658 Cobit Jobs - Page 26

Job Description As an IT Operations Technical Program Manager (TPM), you will lead the management and execution of complex projects that span across IT operations and supply chain systems. You will ensure the alignment of business systems, platforms, and tools with SCM objectives to streamline business operations and improve supply chain efficiency. This role involves working closely with cross-functional teams, including IT operations, planning, sourcing, logistics, procurement, and business stakeholders, to deliver high-impact projects. Key Responsibilities Lead IT Projects: Drive end-to-end management of key projects related to Supply Chain Management (SCM) systems, such as Anaplan, OTM, Fourkites, RPA solutions. Cross-functional Collaboration: Work closely with supply chain, Biz systems, engineering teams, and external vendors to define project requirements, timelines, and success criteria. Stakeholder Communication: Regularly communicate project progress, milestones, risks, and outcomes to senior leadership and business stakeholders. Process Optimization: Identify opportunities for process improvement and automation across SCM IT systems, leading initiatives to streamline workflows and increase efficiency. Risk Management: Proactively identify risks within projects and operations, develop risk mitigation strategies, and ensure timely delivery of projects. Vendor Management: Manage relationships with external vendors, ensuring service-level agreements (SLAs) and performance standards are met. Compliance and Security: Ensure that SCM systems comply with industry standards, data protection regulations (e.g., GDPR), and internal security protocols. Documentation and Reporting: Develop and maintain comprehensive project documentation, including project plans, roadmaps, risk assessments, and status reports. Required Qualifications Bachelor’s degree in Computer Science, Information Technology, Supply Chain Management, Engineering, or a related field (or equivalent work experience). Experience in technical program management with a focus on SCM IT systems, IT operations, or related fields. Proven experience managing complex SCM IT projects, including system implementations, upgrades, and integrations. Deep understanding of Supply Chain Management processes, including procurement, logistics, warehousing, transportation, and distribution. Familiarity with cloud platforms (AWS, Microsoft Azure, GCP) and their integration with SCM tools. Project management expertise, with knowledge of Agile, Scrum, Waterfall, or hybrid methodologies. Strong problem-solving skills with the ability to translate technical challenges into actionable solutions. Excellent communication and stakeholder management skills, with experience working with senior executives, technical teams, and non-technical business stakeholders. Preferred Qualifications Master’s degree in a technical or business-related field (e.g., MBA, MS in Supply Chain, or IT). PMP, Scrum Master, or similar project management certifications. Experience in cloud-based SCM systems, automation technologies, and DevOps practices. Experience in implementing AI, machine learning, or IoT technologies in supply chain operations. Knowledge of ITIL, COBIT, or other IT service management frameworks. Familiarity with supply chain analytics and data-driven decision-making in IT operations. At Nextracker, we are leading in the energy transition, providing the most comprehensive portfolio of intelligent solar tracker and software solutions for solar power plants, as well as strategic services to capture the full value of solar power plants for our customers. Our talented worldwide teams are transforming PV plant performance every day with smart technology, data monitoring and analysis services. For us at Nextracker, sustainability is not just a word. It's a core part of our business, values and our operations. Our sustainability efforts are based on five cornerstones: People, Community, Environment, Innovation, and Integrity. We are creative, collaborative and passionate problem-solvers from diverse backgrounds, driven by our shared mission to provide smart solar and software solutions for our customers and to mitigate climate change for future generations. Culture is our Passion Show more Show less

locationsBangalore RMZ-ECO WORLDposted onPosted 3 Days Ago time left to applyEnd DateJune 13, 2025 (27 days left to apply) job requisition idR171411 , India Job Family Group: Information Technology (IT) Worker Type: Regular Posting Start Date: May 13, 2025 Business unit: Experience Level Early Careers About The Role What is the Role? As an ITGC Testing Analyst, you will support management in assessing the IT control environment. You will identify and report control weaknesses, track remediation action plans, and monitor the quality of remediation efforts.. More specifically, your role will include: ITGC Testing Conduct testing of IT General Controls (ITGCs) to ensure compliance and effectiveness. ITC Testing Perform testing of IT Components (ITCs) to validate data integrity and accuracy. Test Scripts Developing and executing test scripts, documenting test procedures, and evaluating results to identify control gaps. Documentation Maintain detailed documentation of testing procedures, findings, and recommendations. Reporting Ensure adherence to the approved assurance plan and provide regular updates on progress. Issue Management Advise IT operations on risk management and contribute to remediation plans for deficient controls. Collaboration Work with the offshore testing team to assess the design and effectiveness of IT controls. Stakeholder Communication Communicate effectively with stakeholders to ensure understanding and alignment with assurance processes and risk management strategies. Tool Management Oversee tools and reports used by the team and stakeholders, ensuring accuracy and updates based on business needs. What We Need from You? Experience: IT Audit Expertise 3+ years of experience in ITGC testing Education: Academic Background Bachelors Degree in Technology is highly desirable. Certifications Preferred certifications include those in IT security and Risk Management. Technical Skills: Certifications Relevant certifications like ISO 27001, CISA, CISM, and CRISC or having a strong desire to work towards obtaining such certifications. Information Risk Management Good understanding of information risk management and associated processes. Application Proficiency Experience with widely used applications such as SAP, Power Platform, and Cloud technologies is desirable. Continuous Improvement A mindset geared towards continuous improvement and project management experience. Soft Skills: Team Player Should be a strong team player and display the same by volunteering where one can extend support. Proactive Problem-Solving Skilled in identifying potential challenges and proposing effective solutions. Learner Mindset Demonstrates professional curiosity and a strong desire to learn. Team Collaboration Highly motivated team player who volunteers support and collaborates effectively. Work Schedule: Mid-Shift Working hrs will be IST 12 noon to 9 pm. Shift allowance will be eligible per organization policy. - COMPANY DESCRIPTION Shell is a global group of energy and petrochemicals companies with over 90,000 employees in more than 70 countries and territories. We deliver energy responsibly; operate safely with respect to our neighbours and work to minimize our environmental impact. We are in search of remarkable people who will thrive in a diverse and inclusive work environment to deliver exciting projects locally and globally. People who are passionate about exploring new frontiers. Innovators and pioneers. People with the drive to help shape our future. Because remarkable people achieve remarkable things. An innovative place to work Theres never been a more exciting time to work at Shell. Everyone here is helping solve one of the biggest challenges facing the world todaybringing the benefits of energy to everyone on the planet, whilst managing the risks of climate change. Join us and youll add your talent and imagination to a business with the power to shape the future whether by investing in renewables, exploring new ways to store energy or developing technology that helps the world to use energy more efficiently. An inclusive place to work To power progress together, we need to attract and develop the brightest minds and make sure every voice is heard. Here are just some of the ways were nurturing an inclusive environment one where you can express your ideas, extend your skills and reach your potential Were creating a space where people with disabilities can excel through transparent recruitment process, workplace adjustments and ongoing support in their roles. Feel free to let us know about your circumstances when you apply and well take it from there. Were closing the gender gap whether thats through action on equal pay or by enabling more women to reach senior roles in engineering and technology. Were striving to be a pioneer of an inclusive and diverse workplace, promoting equality for employees regardless of sexual orientation or gender identity. We consider ourselves a flexible employer and want to support you finding the right balance. We encourage you to discuss this with us in your application. A rewarding place to work Combine our creative, collaborative environment and global operations with an impressive range of benefits and joining Shell becomes an inspired career choice. Were huge advocates for career development. Well encourage you to try new roles and experience new settings. By pushing people to reach their potential, we frequently help them find skills they never knew they had, or make career moves they never thought possible. DISCLAIMER: Please noteWe occasionally amend or withdraw Shell jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Shell/Shell Group companies around the world. The Shell Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Shell. Anyone who demands such a fee is not an authorised Shell representative and you are strongly advised to refuse any such demand. Shell is an Equal Opportunity Employer.

