etc. Professional certification (or working towards) such as CISA, CRISC, CISSP, or CISM preferred. 7 10 years of experience in IT audit, compliance, or risk management; minimum 3-5 years in a Big 4 or similar professional services firm preferred . Strong understanding of IT infrastructure, applications, and enterprise systems. Knowledge of Sarbanes-Oxley (SOX), ITGCs, automated controls, and internal control principles. Experience with audit and compliance tools (e.g., eAudit, Auditboard, or equivalent). Ability to understand cross-functional business processes and their integration with IT systems. Strong interpersonal, communication, and report-writing skills. Able to work independently and collaboratively under tight deadlines. Demonstrated sound judgment, critical thinking, and attention to detail. Preferred Skills Hands-on experience in documenting business processes and identifying control gaps. Ability to present findings to senior stakeholders and recommend practical remediation steps. Familiarity with GRC platforms and data analytics tools. Understanding of global business practices and regulatory environments. Qualifications Requires a bachelors degree or an equivalent combination of education and experience. Requires at least 5 years related experience. Must have strong computer skills and excellent communication skills. Strong project and time management skills.

Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description Job Summary We are seeking a highly motivated and detail-oriented IT Compliance Analyst to join our Risk & Compliance team. The ideal candidate will be responsible for performing comprehensive IT compliance assessments, testing IT general controls and IT Automated controls and ensuring the organization adheres to internal policies and external regulatory requirements, including Sarbanes-Oxley (SOX). This role plays a critical part in maintaining a strong internal control environment and driving process improvement across the organization. Key Responsibilities Assist in planning and scoping IT compliance and internal control assessments. Identify risk areas and develop internal control testing programs. Perform end-to-end IT compliance assessments, including evaluating effectiveness of risk and control frameworks. Test IT General Controls (ITGCs) across domains like change management, logical access, SDLC and IT operations. Assess IT Automated Controls across business functions such as payroll, inventory, and revenue. Document control walkthroughs using narratives and flowcharts. Develop, maintain, and present compliance workpapers and reports highlighting control deficiencies and recommendations. Collaborate with management to communicate findings and ensure timely remediation of audit issues. Support external audit activities by coordinating information requests and walkthroughs. Stay up to date with regulatory and industry developments in IT compliance and risk management. Engage in continuous improvement efforts to enhance the efficiency and effectiveness of compliance processes. Qualifications Bachelors degree in Information Technology, Computer Science etc. Professional certification (or working towards) such as CISA, CRISC, CISSP, or CISM preferred. 7 10 years of experience in IT audit, compliance, or risk management; minimum 3-5 years in a Big 4 or similar professional services firm preferred . Strong understanding of IT infrastructure, applications, and enterprise systems. Knowledge of Sarbanes-Oxley (SOX), ITGCs, automated controls, and internal control principles. Experience with audit and compliance tools (e.g., eAudit, Auditboard, or equivalent). Ability to understand cross-functional business processes and their integration with IT systems. Strong interpersonal, communication, and report-writing skills. Able to work independently and collaboratively under tight deadlines. Demonstrated sound judgment, critical thinking, and attention to detail. Preferred Skills Hands-on experience in documenting business processes and identifying control gaps. Ability to present findings to senior stakeholders and recommend practical remediation steps. Familiarity with GRC platforms and data analytics tools. Understanding of global business practices and regulatory environments. Qualifications Requires a bachelors degree or an equivalent combination of education and experience. Requires at least 5 years related experience. Must have strong computer skills and excellent communication skills. Strong project and time management skills.

Step into the role of Assistant Vice President at Barclays Internal Audit (BIA) in Mumbai, where youll support the Audit Lead on audit executions to ensure timely and efficient delivery of audit results. As an independent contributor, you ll support collaborative audit reviews and guide junior team members in the completion of these reviews. You may be assessed on the key critical skills relevant for success in role, such as experience in either Global Markets and/or Corporate Banking business, as well as job-specific skillsets. Basic/ Essential Qualifications: Experience in audit and business monitoring. Understanding of relevant regulatory and compliance environment in India. Relevant professional certifications, e.g. CIA, CPA, or CISA, is preferred. Job Location is Mumbai. Purpose of the role To support the development of audits aligned to the bank s standards and objectives by working collaboratively with colleagues, providing accurate information and recommendations, and complying with policies and procedures. Accountabilities Audit development and delivery support, including financial statements, accounting practices, operational processes, IT systems and risk management. Identification of operational risks to support the delivery of the Barclays Internal Audit (BIA) Audit Plan through risk assessments. Assessment of internal control effectiveness and their capability to identify and mitigate risk aligned to regulatory requirements. Communication of key findings and recommendations to stakeholders, including the Audit Owner, senior managers and directors. Identification of regulatory news and industry trends/developments to provide timely insight and recommendations for best practice. Assistant Vice President Expectations To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions/ business divisions. Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others. OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes. Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues. Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda. Take ownership for managing risk and strengthening controls in relation to the work done. Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy. Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc).to solve problems creatively and effectively. Communicate complex information. Complex information could include sensitive information or information that is difficult to communicate because of its content or its audience. Influence or convince stakeholders to achieve outcomes.

Required Skills Technology | Scripting languages for Automation of IAM Process | Level 2 Support Technology | MS AADFS Identity Protection, AAA | Level 3 Support Technology | Security compliance standards and regulatory Audits | Level 3 Support Technology | Sailpoint IDAM Platform | Level 2 Support Technology | Privilege Access Management | Level 2 Support Education Qualification : Engineer - B.E / B.Tech / MCA Certification Mandatory / Desirable : Technology | CISSP/CISM/CIAM/Certified Authorization Professional/CISA/CEH/Certified Information Privacy Professional/Cisco Certified Network Professional - Security/SailPoint Certified IdentityIQ Engineer/SailPoint Certified IdentityIQ Architect Delivery Skills required are: - Advanced Technical Proficiency: - *Mastery of advanced IAM and AAA technologies, including Identity lifecycle management systems *Management of privileged access and entitlements across enterprise systems. *Advanced knowledge of identity governance processes, including identity provisioning, de-provisioning, access recertification, and compliance auditing. Strategic Oversight and Management: - *Development and implementation of IAM strategies, roadmaps, and architectural designs to meet business objectives and security requirements. *Integration of IAM solutions with business processes and enterprise applications. *Conducting comprehensive risk assessments and threat modeling related to IAM and AAA systems. Communication and Stakeholder Management: - *Clear articulation of complex IAM and AAA concepts, risks, and strategies to technical and non-technical stakeholders, including executive leadership. *Comprehensive documentation of IAM architecture, policies, procedures, and incident response plans. *Preparation of detailed reports, metrics, and presentations for executive management, auditors, and regulatory authorities. Continuous Improvement and Innovation: - *Commitment to staying at the forefront of IAM technologies, emerging trends, and industry best practices through continuous education, certifications, and participation in professional communities. *Implementation of innovative solutions and continuous improvement initiatives to enhance IAM and AAA capabilities and efficiency.

