At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Engineer , you have a pivotal operational role to provide and deprovision system access.You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What you’ll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices.Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM What you’ll bring 2 years of experience in Identity or Access Management Tireless adherence and attention to appropriate IT general computing controls Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

•Understand the current accounting principles and internal control concepts (COSO, COBIT) • auditing processes and methodologies, including flowcharting •Working knowledge of Sarbanes-Oxley Act provisions and methodologies for achieving compliance

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

JoVE is the world-leading producer and provider of science video solutions with the mission to improve scientific research and education. Millions of scientists, educators and students worldwide use JoVE for their research, teaching and learning. Our institutional clients comprise over 1,000 universities, colleges, and biopharma companies, including such leaders as Harvard, MIT, Yale, and Stanford. As a rapidly growing company, with offices in the USA, UK, Australia, and India servicing clients in over 60 countries, we are seeking talented and ambitious individuals to join our company. The Role We are seeking an experienced Customer Support Representative to be on the front lines by answering questions and troubleshooting technical problems. You will assist customers with JoVE’s products and also guide clients through any technical issue they might encounter. If you are an energetic self-starter, problem solver with a basic technical background and excellent communication skills, we want to talk to you. The Support Team here at JoVE is providing support not only to external customers but also to internal JoVE employees on a 24x7 basis. Responsibilities Manage large amounts of incoming tickets. Handle customer inquiries, provide appropriate solutions and alternatives within the time limits; follow up to ensure resolution. Triage tickets to the correct Level 2 teams. Follow communication procedures, guidelines and policies. Provide accurate, valid and complete information by using the right methods/tools. Keep records of customer interactions, process customer accounts and file documents. Requirements: A Bachelor’s in Computer Science or relevant field. Excellent English communication skills. Solid understanding of web page construction (HTML, CSS, JavaScript). Know how to execute standard debugging for website issues. Basic understanding of frameworks such as Agile, ITIL, COBIT. Familiarity with XML and JSON is preferred. Ability to communicate with both technical and non-technical personnel in a clear and concise fashion. Strong attention to detail. Ability to accommodate flexible work schedules based on business needs to provide 24/7 support. Proficient with ticketing tools ( Zendesk, Jira, Salesforce). Moderate skills with Salesforce (ability to search records for details and occasional basic editing) Why JoVE? You will make a direct impact in accelerating science research and in improving student learning in science education. Opportunity to work with a diverse and international team. Our strong promotion from within culture draws a clear path to advance your career with us. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Governance Risk and Compliance Consultant - Senior The opportunity This is a role where no two days are the same – so you’ll find yourself taking on plenty of new responsibilities as you go. You’ll work alongside clients and colleagues, balancing your time between developing security strategies, designing security and privacy controls, advising client stakeholders, facilitating workshops and supporting business development. Your Key Responsibilities As a Cyber GRC Professional in our Cyber Security practice, you will be occupied in the following domains: a) Strategy, b) Risk, c) Compliance. As part of our team strategy you will be expected to take on responsibility and initiative early, providing you with real experience working with a wide range of major clients in EY. You will be taking responsibility for the quality of your work, while continually developing your personal and professional skills through formal training, hands-on experience and coaching. Skills And Attributes For Success To qualify for the role, you must have: Degree, or equivalent, in Information Security, Cyber Security, Information Technology, Informatics, or other similar and technical areas Evidence of self-motivation to continuously develop in the areas of cybersecurity Good organizational and time management skills with the ability to prioritize and complete multiple complex projects under tight deadlines Ability to translate security issues into business risks Excellent interpersonal skills and ability to work effectively within a team at all hierarchical levels Willingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologies Experience, knowledge and strong interest in information and cyber security domains are essential for this role Experience on Cyber Governance, Risk & Compliance (GRC), Cyber risk assessments & management methodologies Experience on assessing, designing and implementing security strategies, governance frameworks over processes and controls, allowing organisations to optimally manage cyber security Experience on design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, such as ISO27001, NIST, SANS etc. Experience in data classification exercises and controls / mechanisms enforcement Working knowledge of control frameworks such as ISO 27001/27002, COBIT, NIST, ITIL, etc. Ability to conduct Security regulatory and compliance assessment independently Hands on with assessment report preparation and presenting to senior technical and business stakeholders Hand on knowledge of excel, PowerPoint and word Articulative and confident in presentation to senior stakeholders Ability to lead workstreams or dedicated portions of projects Cyber maturity assessments, recommendations, roadmap and strategy creation knowledge of