Job Summary JOB DESCRIPTION If you are a cyber security professional looking for an opportunity to grow, Emerson has an exciting opportunity for you! You will be responsible for coordinating and promoting product security activities across multiple product development teams. The Product Security Engineer is responsible for awareness and adoption of secure development methods that achieve secure products services, and solutions. The Product Security Engineer is a business unit central point of coordination for secure product development processes, policy and standards implementation, and compliance. This includes establishing, cultivating, participating in, and managing communities of practices supporting product security and organizing activities and meetings with decision makers. This position will also coordinate with Emerson Enterprise Product Security resources to ensure compliance with Emerson’s Product Security requirements for all product development activities, processes, and tools. In This Role, Your Responsibilities Will Be: Coordinate and handle the implementation of secure development lifecycle efforts. Participate in new product development process audits and assessments. Participate in key projects as the product security functional representative. Work with business units to inventory products and assist in prioritizing risk. Organize and handle product risk assessments and threat modeling efforts. Assist in organizing activities including the Product Security Board, Product Security Team, and program meetings to expand and sustain efforts across business units, groups. Create, organize and participate in cross functional and business unit communities to promote the adoption of secure development and product security standard processes. Maintain artifacts and a central repository of communications and information for Emerson Product Security functions and teams. Assist with analyzing product security market and technology trends. Assist with training and development needs for various organizational functions specific to product security related roles and functions. Maintain familiarity with industry standards such as IEC 62443 (ISA99), IEC 29147, IEC 30111, ISO/IEC 27001, and NIST SP 800-218. Support the organizational Product Security Incident Response Team and vulnerability management activities. Establish and enhance strong relationships with business unit team members, organizational functions, and business partners. Who You Are: You pursue everything with energy, drive, and the need to finish. You always keep the end in sight and put in extra effort to meet deadlines. You create teamwork allowing others across the organization to achieve shared objectives. You partner with others to get work done. You achieve gained trust and support of others. You ask the right questions to accurately analyze situations. You evaluate pros and cons, risks and benefits of different solution options. For This Role, You Will Need: Bachelor's degree or equivalent experience and/or equivalent years of relative experience. validated experience and familiarity with product security standards and initiatives or practical work experience related to the implementation of products, services, and solutions. Experience in secure by design principles, standard processes and the integration of security into preexisting development practices. Familiar with concepts such as secure development lifecycle, secure by design, and defense in depth. Familiar with Microsoft Office tools for effective communications and information management. Ability to prioritize, prepare and make compelling presentations. Self-motivated and able to work under timeline. Strong problem solving / interaction management skills. Strong organizational and collaboration skills. Preferred Qualifications that Set You Apart: Risk Management Framework and Processes experience. Experience with standards and risk management frameworks (e.g. IEC 62443, IEC 27001, NIST SP 800-218, COBIT, NIST). Knowledge of technology trends and current product security issues, including those specific to control systems and related products. Experience with project management and development processes. Experience working with recognized security related standards and technologies. Experience with software bills of material (SBOM). Our Culture & Commitment to You At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives—because we know that great ideas come from great teams. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. Whether through mentorship, training, or leadership opportunities, we invest in your success so you can make a lasting impact. We believe diverse teams, working together are key to driving growth and delivering business results. We recognize the importance of employee wellbeing. We prioritize providing competitive benefits plans, a variety of medical insurance plans, Employee Assistance Program, employee resource groups, recognition, and much more. Our culture offers flexible time off plans, including paid parental leave (maternal and paternal), vacation and holiday leave. About Us WHY EMERSON Our Commitment to Our People At Emerson, we are motivated by a spirit of collaboration that helps our diverse, multicultural teams across the world drive innovation that makes the world healthier, safer, smarter, and more sustainable. And we want you to join us in our bold aspiration. We have built an engaged community of inquisitive, dedicated people who thrive knowing they are welcomed, trusted, celebrated, and empowered to solve the world’s most complex problems — for our customers, our communities, and the planet. You’ll contribute to this vital work while further developing your skills through our award-winning employee development programs. We are a proud corporate citizen in every city where we operate and are committed to our people, our communities, and the world at large. We take this responsibility seriously and strive to make a positive impact through every endeavor. At Emerson, you’ll see firsthand that our people are at the center of everything we do. So, let’s go. Let’s think differently. Learn, collaborate, and grow. Seek opportunity. Push boundaries. Be empowered to make things better. Speed up to break through. Let’s go, together. Accessibility Assistance or Accommodation If you have a disability and are having difficulty accessing or using this website to apply for a position, please contact: idisability.administrator@emerson.com . About Emerson Emerson is a global leader in automation technology and software. Through our deep domain expertise and legacy of flawless execution, Emerson helps customers in critical industries like life sciences, energy, power and renewables, chemical and advanced factory automation operate more sustainably while improving productivity, energy security and reliability. With global operations and a comprehensive portfolio of software and technology, we are helping companies implement digital transformation to measurably improve their operations, conserve valuable resources and enhance their safety. We offer equitable opportunities, celebrate diversity, and embrace challenges with confidence that, together, we can make an impact across a broad spectrum of countries and industries. Whether you’re an established professional looking for a career change, an undergraduate student exploring possibilities, or a recent graduate with an advanced degree, you’ll find your chance to make a difference with Emerson. Join our team – let’s go! No calls or agencies please. Show more Show less

Over the past 15 years, Medanta has created an unrivalled impact in delivering world class multi-specialty care for patients in India. We have hospitals in Gurgaon, Lucknow, Patna, Indore and Ranchi. In addition, we have clinics in Defence Colony (South Delhi), Cybercity & Subhash Chowk (Gurgaon), and at the Delhi Airport. Medanta is constantly growing and has also ventured in Retail vertical through Diagnostics (Laboratory Services) and Pharmacies. We also have also launched homecare services. We further plan to scale up existing facilities and expand into a few more geographical areas and also identify new avenues (Academics - Medical College) within the Healthcare eco-system. As we continue to scale and grow into new geographies, explore innovative methods of healthcare delivery, we are looking to hire exceptional talent to help us achieve our vision and grow in the process to achieve their professional aspiration. Roles & Responsibilities Leverage the existing cybersecurity tools and capable to identify open-source tools to discover threat agent actions. Identify potential threats and mitigation strategies to enable a proactive defense mechanism before an actual security incident. Design and implement a security incident response process. Act as the primary control point during significant information security incidents, manage the development of incident response plans and generate detailed reports. Identify and propose the implementation of the key information security initiatives, plans, practices and tools to the management. Proactive support on the approved information security projects, internal/external security audits, internal audits, application security assessment and reviews and compliance. Identify and understand potential and emerging information security threats and vulnerabilities and implement an effective communication channel across the appropriate teams. Detect and respond to cyber security threats and implement remediation controls. Perform Network vulnerability assessment and penetration testing (automated and manual) of infrastructure and hardening reviews of endpoints, networks and servers. Manage security compliance for end points, networks, servers, databases, etc. Proficient in operating cyber security solutions to protect IT Infrastructure and data it hold What we are looking for Bachelor’s degree specializing in Information Security, Computer Science, Information Management Systems, or relevant work experience. Minimum 10 years of experience in Cyber Security. Individual Contributor and capable of working independently. Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, security operations, cloud security architecture, SEIM, operating system security, network access security, end point protection, vulnerability and threat management. An excellent knowledge and deep understanding of the complex network security principles and concepts such as (Anti-malware/Virus/Ransomware, web secure gateways, email protection gateway, http proxy, VLANs, ACL, DMZ, VPN, firewalls, IDS/IPS etc). Hands-on experience with analysing high volumes of logs, network data (e.g., NetFlow, FPC), and other security breach attacks. Practical knowledge of operating systems (such as: Windows, Linux, Hypervisors). Detailed experience with vulnerability scanning solutions. Ability to identify and mitigate network vulnerabilities and an understanding of their remediation. Required to assist with root cause identification for incident management. Should be acquainted with Information Security Industry standards/best practices and relevant regulations (such as: SSAE16, SOC 2, PCI DSS, HIPAA, GLBA, FISMA, NIST, ISO27000, CobiT, ISF, OWASP, SANS). Must have proficient analytical, technical research and detail-oriented skills Work days: 6 days Location: Gurgaon Show more Show less