Required Skills Technology | Compliance Monitoring and Reporting | Level 2 Support Technology | Risk Management Methodologies and Framework | Level 4 Support Technology | Policy Development and Management | Level 4 Support Technology | Int and Ext Audit processes and assurance methodologies | Level 4 Support Technology | Project Management Skills | Level 4 Support Education Qualification : Engineer - B.E / B.Tech / MCA Certification Mandatory / Desirable : Technology | Certified in the Governance of Enterprise IT/CISA/CRISC/PMI-RMP/ISO 31000 Risk Manager/Certified Regulatory Compliance Manager/Certified Compliance and Ethics Professional/CIPP/Certified in the Governance, Risk and Compliance Professional Delivery Skills required are: - Governance Skills: - *Developing, updating, and enforcing governance policies and procedures. *Implementing governance frameworks and structures within the organization. *Designing, implementing, and maintaining effective internal controls to mitigate risks and ensure compliance. *Ensuring thorough preparation of audit documentation and managing audit readiness. Risk Management Skills: - *Conducting detailed risk assessments to identify potential threats and vulnerabilities. *Developing and implementing risk mitigation strategies and action plans. *Leading incident response initiatives for governance, risk, and compliance issues. *Developing and implementing incident response plans to address and mitigate incidents effectively. Communication and Stakeholder Engagement: - *Communicating complex GRC concepts to both technical and non-technical stakeholders. *Preparing and presenting detailed reports, metrics, and updates to senior management and other stakeholders. *Negotiating and influencing to align GRC initiatives with business priorities and objectives. Leadership and Team Management: - *Leading, mentoring, and developing a team of GRC professionals. *Setting clear objectives, providing feedback, and supporting team members growth. *Working collaboratively with various departments to ensure GRC measures align with organizational goals. Project and Program Management: - *Leading GRC projects, including planning, execution, monitoring, and closing. *Managing project timelines, resources, and budgets effectively. *Developing and implementing comprehensive GRC programs that align with organizational goals.

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Engineer , you have a pivotal operational role to provide and deprovision system access.You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What you’ll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices.Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM What you’ll bring 2 years of experience in Identity or Access Management Tireless adherence and attention to appropriate IT general computing controls Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

Bachelor s degree in information technology, Computer Science, Risk Management, or a related field; advanced degree or professional certification (e.g., CISA, CISSP, CRISC) Mandatory. Minimum of 10 years of experience in technology risk management, cybersecurity, or information security roles. Proven expertise in conducting technology risk assessments, developing risk management frameworks, and implementing controls and mitigation strategies. In-depth knowledge of regulatory requirements, industry standards, and best practices related to technology risk management and information security (e.g.,FAIR, NIST Cybersecurity Framework, ISO 31000, OCTAVE & TARA). Strong analytical, problem-solving, and decision-making skills with the ability to evaluate complex issues and develop practical solutions. Excellent communication and interpersonal skills with the ability to effectively engage and influence stakeholders at all levels of the organization. Demonstrated leadership abilities with a track record of driving results, managing projects, and leading cross-functional teams in a fast-paced, dynamic environment. Basic Requirements Effective verbal and non-verbal communication skills at all levels of the organization Leadership teamwork and collaboration Discretion Problem solving Critical Thinking Self-initiated/sufficient Motivated

The role requires to interact closely with first line Business Unit (BU) leaders, First Line Risk Managers (FRM) and other stakeholders in First Citizens India and/or in US, for their day-to-day work. Strong communication and interpersonal skills are necessary to achieve the required objectives. The person in this role will be responsible for updating the status of their work to support relevant and meaningful reporting. Additionally, the person in this role will assist with adhoc and special projects. Exposure to performing review and challenge activities as part of second line risk management in a bank or large financial institutions is preferred. Primary Responsibilities: The Lead Advisor Operational Risk Management in this role assumes responsibility to provide oversight QC on various operational and compliance risk topics and deliver the following: Complete the Quality Control review on assigned tasks as it relates to various risk programs mentioned above. Ensure all aspects of compliance to associated standards are adequately assessed Ensure the quality of documentation meets the required standards Communicate the results of oversight QC to relevant stakeholders and ensure necessary buy in Monitor and follow-up of remediation plans and their statuses to ensure effective risk mitigation This role provides an opportunity to identify risks that could impede the scalability of operations and an important role in working with Bank operations to deliver solutions for challenges faced by the growth of the organization. Knowledge Knowledge of operational and compliance risks in a banking environment and key controls mitigating those risks Well versed with effective challenge or QC process within banks second line of defense. Knowledge of consumer, commercial and other banking processes and related risks and controls. Knowledge of corporate functions in a banking set-up such as human resources, marketing and strategy, finance, etc Skills Organized and structured Strong communicator with excellent written and oral skills Critical thinking skills with eye for details Team orientation and collaboration Project management and multi-tasking Required Education and Experience Bachelors Degree preferably in accounting or finance Experience in banking and financial services with exposure to control testing Working knowledge of Microsoft products required Overall experience of 5 - 7 years with 3-5 year in second Line Effective Challenge Certifications CIA, CAMS, CGSS, CFE, CISA, ISO 27001 (These are good to have but not mandatory)

Our Purpose Title and Summary Manager, Regulatory Relations & Market Compliance The Mastercard Technology Regulatory Relations & Market Compliance Team is looking for a Manager (Lead) Technology Risk Analyst to be part of the controls assurance program supporting various requirements to meet customer and regulatory obligations for the related region. The focus of the role would be around providing compliance support, monitoring, and reporting of the on-going operating effectiveness of Mastercard s internal control environment while ensuring compliance with regulatory requirements, internal policies and industry standards. Mastercard is committed to balancing innovation while protecting the internal control posture. The team assesses internal controls to proactively identify risks, define remediation actions and track remediation efforts. We are looking for someone to join our team and help us meet these compliance goals. This person will be a technically savvy person who likes to solve issues and drive outcomes. The ideal candidate will have the ability to think and act both strategically and tactically while ensuring that the corporation remains compliant with required security, technology, and financial standards, as well as industry best practices. Job Responsibilities Act as an advisory, a focal point for security and compliance-related activities and responsibilities that includes implementation of ISO 27001 standards within the organization. Identify and evaluate technology risks and any related potential security weaknesses through risk and control assessments across systems, application, infrastructure and processes in accordance with industry standards Establish and track remediation internally and externally through to resolution whilst improving design and operational effectiveness of controls. Collaborate with key internal stakeholders from Technology and Business to ensure required deliverables are accurate, complete, timely and within the level of expectations required. Proactive in providing suggestions in process related improvements and constantly be informed of evolving regulatory and cybersecurity related requirements Proficient in providing risk insights to the leadership team through risk dashboards for key initiatives, plans and audit tracking of the current processes as per management requirements. About You: Experience in working with digital and technology functions ideally in a technology and/or cybersecurity related compliance role including managing complex technology / cyber security related audit / regulatory projects. Strong understanding of IT general controls and technology and/or cybersecurity risk management frameworks such as NIST, ISO 27001/27002, GDPR, data privacy related regulations, Bachelor s degree or equivalent combination of education and experience/Bachelor s degree in Computer Science, Information Technology or related field preferred Possess one or more professional certifications (i.e. CISA or CISSPISO 27001 LEAD AUDITOR /Implementer (Desirable) Demonstrate proficiency in information security domains technical background inIT processes and systems related risks. Self driven with strong organizational and time management skills Experience in managing complex projects related to information security