use of and risks related to modern and emerging technologies Cybersecurity audit Ability to plan and deliver cyber security training and awareness Ideally, you’ll also have: Security-related qualifications / certifications such as CISSP, SSCP, CISM, ISO27001 lead implementer or auditor, CompTIA Security+, are desirable Experience in Third Party Risk Management (TPRM) and / or vendor risk assessment engagements Experience in design and implementation of Information Security Management Systems (i.e. security policies, procedures and guidelines) according to leading International Standards Security-related vendor / technology certifications are desirable EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Risk Compliance and Resilience – Associate Director As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Associate Director who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 18 years of overall experience At least 15 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Bough is a decidedly different kind of advisory, assurance, and transformation solutions firm. Working collaboratively with clients in finance, audit, and compliance organizations, we co-create fully integrated and comprehensive solutions that connect people, processes, and technologies to navigate accounting, reporting, and compliance matters. Our services include finance and accounting advisory, revenue assurance, FP&A advisory and support, risk advisory, and process automation and transformation. We are busy and sometimes crazy busy delivering exceptional results to our clients with trust, quality, and humanness. Our name 'Bough' means the main branch of a tree - a name that keeps us grounded in nature and emphasizes our belief that we wish to be the main branch on which our clients and employees lean with trust. For any position we are hiring, we don’t just want you to be an ambitious, analytical, multi-skilled, risk-taking go-getter for Bough. We want you to be more. More for yourself and for anything you undertake. Socially responsible, intuitive, empathetic, trustworthy, thoughtful, imaginative, creative, and curious are some words that resonate with us. Your skills are a qualifier, and we believe that each of us is much more than the skills we bring to our job - the person we are looking for... Role Description: We are building our Risk Advisory practice to assist clients in addressing their risk management requirements by providing clear perspectives and critical insights to key stakeholders (e.g., CAEs, audit committees). You'll be an integral part of this practice—spanning internal controls support, regulatory compliance, SOX, internal audit, risk transformation, technology risk, and more—and should possess excellent skills in risk management, communication, facilitation, relationship-building, and presentation. You will be responsible for delivering insightful and practical solutions to complex client challenges. Key Responsibilities: Lead SOX 404 financial statement mapping, risk assessment, and scoping processes Ensure the appropriateness of internal control documentation for financial processes, including planning documents, narratives, process maps, walkthroughs, and control testing Assist clients across the internal audit and risk management landscape, including internal audit co-sourcing, governance, regulatory compliance, risk transformation, and audit analytics projects Discuss findings and observations with management, including remediation strategies and optimization opportunities Provide client management support and serve as a liaison between client and project teams Develop client relationships and act as a trusted advisor by understanding their business, listening to their needs, and ensuring responsive service and exceptional quality Own end-to-end delivery of projects, including planning, budgeting, reviewing work papers, and providing feedback, mentorship, and thought leadership Assist clients in audit preparation and coordination with external auditors Identify opportunities to leverage data analytics and automation technologies to drive efficiencies and add value to client engagements Participate in recruiting, business development, and knowledge-sharing initiatives Basic Qualifications: For Business Risk Bachelor’s or Master’s degree in Accounting, Finance, Business, or a related field 5+ years of experience in risk management, internal audit, SOX, or regulatory compliance, preferably in a Big 4 or large professional services firm Certified (CA, CPA, CIA, or CFE — mandatory) Proven track record in leading internal controls, risk reviews, audits, and compliance projects Familiarity with COSO, SOX, and ICFR frameworks For IT Risk Bachelor’s or Master’s degree in Information Systems, Security, Computer Science, Engineering, or a related field 5+ years of experience in IT risk, ITGC, SOX IT controls, cybersecurity, or regulatory compliance, preferably in a Big 4 or large firm Certified (CISA, CISSP, or similar — mandatory) Strong leadership in IT audits, including ITGC, ITACs, ERP (SAP is a plus), SOC 1/2, using frameworks such as COBIT, NIST, and ISO 27001 Preferred Skills: Excellent analytical and problem-solving ability. Strong written and verbal communication; able to explain technical concepts clearly. High energy, enthusiasm, and a commitment to exceeding client expectations. Entrepreneurial mindset with eagerness to learn and grow. Ability to work both independently and in a collaborative team setting. Show more Show less

