We are looking for a highly motivated and detail-oriented individual with 0 to 3 years of experience to join our team as a Risk Consulting Associate in the IT SOX domain. The ideal candidate will have excellent analytical skills, strong knowledge of financial services, and a passion for delivering high-quality results. Roles and Responsibility Develop an understanding of RSM Technology Risk Consulting approach, methodology, and tools. Perform technology risk assessments and review control design and operating effectiveness. Conduct internal audit consulting activities, including audits over ERP systems, IT security, and other IT systems. Execute components of IT audits under offshore delivery models effectively and efficiently. Identify internal control deficiencies, evaluate their risk implications, and draw appropriate conclusions. Ensure documentation complies with quality standards. Collaborate with RSM consulting professionals, supervisors, and senior management in the U.S. daily. Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients. Provide timely, high-quality client service, coordinating the development and execution of the consulting work plan and client deliverables. Understand RSM US and RSM Delivery Center's LOBs and work as a team in providing integrated service delivery. Ensure professional development through ongoing education. Job Requirements B.Tech/MCA/MBA with 0-3 years of relevant experience in Information Technology/Security Controls, SSAE18, SOC reports, IT Audits, IT General Controls, IT Application Controls, and ERP Audits. Intermediate knowledge of financials, operations, and technology and its related risks. Good knowledge of SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security, and risk management frameworks/standards (ISO 27001, NIST, COBIT, ITIL, PCI). Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP). Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word, and PowerPoint. MS Visio skills to develop process and data flow diagrams. Strong multi-tasking and project management skills. Excellent verbal and written communication (English) as this is a client-facing role requiring frequent communications with RSM International clients.

We are looking for a skilled professional with 8 to 13 years of experience to join our team as an Associate Manager/Manager - RC TRC IT SOX Consulting in Bengaluru. The ideal candidate will have a strong background in Information Technology/Security Controls and experience in Risk Consulting. Roles and Responsibility Develop an understanding of the RSM Technology Risk Consulting approach, methodology, and tools. Perform technology risk assessments and review, document, evaluate control's design and operating effectiveness. Conduct internal audit consulting activities, including audits over ERP systems, IT security, and other IT systems. Execute components of IT audits under offshore delivery models effectively and efficiently. Identify internal control deficiencies, evaluate their risk implications, and draw appropriate conclusions to advise clients. Collaborate with the team to provide integrated service delivery and ensure professional development through ongoing education. Job Requirements B.Tech/MCA/MBA with 8+ years of relevant experience in Information Technology/Security Controls. Intermediate knowledge of financials, operations, and technology, along with its related risks. Good knowledge of SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security, and risk management frameworks/standards (ISO 27001, NIST, COBIT, ITIL, PCI). Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP). Strong Data Analytical skills, including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word, and PowerPoint. MS Visio skills to develop process and data flow diagrams. Excellent verbal and written communication skills, as this role requires frequent client interactions. Ability to manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients. Provide timely, high-quality client service that meets or exceeds expectations, including coordinating the development and execution of the consulting work plan and client deliverables. Understand RSM US and RSM Delivery Center's LOBs and work as a team in providing an integrated service delivery. Ensure professional development through ongoing education.

Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster RecoveryPerform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk Control Matrix Perform business process walkthrough and controls testing for IT Audits Performing planning and executing audits, including - SOX, Internal Audits, External AuditsConducting controls assessment in manual/ automated environmentPrepare/Review of Policies, Procedures, SOPsMaintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables Demonstrate a thorough understanding of complex information systems and apply it to client situations Use extensive knowledge of the clients business/industry to identify technological developments and evaluate impacts on the work to be performed Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project s progress Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status

Security Risk and Compliance Expert will be instrumental in shaping the global Information Security Management System (ISMS) within our Group Security team. This role involves engaging with various Business Groups and Corporate Functions to identify and manage information security risks, ensuring compliance and enhancing our security posture. Facilitate risk assessments, develop training, and contribute to the continuous improvement of security policies and tools. Enhance the overall security and compliance of services provided to our customers. You have: Master's or bachelor's degree in computer science, security engineering, or equivalent 5+ years of experience in information security in a multinational organization. Solid understanding of information security processes and technologies Practical knowledge of ISO/IEC 27001:2022 standard implementation Excellent documentation and communication skills It would be nice if you also had: Knowledge of security standards like CSA CCM, NIST CSF, NIS2, and SOC2 Experience delivering information security training Familiarity with RSA Archer and Microsoft Power BI or other GRC tools Certifications in information security (e.g., CRISC, CISSP and ISO 27001 LI/LA) Implement and operate the global Information Security Management System (ISMS) to enhance overall security and compliance Conduct risk assessments with global stakeholders to evaluate and report information security risks Develop and maintain the information security risk register, tracking mitigation progress and presenting reports to stakeholders Provide recommendations for security risk mitigation strategies tailored to different business groups Create, update, and maintain ISMS documentation and a repository of reports and audit records Facilitate training sessions to educate employees on ISMS practices and promote a strong security culture Collaborate with cross-functional teams to identify evolving security trends and compliance requirements Contribute to the continuous improvement of Nokia ISMS and related tools, utilizing KPIs to measure effectiveness