End Date Sunday 29 June 2025 We Support Flexible Working - Click here for more information on flexible working options Flexible Working Options Hybrid Working Job Description Summary As an Audit Analyst working across the technology portfolio, with a particular focus on IT infrastructure, cloud technologies and modern software engineering practices you ll support in the delivery of high-quality audits. Own the design and operational evaluation and testing of key controls. Apply proficient knowledge and application of audit methodology and assigned risk areas. You ll act as a proactive team member, with a growth mindset, positively contributing to the overall effectiveness and efficiency of the audit. Contributing to the ongoing development and improvement of GA&CI through a strategic and integrated audit focus, collaboration and agile delivery methods. We want colleagues who are bold and take action - Confidently innovate, share exceptional insights, deliver difficult messages and drive action that leaves a legacy of significantly improved governance, risk management and control Job Description Responsibilities Provide Internal Audit services to the Ring-Fenced Bank under the Intra Group Service Agreement . Contribute to the audit plan, delivering specified outcomes and providing support by working as directed within the Audit Team. Support control testing and can identify areas of concern, articulating the potential challenge. Help senior colleagues and build meaningful stakeholder relationships. Conduct research considering multiple perspectives and bring the outside in to enable analysis of key themes and external trends. Suggest improvements in current compliance processes by being bold. Actively role model the Group values and behaviours. Proactively identify , address and drive personal development opportunities and create a positive learning culture based on effective coaching. Freely sharing insight and timely , direct, effective feedback that contributes to the success of the delivery plan and leaves a positive, sustainable impact on the function. Capabilities you ll need Audit Delivery The ability to deliver risk and control assurance activity that is timely , impactful, insightful and valued by stakeholders Supports in the delivery of Group Audit Assurance. Owns the design and operational evaluation and testing of key controls. Applies proficient knowledge and application of audit methodology and assigned risk areas. Contributes to the ongoing development and improvement of GA&CI through a strategic and integrated audit focus, collaboration and agile delivery methods. Capabilities linked to your work T echnical knowledge across technology, change and data, including cloud, engineering and infrastructure . Technical skills might be demonstrated by professional qualification(s), such as CIA, CISA or CISSP/ Professional certification(s) issued by major cloud suppliers, and/or evidence of extensive work-based experience in relevant areas. Previous financial services, audit or risk experience is required . Business Strategy The ability to understand and interpret Group and Business Unit Strategy and connect audit delivery and business monitoring insights to such strategies at the Macro level Data Literacy The ability to analyse, understand and communicate data as information, and to use data to drive effective audit outcomes . Leading Team s Leading and taking ownership for delivery, and championing colleagues growth and development. Managing Self Prioritising your work and that of others effectively to ensure timely and value-added delivery. Understanding the critical path for delivery and removing obstacles; planning and preparing to ensure resources are used efficiently and effectively. Taking ownership for personal development and growth, and accountability for ones work and behaviours. Ability to understand and handle different situations, roles and teams with adaptability.

End Date Thursday 30 October 2025 We Support Flexible Working - Click here for more information on flexible working options Flexible Working Options Hybrid Working Job Description Summary We are seeking a detail-oriented and decisive Incident Manager to oversee and coordinate incident management processes across IT systems, people-related events, and physical building incidents. The Incident Manager will ensure that all incidents are managed efficiently and effectively, minimizing disruption to business operations and maintaining a high level of service continuity. This role is pivotal in fostering resilience across technology, personnel, and facility domains. Job Description About Us: Our modern technology centre in Hyderabad will be home to highly skilled technology and data specialists who will be driving our transformation and delivering great outcomes for Lloyds Banking Group s customers. Our office is situated in a sought-after location that features easy transport links and excellent facilities, all aimed at enabling you to achieve a great work-life balance. Working with us means being part of our aspirational and transformative journey of redefining the fintech landscape, while building an organisation that welcomes all. We are committed to providing an exceptional employee experience through our policies, practices, and development opportunities to support you in achieving your potential. Opportunity to be a part of a mission; shaping finance as a force for good - Lloyds Banking Group s mission is to create a sustainable and inclusive future for people and businesses, shaping finance as a force for good. We, at Lloyds Technology Centre, play a key part in delivering this. We are also guided by our values in shaping the way we work and how we make decisions. This creates an environment where colleagues love to work and can make a positive impact. Range of exclusive benefits and rewards - We value your contributions and will ensure that your total reward experience reflects the expertise you bring and impact you create. We also strive to provide a holistic proposition that meets your wellbeing needs. Our total reward practices help us create an ecosystem where you can thrive, ensuring your essential needs are met so you can focus on your personal growth and future success. Career elevating opportunities - At Lloyds Technology Centre, you will be empowered to take charge of your career journey through personalized career mentorship from experienced mentors, leadership development programs, and stretch assignments. You will be able to access opportunities for continuous learning and exposure to new experiences through job shadowing and cross-functional collaboration on projects. Future skill building opportunities - Being part of Lloyds Banking Group, who are known for their market leading practices in learning and development, Lloyds Technology Centre is committed to help you achieve your personal and professional aspirations. You will have access to role specific learning pathways & training, targeted accelerated development programs and professional certifications & qualifications. Inclusive and diverse workplace - At Lloyds Technology Centre, you will be part of an inclusive workplace where everyone feels valued, respected, and empowered. We embrace and celebrate diversity at every level of our workforce, valuing and respecting you for your unique identity. Incident Management - Manager- Level E Job Summary: We are seeking a detail-oriented and decisive Incident Manager to oversee and coordinate incident management processes across IT systems, people-related events, and physical building incidents. The Incident Manager will ensure that all incidents are managed efficiently and effectively, minimizing disruption to business operations and maintaining a high level of service continuity. This role is pivotal in fostering resilience across technology, personnel, and facility domains. Key Responsibilities: Incident Coordination & Response: Lead the end-to-end management of incidents, including IT outages, personnel safety incidents, and building emergencies, ensuring rapid resolution and minimal business impact. Stakeholder Communication: Act as the primary point of contact during incidents, providing timely and accurate communication to leadership, impacted stakeholders, and relevant departments. Escalation Management: Ensure incidents are escalated appropriately to senior leadership and specialized teams based on severity and potential business impact. Process Ownership: Develop, maintain, and continuously improve the Incident Management framework, ensuring alignment with organizational policies, compliance requirements, and industry best practices. Post-Incident Review (PIR): Lead comprehensive post-incident reviews to identify root causes, document findings, and recommend corrective and preventive actions. Collaboration: Liaise with IT teams, Security, Facilities Management, HR, and other business units to ensure coordinated incident response efforts. Training & Awareness: Facilitate incident management awareness and readiness programs across teams, including conducting simulations, drills, and tabletop exercises. Reporting & Metrics: Develop and maintain incident logs, dashboards, and regular reports to track trends, performance metrics, and areas for improvement. Business Continuity Support: Support the Operational Resiliency function in ensuring preparedness for business disruptions and alignment with continuity plans. Availability: Participate in an on-call rotation to manage high-severity incidents, including outside business hours, as required. Required Qualifications : Bachelor s degree in Information Technology, any MBA/PG with project management expertise, Business Continuity, Facilities Management, or a related field. 10- 15 years experience in incident management, crisis management, or a related operational role. Strong knowledge of incident management frameworks (e.g., ITIL) and risk management practices. Excellent communication, leadership, and coordination skills across multi-disciplinary teams. Experience managing IT, personnel safety, and facility-related incidents. Demonstrated ability to remain calm and effective under pressure. Preferred Qualifications : ITIL Foundation Certification or equivalent preferred. Experience with incident management tools (ServiceNow, etc.). Familiarity with Business Continuity, Disaster Recovery, and Emergency Response principles. Knowledge of occupational health and safety regulations and facility management procedures. Certification good to have but not mandatory: CBCP (Certified Business Continuity Professional) - DRI (Disaster Recovery Institute) CIM (Certified Incident Manager) - International Association of emergency Managers CISA (Certified Information System Auditor) CRISC (Certified in Risk and information systems Control) Key Competencies: Strong stakeholder management, Analytical and critical thinking ,Decision-making under pressure ,Collaborative approach ,Attention to detail ,Resilience and adaptability About the Role: The Incident Manager will play a critical role within the Operational Resiliency function, ensuring organizational preparedness and swift, structured responses to any incident affecting IT systems, people, or physical assets. This role is integral to safeguarding business continuity and protecting the organizations people, technology, and infrastructure.