Job Description In This Role, Your Responsibilities Will Be: Participate in new product development process audits and assessments. Participate in key projects as the product security functional representative. Work with business units to inventory products and assist in prioritizing risk. Organize and handle product risk assessments and threat modeling efforts. Assist in organizing activities including the Product Security Board, Product Security Team, and program meetings to expand and sustain efforts across business units, groups. Create, organize and participate in cross functional and business unit communities to promote the adoption of secure development and product security standard processes. Maintain artifacts and a central repository of communications and information for Emerson Product Security functions and teams. Assist with analyzing product security market and technology trends. Assist with training and development needs for various organizational functions specific to product security related roles and functions. Maintain familiarity with industry standards such as IEC 62443 (ISA99), IEC 29147, IEC 30111, ISO/IEC 27001, and NIST SP 800-218. Support the organizational Product Security Incident Response Team and vulnerability management activities. Establish and enhance strong relationships with business unit team members, organizational functions, and business partners. Who You Are: You pursue everything with energy, drive, and the need to finish. You always keep the end in sight and put in extra effort to meet deadlines. You create collaboration allowing others across the organization to achieve shared objectives. You partner with others to get work done. You achieve gained trust and support of others. You ask the right questions to accurately analyze situations. You evaluate pros and cons, risks and benefits of different solution options. For This Role, You Will Need: Bachelor's degree or equivalent experience and/or equivalent years of relative experience. validated experience and familiarity with product security standards and initiatives or practical work experience related to the implementation of products, services, and solutions. Experience in secure by design principles, standard processes and the integration of security into preexisting development practices. Familiar with concepts such as secure development lifecycle, secure design, and defense in depth. Familiar with Microsoft Office tools for effective communications and information management. Ability to prioritize, prepare and make compelling presentations. Self-motivated and able to work under timeline. Strong problem solving / interaction leadership skills. Strong organizational and collaboration skills. Preferred Qualifications that Set You Apart: Risk Management Framework and Processes experience. Experience with standards and risk management frameworks (e.g. IEC 62443, IEC 27001, NIST SP 800-218, COBIT, NIST). Knowledge of technology trends and current product security issues, including those specific to control systems and related products. Experience with project management and development processes. Experience working with recognized security related standards and technologies. Experience with software bills of material (SBOM). Our Culture & Commitment to You At Emerson, we prioritize a workplace where every employee is valued, respected, and empowered to grow. We foster an environment that encourages innovation, collaboration, and diverse perspectives—because we know that great ideas come from great teams. Our commitment to ongoing career development and growing an inclusive culture ensures you have the support to thrive. Whether through mentorship, training, or leadership opportunities, we invest in your success so you can make a lasting impact. We believe diverse teams, working together are key to driving growth and delivering business results. We recognize the importance of employee wellbeing. We prioritize providing competitive benefits plans, a variety of medical insurance plans, Employee Assistance Program, employee resource groups, recognition, and much more. Our culture offers flexible time off plans, including paid parental leave (maternal and paternal), vacation and holiday leave. About Us WHY EMERSON Our Commitment to Our People At Emerson, we are motivated by a spirit of collaboration that helps our diverse, multicultural teams across the world drive innovation that makes the world healthier, safer, smarter, and more sustainable. And we want you to join us in our bold aspiration. We have built an engaged community of inquisitive, dedicated people who thrive knowing they are welcomed, trusted, celebrated, and empowered to solve the world’s most complex problems — for our customers, our communities, and the planet. You’ll contribute to this vital work while further developing your skills through our award-winning employee development programs. We are a proud corporate citizen in every city where we operate and are committed to our people, our communities, and the world at large. We take this responsibility seriously and strive to make a positive impact through every endeavor. At Emerson, you’ll see firsthand that our people are at the center of everything we do. So, let’s go. Let’s think differently. Learn, collaborate, and grow. Seek opportunity. Push boundaries. Be empowered to make things better. Speed up to break through. Let’s go, together. Accessibility Assistance or Accommodation If you have a disability and are having difficulty accessing or using this website to apply for a position, please contact: idisability.administrator@emerson.com . About Emerson Emerson is a global leader in automation technology and software. Through our deep domain expertise and legacy of flawless execution, Emerson helps customers in critical industries like life sciences, energy, power and renewables, chemical and advanced factory automation operate more sustainably while improving productivity, energy security and reliability. With global operations and a comprehensive portfolio of software and technology, we are helping companies implement digital transformation to measurably improve their operations, conserve valuable resources and enhance their safety. We offer equitable opportunities, celebrate diversity, and embrace challenges with confidence that, together, we can make an impact across a broad spectrum of countries and industries. Whether you’re an established professional looking for a career change, an undergraduate student exploring possibilities, or a recent graduate with an advanced degree, you’ll find your chance to make a difference with Emerson. Join our team – let’s go! No calls or agencies please. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior - IT audit – General skills Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