Domain Certifications CISSP, CISA, CRISC, ISO 27001 Responsibilities Own and lead the governance program at account level for a large Financial services account with 700 + head count and multi country locations having high security Offshore Delivery Centres & Work from home teams Develop, implement and monitor Account level Information security governance program; meeting client compliance requirements proactively Perform contract reviews, cyber security risk assessments and drive compliance programs to meet contractual and organizational cyber security requirements within the client offshore delivery centres. Experience in Application security and code reviews which can be leveraged to guide and work with delivery teams on covering the cyber security risks associated with Application security, development and maintenance projects. Work closely with different teams internally like IT, business, HR, facilities, cyber security which operate at Organization level to translate client requirements and assess residual risk if required Give directions and monitor the compliance and operations activities within the account through dedicated team and work closely with account team on ensuring the compliance within account team Develop account level procedures, metrics and review programs to maintain and enhance the governance model within the account Be a single point of contact for client interactions during third party audits and liaise within the organization Prepare the account for certification and internal audit requirements based on industry standards like PCI DSS and ISO 27001 requirements Focus and objective driven to demonstrate ongoing improvements; identify early indicators of non compliance and able to draw mitigation actions Hold technical skills to participate in technical discussions for delivery centre setup, connectivity models Excellent communication skills and have demonstrated effective CXO level reviews

Job Title : IT Audit Compliance Lead Department : Information Technology , No of Vacancy : 1 Location : Thrissur , Kerala Experience required : 8- 13 years Responsibilities : • To drive and supervise IT related audits with internal and external stake holders ensuring successful end to end audit cycle. • Supervise and guide audit team at IT Dept and ensure they meet assigned tasks in prompt and efficient manner. • Managing and coordinating major audits such as RBI CSITE IT Audit, IS Audit (external & Internal), Statutory audit, vendor audits etc. • Coordinating with external auditors on the audits conducted in IT Department and providing responses to audit queries / remarks and providing added evidence requested by auditors. • Conducting discussion on draft audit reports for finalization of the same with the auditors . • Escalating delays in closure/response with SI and other internal or external stake holders. • Participation of various discussions on audit interviews and also on determining closing timelines and methods. • Participating in various committees like IT Steering Committee, ISGC, ACE, on need basis. • Timely provision of ATRs for Committees. • Sending Audit dash boards to top management. • Preparation of vertical related notes to ED and various Committees. • Participating in Regulatory change management meeting with SI for following up of audit related regulatory changes. • Work with IT Leads and Process Owners to step up compliance on audit observations and closing the same. • Responsible for establishing, maintaining, coordinating, and overseeing Audit, compliance with policies and procedures regarding the confidentiality, integrity, and security of information assets. Key Competencies : • Intermediate level knowledge on IT & InfoSec aspects. • Strong knowledge on MS Office package • Data Analysis and Data interpretation skills • Good communication and presentation skills Qualification Required : MCA / B Tech in IT with all round IT exposure of 7+ years Note: InfoSec/ IT-Audit related certifications like DISA, CISA preferred

Core Responsibilities Managing multiple shifts of Security Operations Centre Managers performing security event monitoring and incident identification for 247 Security Operations Centre Provide tactical and strategic direction for the Security Operations Centre staff, program development & maturity roadmap To validate the Incidents reported by SOC operators. To escalate timely when the SLA for alerting is not met. To identify the incidents if there are any missed by SOC operators To interact with external parties to resolve the queries relating to the raised incidents. To manage the SIEM, incidents knowledge base. To generate the daily reports, weekly reports and monthly reports on time. To maintain the timely delivery of reports. To maintain the updated and latest log baselines. The security analyst monitors security events from the various SOC entry channels (SIEM, Tickets, Email and Phone), based on the security event severity, escalate to managed service support teams, tier2information security specialist, and/or customer as appropriate to perform further investigation and resolution. Recommend enhancements to SOC security process, procedures and policies. Participate in security incident management and vulnerability management processes. Participate in evaluating, recommending, implementing, and troubleshooting security solutions and evaluating IT security of the new IT Infrastructure systems. Works as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats Communicate effectively with customers, teammates, and management Provide input on tuning and optimization of security systems Follow ITIL practices regarding incident, problem and change management Document and maintain customer build documents, security procedures and processes. Staying up-to-date with emerging security threats including applicable regulatory security requirements. Other responsibilities and additional duties as assigned by the security management team Qualifications Ideal candidates will have as much of the following High-level understanding of TCP/IP protocol and OSI Seven Layer Model. Knowledge of security best practices and concepts. Knowledge of Windows and/or Unix-based systems/architectures and related security. Intermediate level of knowledge of LAN/WAN technologies. Must have a solid understanding of information technology and information security. Certification in at least one industry-leading SIEM product. Preferred Information Security professional designations such as CISSP, CISM, CISA 3-5 years previous Security Operations Centre Experience in conducting security investigations Detail oriented with strong organizational and analytical skills Strong written communication skills and presentation skills Self-starter, critical and strategic thinker, negotiator and consensus builder Good knowledge of IT including multiple operating systems and system administration skills (Windows, Linux) Basic knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise Anti-Virus products Strong understanding of security incident management, malware management and vulnerability management processes Security monitoring experience with any SIEM technologies and intrusion detection technologies Experience with web content filtering technology -policy engineering and troubleshooting Strong understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP A Bachelors Degree / Diploma in a relevant area of study with a preference for Information Security, Computer Science or Computer Engineering Excellent English written and verbal skills. Shift work required After-hours availability required

ROLE & RESPONSIBILTY: Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls. Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments. Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation. Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments. Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders. Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies. Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments. REQUIREMENTS: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related fields. A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. Profound knowledge of cybersecurity frameworks, industry standards, and best practices. Proficiency in using various security assessment and techniques. Strong analytical and problem-solving skills, with the ability to think critically and strategically. Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. Demonstrated experience in project management and handling multiple assessments simultaneously. A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. Network Security, infrastructure assessment and network architecture design review. Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

Security Service Operations,IT Security Technologies,CISSP, CISM, CRISC, CISA,SIEM, EDR, Email Security Gateways, Vulnerability Management Software, Firewalls,security systems, user authentication and management

Manage IT audits (SOX, ITGC), ensure quality delivery, review testing docs, identify process gaps, prepare reports, handle clients, guide juniors, support proposals, and improve engagement productivity.. Required Candidate profile Looking for 3–5 yrs exp in IT audits (SOX, ITGC), risk assessment, SOC1/2, with strong MS Office skills, good communication, and CISA/BE/B.Tech/MBA/MCA background. Big 4 experience preferred.