End Date Sunday 29 June 2025 We Support Flexible Working - Click here for more information on flexible working options Flexible Working Options Hybrid Working Job Description Summary As an Audit Manager working across the technology portfolio, with a particular focus on IT infrastructure, cloud technologies and modern software engineering practices you ll contribute to the delivery of high-quality audits providing assurance over the delivery of the Group s technology strategy and major technology programmes. You will lead audits or elements of large audits in accordance with the agreed plan, with relative autonomy, harnessing a deep understanding of business strategy/priorities, controls, and risks to provide high quality independent assurance on the effectiveness of controls. You ll contribute to the ongoing development and improvement of GA&CI through a strategic and integrated audit focus, collaboration and agile delivery methods. We want colleagues who are bold and take action - Confidently innovate, share exceptional insights, deliver difficult messages and drive action that leaves a legacy of significantly improved governance, risk management and control. Job Description Responsibilities Provide Internal Audit services to the Ring-Fenced Bank under the Intra Group Service Agreement by either project managing individual audit s, or delivering large technical elements of audits led by others , able to identify areas of concern, as well as opportunities for improvement/efficiency. Able to navigate ambiguity and build consensus among a diverse group of stakeholders on collective priorities or complex issues. Build meaningful stakeholder relationships with the business and work collaboratively across GA&CI. Conduct research considering multiple perspectives and bring the outside in to enable analysis of key themes and external trends. Actively role model the Group values and behaviours. Coach others as required , articulating clear expectations and providing feedback to enable them to continuously improve. Capabilities you ll need Audit Delivery The ability to deliver risk and control assurance activity that is timely , impactful, insightful and valued by stakeholders . Contributes in the delivery of Group Audit Assurance. Leads audits or technical elements of large audits in accordance with the agreed plan, with relative autonomy, harnessing a deep u nderstanding of business priorities, controls, and risks to provide high quality independent assurance on the effectiveness of controls. Contributes to the ongoing development and improvement of GA&CI through a strategic and integrated audit focus, collaboration and agile delivery methods . Capabilities linked to your work Deep technical knowledge across technology, change and data, including cloud, engineering and infrastructure . Technical skills should be demonstrated by professional qualification(s), such as CIA, CISA or CISSP/ Professional certification(s) issued by major cloud suppliers, and/or evidence of extensive work-based experience in relevant areas. Previous financial services, audit or risk experience is required . Business Strategy The ability to understand and interpret Group and Business Unit Strategy and connect audit delivery and business monitoring insights to such strategies at the Macro level . Data Literacy The ability to analyse, understand and communicate data as information, and to use data to drive effective audit outcomes . Leading Others Leading and taking ownership for delivery, and championing colleagues growth and development. Managing Self Prioritising your work and that of others effectively to ensure timely and value-added delivery. Understanding the critical path for delivery and removing obstacles; planning and preparing to ensure resources are used efficiently and effectively. Taking ownership for personal development and growth, and accountability for ones work and behaviours. Ability to understand and handle different situations, roles and teams with adaptability.

End Date Thursday 27 November 2025 We Support Flexible Working - Click here for more information on flexible working options Flexible Working Options Hybrid Working Job Description Summary Provide insightful, high quality analysis, advice and guidance in a specific area of risk, executing control and tailored to senior stakeholder needs. May lead a team of risk specialists and deputise for more senior colleagues Job Description Job Title: India IT Compliance - Central Role Grade: E Country: India Location: Hyderabad Lloyds Technology Centre, Hyderabad, India Work for Lloyds Technology Centre who are part of Lloyds Banking Group, the UKs largest digital bank, where you ll make a genuine difference, be able to develop yourself and be part of a culture where everyones contribution is recognized. Opportunity to be a part of a mission; shaping finance as a force for good - Lloyds Banking Group s mission is to create a sustainable and inclusive future for people and businesses, shaping finance as a force for good. We, at Lloyds Technology Centre, play a key part in delivering this*. We are also guided by our values in shaping the way we work and how we make decisions. This creates an environment where colleagues love to work and can make a positive impact. Range of exclusive benefits and rewards - We value your contributions and will ensure that your total reward experience reflects the expertise you bring and impact you create. We also strive to provide a holistic proposition that meets your wellbeing needs. Our total reward practices help us create an ecosystem where you can thrive, ensuring your essential needs are met so you can focus on your personal growth and future success. What you ll do: As the Risk Partner, you will be acting as a source of trusted professional expertise to evaluate, review, investigate, challenge & mitigate the potential for risk in assigned areas of Lloyds Technology Centre, India (LTC). You will be supporting the Senior Compliance Manager in the development of, and support and challenge the implementation of short, medium, and long-term plans in the context of the strategic direction, taking into account the risk appetite, governance and regulatory requirements with a focus on developing a compliance program for LTC India. Your key responsibilities will be. Develop, implement, and update cybersecurity policies and procedures to ensure compliance with applicable laws, regulations, and industry standards, such as GDPR, DPDPA, Cert-In, ISO 27001, NIST, etc. Conduct regular compliance audits and assessments to identify areas of risk or non-compliance and recommend corrective actions. Provide guidance and training to employees on IT compliance-related matters, including regulatory requirements and ethical standards. Collaborate with IT and cybersecurity teams to implement technical controls and measures to protect against cyber threats and data breaches. Monitor and respond to cybersecurity incidents and breaches, including conducting investigations and coordinating remediation efforts. Prepare and submit compliance reports to regulatory agencies and stakeholders, ensuring accuracy and timeliness. Maintain documentation and records related to cybersecurity compliance activities, including audit findings, risk assessments, and incident response efforts. What you ll need: 11 to 17 years of experience in cybersecurity and IT compliance roles, with a deep understanding of relevant laws, regulations, and industry standards. Strong technical knowledge of cybersecurity principles, technologies, and best practices, including network security, encryption, access controls, and incident response. Excellent analytical and problem-solving skills, with the ability to identify compliance risks and develop effective solutions. Outstanding communication and interpersonal skills, with the ability to effectively collaborate with colleagues at all levels of the organization. Detail-oriented and organized, with the ability to manage multiple tasks and priorities in a fast-paced environment. High level of integrity and ethical conduct, with a commitment to upholding the companys values and compliance standards. Nice to have skills: CRISC, CISA, CISM or equivalent Certification would be an advantage. Experience of using collaboration platforms like Confluence / JIRA and ServiceNow. Strong commitment to data security principles and maintaining confidentiality. Qualifications: Bachelors degree in computer science, information technology, cybersecurity, or a related field Excellent written and verbal communication skills. Cybersecurity, data and risk management knowledge and experience.

Manager, Regulatory Relations & Market Compliance The Mastercard Technology Regulatory Relations & Market Compliance Team is looking for a Manager (Lead) Technology Risk Analyst to be part of the controls assurance program supporting various requirements to meet customer and regulatory obligations for the related region. The focus of the role would be around providing compliance support, monitoring, and reporting of the on-going operating effectiveness of Mastercard s internal control environment while ensuring compliance with regulatory requirements, internal policies and industry standards. Mastercard is committed to balancing innovation while protecting the internal control posture. The team assesses internal controls to proactively identify risks, define remediation actions and track remediation efforts. We are looking for someone to join our team and help us meet these compliance goals. This person will be a technically savvy person who likes to solve issues and drive outcomes. The ideal candidate will have the ability to think and act both strategically and tactically while ensuring that the corporation remains compliant with required security, technology, and financial standards, as well as industry best practices. Job Responsibilities Act as an advisory, a focal point for security and compliance-related activities and responsibilities that includes implementation of ISO 27001 standards within the organization. Identify and evaluate technology risks and any related potential security weaknesses through risk and control assessments across systems, application, infrastructure and processes in accordance with industry standards Establish and track remediation internally and externally through to resolution whilst improving design and operational effectiveness of controls. Collaborate with key internal stakeholders from Technology and Business to ensure required deliverables are accurate, complete, timely and within the level of expectations required. Proactive in providing suggestions in process related improvements and constantly be informed of evolving regulatory and cybersecurity related requirements Proficient in providing risk insights to the leadership team through risk dashboards for key initiatives, plans and audit tracking of the current processes as per management requirements. About You: Experience in working with digital and technology functions ideally in a technology and/or cybersecurity related compliance role including managing complex technology / cyber security related audit / regulatory projects. Strong understanding of IT general controls and technology and/or cybersecurity risk management frameworks such as NIST, ISO 27001/27002, GDPR, data privacy related regulations, Bachelor s degree or equivalent combination of education and experience/Bachelor s degree in Computer Science, Information Technology or related field preferred Possess one or more professional certifications (i.e. CISA or CISSPISO 27001 LEAD AUDITOR /Implementer (Desirable) Demonstrate proficiency in information security domains technical background inIT processes and systems related risks. Self driven with strong organizational and time management skills Experience in managing complex projects related to information security