Bough is a decidedly different kind of advisory, assurance, and transformation solutions firm. Working collaboratively with clients in finance, audit, and compliance organizations, we co-create fully integrated and comprehensive solutions that connect people, processes, and technologies to navigate accounting, reporting, and compliance matters. Our services include finance and accounting advisory, revenue assurance, FP&A advisory and support, risk advisory, and process automation and transformation. We are busy and sometimes crazy busy delivering exceptional results to our clients with trust, quality, and humanness. Our name 'Bough' means the main branch of a tree - a name that keeps us grounded in nature and emphasizes our belief that we wish to be the main branch on which our clients and employees lean with trust. For any position we are hiring, we don’t just want you to be an ambitious, analytical, multi-skilled, risk-taking go-getter for Bough. We want you to be more. More for yourself and for anything you undertake. Socially responsible, intuitive, empathetic, trustworthy, thoughtful, imaginative, creative, and curious are some words that resonate with us. Your skills are a qualifier, and we believe that each of us is much more than the skills we bring to our job - the person we are looking for... Role Description: We are building our Risk Advisory practice to help clients address their risk management requirements by providing clear perspectives and critical insights to key stakeholders (e.g., CAEs, audit committees). You’ll be an integral part of this practice—spanning internal controls support, regulatory compliance, SOX, internal audit, risk transformation, technology risk, and more—and should possess excellent skills in risk management, communication, facilitation, relationship-building, and presentation. You will be responsible for delivering insightful and practical solutions to complex client challenges. Key Responsibilities: Lead SOX 404 financial statement mapping, risk assessment, and scoping processes Ensure the appropriateness of internal control documentation for financial processes, including planning documents, narratives, process maps, walkthroughs, and control testing Assist clients across the internal audit and risk management landscape, including internal audit co-sourcing, governance, regulatory compliance, risk transformation, and audit analytics projects Discuss findings and observations with management, including remediation strategies and optimization opportunities Provide client management support and serve as a liaison between client and project teams Assist clients in audit preparation and coordination with external auditors Identify opportunities to leverage data analytics and automation technologies to drive efficiencies and add value to client engagements Participate in recruiting, business development, and knowledge-sharing initiatives Basic Qualifications: For Business Risk Bachelor’s or Master’s degree in Accounting, Finance, Business, or a related field 3+ years of experience in risk management, internal audit, controls, SOX, or regulatory compliance, preferably in a Big 4 or large professional services firm Strong experience auditing business process controls (e.g., Revenue, P2P, O2C, Inventory, Financial Close & Reporting) Familiarity with COSO, SOX, and ICFR frameworks CA, CPA, CIA, or CFE certifications are a plus For IT Risk Bachelor’s or Master’s degree in Information Systems, Security, Computer Science, Engineering, or a related field 3+ years of experience in IT risk, ITGC reviews, SOX IT controls, cyber risk, or regulatory compliance, preferably in a Big 4 or large firm Hands-on experience auditing IT environments (e.g., OS: Windows, Unix/Linux; Databases: Oracle, SQL; ERP: SAP, Oracle—SAP is a strong plus) Familiarity with COBIT, NIST, ISO 27001, and SOC 1/SOC 2 frameworks CISA, CISSP, or related IT risk/security certifications are a plus Preferred Skills: Proven ability to lead client engagements, manage teams, and deliver high-quality, on-time deliverables. Excellent analytical, problem-solving, communication, and interpersonal skills. Strong project management abilities and comfort working with multiple clients and priorities. High attention to detail, with a commitment to continuous learning and professional development. Show more Show less

Bough is a decidedly different kind of advisory, assurance, and transformation solutions firm. Working collaboratively with clients in finance, audit, and compliance organizations, we co-create fully integrated and comprehensive solutions that connect people, processes, and technologies to navigate accounting, reporting, and compliance matters. Our services include finance and accounting advisory, revenue assurance, FP&A advisory and support, risk advisory, and process automation and transformation. We are busy and sometimes crazy busy delivering exceptional results to our clients with trust, quality, and humanness. Our name 'Bough' means the main branch of a tree - a name that keeps us grounded in nature and emphasizes our belief that we wish to be the main branch on which our clients and employees lean with trust. For any position we are hiring, we don’t just want you to be an ambitious, analytical, multi-skilled, risk-taking go-getter for Bough. We want you to be more. More for yourself and for anything you undertake. Socially responsible, intuitive, empathetic, trustworthy, thoughtful, imaginative, creative, and curious are some words that resonate with us. Your skills are a qualifier, and we believe that each of us is much more than the skills we bring to our job - the person we are looking for... Role Description: As an Associate on our IT Risk Advisory team at Bough , you will contribute to a variety of client projects focused on IT risk, IT General Controls (ITGC), cybersecurity, and IT compliance. This is an exciting opportunity to build specialized expertise while supporting impactful risk management and transformation initiatives for leading organizations. You will collaborate closely with senior consultants, managers, and client stakeholders, gaining hands-on experience with complex IT challenges and delivering high-quality, practical solutions. Key Responsibilities: Assist in executing IT General Controls (ITGC) testing, including access management, change management, and IT operations controls. Perform IT Application Controls (ITAC) testing, evaluating automated controls within critical applications (e.g., approvals, calculations, segregation of duties). Conduct key reports testing to validate report logic, data accuracy, and reliability for financial and operational use. Assess interface controls to ensure the accuracy and completeness of data flows between systems (e.g., ERP to sub-ledgers, third-party integrations). Support ERP system testing (e.g., SAP, Oracle), including configuration reviews, security roles, and control design assessments. Assist in SOC 1 / SOC 2 reviews, evaluating service organization controls and third-party risk impacts on client environments. Collaborate with client IT teams to understand system landscapes, critical applications, and data flows to map risks and control points. Conduct research on cybersecurity risks, IT compliance standards (e.g., NIST, ISO 27001), and emerging technologies relevant to client industries. Basic Qualifications: Bachelor’s or Master’s degree in Information Systems, Computer Science, Engineering, or a related technical field. 