Job Description Job Title NFRM Information Security Technology Risk Specialist Location Mumbai, India Corporate Title Associate Role Description An Information Technology Security Risk Specialist to join the 2nd LoD Information Security Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The team has a global footprint in Frankfurt, Singapore, London, Mumbai and USA. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Provide data and analytics reporting to support the team in monitoring the Information Security and Technology Risk Appetite, breaches and remediation. Where required support the implementation of automated data and analytics reporting process. Support the team delivery of Non-Financial Risk Management (NFRM) priorities such as risk control assessments, scenario analysis, risk appetite. Monitor and challenge 1LOD Risk and Control Assessments (including results of 1LOD control testing/assurance). Perform 2LOD control assurance through targeted reviews of areas of concern. Gain an understanding and be able to articulate key Information Security and Technology regulatory requirements across APAC/MEA and their impact and implementation into the Information Security and Technology Risk Framework. Your skills and experience University degree (Computer Science, Business Administration or equivalent). Majors in Information Security and / or Risk Management are a plus. Experience (5+ years) in Information Security or Information Technology with experience in the Finance industry and/or a major Technology or Consultancy company preferred. Experience in IT Risk Frameworks such COBIT 2019 is ideal 3+ yrs Understanding and experience of technology from either a support, development or business analysis perspective Some level of technical understanding and training either as a data analyst, developer, business analyst or project manager are a plus. Knowledge of Information Security and Technology industry regulatory standards and/or Risk Frameworks (e.g. EBA Guidelines ISO / 27000 Series, COBIT 2019, DORA) are a plus. Experience of technology coding e.g python, java is a plus Understanding of IT controls SDLC, managing technology obsolescence, disaster recovery is a plus Knowledge of Digital transformation, Private and Public Cloud, AI tooling a plus Relevant professional certifications e.g. CISSP, CISA, CISM, CRISC, ITIL, ISO27001 Lead Auditor or similar are a plus. Experience of working in large global teams yet comfortable working independently without day-to-day oversight and steer. Strong communication skills (English required). How we ll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

Job Description Job Title Information Security Specialist Corporate Title Assistant Vice President Location Pune, India Role Description Everyday DB observes thousands of cyber security intrusion attempts. Deutsche Bank s COO Chief Security Office (CSO) integrates both Corporate Security (CS) and Information Security (CISO) as both teams are responsible for mitigating these risks. The CSO team enables the business of Deutsche Bank by providing agile security operational capabilities. With their expertise in Threat Intelligence, Cyber Threat Analytics, Malware Response Research, Security Monitoring, Incident Response, Forensics and Vulnerability Management, they provide global services from key locations in Frankfurt, Jacksonville and Singapore while leveraging offshore capabilities in Pune and Bucharest. Deutsche Bank AG is looking for Cyber Security professional to support the bank s global security monitoring and threat detection capabilities. This role requires a heavy focus on all areas of security monitoring, risk management on privileged access management and familiarity with regulations impacting technology (e.g. MAS TRM Guidelines), requiring at least 5 to 8 years of experience. Candidate will be responsible to provide an oversight of the various security monitoring process to manage security risks and to drive the organization s compliance to regulatory and audit requirements including facilitation of audit activities, address process related queries and drive automation and audit remediation projects. The candidate will need to drive process improvements, procedure document updates, KPI monitoring and operations team management. Candidate will engage across all functional areas of business, operations, and global technologies working in a dynamic, multi-OS environment. This role will play a vital role in present organization s compliance to regulators and managing interactions with auditors. The chosen candidate will be required to provide a degree of strategic, tactical, and day-to-day operational experience to enhance the overall security monitoring, detection, and mitigation process. Candidate must also possess excellent soft skills and verbal communications dealing with senior executive management, customers, clients, auditors, and third-party vendors. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy, Best in class leave policy. Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Oversee the performance, efficiency, and accuracy of security monitoring operations team ensuring SLA s are met. Proactively review, propose, and implement process changes and monitoring improvements to remediate most significant risks including audit findings, self-identified issues, compliance issues, control gaps and regulatory requirements. Identify opportunities for streamlining of control processes, develop and socialize potential risk mitigation strategies particularly in privileged access management (e.g., bypass monitoring, session log review), and work with various divisions to execute. Improve the delivery of effective control process through technical review and process quality checks. Provide support in the delivery of effective governance including tracking and reporting. Ensure proper training of monitoring teams on new coverage and use cases. Offer subject-matter expertise and act as escalation point when required. Prepare and present monthly functional and operational report. Manage stakeholder queries, facilitate audit activities, and address data requests in a timely manner. Collaborate across CSO and technology teams to respond to internal and external audits, and regulatory inquiries and assessments. Drive automation projects and manage audit remediation deliverables to closure. Practice and promote good risk culture and risk management to manage the risks within bank s appetite. Act as primary point-of-contact for regulatory inquiries and engagements. Collaborate with internal and external auditors and stakeholders, providing necessary evidence and artefacts, to facilitate audit processes. Your skills and experience Minimum 5 to 7 years of working Experience with security monitoring platforms and workflows. Proven Experience in area of privileged access management specifically in session log review and bypass monitoring. Proven experience and In-depth knowledge of technology regulations and understanding of regulatory risk management specially of MAS requirements and guidelines. Proven experience and strong understanding of audit process and compliance monitoring and reporting. Analytical mindset and ability to identify, assess and address compliance gaps and security risks. Strong operational background in risk analysis and risk identification. Degree from a university or major course work in computer science, networking, engineering, or other computer-related field of study. One of the following certifications will be an advantage CISSP, CISM, CISA, CRISC Expectations It is the Bank s expectation that employees hired into this role will work in the office at least 2-3 days a week in accordance with the Bank s hybrid working model. How we ll support you Training and development to help you excel in your career. Coaching and support from experts in your team. A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs.