Job Title Senior Manager - Cybersecurity and Cyber Defense Center Direct Supervisor VP - Cybersecurity and Cyber Defense Center Job Purpose To develop, manage, and execute cyber security project across Mashreq to Lead and oversee the strategic operations of the Cyber Defense Center (CDC) to ensure effective monitoring, detection, analysis, and response to advanced cybersecurity threats. Develop and implement security strategies, policies, and procedures to manage and mitigate risks across the organization. Guide and mentor the team in using SIEM platforms (Azure Sentinel & ArcSight preferred) and other security solutions to address complex and critical security events. Coordinate with senior leadership and external stakeholders to enhance the organization's security posture and ensure compliance with regulatory requirements. Dimensions Key Result Areas Strategic Security Management: Develop and implement strategies for monitoring and responding to security events from SIEM systems (Azure Sentinel & ArcSight preferred). Analyze and respond to security events from diverse data sources such as firewalls, IDS/IPS, antivirus solutions, DAM systems, web servers, proxies, and banking applications. Advanced Threat and Incident Management: Create and refine alert rules and logic in SIEM to detect significant events and threats. Perform precise, real-time analysis and correlation of logs/alerts from multiple sources. Utilize established policies, standards, and procedures to classify security alerts as incidents and guide incident response efforts. Leadership and Improvement: Improve incident response times and reduce false positives by refining detection capabilities and processes. Assist in the design, implementation, and execution of security awareness programs and risk-based security controls analysis. Update and enhance processes and policies (SOPs, playbooks, runbooks) with a deep understanding of cybersecurity best practices. Cross-Functional Collaboration: Collaborate with compliance, audit, and regulatory teams to provide necessary information, data, and evidence. Keep up-to-date with industry knowledge and trends to maintain a high level of security proficiency. Key Principles Strategic Leadership: Provide strategic direction and leadership to the Cyber Defense Center, ensuring alignment with organizational goals and cybersecurity best practices. Enhanced Threat Detection and Response: Drive improvements in threat detection and response capabilities, ensuring accurate identification and swift remediation of security incidents. Continuous Process Improvement: Continuously evaluate and enhance security processes and policies to adapt to evolving threats and improve operational efficiency. Effective Communication and Collaboration: Maintain strong communication with internal teams, senior management, and external stakeholders to ensure effective security management and compliance. Ethical and Professional Standards: Uphold high ethical standards in all security practices, ensuring compliance with regulations and protecting sensitive information. Operating Environment, Framework and Boundaries, Working Relationships Information Security / Cyber Security Regulations and Industry best practices. HO (Head Office) and International Regulators and Supervisors across the bank is operating. All business units including LOD 1-3 including LOD1 – Business, Tech GRC, Technology, LOD-2 Group Compliance, Fraud Prevention, Risk Management and LOD-3 Internal Audit. Problem Solving Proactive and Strategic Problem Solving: Lead proactive monitoring and root cause analysis of security incidents to address underlying issues effectively. Provide strategic guidance during incident response activities for complex security incidents. Log Source Management and Optimization: Oversee the onboarding and integration of new log sources, optimizing data accuracy and enhancing threat detection capabilities. Decision Making Authority & Responsibility Evaluation and Innovation: Lead evaluations and Proof of Concept (PoC) for new security solutions and technologies, driving innovation in security practices. Security Metrics and Architecture: Monitor and analyze key security metrics to ensure alignment with security standards and contribute to the development of Security Reference Architecture. Policy and Strategy Development: Guide the creation and refinement of security policies, including scope and control decisions, ensuring alignment with organizational and regulatory requirements. High-Level Collaboration: Collaborate with senior management, vendor personnel, and other teams to achieve security objectives with minimal supervision. Knowledge, Skills, and Experience Educational Background: Graduate/Postgraduate degree in Science, Engineering, or IT. Certifications: Minimum of 2 professional certifications from CISSP, CISM, CRISC, CISA, or equivalent. Experience: Extensive experience in SIEM design and implementation, with a strong background in Cyber Defense Center or Security Operations Center roles. Over 12 years of experience in SOC & CDC, with proven leadership skills and expertise in managing complex security operations. Skills: Proficiency in managing SIEM policies and enhancing security operations. Strong analytical skills for evaluating security requirements and implementing appropriate controls. Excellent documentation and report writing skills. Knowledge of the banking environment is advantageous.