🚀 We're Hiring: IT Auditor at Difinity Digital 📍 Locations: Chennai | Coimbatore | Kochi At Difinity Digital, we are pioneers in transforming business operations with advanced process automation and data-driven analytics. Our mission is to accelerate your growth by harnessing the power of artificial intelligence to optimize processes and unlock actionable insights. Elevate your business operations and harness the full potential of AI with Difinity Digital. Connect with us today to explore how our expertise in process automation and analytics can drive your success. 🔍 Role: IT Auditor 🔑 Key Responsibilities: Audit & Compliance: Conduct regular audits of IT systems, networks, and applications to ensure effectiveness and compliance with industry standards, policies, and regulations (e.g., SOX, GDPR, HIPAA, ADHICS2.0, ISO27001). Risk Assessment: Assess IT infrastructure and internal controls to identify vulnerabilities, inefficiencies, and areas for improvement. GRC Frameworks: Develop, implement, and conduct GRC frameworks, policies, and strategies to align IT systems with regulatory requirements and industry standards. Stakeholder Collaboration: Collaborate with stakeholders to ensure compliance with relevant laws, regulations, and frameworks (e.g., ISO 27001, NIST, COBIT, COSO framework). Process Improvement: Lead initiatives to increase effectiveness and efficiency in service delivery, such as digital shifts and standardization of workpapers. Engagement Management: Undertake internal risk management and client engagement procedures, including Internal Audit and Internal Controls over Financial Reporting (ICOFR). Business Development: Support engagement managers and partners in business development initiatives, including pre-engagement activities, contracting, and setting up meetings with prospective clients. Quality Assurance: Obtain an in-depth understanding of engagement management, quality, and risk management policies to streamline processes specific to consulting Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY Technology: Technology has always been at the heart of what we do and deliver at EY. We need technology to keep an organization the size of ours working efficiently. We have 250,000 people in more than 140 countries, all of whom rely on secure technology to be able to do their job every single day. Everything from the laptops we use, to the ability to work remotely on our mobile devices and connecting our people and our clients, to enabling hundreds of internal tools and external solutions delivered to our clients. Technology solutions are integrated in the client services we deliver and is key to us being more innovative as an organization. EY Technology supports our technology needs through three business units: Client Technology (CT) - focuses on developing new technology services for our clients. It enables EY to identify new technology-based opportunities faster, and pursue those opportunities more rapidly. Enterprise Technology (ET) – ET supports our Core Business Services functions and will deliver fit-for-purpose technology infrastructure at the cheapest possible cost for quality services. ET will also support our internal technology needs by focusing on a better user experience. Information Security (Info Sec) - Info Sec prevents, detects, responds and mitigates cyber-risk, protecting EY and client data, and our information management systems. The opportunity The role of the IT Risk Analyst is to enable the conduct of business, through proactive identification, assessment, and mitigation, of IT risks facing EY personnel, facilities, and operations around the globe. This individual partners with the Information Security IT Risk Leader and other key EY Technology stakeholders to manage IT risks and compliance requirements to enable critical service delivery & operational processes. Your key responsibilities The IT Risk Management function creates and maintains EY Technologies’ risk management framework, processes, tooling, and strategy. Our primary objectives are to enable EY Technology to build a risk-aware culture, reduce IT risk, defend against internal and external threats, and protect client and EY data. As a Senior Associate in the IT Risk Management team, you will participate in the management of IT risks & compliance requirements across EY Technology including the management/remediation of information and technology risks, compliance tracking and enforcement of key IT controls. You will partner closely with the Information Security IT Risk Leader and broader Global IT Risk Management team to execute on the vision, strategy, goals, and objectives for IT Risk Management. The primary objectives for this role are to enable compliance & processes integration around IT Risk Management requirements also contributing to build a risk-aware culture, reduce IT risk, defend against internal and external threats, and protect client and EY data. You will aid the organization in understanding the importance of making risk-aware business decisions by supporting risk, compliance and security knowledge and championing the need for risk interventions and plans. You will also be critical to strengthening our risk and compliance position and continuous improvements to support business objectives and strategies. Under direct supervision of the Information Security IT Risk Leader, the IT Risk Analyst is responsible for: Building and maintaining an understanding of the EY Technology organization and key players within it to facilitate quick and accurate communications to appropriate teams. Subject matter expertise in IT risk assessment & compliance methodologies. Evangelizing a risk-aware culture and executing on IT Risk Management defined education and awareness plans. Improving data quality across the relevant data repositories. Assisting with compliance and risk mitigation process improvement. Understanding of eGRC system and associated reporting. Understanding of risk management practices, including audits, assessments, controls, and risk registers. Skills and attributes for success We’re on the hunt for someone with a keen analytical mind, a deep curiosity in how processes and technologies work, and the confidence to suggest how we can make things better. Patience and understanding how to build consensus are key elements for success, as is the grit to perform work that’s been overlooked in the past. To qualify for the role you must have Risk management experience AND compliance experience. An operational understanding of ISO 27002, ISO 27001, ISO 31000. An operational understanding of Data Privacy regulations requirements Familiarity with local and regional regulatory requirements and how they impact IT policies Experience with RSA Archer or other GRC systems. Clear communication skills. Solid ability to guide or develop actionable roadmaps and to implement in an efficient way to drive all risk management directives. An ability to utilize core risk and controls skills in a broad range of projects both in a traditional internal audit and in advisory projects aimed at assisting in the implementation of controls /improvements. Experience in developing and executing reporting strategies Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change Demonstrated ability to multitask and prioritize in a fast-paced environment Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change Outstanding interpersonal, communication, organizational, and decision-making skills Strong judgment and analytical ability Ability to communicate and gain support for initiatives Strong English language skills; excellent writing, presentation, interpersonal, and communication skills are required Ability to understand and integrate cultural differences and motives and to lead cross cultural teams. An ability to utilize core risk and controls skills in a broad range of projects both in a traditional internal audit and in advisory projects aimed at assisting in the implementation of controls / improvements. Professional; quickly establishes personal credibility and demonstrates expertise. 2 or more years of experience in the Information Technology, Information Security and/or IT Risk Management field(s). An advanced degree in Computer Science, Information Security or a related discipline, or equivalent work experience. One or more of the following or equivalent certifications preferred: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Processional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT Ideally, you’ll also have Experience in IT Risk Management and/or Information Security disciplines Experience in communicating to all levels of management, clients and vendors A working knowledge of policy frameworks such as ISO, COBIT and unified compliance framework Ability to appropriately balance internal functional needs with business impact and benefit Skilled in executive level presentations and briefings Solid knowledge and working experience in governance, risk and compliance as applies to technology Proactively maintains a comprehensive knowledge of the core business and financial drivers of EY’s service lines as well as the operating environment within IT. Works with peers and others in service specific IT groups to support the proper recognition of risk issues or to proactively position risk mitigation and other service improvement opportunities or to engage with others in the area of continuous improvement. Good appreciation of the business benefits of internal control and good risk management and not just for compliance purposes (i.e., not limited to SOX, PCI or other regulatory mainstay drivers). What working at EY offers We offer a competitive remuneration package where you’ll be rewarded for your individual and team performance. Our comprehensive Total Rewards package includes support for flexible working and career development, and with FlexEY you can select benefits that suit your needs, covering holidays, health and well-being, insurance, savings and a wide range of discounts, offers and promotions. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY is committed to being an inclusive employer and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

 Work closely with the IT and project teams in getting a thorough understanding on the requirement, review from the security standpoint and recommend relevant solutions.  Responsible for effective coordination and prompt & proactive communication with the relevant teams involved in the requirements.  Leads the design and development of security architectures for different types of cloud and cloud/hybrid systems.  Knowledge of industry recognized Enterprise Architecture principles and frameworks such as ToGAF, COBIT, etc.  Knowledge of various cloud environments, cloud security stack and cloud deployment models.  Evaluate the security offerings related to cloud security and recommend appropriate controls.  Knowledge on different CSP platforms like AWS, Azure, GCP and other related cloud services/provider.  Understanding of security solutions in cloud environments across various security domains like Identity & Access Management, Security Monitoring, data protection (encryption, tokenization).  Knowledge on Networks: LAN, WAN, SDN, NFV, Network Capacity Planning, Routing, Proxy Servers, wired and wireless Infrastructure, Network Infrastructure Services (DNS, DHCP, CA, Directory Services), Load Balancing, VPN technologies, SSL certificates and Firewalls.  Knowledge on BYOD concepts, including EMM, MAM and MDM related solutions and polices.  Preferred to have Cyber Security certifications such as SANS, OWASP, CCSK (Cloud Security Alliance), CISSP or any other standard institutes or certification bodies.  Network Certifications such as CCNA/CCNP. Show more Show less