Who are we? At Finastra, we are a dynamic global provider of open finance software solutions, dedicated to expanding access to financial services. Our innovative applications span Lending, Payments, Treasury and Capital Markets, and Universal Banking. Proudly serving over 8,000 customers, including 45 of the worlds top 50 banks, we aim to boost financial inclusion for all. Join us and be part of a vibrant company that embraces diverse perspectives, and is committed to doing well by doing good. What will you contribute? The Associate Internal Auditor, IT plays a key role in a dynamic, Global Financial Technology (FinTech) Company, partnering with the business to ensure risks are recognized and appropriately managed. The role is responsible for executing audits as prescribed in Internal Audits audit plan and works extensively the business to learn, document, and/or test processes to identify opportunities for improvement or gaps in controls and/or company policies. Responsibilities & Deliverables: Develop a comprehensive understanding of the Company s business, risk landscape, financials, processes and control environment Conduct audits for compliance with policies, standards, key controls, regulatory requirements etc. including testing, analyzing evidence and identifying issues Evaluate the design and effectiveness of controls to manage risk within risk appetite and tolerance Validate exceptions including quantifying risks, investigating root causes, and working with owners to establish action plans Apply analytical skills and knowledge of current auditing developments and standards to formulate appropriate solutions to problems Identify and recommend improvements to systems, procedures and processes to minimize risks, improve efficiency, or generate cost savings Prepare work papers to adequately document audit work performed and to support conclusions reached Prepare ongoing tracking and monitoring of remediation efforts Maintain knowledge of current auditing standards and practices, information technology, InfoSec, industry trends, etc. Participate in department initiatives to further advance the Internal Audit function Perform special projects as needed Required Experience: 1-2Yrs Bachelor s Degree in Information Technology, or other relevant field (e.g., information systems, business intelligence, computer science, etc.) Knowledge, Skills, Abilities High ethical standards and values with ability to handle confidential and sensitive information with the highest degree of professional responsibility Ability to handle multiple competing priorities; work under pressure and time constraints Strong interpersonal skills with the ability to build relationships and gain the confidence and respect of internal and external stakeholders Strong analytical skills with keen attention to detail Ability to define problems, collect data, establish facts, and draw valid conclusions Ability to read, analyze, and interpret technical information, reports, documents and diagrams Strong communications and presentation skills Interest and willingness to obtain professional certification, such as Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Certified Public Accountant (CPA) Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or similar Proficiency in basic PC applications (MS Excel, Word, PowerPoint, Visio) Required Experience : 1-2Yrs Experience in public company, regulated industry or at Top 4 consulting firm 1+ Yrs of experience in public accounting, consulting, ERM, Audit, Technology, Information Security, or relevant fiel d Professional certification, such as Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or similar Experience with eGRC tool, technology-based auditing techniques, etc. Experience working in FinTech, Banking, or Technology industries Job Location: Bangalore We are proud to offer a range of incentives to our employees worldwide. These benefits are available to everyone, regardless of grade, and reflect the values we uphold: Flexibility: Enjoy unlimited vacation, based on your location and business priorities. Hybrid working arrangements, and inclusive policies such as paid time off for voting, bereavement, and sick leave. Well-being: Access confidential one-on-one therapy through our Employee Assistance Program, unlimited personalized coaching via our coaching app, and access to our Gather Groups for emotional and mental support. Medical, life & disability insurance, retirement plan, lifestyle and other benefits* ESG: Benefit from paid time off for volunteering and donation matching. DEI: Participate in multiple DE&I groups for open involvement (e.g., Count Me In, Culture@Finastra, Proud@Finastra, Disabilities@Finastra, Women@Finastra). Career Development: Access online learning and accredited courses through our Skills & Career Navigator tool. Recognition : Be part of our global recognition program, Finastra Celebrates, and contribute to regular employee surveys to help shape Finastra and foster a culture where everyone is engaged and empowered to perform at their best. *Specific benefits may vary by location. At Finastra, each individual is unique, bringing their own ideas, thoughts, cultural beliefs, backgrounds, and experiences together. We learn from one another, embrace and celebrate our differences, and create an environment where everyone feels safe to be themselves. Be unique, be exceptional, and help us make a difference at Finastra!

Job Summary As the Manager, Security Assurance you will work in a fast-paced environment fostering teamwork and open communication to lead security assurance initiatives, drive compliance with various security frameworks, and ensure Foundevers data integrity. You will be responsible for facilitating external audits and collaborating with cross-functional teams to enhance Foundevers security posture. Primary Job Responsibilities Own Security Assurance programs, ensuring compliance with regulatory and internal standards (i.e. HIPAA, GDPR, EU AI Act, etc.) Own external audits (i.e., HITRUST, SOC 1 and 2, ISO 27001, NIST, PCI DSS) and collaborate with auditors to provide necessary documentation and responses Lead, mentor, and develop high-performing security assurance team members in alignment with organizational goals Assess and identify gaps in security controls and conduct risk assessments to evaluate the security posture and develop strategies for improvement Review change management requests and provide recommendations for mitigating potential risks Assist in the identification and documentation of security-related clauses in contracts Prepare and present regular updated to leadership on the status of security assurance initiatives and audit findings Stay informed of industry trends, threats, and regulatory changes affecting information security Skills and Qualifications 5+ years of experience in information security with a focus on security assurance and compliance In-depth knowledge of security frameworks and standards such as HITRUST, SOC 1/2, ISO 27001, NIST, PCI DSS, etc. Experience in project management Experience managing and leading external audit engagements as well as compliance software and external audit portals for evidence posting and collaboration Knowledge of audit cycles and certifications for cloud hosted applications Bachelors degree in Computer Science, Information Technology, Security Management, or a related field Preferred Skills and Qualifications HIPAA experience Relevant security and framework certifications (e.g., CCSFP, CISM, CISSP, CISA, CRISC, ISO Lead Auditor, PCIP) AI experience About Us Foundever is a global leader in the customer experience (CX) industry. With 170,000 associates across the globe, we re the team behind the best experiences for +750 of the world s leading and digital-first brands. Our innovative CX solutions, technology and expertise are designed to support operational needs for our clients and deliver a seamless experience to customers in the moments that matter #LI-MA1 #LI-Remote .

