977 Cobit Jobs - Page 36

Service Manager Finance We are looking for a skilled and experienced Service Manager Finance to lead the end-to-end delivery and continuous improvement of finance-related IT services. This role involves managing complex SAP environments (SAP FICO & S/4HANA), ensuring seamless global operations, and supporting integration across financial platforms, including accounts payable and receivable systems. Key Responsibilities Ensure day-to-day operational excellence of finance IT services, including monitoring, issue resolution, and service performance. Manage SAP FICO and S/4HANA service delivery and integrations with related systems such as treasury, tax compliance, and vendor invoice management tools. Lead continuous service improvement initiatives to enhance service quality, automation, scalability, and compliance. Oversee incident, change, and request management to minimize impact and maintain financial service continuity. Collaborate closely with global business stakeholders and internal teams to align IT service operations with evolving financial processes and compliance standards. Measure and report on SLAs, OLAs, KPIs, and operational health of services; ensure proactive identification and resolution of risks and issues. Act as a subject matter expert for SAP finance operations, ensuring proper governance, documentation, and service ownership practices. Support financial operations by maintaining up-to-date service documentation, including SOPs, knowledge articles, and support guides. Assist in budget planning and control related to finance IT services in coordination with finance and procurement teams. Lead service onboarding in alignment with solution design teams and ensure smooth transitions into operational environments. Required Qualifications University degree in Computer Science, Information Technology, or related engineering field. Minimum 6 years of experience in IT service delivery, with at least 25 years hands-on experience in SAP Finance (FICO) and S/4HANA environments. Proven experience in managing global IT operations, including accounts receivable/payable systems and SAP integrations with third-party financial solutions. Solid understanding of ITSM/ITIL practices; certifications in ITIL, COBIT, or DevOps are a plus. Familiarity with compliance, security, and governance practices related to financial systems. Strong skills in vendor management, partner collaboration, and cross-functional stakeholder engagement. Key Competencies Expertise in SAP finance modules and integration architecture. Strong communication, leadership, and stakeholder management abilities. Analytical thinking and a proactive approach to problem-solving and risk mitigation. Experience with budgeting, cost tracking, and service-level reporting. Ability to thrive in high-pressure, global enterprise environments. (ref:hirist.tech) Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Security Strategy, Risk, Compliance and Resilience – Technology Consulting – Senior As part of our EY Strategy, Risk, Compliance and Resilience (SRCR) Technology Consulting team, you would work on various SRCR projects for our customers across the globe. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY and GDS within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Senior Security Consultant with expertise in cyber / information security, risk and controls concepts. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Engage in Cyber Strategy & Governance, Cyber Risk & Compliance, Cyber Resilience, Cyber Transformation and Co-Sourcing, Application & Network Security engagements Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress. Execute the engagement requirements, along with review of work by junior team members. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Build strong internal relationships within EY Consulting Services and with other services across the organization Contribute to people related initiatives including recruiting and retaining Cyber Transformation professionals Maintain an educational program to continually develop personal skills of staff Understand and follow workplace policies and procedures Building a quality culture at GDS Help senior team members in performance reviews and contribute to performance feedback for staff/junior level team members Manage the performance management for the direct reportees, as per the organization policies. Foster teamwork and lead by example; training and mentoring of project resources Participating in the organization-wide people initiatives Skills And Attributes For Success Hands-on experience of more than 5 years with key components of cybersecurity including (but not limited to): Vendor/3rd Party Risk Management & Assessment Cyber Strategy & Governance, Cyber Transformation, Cyber Dashboarding Regulations/standards such as ISO 27001, PCI DSS, HIPAA, HITRUST, GDPR, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53 Business Continuity & Disaster Recovery Must have experience in working in client facing roles, interacting with the third parties, assessing different kinds of environments (IT and non-IT) and ability to apply cyber security concepts in all these sectors. Experienced in