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively. As a risk management generalist at PwC, you will provide advisory and practical support to teams across a wide range of specialist risk and compliance areas. Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow. Skills Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: Respond effectively to the diverse perspectives, needs, and feelings of others. Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems. Use critical thinking to break down complex concepts. Understand the broader objectives of your project or role and how your work fits into the overall strategy. Develop a deeper understanding of the business context and how it is changing. Use reflection to develop self awareness, enhance strengths and address development areas. Interpret data to inform insights and recommendations. Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements. As a Senior Associate, you will be aligned to our Strategy, Risk, & Compliance team which is focused on helping clients with their cybersecurity risk, compliance, and governance efforts. You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans. You will work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Position Requirements Collaborate with clients to assess cybersecurity strategies and maturity, develop aligned roadmaps, and guide integration into business processes and digital transformation. Assessments experience: Maturity assessment, Audit readiness, planning and framework assessment, cloud migration requirements, business case development, comparisons, and vendor evaluation. Frameworks experience: Design framework program objectives, first/second/third line of defense, vision and mission statements, current state assessment and gap analysis, roadmap planning and estimation for the program, program governance and target operating model for NIST, PCI-DSS, HIPAA, HITRUST, FFIEC, ISO, FedReg, FedRAMP, COBIT etc. and vendor evaluation. Must have hands-on experience and proficiency in creating, writing, and maintaining cybersecurity standards and policies. Assessing the maturity of clients’ current cybersecurity program and identifying areas for improvement. Develop presentations and reports to communicate cybersecurity strategies to client leadership and support the engagement team in planning and executing multi-domain cybersecurity initiatives. Stay informed about emerging cybersecurity technologies, threats, and best practices, conduct research on industry trends and regulatory changes affecting cybersecurity, and advise on the adoption of cybersecurity frameworks and tools (e.g., NIST, ISO, COBIT) that align with clients' needs. Stay informed about emerging cybersecurity technologies, threats, and best practices, conduct research on industry trends and regulatory changes affecting cybersecurity, and advise on the adoption of cybersecurity frameworks and tools (e.g., NIST, ISO, COBIT) that align with clients' needs. Good understanding of Legal, Regulatory and Privacy requirements to integrate within the Cybersecurity Program. Good understanding of various components of an enterprise Cybersecurity program, including governance structures, Risk and Threat Management, key controls, key processes, Security architecture and Security training program Recommending Cybersecurity action plans for organizations to achieve their overall cybersecurity objective Good Knowledge and experience with GRC tools such as MetricStream, Open Pages, Archer and data analytics & \visualization tools used in the industry such as PowerBI, Alteryx and Tableau. Experience in partnering with various functions within the Cybersecurity organization to capture and document the services and associated core processes, work instructions, and templates. Analyze the security posture of the organizations by assessing the design and implementation of security controls. Strong understanding of Cybersecurity and Risk Control frameworks and their adoption in the Supplier management domain. Desired Knowledge Excellent written and oral communication skills, presentation skills, strong analytical and problem-solving skills can express thoughts clearly, knows how to listen and is able to contribute to a team environment. Must communicate consistently and drive objectives, relying on fact-based decisions about risk that optimize the trade-off between risk mitigation and business performance. Demonstrates proven extensive abilities with leveraging creative thinking and problem-solving skills, individual initiative, and utilizing Office 365, MS Office (Word, Excel, Access, PowerPoint) and Google Docs. Assessing or implementing cybersecurity processes and governance, and experience in working independently or as part of a large team to deliver cybersecurity services on its own or within large complex projects. Knowledge in cloud security, network security, and endpoint protection, combined with proficiency in utilizing threat intelligence and developing effective incident response practices to anticipate, identify, mitigate, and swiftly recover from potential cyber threats. Develop/implement automation solutions and capabilities that are clearly aligned to client business, technology, and threat posture. Professional & Educational Background MCA / BE / B Tech / MS (Field of Study: Computer and Information Science, Information Cybersecurity, Information Technology, Management Information Systems). Certification(s) Preferred: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), ISO 27001 and other relevant cybersecurity certifications. Additional Information Travel Requirements: Not Applicable Line of Service: Advisory Industry: Consulting Must be ready to work on-site full-time (timings will be 2 pm or sooner until 11 pm IST) Minimum Years Of Experience 4 - 8 years Show more Show less

Introduction In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.Information and Data are some of the most important organizational assets in today’s businesses. As a Security Consultant, you will be a key advisor for IBM’s clients, analyzing business requirements to design and implement the best security solutions for their needs. You will apply your technical skills to find the balance between enabling and securing the client's organization with the cognitive solutions that are making IBM the fastest growing enterprise security business in the world. Your Role And Responsibilities Experience in Internal Control, General Computer and Application Control Audit background. Knowledge and experience in various Information security standards / regulations / best practices (ISO-27001, COBIT, PCI-DSS, GDPR, HIPAA, SOC2, etc. Knowledge of efficient way to protect the system, networks, software, data and information systems against security threats. Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, data loss prevention and privacy Preferred Education Master's Degree Required Technical And Professional Expertise Good understanding of, and experience with Information Risk Management, IT Security and Compliance and Security Controls and Audit. Understanding of internal and external IT security standards, SOX, PCI, SOC2/1, ISO27001 standards and relevant legal compliance aspects Good understanding of cloud security requirements and third-party control assurance. Ability to interface with different groups (Third parties, Business and IT) internal and external to IT (security) and to network globally across Group businesses, as well as with external groups. Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, data loss prevention and privacy Preferred Technical And Professional Experience Knowledge of Data Security Standards: PCI DSS, Privacy Principles Driving Platform / Application security and compliance Ability to foresee and identify mitigation strategies for Risks & Analytical and problem solving skills Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior - IT audit – General skills Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Description The Senior Manager - Enterprise Application Support is a core member of Enterprise IT Leadership team and will be the driving force for leading the application support team, ensuring the stability, performance, and continuous improvement of business-critical applications, including Enterprise Resource Planning (ERP) and Sales Customer Relationship Management (CRM) systems . This role involves managing incident resolution, driving service improvements, collaborating with stakeholders, and overseeing governance, compliance, and vendor relationships. Responsibilities Application Support & Service Management Oversee the maintenance, monitoring, and support of enterprise applications, particularly ERP (SAP, Oracle Fusion, CLM, etc.) and Sales CRM (Salesforce, HubSpot, etc.) to ensure high availability and reliability. Manage the incident, problem, and change management processes following ITIL best practices. Drive root cause analysis (RCA) and continuous improvement initiatives to enhance application performance and reduce recurring issues. Ensure compliance with SLAs and KPIs for application support services. Work closely with business teams to optimize ERP and CRM functionalities, streamline workflows, and enhance user experience. Stakeholder & Vendor Management Act as the primary point of contact for business users regarding ERP and Sales CRM application-related issues and improvements. Collaborate with IT teams, business units, and external vendors to enhance application functionality and user experience. Manage third-party vendors and service providers, ensuring contractual adherence and performance excellence. Team Leadership & Development Lead, mentor, and develop a team of application support professionals, fostering a culture of continuous learning and innovation. Define roles, responsibilities, and career development plans for team members. Provide training and knowledge-sharing sessions to enhance team capabilities in ERP and Sales CRM applications. Governance, Compliance, & Security Ensure adherence to IT policies, security protocols, and regulatory requirements for all enterprise applications. Implement and maintain controls to safeguard ERP and CRM data integrity and security. Conduct periodic audits and risk assessments to identify vulnerabilities and mitigate risks. Continuous Improvement & Innovation Identify opportunities for automation, process optimization, and proactive monitoring of business applications. Collaborate with IT development teams to enhance application supportability, integrations, and performance. Drive innovation by exploring emerging technologies and best practices in ERP and CRM application management. Qualifications Education & Experience: Bachelor’s degree in Computer Science, Information Technology, or a related field. 15+ years of experience in IT application support, with at least 5-7 years in a leadership role. Strong experience managing ERP and Sales CRM applications in a complex ITeS and consulting environment. Technical & Functional Skills Expertise in ERP systems (SAP S4 HANA, Oracle Fusion HCM & PPM, etc.) and Sales CRM platforms (Salesforce, HubSpot, etc.). Strong knowledge of IT service management (ITSM) frameworks such as ITIL. Hands-on experience with application monitoring, troubleshooting, and performance optimization. Familiarity with cloud-based applications, databases, and middleware technologies. Understanding of DevOps, Agile methodologies, and CI/CD processes is a plus. Soft Skills Strong leadership, people management, and communication skills. Ability to collaborate with cross-functional teams and influence stakeholders. Strategic thinking with a problem-solving and analytical mindset. Preferred Certifications ITIL Foundation or higher ERP certifications (SAP, Oracle, SFDC, etc.) CRM certifications (Salesforce Administrator, HubSpot CRM, etc.) PMP (Project Management Professional) COBIT, ISO 27001, or other IT governance certifications Cloud certifications (AWS, Azure, or Google Cloud) Show more Show less