Job Summary As the Senior Analyst, Security Assurance you will work in a fast-paced environment fostering teamwork and open communication to focus on compliance with security standards and regulatory frameworks at Foundever. Your expertise will be vital in coordinating external audits, gathering evidence, validating compliance, and engaging stakeholders across the organization. Primary Job Responsibilities Maintain a comprehensive understanding of security compliance frameworks (HITRUST, PCI, DSS, SOC, ISO 27001, HIPAA, NIST) and their requirements Coordinate and support external IT audits, collecting, preparing and submitting necessary documentation and evidence in a timely manner Conduct regular risk assessments and gap analyses to identify areas of improvement Document compliance efforts and gaps, audit findings, and remediation plans, ensuring proper tracking and follow-through Prepare and present status updates, audit results, and risk assessments to leadership and stakeholders Utilize advanced data analytics techniques to assess compliance trends, identify potential risks, and uncover actionable insights that inform decision-making and strategic planning Develop and maintain interactive data visualization graphs and dashboards to effectively communicate compliance metrics, audit findings, and risk assessments to stakeholders Utilize Governance, Risk, and Compliance (GRC) tools to streamline compliance workflows and improve visibility Stay informed of industry trends, threats, and regulatory changes affecting information security Skills and Qualifications 5+ years of experience in information security with a focus on security assurance and compliance In-depth knowledge of security frameworks and standards such as HITRUST CSF, SOC 1/2, ISO 27001, NIST, PCI DSS, etc. Experience with data analytics and data visualization Experience with compliance software and external audit portals for evidence posting and collaboration Knowledge of audit cycles and certifications for cloud hosted applications Bachelors degree in Computer Science, Information Technology, Security Management, or a related field Preferred Skills and Qualifications HIPAA experience Relevant security and framework certifications (e.g., CCSFP, CISM, CISSP, CISA, PCIP) AI experience About Us Foundever is a global leader in the customer experience (CX) industry. With 170,000 associates across the globe, we re the team behind the best experiences for +750 of the world s leading and digital-first brands. Our innovative CX solutions, technology and expertise are designed to support operational needs for our clients and deliver a seamless experience to customers in the moments that matter. #LI-MA1 #LI-Remote .

KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment Job Summary Projects in Role Governance would include Identity Access Governance (IAG) assessment, Role based Access control (RBAC) design and functional assistance in IAG solution implementation along with providing services to run IAG operations for client organizations. A bachelor s degree in engineering and 3-5 years of related work experience; or a master s or MBA degree in business, computer science, information systems.Knowledge of access management concepts and technologies such as single sign on (SSO), multi-facto authentication (MFA) mechanism.Exposure to internal audits, compliance assessments, and regulatory reporting related to access control.Exposure to automation data analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantageFamiliarity with ERP systems, financial applications and other business systems.Understanding of RBAC and SOD principles and risk management practice.Knowledge of IT security concepts and access management tools.Sector specific knowledge such as FS (banking/NBFC) is an added advantage.Proficiency with Microsoft Word, Excel and other MS Office toolsProfessional certifications (e.g., CISA, CISM, CISP or IAM-Specific certifications) can be advantageous and preferred.A team player and strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Equal employment opportunity information KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their colour, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability, or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavour for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you. Participate in client meetings and discussions to understand user life cycle processes for access management and determine IAG maturity in their environment.Demonstrate knowledge on RBAC and segregation of duties principles and conduct meetings with client stakeholders, to perform identity and access assessments and design RBAC including Access Control Matrices (ACM) and Segregation of Duty (SoD) Matrix.Collaborate with stakeholders to evaluate SOD conflicts in consultation with Business teams to resolve identified conflicts and/or implementing mitigating controls to address risk.Assistance in formal evaluation of potential IAG solutions depending on various identity needs of clients.

. BASIC INFORMATION ON THE POSITION Position Name Trainee - ESGC Mandatory/Required Skills Location Location Mandatory/Required Skills PURPOSE OF THE ROLE To ensure Enterprise Risk management framework and Information Security Management System are effectively implemented in line with the business objectives KEY RESPONSIBILITIES AND ACCOUNTABILITIES 1. Extend support to Implement customer specific information security / enterprise risk related requirements 2. Coordinate and communicate with internal customers to ensure compliance of security / risk guidelines 3. Conduct audit to ensure compliance with customer risk / security requirements 4. Contribute towards customer audits ensuring successful completion 5. Participate in Customer calls when needed and understand customer expectations 6. Provide periodic updates on the implementation status 1. Document procedures and policies based on inputs provided 2. Support implement ISMS (Information Security Management System) framework. 3. Implement new security initiatives and improvements 4. Collect applicable measures and perform periodic analysis as per the measurement program 5. Provide updates periodically 6. Prepare Plan and conduct periodic internal audits 7. Track all internal/external audit findings to closure 8. Implement ERM and conduct risk based audit 9. Conduct surprise/ random audits and track findings to closure 10. Complete the assigned activities like Risk exception, reconciliation, VAPT, etc within the defined SLA 11. Participate in external audits by ensuring readiness of functions providing necessary support for successful completion 1. Understand, align with the goals, roles and responsibilities and provide updates about performance against the set goals 2. Train and mentor team members as appropriate 3. Upgrade competency (skills) in line with the current industry practices and business objectives EDUCATION QUALIFICATION BE/MBA ISO27001 lead auditor s certification CISA/ CISSP Certification (Preferred) PCI DSS Implementer certification MINIMUM EXPERIENCE REQUIRED 2-4 years relevant experience DOMAIN/ FUNCTIONAL SKILLS Knowledge of ISO27001 Standards ISO27005 Guidelines Knowledge of PCIDSS standard Knowledge of risk management (ISO31000) Understanding of organization s business and support processes Knowledge of IT Security, physical and environmental security and HR security controls Knowledge of regulatory requirements