Who w e a re J o hns o n C o n tr o ls is t h e g l o b al l e a de r f o r s mart, he a l t h y a n d s u s ta i n a b le bu i l d i ngs . A t J o hns o n C o n t r o l s , w e ve bee n mak i n g bu i l d i n g s s mar t e r s i n c e 1885, a n d o u r c a p a b ilit i es , d e p th o f i n n o vati o n e x pe ri e n c e , a n d g l o b al r e a c h h ave be e n g r ow i n g e v e r s i n c e . To d ay, w e o ff e r t h e wo rl d s lar g e s t p o rtf o lio o f bu il d i n g p r o du c t s , t e c hn o l o g i es , s o ft w ar e , a n d se rv i c es ; w e pu t t h at p o rtf o lio to wo rk to tra ns f o rm t h e en vir o n m e n ts w he r e pe o p l e liv e , wo rk, l e a r n a n d p lay. T h is is w he r e J o hns o n C o n t r o ls co m e s i n , he l p i n g d ri v e t h e o u t c o m e s t h at matt e r m o s t. T h r o ug h a f u ll ra n g e o f s y s t e ms a n d d i g ital s o l u ti o ns , w e make y o u r b u i l d i ng s s mart e r. A s mart e r bu i l d i n g is s af e r, m o re co m f o rta b l e , m o re e ffi c i en t, a nd , u ltimat e ly, m o re sus ta i n a b l e . M o s t im p o rta n t, s m art e r b u il d i n g s l e t y o u f oc u s m o re i n t e ns e ly o n y o u r un i q u e mi s s i o n . B e tt e r f o r y o u r pe o p l e . B e tt e r f o r y o u r b o tt o m li ne . B e tt e r f o r t h e p l a ne t. W e re he l p i n g to c r e ate a he al t h y p la n e t w ith s o l u ti o n s t h at de c r e a s e e ne r g y use , r edu c e w a s t e a n d ma k e c ar b o n n eu trality a r e ality. Sus t a i n a b i lity i s a t o p p ri o rity f o r o u r co m p a n y. W e co mmitt e d to i n v es t 75 pe r c e n t o f ne w p r o du c t d e v e l o p m e n t R D in c limat e -r e lat e d i nn o vati o n to de v e l o p s us ta i n a b l e p r o du c ts a n d s e rvi c es . W e take s us tai n a b il i ty se ri o u s ly. A c h i e vi n g ne t z e ro c ar b o n e mi s s i o n s be f o re 2040 is j us t o n e o f o u r co mmitm en ts to maki n g t h e wo rld a be t t e r p la c e . P l e a s e vi s i t a n d f o ll o w J o hns o n C o n tr o ls L i n k ed I n f o r r e c en t e xc it i n g a c tiviti e s . Why JC I https / / www . y o utub e . co m/ w at c h v = n r b i g jbp x kg A s i a-Pa c i f i c L i nk e d I n https / / w ww . li nk e d i n. co m /sh o w c as e / j o h ns o n- c o nt r ol s-as i a - pa ci f ic / p o st s / fee d Vi ew = a l l C a ree r The P o we r B e h i nd Y o ur M i ss io n O p e nB l u e Th i s i s H o w a S p a c e C o m e s Ali v e How will you do it Providing risk assurance i. e. , identifying risks and evaluating if (auditable) risks are being managed appropriately. End to end ownership from Compliance perspective for process improvement, expected Assessing risks and their impacts in a tangible manner, using analytical procedures in due course. Providing assurance that internal policies and processes are adhered consistently Reviewing effectiveness and efficiency of controls and advising / assist in implementing improvements to systems, processes, controls, and risk management practices Aligning key stakeholders regarding risks and root causes noted and obtaining meaningful action plans for improvements in processes, controls, and risk management practices. Conducting process reviews and identifying findings and root causes Independently preparing draft audit reports comprising of observations, risks, recommendations and management action plans. Following up on open issue/ and reviewing closure of action plans Provide training to key stakeholders for changes / new implementation of policies and procedures. Perform SOX Control Testing for internal controls. What we look for Preferred Chartered Accountant/ University degree in business or finance Professional certifications like CISA/ CIA preferred. 3-6 years of progressive work experience in risk based internal audits in Big 4 accounting firms and/or KPO industry. Strong and broad knowledge of controls and processes with exposure to best practices in the industry for AP/ AR and PTP and RTR processes Strong eye for details Preferred understanding of Data Analytics and proficiency with MS Office applications (PowerPoint, Excel, Word, Outlook and Visio). Knowledge of multiple accounting systems preferred Excellent interpersonal skill What w e o ffer W e o ff e r an e xc iti n g a n d c h all e n g i n g p o s i ti o n . J o i n i n g u s y o u w ill b e co me p art o f a l e a d i n g g l o b al m u lti- i nd u s trial co r p o rati o n de fi n e d b y i ts s t im u lat i n g wo rk e n vir o n m en t a n d j o b s at i s fa c ti o n . In a dd i t i o n , w e o ff e r o u t s ta nd i n g c ar ee r de v e l o p m en t o pp o rt un i t i e s w h i c h w ill s t r e t c h y o u r a b ilit i e s a n d c h a n ne l y o u r ta l en ts D i v e r s i ty I n c l us i o n O u r ded ic a t i o n to d i v er sity a n d i n cl u si o n st a r ts w ith ou r v a l ue s. W e l e a d w ith i n t egr ity a n d p ur p o s e , f o c u si n g o n t h e f u t u r e a n d a li gn i n g w ith o u r c u st o m er s v isi o n f o r s u cc e ss. O u r H i g h - Per f or ma n ce C u lt u r e e n s ure s t ha t w e h a v e t h e b e st t a l en t t ha t is h i gh ly e n g ag e d a n d eag e r to i n no v a t e . O u r DI m issi o n e l e v a t e s e a ch e m p l oye e s re s p on si b ility to c o n t r i b u te to ou r c u lt ure . It s t h r o ug h t he se c o n t r i b u ti on s t h a t we ll d r i v e t h e m i nd s e ts an d be h a v i or s w e nee d t o p o w e r o u r c u st o m er s m issi on s. Y o u ha v e t h e p o wer . Yo u ha v e t h e v o i c e . Yo u ha v e t h e c u lt u r e in y o u r h and s.

What you bring Education and Qualifications/Skills and Competencies Bachelors or Master s degree in: Information Systems, Engineering, Computer Science or similar degree. Must be able to work as a team player, yet can work independently. Analytical, results-driven and have a solution oriented approach. Possess exceptional interpersonal and communication skills including verbal, written presentation and listening. Must be open to travel. Must be willing to relocate to Bangalore / Gurgaon. Certifications in SAP (Security Professional, GRC or a combination of either of them) Vendor Neutral Security certifications (Like ISO 27001/31000,CISSP, CISM, CISA, GSEC, CEH, Security+) will be a big plus Technical Skills Strong foundation on S/4HANA Security is a prerequisite. Should be able to identify and build portfolios in S/4HANA Security implementation and Conversion topics Strong in Technology security fundamentals and hands on experience on SAP specific products and solutions like SAP GRC suite of products including Access Control, Process Control, Risk Management, Audit Management, Business Integrity Screening, SAP Single Sign-On, SAP Identity Management Technical Knowledge and experience in SAP Business Technology Platform and related solutions like SAP Business Technology Platform Identity Authentication, Identity Access Governance, m Identity Provisioning is a big plus Technical Knowledge and Experience in working with SAP Application security including SAP SaaS and On-premise products Working knowledge of Operating Systems security and Database Security Secure Coding practices and Security Testing knowledge and experience in any capacity will be a big plus Technical coding skills in SQL, JavaScript and any one of programming language like JAVA or Python

Looking for a candidate with 5+ years of experience in IT Audit, Risk Management, and Compliance within Banking/NBFCs. Must have expertise in COBIT, NIST, RBI guidelines, ISO standards, IT systems and risk assessments. CISA certification is must.

Job Title: Cyber Organization alignment Compliance Location: Remote Experience: 10 -15 Years Job Description: The Information Security Cyber Organization Alignment role is focused on the strategic alignment of information security practices with the bank s overall risk management strategy, compliance requirements, and governance frameworks. The role focuses on driving Information Security Governance, Risk, and Compliance (GRC) initiatives to strengthen the bank s security posture while ensuring alignment with regulatory and business objectives. through effective processes i.e., risk tracking, compliance monitoring, RCSA, evaluating exceptions, and ensuring accurate reporting. The role ensures the right level of governance is in place and drives continuous improvement in risk management processes. The role leverages automation to streamline processes and enhance risk visibility across Information Security Group through managing GRC solutions Key Responsibilites: Essential knowledge Have around 10+ years of experience in a Banking environment and over 3 years of experience in information security. Familiarity with information security technologies, risk, threat and vulnerability assessments, and security measures. Experience with governance, risk management, and compliance frameworks (e.g., ISO 27001, NIST, GDPR, PDPL). Hold professional certifications (e.g., CISA, CISM, CISSP, CRISC) Skills and Application Strong communication and interpersonal skills. Ability to manage multiple projects and priorities. Proficiency in security tools and technologies. Strategic Insight Foster a culture of security awareness and compliance within the organization. Continuously improve the information security posture of the organization. Ensure that information security risks are effectively managed and mitigated