About Madison Logic: Our team is reshaping B2B marketing and having fun in the process! When joining Madison Logic, you are committing to giving 100% and always striving for more. As a truly global company, we take pride in a diverse culture free from gender, racial, and other forms of bias. Our Vision: We empower B2B organizations globally to convert their best accounts faster Our Values: URGENCY Lead with Action. Prioritize Follow-up. ACCOUNTABILITY Don't Point Fingers. Take Responsibility. INNOVATION Think Big. Innovate. RESPECT Respect Customers. Respect Each Other. INTEGRITY Act Ethically. Lead by Example. At ML you will work with & learn from an incredible group of people who care about your success as much as they care about their own. Our team is at the heart of what we do and our success starts with you! About the Role: The Compliance Manager will support our information security and compliance programs. This role maintains, monitors, and improves our SOC 2 controls, helping drive security and privacy initiatives, and supports audits and customer compliance inquiries. The ideal candidate has hands-on experience in compliance frameworks, strong organizational skills, and a collaborative mindset to work cross-functionally with IT, Legal, and Sales teams. Basic Qualifications: Coordinate and maintain activities to support SOC 2 compliance across the organization Manage day-to-day compliance operations, including monitoring control effectiveness, collecting evidence, and documenting processes Support responses to customer security questionnaires and due diligence requests Assist with internal audits and external assessments related to SOC 2 and related frameworks (e.g., GDPR, CCPA) Track and help remediate compliance and security risks Collaborate with Sales and Legal to review security-related contract terms and data processing agreements Assist in vendor risk assessments and third-party security reviews Maintain internal documentation for security practices, policies, and compliance initiatives Contribute to security awareness efforts and training initiatives across the organization Basic Qualifications: B.S. Degree in Computer Science or Computer Information Systems desired 5+ years of experience with the implementation and support of an IT Security program Prior experience developing IT Security and Data Governance policies 5+ years auditing experience in any of the following certification standards: GDPR / CCPA, SOC 2, ISO 27001, PCI, COBIT, NIST, CIS, HIPPA. Working knowledge of penetration testing tools, AWS network security and IAM, perimeter security, application firewalls, single sign-on, active directory policy, SIEM, anti-malware, VPN, email security, key management, incident management, risk assessment, log management, change management, backup, and disaster recovery, highly available and distributed infrastructures Working knowledge of data subject privacy rights, PII data handling, data protection and cookie laws, data transmission and encryption requirements, data access controls, data retention and destruction, vendor assessment questionnaires, data privacy impact assessments, data breach, and other cyber incident response Other Characteristics: Strong analytical skills Excellent organizational and time management skills, possessing the ability to prioritize work under pressure of time constraints Superior written and verbal communication skills Excellent presentation skills with prior experience presenting to executives to achieve buy-in Highly productive and resourceful with a “Can do” attitude Strong technical skills Expected Compensation: (Dependent upon Experience) Fixed CTC: 17 LPA - 20 LPA Work Environment: We offer a mix of in-office and hybrid working. Hybrid remote work arrangements are not available for all positions. Please refer to the job posting detail to determine what in-office requirements apply. Where applicable , hybrid WFH days work must be conducted from your home office located in a jurisdiction in which Madison Logic has the legal right to operate. WFH requires availability and responsiveness on a full-time basis from a distraction free environment with access to high-speed internet. Please inquire for more details. Pay Transparency/Equity: We are committed to paying our team equitably for their work, commensurate with their individual skills and experience . Salary Range and additional compensation, including discretionary bonuses and incentive pay, are determined by a rigorous review process taking into account the experience, education, certifications and skills required for the specific role, equity with similarly situated team members, as well as employer-verified region-specific market data provided by an independent 3rd party partner. We will provide more information about our perks & benefits upon request. Our Commitment to Diversity & Inclusion: Madison Logic is proud to be an equal opportunity employer. We are committed to equal employment opportunity regardless of sex, race, color, religion, national origin, sexual orientation, age, marital status, disability, gender identity or Veteran status. Privacy Disclosure: All of the information collected in this form and/or by your application by submission of your online profile is necessary and relevant to the performance of the job applied for. We will process the information provided by you in this form, your CV (including physical and online resume profiles), by the referees you have noted, and by the educational institutions with whom we may undertake to verify your qualifications with, in accordance with our privacy policy and for recruitment purposes only. For more information on how we process the information you have provided including relevant lawful bases (where relevant) please see our privacy policy which is available on our website ( https://www.madisonlogic.com/privacy/ ). Show more Show less

About PhonePe Group: PhonePe is Indias leading digital payments company with 50 crore (500 Million) registered users and 3.7 crore (37 Million) merchants covering over 99% of the postal codes across India. On the back of its leadership in digital payments, PhonePe has expanded into financial services (Insurance, Mutual Funds, Stock Broking, and Lending) as well as adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store which is India's first localized App Store. The PhonePe Group is a portfolio of businesses aligned with the company's vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services. Culture At PhonePe, we take extra care to make sure you give your best at work, Everyday! And creating the right environment for you is just one of the things we do. We empower people and trust them to do the right thing. Here, you own your work from start to finish, right from day one. Being enthusiastic about tech is a big part of being at PhonePe. If you like building technology that impacts millions, ideating with some of the best minds in the country and executing on your dreams with purpose and speed, join us! About The Role Manager - Technology Risk Assessment Team - Technology Risk & Compliance ,Compliance Location - Bangalore The PhonePe Technology Risk and Compliance team plays a critical role in the successful execution of the firm's compliance mission. The Tech Risk and Compliance function ensures the development and maintenance of a strong compliance culture by developing and maintaining program infrastructure that identifies, measures and monitors compliance with applicable laws, regulations and rules that govern our business globally. Compliance teams work closely with Engineering, SREs, business, legal and other functions to provide expertise on regulatory compliance matters; assess and measure compliance and related risks and monitor and test the adequacy of the firm's compliance control environment. Roles and Responsibilities: To review PhonePe products, processes and environment from the perspective of security, regulatory compliance and best practices. To conduct due diligence on new and existing technology implementations across business units at PhonePe. To provide support to internal departments in areas of compliance with regulatory bodies (i.e. RBI, NPCI, SEBI, IRDAI, UIDAI), and implementation of security related requirements from circulars issued by regulators. To collaborate with product/business/engineering teams to implement compliance plans to mitigate risks in the early stage of product development To create control frameworks in guidance of the team and conduct gap assessment against security practices, various regulatory guidelines and compliance requirements Must Haves: 7 to 9 years of relevant work experience, B. Tech Prior people management experience. Strong understanding of ITGC domains and business processes. Experience in managing audits and implementing cyber security controls, NIST, PCI DSS standards, ISMS etc., Certifications such as ISO 27001 / CISA / CISM / CISSP preferred. High ethical standards and are able to work diligently to complete your duties. Analytical mind able to see the complexities of procedures and regulations. Demonstrate the ability to plan and execute projects with minimal management support. PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. Read more about PhonePe .

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. Are you a forward-thinking, high-energy, dynamic driver who wants to get directly involved in the daily business with our international teams, develop your own abilities, and manage responsibility? Join us as a Process Expert- Governance & Enablement Key Responsibilities: SPOC respectively Bridge Head to central IT, CYS and LC for all general Service-related topics. Definition of rules and regulations leading to a standard conform operation of GBS offered IT Services Supporting GBS business Lines for contract and technical related topics around Carve Outs/Ins Ensuring wide-spread know-how about existing IT-portfolio Support & monitoring GBS BLs in implementing Governance defined IT rules & regulations Offer IT related trainings for GBS BLs focusing relevant rules and regulations Management & support of ISO topics for DS services & Products Qualification: Bachelor"™s degree in information technology or a related field. Knowledge of ITIL, COBIT or other IT governance standards and requirements. Strong organizational and project management skills. Proven but basic knowledge in CYS topics, mainly focusing on IT 5-7 years of experience in Information technology with at least 3 years in IT governance or related area. Good communication and networking skills in an intercultural environment and across all management levels Knowledge of ISO 9001, 27001 principles, DevOps, and Project Management methodologies will be an advantage Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Asst. Manager- Governance & Enablement Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Implements IT governance strategy and guidelines, and develops/defines functional specific policies, processes and/or methods for general services for organizational units and the business in responsibility from a technical and governance perspective. SPOC, respectively Bridge Head to central IT, CYS and LC for all general Service-related topics. SPOC for GBS ASP community reg. all IT and CYS related governance and standardization topics. Coordinates resources and monitors and reports progress and milestones regularly to all stakeholders. Offer Governance related trainings for GBS BLs focusing relevant rules and regulations. Management & support of ISO topics for DS services & Products. Represent GCI ASP Lead in the various regional bodies and communities. Qualification: Bachelor"™s degree in information technology or a related field. Strong knowledge of ITIL, COBIT or other IT governance standards and Cybersecurity standards. Bais understanding in the CYS (IT) and identify potential threads Strong organizational and program management skills. 8-12 years of experience in Information technology with at least 5 years in IT governance or related area. Good communication and networking skills in an intercultural environment and across all management levels. Certified Lead auditor/Implementor in ISO 9001, ISO 27001 will be an advantage Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