Diversity hiring for Cyber Security Engineer - 5 to 10 Years at Bangalore. Position Cyber Security Engineer Experience – 5 to 10 Years Location – Bangalore Job Description: 5-8 years of experience in cybersecurity engineering, preferably in the manufacturing or industrial control systems (ICS) sectors. Strong knowledge of cybersecurity principles, risk management, and threat analysis. Proficiency with cybersecurity tools and technologies used for monitoring, detection, and incident response. Familiarity with cybersecurity standards and regulations such as IEC 62443, ISO 27001, NIST, etc. Relevant certifications such as CISSP, CISM, CEH, or GIAC are preferred. If interested, please share cv on omkar@hrworksindia.com Regards, Omkar 8208497043

: Software Investment Advisory The business will focus on developing and executing a consultative services strategy to help Oracle customers maximize the value from their Oracle investments. The objectives of the Software Investment Advisory business will be centered on four key principles: .Proactive Account Management with dedicated alignment .Investment Maximization and helping customers realize the value of their Oracle assets .Cloud Transformation on Oracle The Role: Responsible for delivering in a proactive approach Oracle Software Investment Advisory's services at our Oracle accounts. Advises, optimizes and drives adoption on licenses and subscriptions to align with our Oracle's customers present and future needs: . Rationalize and maximize the value of our Customer investment . Support our Customer to understand their transition of on premiseusage to Cloud Scope . Partners with other Oracle lines of business: Sales, Account Directors, ProductManagement, Deal Management, Legal, etc. . Reports to functional manager . Works in assigned Account(s) or Territory R esponsibilities . Responsible for taking ownership of a portfolio of strategicOracle Customers, understanding their specific needs, andpresenting appropriate recommendations . Responsible for governance, which involves designing processes,procedures and long term technology road map to maximizevalue creation in accordance with Software InvestmentAdvisory's objectives . Personally visits high-profile customers on site and providesthem with the information and insight they need to take thebest decisions about their Oracle product purchase . Provides constructive feedback during customer facing accountreviews to ensure continuous services improvement andinnovations . Drives strategic discussion with multiple stakeholders at variouslevels (including C level) and delivers professional presentationsand tenders up to Board level . Builds strong relationship internally and externally and acts as afacilitator for the flawless execution of Software InvestmentAdvisory's services . Leads and contributes towards multiple virtual project teamsaimed towards improving customer engagement and serviceenablement . Owns the success of your activity against KPIs such as customersatisfaction, activity outcomes and service delivery timelines . Creates systematic business planning, monitoring and reportingof your activity for assigned area . Operates in line with Oracle's processes/procedures & corevalues . Supports peers in acquiring experience (e.g. customer facingsituations, new products, new services) . Personal development Qualification . University degree or equivalent combination of studies andexperience . 6-10 years experience in a customer facing role in thetechnology industry: consulting, account management, valueengineering or customer success Competencies . Understanding of IT technical architectures and affinity withtrends in enterprise software usage . Experience in managed software environment and subscriptionlicense entitlement (e.g. Cloud computing) . ITIL, CSAM, ITAM, CISA, Oracle VM, TOGAF, PMP or Prince2 orother technology-specific certifications preferred . Ability to interpret and understand complex softwaredeployment models (On-premise, Cloud and Hybrid), licensingand business practices and apply them to different scenarios . Experience in large and complex IT environments . Ability to work in a consultative manner with the appropriatelevel of technical understanding and experience to hold high leveldiscussions and negotiations . Ability to create business cases using software deployment dataand financial metrics such ROI, TCO and Payback periods . Ability to work on your own initiative and in many different andchallenging environments . Strong communication, presentation, business writing andprofessional skills, including being able to liaise with bothtechnical/ business & internal/ external contacts . Ability to influence senior stakeholders in order to gaincredibility quickly, inspire trust and confidence . Ability to determine client needs with innovative approaches . Logical approach to data analysis . Advanced spreadsheet capability . Fluent in English, other languages dependent on the market / region Percentage of travel may be required.

Role & Responsibilities Executives are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of other solutions of GRCS Executives may lead a small team of analysts/trainees on engagements. Consistently deliver quality client services and take charge of the project area assigned to him/her. Monitor progress, manage risk and verify key stakeholders are kept informed about progress and expected outcomes. Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability to assimilate to new knowledge. Possess good business acumen. Remain current on new developments in advisory services capabilities and industry knowledge. The job would require travel to client locations within India and abroad. THE INDIVIDUAL Have experience in process consulting/ internal audit/ risk consulting. Possess strong domain knowledge, understanding of business processes and possible risks in operations of various Sectors. Ability to perform and interpret process gap analysis. Understanding of control rationalization, optimization, effectiveness, and efficiency Strong analytical and problem-solving skills. Possess strong data analytics skills and knowledge of advanced data analytical tools will be an advantage. Strong written and verbal communication skills (presentation skills) Ability to work well in teams. Basic understanding of IT systems, Knowledge of MS office (MS Excel, PowerPoint, Word etc) Have the ability to work under pressure - stringent deadlines and tough client conditions which may demand extended working hours. Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic. Qualification Qualified CAs/ MBAs with 0 - 2 years OR Graduates with 2 - 4 years of relevant experience in risk consulting/ operations or compliance function role (Understanding of internal audit, business processes, sector understanding). Certifications like Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) would be an added advantage.