0–2 years of experience in IT risk, IT audit, cybersecurity, or related IT control roles; experience with a Big 4 or similar professional services firm is a plus. Foundational knowledge of key IT risk and control frameworks such as COBIT, NIST, ISO 27001, SOC 1/SOC 2, and general ITGC or ITAC concepts. Basic proficiency with MS Office tools (Excel, Word, PowerPoint); familiarity with audit, analytics, or risk management tools is a plus. Preferred Skills: Excellent analytical and problem-solving ability. Strong written and verbal communication; able to explain technical concepts clearly. High energy, enthusiasm, and a commitment to exceeding client expectations. Entrepreneurial mindset with eagerness to learn and grow. Ability to work both independently and in a collaborative team setting. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Risk Compliance and Resilience – Associate Director As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Associate Director who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 18 years of overall experience At least 15 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Risk Compliance and Resilience – Associate Director As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Associate Director who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 18 years of overall experience At least 15 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Risk Compliance and Resilience – Associate Director As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Associate Director who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 18 years of overall experience At least 15 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At PwC, our people in audit and assurance focus on providing independent and objective assessments of financial statements, internal controls, and other assurable information enhancing the credibility and reliability of this information with a variety of stakeholders. They evaluate compliance with regulations including assessing governance and risk management processes and related controls. In digital assurance at PwC, you will focus on providing assurance services over clients' digital environment, including processes and controls, cyber security measures, data and AI systems, and their associated governance, to help organisations and their stakeholders build trust in their technology while complying with relevant regulations. Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities. Skills Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: Apply a learning mindset and take ownership for your own development. Appreciate diverse perspectives, needs, and feelings of others. Adopt habits to sustain high performance and develop your potential. Actively listen, ask questions to check understanding, and clearly express ideas. Seek, reflect, act on, and give feedback. Gather information from a range of sources to analyse facts and discern patterns. Commit to understanding how the business works and building commercial awareness. Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements. The Opportunity When you join PwC Acceleration Centers (ACs), you step into a pivotal role focused on actively supporting various Acceleration Center services, from Advisory to Assurance, Tax and Business Services. In our innovative hubs, you’ll engage in challenging projects and provide distinctive services to support client engagements through enhanced quality and innovation. You’ll also participate in dynamic and digitally enabled training that is designed to grow your technical and professional skills. As part of the Digital Assurance and Transparency - AC India team you are expected to provide services related to controls around the financial reporting, compliance, and operational processes. As an Associate you are expected to focus on learning and contributing to client engagement and projects while developing your skills and knowledge to deliver quality work. You are expected to be responsible for identifying key risks and controls, applying internal control principles and business/technical knowledge, and leading the execution of a work program and practice aid. Responsibilities Providing services related to controls around financial reporting, compliance, and operational processes Identifying key risks and controls Applying internal control principles and business/technical knowledge Leading the execution of a work program and practice aid Contributing to client engagement and projects Developing skills and knowledge to deliver quality work Supporting senior staff in various tasks Engaging in research and learning opportunities What You Must Have Bachelor's Degree in one of the following fields of study: Accounting, Finance, Management Information Systems, Computer and Information Science, Information Technology, Economics, Business Administration/Management, Engineering, Statistics, Management Information Systems & Accounting, Computer and Information Science & Accounting, Economics and Finance, Economics and Finance & Technology, Accounting & Technology, Mathematical Statistics, or Technology Mathematics In lieu of Bachelor Degree, Chartered Accountant 1 year of IT auditing, auditing, consulting and/or implementing experience- Oral and written proficiency in English required What Sets You Apart Knowledge of financial reporting and IT risks, processes, and controls Familiarity with Oracle, SAP, Oracle Database, web development tools Understanding of COSO Framework, CoBIT, and other IT control frameworks Proficiency in IT general controls, including change management Experience in Sarbanes Oxley readiness and controls optimization Significant project management skills, including developing project plans Creating a positive environment and monitoring team workloads Interacting with clients and forming client relationships Although a credential is not required to be hired at this level, it is required to progress to Manager Show more Show less