About The Role : Job Title- DCO Independent Testing, AVP Location- Pune, India Role Description DWS Group (DWS) is one of the world's leading asset managers. Building on more than 60 years of experience and a reputation for excellence in Germany and across Europe, DWS has come to be recognized by clients globally as a trusted source for integrated investment solutions, stability, and innovation across a full spectrum of investment disciplines. We offer individuals and institutions access to our strong investment capabilities across all major asset classes and solutions aligned to growth trends. Our diverse expertise in Active, Passive and Alternatives asset management as well as our deep environmental, social and governance focus complement each other when creating targeted solutions for our clients. Our expertise and on-the-ground-knowledge of our economists, research analysts and investment professionals are brought together in one consistent global CIO View, which guides our investment approach strategically. DWS wants to innovate and shape the future of investingwith approximately 3,500 employees in offices all over the world, we are local while being one global team. We are investors entrusted to build the best foundation for our clients future. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities This role will support India DCO office with activities as outlined below: Lead comprehensive control evaluations and substantive testing to independently assess the design and effectiveness of controls within the newly established Independent Testing Team Assess end to end business processes to identify significant gaps and determine issue root causes. Partners with business units to perform control evaluations, monitoring and testing efforts within Compliance and Operation Risk Framework to identify control gaps as well as opportunities for effectiveness and efficiency improvements. These assessments will include coverage for other regulatory programs including SOX Apply critical thinking skills to substantive testing techniques to thoroughly evaluate the effectiveness of high-risk business processes. Assess and monitor risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices. Collaborate with cross-functional teams and stakeholders to support control design and effectiveness. Foster collaboration with Compliance and Operational Risk Officers on various engagements. This includes developing detailed test scripts, facilitating issue discussions, participating in business meetings, and drafting comprehensive final reports to ensure alignment and clarity. Develop and execute robust control test scripts aimed at identifying control weaknesses, determining root causes, and recommending practical solutions to enhance operational efficiency and control effectiveness. Document test steps and results in a comprehensive and organized manner, ensuring sufficient support and justification for testing conclusions. Maintain a high standard of documentation to facilitate transparency and accountability. Ensure compliance with internal policies, procedures, and external laws, rules, and regulations, while identifying necessary remediation actions. This includes developing and executing testing procedures, meticulously documenting results, drawing informed conclusions, making actionable recommendations, and distributing detailed compliance testing review reports. Lead meetings with business owners at various management levels, delivering testing results and supporting sustainable control enhancements. Identify and capitalize on opportunities to strengthen controls and improve operational efficiency. Your skills and experience Bachelor's degree in information security or related field required, with a preference towards master's degree. Demonstrated ability to analyse complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders. Proficient knowledge of risk management frameworks, regulations, and industry best practices Strong and progressive Auditing or Control Testing experience with current knowledge and understanding of Control testing methodology. Experience developing test scripts, audit programs, or testing templates. 6+ years in information security management and governance, with a focus on control design and testing Detailed experience in ISO 27001, GDPR, COBIT, KAIT, BAIT, etc. and other cyber security frameworks Good to have CertificationsCRISC, CISSP, CISM, CISA, ISO 27001 Lead Implementer/ Auditor Should possess strong communication skills (written/ spoken) Should be skilled to work with minimal supervision. Strong analytical and strategic mindset along with the ability to collaborate with different stakeholders including top management representatives. How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm

Your Role in Shaping Trust & Resilience What You’ll Drive Consultant/ Senior Consultant(s) - (2–5 Years Experience) Key Responsibilities: Execute end-to-end IT audits and assurance engagements across IT General Controls (ITGC), Application Controls, Cloud & Cybersecurity reviews, cloud assessments, and digital control reviews Support assurance projects across frameworks like NIST, ISO 27001, SOC 1, and SOC 2 through control evaluation and evidence analysis. Perform walkthroughs, control testing, and documentation of IT and business process controls Contribute to audit documentation, risk assessments, and walkthroughs with clients. Learn and apply industry best practices across cloud, cybersecurity, and governance domains Role: Deputy Manager (5–7 Years) Key Responsibilities: Execute and manage medium to large-scale SOC Attestation and digital risk assurance engagements with oversight. Conduct risk assessments and design controls aligned with regulations (SSAE 18, ISAE3402, HIPAA, ISO 27001). Evaluate and implement controls across cloud platforms, DevSecOps environments, SaaS, and APIs. Support on cybersecurity assessments, cloud risk and third-party risk engagements. Perform compliance reviews and control testing aligned to regulatory frameworks. Perform maturity assessments, prepare remediation plans, and support clients through audit readiness and attestations. Lead client workshops, prepare deliverables, and coordinate with stakeholders for effective engagement delivery. Collaborate on proposal development and client solutioning efforts. What Were Looking For Regardless of your level, we value: Experience in digital risk, IT audit, cybersecurity, and compliance assurance. Passion for technology, risk, and assurance with a problem-solving mindset Strong understanding of IT control regulatory frameworks and standards (COBIT, NIST, ISO, ITIL, HIPPA etc.) Proficiency in control testing, risk evaluation, and reporting Excellent communication skills—able to bridge technical insights with business need. Certifications like CISA, ISO 27001 LA, CISSP, or cloud security certifications (a plus) Comfort with ambiguity and ability to thrive in fast-paced, client-facing environments.

About Us Booking Holdings India is a Center of Excellence based in Bangalore, India and was created to support the increasing business demands of the Booking Holdings Brands. The Center of Excellence provides access to specialized and highly skilled talent, leading industry best practices, and collaboration opportunities across all of our Brands. As part of our Booking Holdings India team, you will have the opportunity to be a part of the worlds leading provider of online travel, with a mission of making it easier for everyone to experience the world through six-primary consumer facing brands: Booking.com, Priceline, Agoda, KAYAK, OpenTable and Rentalcars.com. About the Role We are now looking for an IT SOx Analyst, Risk & Control (R&C) in our CoE to support R&C with SOx testing of IT Controls. You will be directly working on testing internal controls to support SOX302 attestation. The R&C IT SOx Analyst is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from SOx testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. B. responsible: key areas of responsibility will include, but are not limited to: - Execute and lead testing end to end for the assigned areas: - Design and execute the day-to-day testing activities of IT controls, with a focus on regulatory/compliance (SOx) related risks - Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation - Identify gaps in design and execution, and communicate issues and recommendations to R&C team and control owners - Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required - Collaborate and partner with R&C by providing guidance and ensuring that critical SOx controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives - Collaborate & participate within R&C to continuously improve the R&Cs capabilities and governance from SOx testing standpoint B. skilled: - The ideal candidate will have a strong background in IT risk management, IT frameworks, governance and controls, Segregation of Duties, and ERP audits. - 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment o Strong understanding of design assessment and operating effectiveness assessment of IT controls, and interface controls. o Experience in technology-based product development / DevOps processes, cloud security and other modern day technologies o Understanding of different architecture (SOA and micro services), and ability to review source codes is an added advantage. - Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT - Strong working knowledge of SOx - Ability to multitask and successfully manage multiple priorities and projects - Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team - Excellent communication skills to interact with audit teams, management and other stakeholders effectively - Ability to work effectively in a virtual environment - Fully comfortable working in English, both written and spoken - Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage - Relevant bachelors degree required - Experience working with a Big4 is preferred

Sr. Enterprise Business Analyst responsible for process mapping, data flow analysis, and system integration documentation to support IT portfolio management. Requires 5+ years’ experience and expertise in enterprise modeling tools.