Required Skills Technology | Incident Response Design SME | Level 4 Support Technology | Certified Ethical Hacking Design SME | Level 4 Support Technology | Penetration Testing and Adversarial Thinking | Level 4 Support Technology | Security Assessment and Scenario Planning | Level 4 Support Technology | Security Assessment and Scenario Planning | Level 2 Support Education Qualification : Engineer - B.E / B.Tech / MCA Certification Mandatory / Desirable : Technology | Offensive Security Certified Expert/Certified Red Team Professional/Certified Purple Team Leader/GDSA/MITRE ATT&CK Defender/GIAC CIH/GIAC CFA / CISSP / CISM / CISA / CEH / CTIA / GMON Delivery Skills required are: - Advanced Technical Skills: - Expertise in conducting and managing penetration tests, red team exercises, and simulated attacks. Deep understanding of network security protocols, architecture, and defense mechanisms. Ability to automate security operations tasks using scripting languages (e.g., Python, PowerShell). Analytical and Problem-Solving Skills: - Capability to collect, analyze, and apply threat intelligence to enhance security measures. Integration of threat intelligence feeds and indicators of compromise (IOCs) into security operations. Skills in conducting comprehensive risk assessments and developing mitigation strategies. Communication and Leadership Skills: - Effective communication of technical security findings and recommendations to non-technical stakeholders. Clear and concise reporting on security incidents, vulnerabilities, and remediation efforts. Ability to lead and mentor a team of security professionals, including red and purple team members. Continuous Learning and Adaptability: - Continuous learning and staying abreast of emerging cybersecurity threats, trends, and technologies. Participation in industry conferences, training programs, and certifications to enhance skills and knowledge. Ability to adapt to evolving threats and changes in the cybersecurity landscape. Value Proposition: - Understand the existing environment and propose any opportunity of improvement. Look at nagging issues in the environment and come out with Get Around solutions by working with vendors and industry experts

Analysts are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of other solutions of GRCS Consistently deliver quality client services Monitor progress, manage risk and verify key stakeholders are kept informed about progress and expected outcomes Demonstrate basic accounting and process related knowledge. Demonstrate ability to assimilate to new knowledge Remain current on new developments in advisory services capabilities and industry knowledge The job would require travel to client locations within India and abroad THE INDIVIDUAL Have basic understanding of process consulting/ internal audit/ risk consulting Strong analytical and problem solving skills. Possess strong data analytics skills and knowledge of advanced data analytical tools will be an advantage Strong written and verbal communication skills Ability to work we'll in teams Basic understanding of IT systems, Knowledge of MS office ( MS Excel, PowerPoint, Word etc) Have the ability to work under pressure - stringent deadlines and tough client conditions which may demand extended working hours Be willing to travel within India or abroad for continuous long periods of time Demonstrate integrity, values, principles, and work ethic Qualification Graduates (BE/B.Tech, BCom, BMS, BBM or similar degree) with 1 - 2 years of related audit, business or sector experience Certifications like Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) would be an added advantage Compensation Compensation is competitive with industry standards Details of the compensation breakup will be shared with short-listed candidates only People BENEFITS Continuous learning program Driving a culture of recognition through ENCORE our quarterly rewards and recognition program Comprehensive medical insurance coverage for staff and family Expansive general and accidental coverage for staff Executive Health checkup (Manager above, and for staff above the age of 30) Les Concierge desk Internal Global mobility Various other people friendly initiatives Strong commitment to our Values such as CSR initiatives