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively. As a risk management generalist at PwC, you will provide advisory and practical support to teams across a wide range of specialist risk and compliance areas. Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow. Skills Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: Respond effectively to the diverse perspectives, needs, and feelings of others. Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems. Use critical thinking to break down complex concepts. Understand the broader objectives of your project or role and how your work fits into the overall strategy. Develop a deeper understanding of the business context and how it is changing. Use reflection to develop self awareness, enhance strengths and address development areas. Interpret data to inform insights and recommendations. Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements. Candidates require experience and knowledge in the following key areas: Cybersecurity Risk identification and security control integration as part of Cloud transformation and enterprise infrastructure Cloud security principles, cloud governance and cloud computing concepts in context of cloud infrastructure and/or cloud applications. Required previous experience includes cloud security audits/reviews, and assessments and/or design of cloud infrastructure. Experience with cloud solutions such as MS Azure or AWS Cloud is preferred. Experience of performing assessment using NIST CSF, ISO 27xxx, NIST 800-53. Implementation and/or assurance experience with IT governance frameworks (e.g. COBIT, NIST, ISO) Experience based knowledge of commonly used operating systems, security devices and their hardened configuration with operational knowledge of Identity and Access management using AD/Azure AD Experience in researching attempted breaches of data security, rectifying security weaknesses and vulnerability reviews. Knowledge of data protection regulations and security standards/frameworks Hands-on skills in WAF, DLP, Security Certificate Management, EDR, DNS Filtering, Identity & Access Management and Spam Filtering. Experience of having worked on implementation or assessment of the Information Security Management System of world class enterprises. Candidates require strong leadership skills working in dynamic and cross-functional teams for large-scale and multi-national engagements with excellent communication skills. Provide high performance (e.g. clear vision/objectives/purpose, open communication, promoting flexibility, collaboration and accountability) to deliver high quality to clients and a rewarding experience to staff Demonstrable ability to assist in management of multiple client projects simultaneously Technical designations such as CISSP, CISA, CRISC, CEH, CGEIT, PCI QSA, CIPP / C, TOGAF, or CISM. Education in the domain of Information Security, Computer Science, Engineering, Cybersecurity Experience in working in a consulting environment would be an asset. A demonstrated commitment to valuing differences and working alongside diverse people and perspective Show more Show less

Home to the world's best loved and trusted hygiene, health, and nutrition brands. Our purpose defines why we exist: to protect, heal and nurture in the relentless pursuit of a cleaner, healthier world. We are a global team united by this purpose. Join us in our fight to make access to the highest quality hygiene, wellness, and nourishment a right and not a privilege. Information Technology & Digital In IT&D, you'll be a force for good, whether you're championing cyber security, defining how we harness the power of technology to improve our business, or working with data to guide the innovation of consumer loved products. Working globally across functions, you'll own your projects and process from start to finish, with the influence and visibility to achieve what needs to be done. And if you're willing to bring your ideas to the table, you'll get the support and investment to make them happen. Your potential will never be wasted. You'll get the space and support to take your development to the next level. Every day, there will be opportunities to learn from peers and leaders through working on exciting, varied projects with real impact. And because our work spans so many different businesses, from Research and Product Development to Sales, you'll keep learning exciting new approaches. About the role Reckitt is seeking a skilled and experienced IT Controls professional to join our team in the 1st Line of Defense (1LOD). This role will be responsible for implementing, remediating, and ensuring adherence to IT controls across systems, with a strong focus on the SAP environment. The candidate will work closely with various business units to proactively manage IT General Control (ITGC) issues, ensure timely remediation, and maintain a compliant IT environment. Your responsibilities Remediation and Compliance: Implement IT controls and remediate control deficiencies in collaboration with control owners, ensuring adherence to the ITGC framework and other relevant standards. Issue Tracking and Reporting: Develop and maintain a detailed tracking system for ongoing remediation efforts, providing regular updates to relevant stakeholders. SAP Systems Expertise: Leverage knowledge of SAP systems to identify, evaluate, and address control deficiencies specific to SAP environments. Coordination and Collaboration: Work with control owners to ensure timely execution of remediation actions, facilitating alignment on corrective measures. Documentation Management: Maintain up-to-date and accurate documentation for all remediation efforts and control adjustments. Risk Acceptance and Escalation: Support the risk acceptance process for issues that cannot be remediated, in consultation with relevant stakeholders. Audit Preparation and Support: Ensure remediation efforts are documented and aligned with audit requirements to facilitate external and internal