Job Title: Cyber Awareness Specialist Location: Remote Experience: 10 -15 Years Job Description: The Cyber Security Awareness Specialist plays a critical role in maturing cyber security awareness program. The specialist is responsible for fostering a culture where Cybersecurity is embedded in their roles in protecting the Bank s assets and information and integrating cybersecurity awareness into the banks broader security strategy, ensuring a proactive and informed workforce that upholds the bank s commitment to data protection and risk management . Key Responsibilities : Develop and deliver a Cybersecurity Training program. Plan and execute Cybersecurity Awareness Campaigns to promote cybersecurity. Advocate for cybersecurity policies and best practices. Monitor training effectiveness and report on progress Essential knowledge: Have a minimum of 10 years of experience in cybersecurity awareness, training, or related roles preferably within the banking or financial services industry. Strong knowledge of cybersecurity principles, threats, and best practices. Excellent communication, presentation, and interpersonal skills. Proficiency in using tools for creating digital training materials (e.g., e-learning platforms, video editing software). Familiarity with phishing simulation tools, wargaming tools (e.g., Defender, Conductrr etc.) and methodologies. Experience managing relationships with senior and executives. Familiarity with information security technologies, risk, threat and vulnerability assessments, and security measures. Knowledge of information security regulatory and compliance requirements. Skills and Application: Support in the development and implementation of comprehensive information security awareness program in alignment with the Information Security Group strategy. Oversees awareness program and ensuring key metrics are managed within risk appetite level. Strategic Insight: Cultivates an organizational culture inside that prioritizes and encourages proactive information security practices and continuous improvement across all departments. Integrate information security considerations into ISG strategies, recognizing the importance of information security in achieving ISG objectives and competitive advantage. Communicates the strategic value of Information Security and Data to executive leadership and key stakeholders, advocating for resources and support to strengthen the banks capabilities. Key Competencies: Creativity and ability to craft engaging, informative materials for diverse audiences. Analytical skills to assess training effectiveness and identify risks. Strong organizational and project management skills. A proactive mindset and enthusiasm for fostering a culture of cybersecurity awareness. Professional certifications: CISA, CISM, CISSP, CRISC, ISO27001 LA/LI etc.

Job Title: Information Security Risk Management (IRM) Location: Remote Experience: 15 -20 Years Job Description: This role is responsible for developing, managing, and executing the Information Security Risk Management program . The incumbent will play a critical role in ensuring the banks resilience by effectively identifying, assessing, and mitigating information security risks, both internally and from external parties. Main responsibilities are to: Contribute to the cybersecurity strategy of the bank to expand with secure and reliable service offerings. Improve the bank s ability to identify, assess, and mitigate risks within our environment, and risk posed by external suppliers who access the bank environment and data. Drive operational resilience through visibility on third party resiliency measures. Ensure an in-built approach to build a resilient security posture. Establish a well-structured third-party risk management program that adheres to best practices. Key Responsibilites: A mid senior level officer with sound knowledge and expertise in information security risk management with experience of managing enterprise projects and of direct and in-direct relationship with senior and executive management. Strong experience and knowledge across the Information Security and Cyber Security domains including governance, policy procedures, compliance management, risk management and security incident response etc. Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills. Sound knowledge and expertise in conducting risk assessment. Minimum 12+ years of experience in Information Security domain with expertise in TPRM, Supplier risk assessment, Risk management, ISMS etc. Minimum 4+ years of experience in Project management of complex engagements with multiple stakeholder interaction and advisory support to the clients. Experience of working in the banking domain or with banking/payment industry clients.

Job Title: Principal Internal Audit About GlobalFoundries: GlobalFoundries is a leading full-service semiconductor foundry providing a unique combination of design, development, and fabrication services to some of the world s most inspired technology companies. With a global manufacturing footprint spanning three continents, GlobalFoundries makes possible the technologies and systems that transform industries and give customers the power to shape their markets. For more information, visit www.gf.com . Summary of Role: We are looking for a skilled SAP Auditor to join our team for a significant multi-year SAP implementation project. The ideal candidate will play a crucial role in ensuring compliance across various financial and operational areas, with a particular emphasis on ITAC, Key Reports, and SOC Reports. A qualified candidate will have 3-6 years of experience in accounting or auditing. Experience testing financial statement controls is preferred . Essential Responsibilities: Assist with coordinating the day-to-day management of the SAP implementation compliance from planning through scheduling, preparing, execution, tracking, and reporting. This includes scoping and risk assessment, documenti ng and designing processes and controls, testing, deficiency evaluation, and remediation tracking. Work directly with business process owners on the implementation and maintenance of controls, especially in the transformation of software . This includes business process control design, policies, procedures, documentation, evidence evaluation, and system enhancements. Coordinate compliance program testing with co-sourced team members to ensure sufficient documentation and adequate design and testing of controls for assigned critical processes and accounts. Perform testing of controls for IT Automated Controls (ITAC), Information Provided by Entity (IPE) reports, and SOC 1 Reviews: test of design and operating effectiveness. A ssist team members to execute internal control processes for Business Process IT Automated Controls (ITAC) for S/4 Hana and Ariba, Information Provided by Entity (IPE), SOC 1 Reviews, and SOD analysis using SAP GRC Access Controls. Ensure the timely execution of the compliance program relating to IT Automated Controls (ITAC), Information Provided by Entity (IPE) reports, and SOC 1 Reviews. Ensure the timely execution of identifying controls relating to the transformation of software. Maximize use of Internal Control systems, AuditBoard , to enhance efficiency of the compliance program. Knowledge and experience around business process controls and evaluation are a must . Resolve internal control issues and deficiencies through collaboration with process and control owners. Monitor management s remediation efforts to closure, including review of supporting evidence and retesting. Liaise with external auditors and proactively coordinate audits. Identify areas for process improvement. Participate in special projects and initiatives as needed. Other Responsibilities: Perform all activities in a safe and responsible manner and support all Environmental, Health, Safety Security requirements and programs. Requi red Qualifications: 6-10 years of experience, including Big 4 and/or experience with SOX 404 and S/4 HANA. Bachelor s Degree in Accounting/Finance or similar degree (CPA/CA and/or CIA and CISA certifications preferable). Knowledge of S/4 business process automated controls, including key reports. Knowledge of SAP GRC Access Controls, S/ 4 and Ariba user access concepts, and Ariba business process automated controls. Knowledge of Software as a Service industry and SOC Report Testing is preferable. Strong quantitative and qualitative analytical skills - significant experience in Microsoft applications; Workday, SAP, and AuditBoard experience is a plus. Ability to operate independently and as part of a larger functional team. Takes personal pride in the accuracy of their work and treats business partners with the utmost urgency and care. Strong process, systems, and controls understanding. Language Fluency - English (Written Verbal). Travel - Up to 40%. Preferred Qualifications: Excellent organizational, verbal, and written communication skills. Highly detail-oriented, with the ability to multi-task and strong project management skills. Thrives in a fast-paced environment and welcomes the opportunity to make a difference in a growing organization GlobalFoundries is an equal opportunity employer, cultivating a diverse and inclusive workforce. We believe having a multicultural workplace enhances productivity, efficiency and innovation whilst our employees feel truly respected, valued and heard. As an affirmative employer, all qualified applicants are considered for employment regardless of age, ethnicity, marital status, citizenship, race, religion, political affiliation, gender, sexual orientation and medical and/or physical abilities. All offers of employment with GlobalFoundries are conditioned upon the successful completion of background checks, medical screenings as applicable and subject to the respective local laws and regulations. To ensure that we maintain a safe and healthy workplace for our GlobalFoundries employees, please note that offered candidates who have applied for jobs in India will have to be fully vaccinated prior to their targeted start date. For new hires, the appointment is contingent upon the provision of a copy of their COVID-19 vaccination document, subject to any written request for medical or religious accommodation.