Visas Cyber Security team is seeking a highly skilled Associate Cybersecurity Engineer to Join our elite team to drive innovation in IAM processes through advanced AI technologies and automation, ensuring unparalleled security and operational efficiency! We are looking for a passionate, talented team player with a strong problem-solving mindset and coding/scripting skills, capable of thriving in a dynamic environment. The ideal candidate will be dedicated to meeting service level agreements within tight timeframes and comfortable engaging with both business and technical stakeholders to perform core application access governance responsibilities, leveraging AI and automation technologies to enhance security and operational efficiency. Key Responsibilities: Customer Support and IAM Control Management: Provide robust customer support and expertly manage the operation of IAM controls, leveraging cutting-edge AI-driven solutions. Automation of IAM Controls Validation: Automate the annual validation of IAM controls evidence provided by application owners during the self-attestation process, ensuring accuracy and efficiency. AI-Enhanced Application Access Governance: Develop, monitor, and enhance application access governance automations through advanced AI and machine learning technologies. Incident and RTIM Management: Handle incidents and RTIMs with a strategic focus on AI-driven response and mitigation strategies to minimize risks and downtime. Application and Component Enrollment: Participate in the seamless enrollment of applications and components for IAM governance and Identity management systems, integrating AI for superior efficiency and performance. Appliance Governance Management: Manage the enrollment and governance of appliances for IAM governance, ensuring compliance and operational excellence. Data Analysis and Control Validation: Perform comprehensive data analysis using sophisticated AI tools to validate control operations and ensure long-term sustainability. AI and Gen AI Integration: Integrate AI and Gen AI technologies into IAM processes to significantly enhance security, automation, and operational efficiency. Audit Interpretation and Response: Understand and accurately interpret audit requests, ensuring timely and precise responses. Assist in the identification and remediation of IAM-related audit findings. IAM Governance Automation: Design and automate IAM governance processes, including IAM control operations and validation, to address IAM risks, ensure efficiency, effectiveness, and compliance with relevant regulatory and industry standards. Change Management: Effectively manage changes within IAM operations, ensuring minimal disruption through innovative automated solutions. Security Configuration Inspection: Inspect IAM security configurations (Critical, High, and Medium) that cannot be automatically validated, ensuring top-tier security and compliance. Basic Qualifications: -Bachelor s degree, OR 3+ years of relevant work experience. Preferred Qualification: -2 or more years of work experience. -Bachelor s degree in Information Technology, Computer Science, or a related field. -Minimum of 2+ years of experience in IAM governance, programming/coding, and Gen AI. -Strong understanding of IAM frameworks, policies, and procedures. -Proven experience in leading and supporting IAM projects and initiatives, with a strong focus on AI and automation. -In-depth knowledge of application architecture, authentication, and authorization models. -Proficiency in data analysis using Excel and coding automation (Python, PowerShell, C), with a significant emphasis on AI-driven solutions. -Strong understanding of AI and Gen AI technologies in IAM. -Excellent communication and interpersonal skills to liaise effectively with various stakeholders. -Strong analytical and problem-solving skills, particularly in AI-driven contexts. -Ability to manage multiple tasks and projects simultaneously. -Relevant certifications (e.g., CISA, CISSP, CISM) are advantageous. -Familiarity with industry standards and regulations such as GDPR, SOX, HIPAA, etc. -Experience with IAM tools and technologies (e.g., SailPoint, Okta, CyberArk, Password Safe, Microsoft Azure AD), with a focus on AI integration.

Work with the company s external auditor in leading walkthroughs, test of design and operational effectiveness of IT general controls; Coordinate and perform SOX program testing/auditing of IT General Controls with control owners and management; Evaluate IT General Control deficiencies for impact and perform risk assessments and root cause analysis to determine appropriate management actions. Monitor management s associated remediation efforts to closure, including review of supporting evidence; Create and maintain supporting documentation for SOX compliance testing; Engage and deliver appropriate workpapers timely to external auditors; Engag e , develop relationships and maintain open communication with a wide variety of cross functional internal resources and management as appropriate; Assess new products, systems, databases or changes to existing processes to identify and evaluate financial risks; Recommend process efficiencies to drive effective SOX IT compliance; Assist second line of defense organizations in ensuring that approved IT General controls are embedded in current processes; Support development and delivery of training programs to educate development teams and other stakeholders on compliance requirements, best practices, and policies; Foster a culture of compliance awareness and accountability within the organization. Qualifications: CISA, CISSP, CISM, ISO 27001, and other security certifications preferred; 5 years relevant experience; Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence; Strong IT SOX audit experience, particularly IT controls; Demonstrated understanding of information management systems and infrastructure including IT processes, tools, controls; Technical acumen and the ability to understand and interpret technical specifications; Ability to meet stringent deadlines in a fast-paced environment, deliver quality product and work well in a dynamic team environment; Exceptional written and verbal skills.

Position Overview: You are intense about technology and exceed all expectations with your clients, from deadlines to deliverables. This position is responsible for executing and delivering solutions related managed services requests from customers. This role is expected to be an expert in the Diligent solutions and collaborate with internal teams to get the job done. Key Responsibilities Deliver Professional Services over the course of the entire customer journey and/or product enablement lifecycle. Assist PS management, CS team, and other stakeholders (where relevant and appropriate. Example: Sales, PM, PMM or Marketing) in the different stages of the customer lifecycle. Leverage Domain, Industry and Product expertise to provide guidance to customers on best practices regarding solution rollout and project execution. Continue to develop Domain and Product expertise to provide guidance to customers on best practices for solution rollout and project execution through continuous learning and personal development. Build confidence to lead the implementation process end-to-end independently including engagement with the customer. Work with clients to understand their program goals and how they collect/process data Leverage Diligent methodology to configure and implement our product and enable customers to use our products Provide guidance on best practices and usage of our products to achieve best results. Ensure a good customer experience during the implementation journey. Ensure timely and quality delivery of the services contracted by customers. Collaborate with Delivery Managers to ensure any new service requests are handled appropriately or routed request to the correct teams. Required Experience/Skills 3-5 years of experience in an internal or external client-facing or consulting role Embody Customer First mindset in all undertakings, operating with urgency, excellence, and accountability to customer outcomes and experiences. Maintains a consistently high-quality level of work ethic including attention to detail, accuracy, and following processes and procedures with stakeholders and customers. Demonstrate effective time management and organization skills and ability to multi-task in a fast-paced environment Shows a willingness to problem-solve and take on new challenges Ability to work as part of a team to deliver in tight timeframes and respond quickly in a constantly changing environment Passionate about GRC (i.e. governance, audit, compliance, internal controls, information security, ESG and/or risk management, etc) Excellent communication skills-including delivery of presentations or workshop Ability to effectively engage customer personnel in solution discussions to resolve issues regarding GRC requirements and goals Relevant Professional GRC accreditation (planned, in progress, or obtained) (e.g., CIA, CA, CGA, CMA, CPA, CFE, CISA, CRISC, CISSP etc.) Preferred Experience/Skills Amazing communication skills Demonstrate effective time management and ability to multi-task in a fast-paced environment Experience with GRC and/or analytics tool is a plus Experience in a platform based products/solutions is an added advantage. GRI Sustainability Reporting, ISB or other relevant certification desired Undergraduate degree in a relevant area (e.g. Business Administration, Compliance Management, Legal & Ethics, Supply Chain Management, Engineering, Information Security or MIS) is a plus.