audits. Impact Assessments: Conduct or facilitate impact assessments on identified deficiencies to measure potential risk impacts on the organization The experience we're looking for At least 9 years of experience in IT controls, IT audit, or a related field within the 1LOD. Strong understanding of IT General Controls (ITGC) and IT control frameworks such as COBIT/NIST/ISO 27001/SOX. Proven experience in hands-on remediation of IT control deficiencies and managing risk acceptance. SAP systems experience is essential, with knowledge of control requirements specific to SAP environments. SAP systems experience is essential, with knowledge of control requirements specific to SAP environments, including SAP Change Control processes. Demonstrated ability to collaborate with cross-functional teams and effectively influence stakeholders. Language skills: Fluency in German, Polish, or Spanish (depending on role and region) is highly desirable. Relevant certifications, such as CISA, CISM, or CISSP, are a plus. . The skills for success ITGC, Controls , Governance, IT Audit, IT Risk, SAP, SAP GRC, Compliance What we offer With inclusion at the heart of everything we do, working alongside our four global Employee Resource Groups, we support our people at every step of their career journey, helping them to succeed in their own individual way. We invest in the wellbeing of our people through parental benefits, an Employee Assistance Program to promote mental health, and life insurance for all employees globally. We have a range of other benefits in line with the local market. Through our global share plans we offer the opportunity to save and share in Reckitt's potential future successes. For eligible roles, we also offer short-term incentives to recognise, appreciate and reward your work for delivering outstanding results. You will be rewarded in line with Reckitt's pay for performance philosophy. Equality We recognise that in real life, great people don't always 'tick all the boxes'. That's why we hire for potential as well as experience. Even if you don't meet every point on the job description, if this role and our company feels like a good fit for you, we still want to hear from you. All qualified applicants will receive consideration for employment without regard to age, disability or medical condition; colour, ethnicity, race, citizenship, and national origin; religion, faith; pregnancy, family status and caring responsibilities; sexual orientation; sex, gender identity, gender expression, and transgender identity; protected veteran status; size or any other basis protected by appropriate law.

About the Role: Grade Level (for internal use): 10 The Team: Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact: This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact: This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self- QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in p repar ing and deliver ing comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) ​ Basic Required Qualifications: Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5 + years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. ​ Additional Preferred Qualifications: 5 + years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Role Location: Gurgaon, Noida, Bangalore What’s In It For You? Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our benefits include: Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ----------------------------------------------------------- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ----------------------------------------------------------- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group) Job ID: 315516 Posted On: 2025-06-03 Location: Hyderabad, Telangana, India

Security Architect We are the leading specialty e-retailer offering consumer products, vacations and online education services through an easy and convenient payment plan. Our customers love us because we make paying for their purchases stress and hassle free. The automatic payments help them to avoid penalty fees and ballooning interest associated with other payment options. The fixed payment duration options empower them to budget more efficiently. Ours is a revolutionary e-commerce experience that gives customers access to a better life combined with a responsible way to buy. Purchasing Power is ‘Powering People to a Better Life™’ through its employee purchase program, financial literacy efforts and charitable contributions. For more information, visit www.PurchasingPower.com (US) and corp.PurchasingPower.com (outside US). Purchasing Power is one of Atlanta’s fastest growing e-retailers is seeking a skilled and experienced security architect with knowledge of security best practices to join our team in Chennai, India. In this role, you will be responsible for designing and implementing robust security frameworks and solutions to protect the organization's infrastructure, applications, and data. You will work closely with cross functional teams to ensure that computing environments are secure, compliant, and resilient to security threats. The selected candidate will report to the Senior Director Enterprise Security in Atlanta. What you’ll do: • Work with cross-functional teams including development, operations, and infrastructure, to ensure secure architectures are designed and implemented. • Develop security blueprints and ensure that services and applications are secure by design. • Convert project requirements into suitable architecture documentation. • Communicate effectively with stakeholders to align security strategies with organizational goals. • Perform security threat modeling for systems, applications, and data repositories. • Partner with vendors, service providers, and third-party stakeholders to evaluate and recommend security tools and solutions. • Create security standards and guidelines in accordance with industry best practices and compliance requirements (e.g., NIST, SOC2). • Provide guidance on the implementation of security controls and cloud-native security tools (e.g., IAM, encryption, monitoring, and threat detection). • Collaborate with IT to design and enhance security controls and processes. • Design and automate security