IT Internal Audit Manager Organization:Corporate Functions/Finance Location: Bangalore, India Level:7 - Manager People in the Corporate Function career track contribute to the running of Accenture as a high- performance business through specialization within a specific functional area and grow into internally focused roles by deepening their skills and/or developing new skills within an internal functional area. Finance professionals prepare and interpret financial plans and reports, ensuring accuracy and compliance with applicable financial rules and regulations, including internal financial controls, to mitigate risk for the company. Finance professionals may also shape and execute client deals to maximize the use of Accenture's capital and resources, manage cash and/or liaise with the investor community. Job Description: The Internal Auditor performs audit projects in accordance with Accenture's audit methodology and The Institute of Internal Auditors' (IIA) International Standards for the Professional Practice of Internal Auditing. The Internal Auditor-Information Technology focuses on audit projects that involve cyber/data security, computer operations, and IT compliance. The Internal Auditor effectively executes a wide range of Internal Audit activities in a high quality and timely manner. In their role, they perform activities that include planning and developing work programs, identifying recommendations for continuous improvement in global processes and controls, communicating results, and following up on issues reported. They are also responsible for audit strategy development, organization risk assessment/planning, and completion of special requests for Accenture Management and the Audit Committee. Key Responsibilities Depending on the role/organization the Internal Auditor-Information Technology belongs to and their career level, some or all of the following key responsibilities will apply: Participates in the detailed execution and communication of the risk-based work plan, including Accenture Management and Audit Committee special project requests. Verifies the adequacy of information technology (IT) operating procedures of the company through a systemic program of audits. Assists in development of the Company's annual audit plan and schedule. Manages audit work, including audit work plan, work papers, findings, and associated reports. Prepares and oversees the preparation of audit reports and work papers to ensure adequate documentation exists to support the completed audit and conclusions. Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned. Manages cyber/data security, IT operations, IT service delivery, and compliance audits, as assigned on a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things Identifies, recommends, and reports improvement opportunities for global processes and controls. As appropriate, identifies opportunities for continuous improvement of technology, security, financial, and other processes and evaluation of organization-driven risk. Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner. Prepares well-written and timely audit reports and high quality presentations for leadership and board level reporting. Develops audit skills and establishes/maintains relationships related to the risk areas assigned. Contributes to appropriate skilling of the IA team (e.g., recruiting, training and development, coaching/mentoring, providing career growth opportunities). Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and changes in local, state, and federal laws. Qualification Basic Qualifications: Bachelors Degree (Undergraduate degree in Computer Science/ Electronics/ IT Engineering, Information Systems, Business Administration) Certifications on Auditing and Information Security Domains (i.e. CIA, CISA, CISSP, CCSK) Cloud Security Azure Security (AZ500), AWS Certified Solutions Architect Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Minimum of 12 years experience in information technology auditing, combined audit/IT audit, or relevant information security or information technology roles. Preferred Qualifications: Big 4 experience Experience working in a global Internal Audit function Cyber security experience Strong working knowledge of operational, compliance and IT auditing techniques Broad IT knowledge in infrastructure technologies (networking, data centers, servers, etc.), application development and support, and emerging technologies. Experience with Windows and UNIX operating systems and Microsoft Office 365 Sarbanes-Oxley project experience, familiarity with COSO/COBIT framework Professional Skills: Excellent verbal and written communication skills; interpersonal and presentation skills Proven management and organizational skills Ability to train, develop, and motivate team members Demonstrated leadership in professional setting; either military or civilian Demonstrated teamwork and collaboration in a professional setting; either military or civilian Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

We are looking for a visionary Development Manager to lead the definition and continuous evolution of the KTLO (Keep the Lights On) Framework. This role involves building the foundational architecture, governance models, and tooling required to support seamless operations, risk mitigation, and operational efficiency across enterprise banking systems. You will define and evolve KTLO governance frameworks and operating models to standardize production support across all business units. You will establish best practices in service management (ITIL), observability, automation, and performance tracking. You will implement cross-functional workflows, RACI models, and runbooks for consistent operational response. You will drive tooling strategies for monitoring, incident management, logging, and knowledge base automation. You will align SRE and DevOps practices into KTLO operations for better scalability and resilience. You will Partner with assurance, DevOps, and platform teams to ensure traceability, auditability, and SLA adherence. You will lead framework reviews and operational readiness assessments across major technology initiatives. You will drive platform-wide adoption of proactive issue detection, self-healing mechanisms, and AI/ML-based alerting. You will Champion a culture of continuous improvement and operational maturity using KPIs and service metrics. SKILLS You should have 14+ years of experience in IT service delivery, platform operations, or reliability engineering, with 5+ years in leadership roles. You should have strong expertise in service management frameworks (ITIL, COBIT), DevOps, and reliability engineering. You should have proven experience designing and implementing KTLO or enterprise support governance frameworks. You should have a deep understanding of operational toolchains like ServiceNow, AppDynamics, Splunk, Jira, and automated remediation tools. You should have an experience with incident management, problem analysis, postmortems, and RCA processes. You should have a knowledge of enterprise infrastructure, cloud platforms (AWS/Azure/GCP), and CI/CD pipelines. You should have an exceptional cross-functional leadership, communication, and documentation skills. to being part of an exciting culture and product evolving within the financial industry. Collaborate effectively and proactively with teams within or outside Temenos. Challenge yourself to be ambitious and achieve your individual as well as the company targets SOME OF OUR BENEFITS include: Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second month Civil Partnership: 1 week of paid leave if youre getting married. This covers marriages and civil partnerships, including same sex/civil partnership Family care: 4 weeks of paid family care leave Recharge days: 4 days per year to use when you need to physically or mentally needed to recharge Study leave: 2 weeks of paid leave each year for study or personal development

Overview: Roles and Responsibilities: The SOX ITGC Auditor is responsible for ensuring that the SOX processes support compliance of the internal controls for financial reporting. The SOX ITGC Auditor will perform assurance procedures to assess the design and effectiveness of ITGC, perform quality assurance over existing control, and help prepare reporting for business leadership. Education and Experience Bachelors degree or higher in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience. 4+ years large public company internal and external auditing, with emphasis on IT auditing in large public companies with complex IT hybrid environments and/or large accounting firms with experience auditing a complex IT client base. Strong IT audit program and practices experience. Big 4 IT Audit experience required. Strong understanding of the general computer control areas and IT governance frameworks (e.g., COBIT), Sarbanes Oxley, and COSO framework. Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database). Ability to work independently Strong analytical, interpersonal, and leadership skills with orientation toward process improvement Responsibilities: Duties and Responsibilities: Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines. Requirements: Duties and Responsibilities: Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines.

Client interface for understanding the SOX IT General Controls as applicable to Application &Infrastructure operations Conducting assessment of existing processes and align them to COBiT 2018 standard. Conducting TOE and TOD for ITGCs Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environment. Identify process exceptions and risk with respect to materiality defined by the SOX controller. Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports Create Process Summaries, Compliance runbooks and RCMs. Define RACI for Control owners, executioners etc. Work with Senior Management of the organization and business teams in getting assertions. Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined. Provide strategic guidance& consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation Conducting regular training for technical teams for SOX control implementation & audits Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory) CGEIT, COBiT Experience & COSO ERM execution (preferred) Excellent understand & experience in IT applications &infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc. Excellent understanding of IT Service Management processes. ITIL certified. Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps Should have experience in executing end-to-end SOX ITGC audit life cycle Exposure to other regulatory compliances such as Data Protection Act Candidate should have client facing experience B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: CISA/CGEIT/CISM/CISSP ISO 27001 Implementer, Lead Auditor ITIL V3.0