Job Title: Principal Internal Audit About GlobalFoundries: GlobalFoundries is a leading full-service semiconductor foundry providing a unique combination of design, development, and fabrication services to some of the world s most inspired technology companies. With a global manufacturing footprint spanning three continents, GlobalFoundries makes possible the technologies and systems that transform industries and give customers the power to shape their markets. For more information, visit www.gf.com . Summary of Role: We are looking for a skilled SAP Auditor to join our team for a significant multi-year SAP implementation project. The ideal candidate will play a crucial role in ensuring compliance across various financial and operational areas, with a particular emphasis on ITAC, Key Reports, and SOC Reports. A qualified candidate will have 3-6 years of experience in accounting or auditing. Experience testing financial statement controls is preferred . Essential Responsibilities: Assist with coordinating the day-to-day management of the SAP implementation compliance from planning through scheduling, preparing, execution, tracking, and reporting. This includes scoping and risk assessment, documenti ng and designing processes and controls, testing, deficiency evaluation, and remediation tracking. Work directly with business process owners on the implementation and maintenance of controls, especially in the transformation of software . This includes business process control design, policies, procedures, documentation, evidence evaluation, and system enhancements. Coordinate compliance program testing with co-sourced team members to ensure sufficient documentation and adequate design and testing of controls for assigned critical processes and accounts. Perform testing of controls for IT Automated Controls (ITAC), Information Provided by Entity (IPE) reports, and SOC 1 Reviews: test of design and operating effectiveness. A ssist team members to execute internal control processes for Business Process IT Automated Controls (ITAC) for S/4 Hana and Ariba, Information Provided by Entity (IPE), SOC 1 Reviews, and SOD analysis using SAP GRC Access Controls. Ensure the timely execution of the compliance program relating to IT Automated Controls (ITAC), Information Provided by Entity (IPE) reports, and SOC 1 Reviews. Ensure the timely execution of identifying controls relating to the transformation of software. Maximize use of Internal Control systems, AuditBoard , to enhance efficiency of the compliance program. Knowledge and experience around business process controls and evaluation are a must . Resolve internal control issues and deficiencies through collaboration with process and control owners. Monitor management s remediation efforts to closure, including review of supporting evidence and retesting. Liaise with external auditors and proactively coordinate audits. Identify areas for process improvement. Participate in special projects and initiatives as needed. Other Responsibilities: Perform all activities in a safe and responsible manner and support all Environmental, Health, Safety Security requirements and programs. Requi red Qualifications: 6-10 years of experience, including Big 4 and/or experience with SOX 404 and S/4 HANA. Bachelor s Degree in Accounting/Finance or similar degree (CPA/CA and/or CIA and CISA certifications preferable). Knowledge of S/4 business process automated controls, including key reports. Knowledge of SAP GRC Access Controls, S/ 4 and Ariba user access concepts, and Ariba business process automated controls. Knowledge of Software as a Service industry and SOC Report Testing is preferable. Strong quantitative and qualitative analytical skills - significant experience in Microsoft applications; Workday, SAP, and AuditBoard experience is a plus. Ability to operate independently and as part of a larger functional team. Takes personal pride in the accuracy of their work and treats business partners with the utmost urgency and care. Strong process, systems, and controls understanding. Language Fluency - English (Written Verbal). Travel - Up to 40%. Preferred Qualifications: Excellent organizational, verbal, and written communication skills. Highly detail-oriented, with the ability to multi-task and strong project management skills. Thrives in a fast-paced environment and welcomes the opportunity to make a difference in a growing organization To ensure that we maintain a safe and healthy workplace for our GlobalFoundries employees, please note that offered candidates who have applied for jobs in India will have to be fully vaccinated prior to their targeted start date. For new hires, the appointment is contingent upon the provision of a copy of their COVID-19 vaccination document, subject to any written request for medical or religious accommodation. Information about our benefits you can find here: https: / / gf.com / about-us / careers / opportunities-asia

The Quality & Compliance Transformation Specialist will play a pivotal role in elevating our Quality & Compliance function at Nokia. You will lead transformative initiatives focused on IT SOX Compliance and risk mitigation, utilizing automation and data analytics to drive operational excellence. Reporting directly to the Head of Quality & Compliance, you will collaborate with cross-functional teams like Digital Office and Internal Audit, ensuring alignment and seamless solution adoption. You will be empowered to explore AI-driven solutions, enhancing compliance and security measures while continuously improving processes. You have: Bachelors or masters degree in computer science, Information Systems, Engineering, or a related field with 810 years of relevant experience in process improvement, automation, and data analytics. Strong hands-on experience with Microsoft Power Platform toolsPower Automate, Power Apps, Power BI, and SharePoint. Proven expertise in developing and implementing AI-driven automation solutions. Good understanding of security tools, monitoring alerts, and incident management. It would be nice if you also had: Familiarity with SAP ERP, SecurityBridge, or SAP GRC systems. Basic knowledge of IT General Controls audit and compliance procedures. Microsoft CertifiedPower Platform Developer Associate or similar certifications. Certified Information Systems Auditor (CISA) or relevant IT audit/security certifications. Drive automation initiatives using Microsoft Power Platform tools to streamline quality and compliance processes. Develop comprehensive documentation and provide impactful training for end-user adoption of automation solutions. Lead process optimization projects to enhance operational efficiency and mitigate risks across the organization. Monitor application security tools, analyze alerts, and document incidents for effective compliance management. Explore and integrate AI-driven tools to elevate efficiency, accuracy, and proactive risk management in compliance operations. Create data models and dashboards with Power BI to deliver insights on compliance posture and audit trends. Collaborate with cross-functional teams to align automation and compliance strategies with broader organizational goals. Manage project timelines, track deliverables, and proactively address potential risks to ensure successful implementation.

About Us: Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology. About the role: As a Vendor Risk Operations team member, you will play a critical role in safeguarding Paytm from potential risks associated with our vendor ecosystem. You will be responsible for conducting comprehensive vendor risk assessments, ensuring compliance with internal policies and regulatory requirements, and actively contributing to the continuous improvement of our vendor risk management framework. This role requires a keen eye for detail, strong analytical skills, and the ability to collaborate effectively with various stakeholders. Conduct end-to-end vendor risk assessments across various risk domains (e.g., Vendor deduplication, information security, financial stability, business continuity, regulatory compliance, data privacy). Collaborate with business units to understand their vendor requirements and associated risks. Review vendor-provided documentation, certifications, and audit reports to identify potential vulnerabilities. Conduct Mystery-shopping wherever required Track and monitor vendor remediation efforts to ensure timely closure of identified risks. Maintain accurate and up-to-date vendor risk profiles and assessment records. Assist in the development and enhancement of vendor risk assessment methodologies, tools, and processes. Contribute to the ongoing development and implementation of Paytm's vendor risk management framework. Generate regular reports on vendor risk posture and assessment progress for internal stakeholders. Participate in ad-hoc projects and initiatives related to vendor risk management as required. Expectations/: Educational QualificationBachelor's degree in Business Administration, Finance, IT, Risk Management, or a related field. Experience2-5 years of experience in vendor risk management, third-party risk management, internal audit, compliance, or a similar risk-focused role. Domain KnowledgeStrong understanding of various risk domains, including information security, data privacy (e.g., GDPR, local data protection laws), financial risk, operational risk, and regulatory compliance. Understanding of Technology and User ExperienceAn appreciation for how technology solutions are built and how they impact user experience will be valuable in assessing vendor capabilities and potential risks. Analytical & Problem-Solving Skills: Excellent analytical and problem-solving skills with the ability to conduct deep dives, identify, assess, and mitigate risks effectively. Advanced Knowledge of Excel is required for data analysis and reporting. Basic knowledge of MySQL would be an added advantage for data retrieval and manipulation. Communication & Interpersonal Skills: Good communication and interpersonal skills, with the ability to present complex information clearly and concisely to diverse audiences. Strong written communication for documentation and reporting. High level of drive, initiative, and self-motivation. Ability to work independently, prioritize tasks, and manage multiple assessments simultaneously in a fast-paced environment. A willingness to experiment, learn quickly, and continuously improve processes and personal skills. Certifications (Preferred but not mandatory)CISA, CRISC, CISM, or other relevant certifications in risk management or information security. Why join us: A collaborative output driven program that brings cohesiveness across businesses through technology Improve the average revenue per use by increasing the cross-sell opportunities A solid 360 feedbacks from your peer teams on your support of their goals Respect, that is earned, not demanded from your peers and manager CompensationIf you are the right fit, we believe in creating wealth for you with enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it