processes. • Establish assurance standards which support secure architectures and assist with detecting security control gaps. • Collaborate with incident response teams to address security incidents. • Stay current with security technologies, services and trends. Requirements- • Bachelor’s degree in computer science, information security, or related field (or equivalent experience). • 4+ years of experience in information security, with at least 2 years working in a security architecture role. • Strong knowledge of and hands-on experience with security architecture concepts, best practices, tools and techniques. • Familiarity with cloud security and DevSecOps best practices. • Proficiency in scripting languages (e.g., Python, PowerShell). • Experience with security control frameworks such as NIST, ISO 27001, and COBIT. • Knowledge of security compliance frameworks such as SOC2 and PCI DSS. Personal Attributes- • Strong problem-solving and critical thinking skills. • Excellent written and verbal communication skills, with the ability to explain security concepts to non-technical stakeholders. • Solid interpersonal skills with capacity to develop and maintain productive relationships. • Ability to work independently as well as part of a team. • A "can-do" spirit with a sense of ownership and commitment. Bonus Experience- • Certifications in security such as CISSP, CISM, CCSP. • Hands-on experience with security automation and orchestration in cloud environments. • Experience in ecommerce domain or similar Show more Show less

Job Requirements Role/ Job Title: IT Compliance Manager-Enterprise Applications Function/ Department: Information Technology. Job Purpose To ensure that an organization's information technology (IT) infrastructure, policies, procedures, and practices align with its business objectives, industry regulations, and best practices. IT Governance Specialists are responsible for developing, implementing, and maintaining IT governance frameworks, such as COBIT (Control Objectives for Information and Related Technologies) and ITIL (Information Technology Infrastructure Library), to manage IT risks, ensure compliance, and optimize IT investments. Roles & Responsibilities Developing and implementing IT policies and procedures that align with organizational goals and industry best practices. Conducting periodic IT risk assessments to identify potential vulnerabilities and threats and recommending necessary controls to minimize risks. Ensuring that all IT projects are aligned with the organization's strategy, regulatory compliance requirements, and security standards. Establishing IT performance metrics and monitoring key performance indicators (KPIs) to measure the effectiveness and efficiency of IT processes. Providing guidance and support to IT teams on IT governance and risk management matters. Coordinating with internal and external auditors to facilitate IT compliance audits and ensure timely completion of audit recommendations. Identifying and implementing IT governance-related training needs for IT staff and end-users. Participating in the development, implementation, and maintenance of IT disaster recovery and business continuity plans. Staying up to date on the latest IT governance trends and industry standards to ensure that the organization is current with best practices. Collaborating with cross-functional teams to ensure that IT governance is integrated into business processes. Education Qualification Graduation: BBA/B.COM or relevant Post-graduation: Master's degree in business administration (MBA) or a relevant postgraduate qualification would be advantageous. Experience: 5-10 years of relevant experience Show more Show less

Aurex Inc, is looking for a GRC consultant role. As an integral member of the GRC Implementation team, the responsibility of the GRC Consultant is to carry out the implementation of GRC system for our customers related to policy compliance, security requirements governance, as well as risk management. The ideal candidate will have knowledge of risk management, security and privacy practices and be an effective communicator, both written and verbal. Responsibilities Develop and participate in the implementation of client initiatives focused on the reduction of technology risk, governance, and compliance to policies and external regulatory compliance. Evaluating business and IT risks Developing IT security standards, procedures, and controls to manage risks. Improve client security positioning through process improvement, policy, automation, and the continuous evolution of capabilities. Evaluation of information security threats and their impact on clients' IT environment Supporting the Senior team members, assisting with the analysis of requirements and design of clients’ information security posture, as well as Legal, Regulatory, and Scheme security requirements. Supporting the senior team members in the delivery of work streams for clients in compliance standards such as PCI DSS, ISO27001, EU GDPR, and Bahrain PDPL and incident management disciplines. Performing and investigating internal and external information security risk and exception assessments. Assessing incidents, vulnerability management, scans, patching status, secure baselines, penetration test results, phishing, and social engineering tests and attacks. Documenting and reporting control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities. Staying current on best practices and technological advancements and acting as a technical resource for security assessment and regulatory compliance. Performing other related duties as assigned from time to time-based on the business requirements. Qualification 3- 5 years experience in IT Governance, Risk & Compliance Understanding of ISO 27001, PCI DSS, ITIL, ITSM, and COBIT standards preferred Experience with risk management principles and associated methodologies Ideally will have a CEH, CISSP, CISA, or CISM qualification. Proven ability to make sound pragmatic decisions and judgments under tight timelines. Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally. Show more Show less

In this vital role, you will be responsible for identifying, analyzing, and mitigating IT-related risks to the organization. This role will involve working closely with various groups to ensure that risk controls are in place, policies are adhered to, and security standards are met. The IT Risk Analyst will assist in developing and maintaining risk management frameworks, performing assessments, and supporting regulatory compliance efforts. Roles & Responsibilities: Risk Identification and Assessment: Conduct risk assessments to identify vulnerabilities in IT systems, processes, and policies. Assist in the identification and evaluation of risks associated with third-party vendors and partners. Maintain the IT risk register, documenting risks, issues, and remediation actions. Risk Mitigation and Monitoring: Recommend risk mitigation strategies and implement risk management controls across IT infrastructure. Collaborate with IT, cybersecurity, and business teams to track and resolve identified risks and vulnerabilities. Monitor and report on the effectiveness of existing IT risk controls and recommend enhancements as needed. Compliance and Regulatory Support: Ensure compliance with relevant industry standards and regulatory requirements (e.g., GDPR, SOX, PCI-DSS, NIST). Assist in the preparation for audits by internal and external parties, providing documentation and evidence of IT risk management practices. Support the development and implementation of IT governance, risk, and compliance frameworks. Vendor Risk Management: Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies. Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary. What we expect of you: We are all different, yet we all use our unique contributions to serve patients. Basic Qualifications: Education: Bachelor's degree in Information Technology, Cybersecurity, Risk Management, or a related field. Certifications such as CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information Systems Auditor), or CISSP (Certified Information Systems Security Professional) are highly desirable. Experience: 2 - 4 years of experience in IT risk management, IT auditing, or information security. Hands-on experience with risk management tools and frameworks (e.g., ISO 27001, NIST, COBIT). Skills and Competencies: Solid understanding of IT infrastructure, systems, and security best practices. Ability to assess technical and business risk related to information systems. Excellent problem-solving, analytical, and communication skills. Ability to communicate complex risk concepts to non-technical collaborators. Ability to assess and interpret security-related clauses in third-party contracts, such as Security Requirements Schedules (SRS). Familiarity with regulatory frameworks and compliance standards (e.g., GDPR, HIPAA, SOX, PCI-DSS). Technical Knowledge: Proficiency with risk management tools, GRC (Governance, Risk, and Compliance) software, and security incident management tools. Experience with security controls related to networks, databases, and cloud environments. Soft Skills: Excellent analytical and troubleshooting skills. Strong verbal and written communication skills. Ability to work effectively with global, virtual teams. High degree of initiative and self-motivation. Ability to manage multiple priorities. Team-oriented, with a focus on achieving team goals. Strong presentation and public speaking skills. Collaboration with distributed teams.

Sikich is seeking an IT Audit Experienced Associate with 2-5 years of experience to join our team. Experience in IT audits, network audits, or related areas is preferable. The IT Audit Experienced Associate position plays a crucial role in supporting the GRC services and on-demand IT audit project support for our clients in the US. About the firm Sikich is a global company specializing in Accounting, Advisory, and Technical professional services. With employees across the globe, Sikich ranks as one of the largest professional services companies in the United States. Our comprehensive skillsets, obtained over decades of experience as entrepreneurs, business owners and industry innovators, allow us to provide insights and transformative strategies to help strengthen every dimension of our clients’ businesses. Job Responsibilities Participate in the planning and execution of IT audit engagements, including risk assessment, scoping, and development of IT audit work programs. Conduct IT risk assessment by understanding business objectives, internal controls, enabling technology, and IT infrastructure. Perform audit work over various technologies utilized by the company and various IT functions. Assess both the design and operating effectiveness of IT enabled internal controls. Prioritize and assist in scheduling audit tests to be performed and interact with auditees to obtain the necessary information. Contribute to identification of department operational efficiencies and changes in auditing operations. Evaluate controls designed to prevent or detect fraud, including management override of controls. Assist the US teams in special projects, investigations, or ad hoc assignments as directed by management. Requirements for Successful Candidate Ideally, the candidate should be: Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP); At least 2 years of prior experience in IT audits. Decent understanding of IT controls documentation, IT and cybersecurity control frameworks including CIS 18, NIST, COBIT, ISO 27001. Familiarity with IT controls for system and software applications and related controls including Active Directory, ERP roles and profiles. Familiarity with Service Organization Controls (SOC1 and SOC2) Knowledge regarding network infrastructure and Cloud. Excellent written and verbal communication skills to effectively communicate findings and recommendations. Self-motivated, positive, proactive, and capable of working independently as well as collaboratively in a team environment. Uphold high ethical standards and maintain confidentiality of sensitive information. Benefits of being a part of the team Family Health Insurance including parents Life & Accident Insurance Maternity/paternity leave Performance-based incentives Referral Bonus program Exam Fee Reimbursement Policy Indian festival holidays 5 days working week Meals facility Doctor's consultation Show more Show less