creation and review of security policy/procedures, and in performing risk assessments. Good to have experience in assessing ITGC requirements across various industries including both Cybersecurity and resilience requirements. Should have a good understanding of VAPT process, common application security vulnerabilities, exploitation techniques and remediation measures. Basic understanding of Network Security and network architecture diagram reviews, access and perimeter control, vulnerability management and intrusion detection, firewall rule-based reviews. Good understanding of logging and monitoring tools (SIEM). Knowledge in any one of the SIEM tools is a plus. To qualify for the role, you must have: BE - B. Tech / MCA / M. Tech/ MBA with background in computer science and programming. More than 5 Years of relevant experience. Strong Excel and PowerPoint skills. Should be proficient in leading medium to large engagements and coach junior staff. Ideally, you’ll also have CISSP, CISA, CISM, CEH, ISO 27001 Lead Auditor and Lead Implementer. Project management skills. What We Look For A team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively. As a risk management generalist at PwC, you will provide advisory and practical support to teams across a wide range of specialist risk and compliance areas. Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow. Skills Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: Respond effectively to the diverse perspectives, needs, and feelings of others. Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems. Use critical thinking to break down complex concepts. Understand the broader objectives of your project or role and how your work fits into the overall strategy. Develop a deeper understanding of the business context and how it is changing. Use reflection to develop self awareness, enhance strengths and address development areas. Interpret data to inform insights and recommendations. Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements. The NIST experienced Senior Associate will play a vital role in identifying cyber risks and describing the desired outcomes. The ideal candidate should have a strong understanding of NIST CSF (NIST Cybersecurity Framework) and other NIST and industry recognized standards, possess excellent communication and organizational skills, and be able to work independently as well as part of a team. The NIST Experienced Senior Associate is expected to assist in the following activities: Independently perform NIST CSF Maturity Assessments in collaboration with the client’s sponsor, identify and engage with stakeholders across different functional areas, including but not limited to the business, IT, Security, Legal & Compliance, and HR. Understand clients’ security organization, including roles and responsibilities, interactions with other enterprise functions and role of third parties, etc. Participate or facilitate workshops and/or individual interviews to identify, document gaps and current state of Cybersecurity. Review IT and security architectures, design patterns, and other technical documentation. Draft assessment reports including Executive Summary, observations/recommendations/peer comparisons, benchmark etc. Suggest Cybersecurity strategic initiatives to achieve future/target state. Create a roadmap for identified cyber initiatives. Conduct NIST CSF, NIST 800-53, NIST 800-171, ISO, CRI etc. gap assessments or compliance testing. Perform evidence validation to ensure compliance. Define testing and sampling procedures. Develop SOW’s, RFP’s in alignment to client’s requirements and lead the CoE. Lead business development efforts in alignment to NIST CoE requirements. Years Of Experience 4-8 years of Information Security industry experience and min 3+ relevant experience in NIST CSF Maturity Assessments, ISO,FFIEC, Cloud security CRI (desired). Position Requirements Conduct Maturity assessments based on NIST frameworks. Perform gap assessments and Control testing using NIST standard/frameworks. Good understanding of compliance standards/frameworks like ISO 27001/27002, NIST, COBIT, SOX, GLBA, SSAE16/SOC 2, etc. will be an advantage. Excellent written and oral communication skills, can express thoughts clearly, knows how to listen, take detailed notes and contribute in a team environment. Desired Knowledge NIST CSF, NIST 800-53, NIST 800-171, Cloud security and other industry standards such as ISO, PCI, HITRUST etc. Excellent leadership, teamwork and collaboration skills. Ability to quickly acquire and utilize knowledge on new technologies and solutions, emerging threats and vulnerabilities. Desired Skills Excellent MS-Office skills Results oriented, high energy, self-motivated. Flexible to learn cross-skills Professional and Educational Background MCA / BE / B Tech / MS (Field of Study: Computer and Information Science, Information Cybersecurity, Information Technology, Management Information Systems). Certification(s) Preferred: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC). Additional Information Travel Requirements: Not Applicable Line of Service: Advisory Industry: Consulting Must be ready to work on-site full-time (timings will be 2 pm or sooner until 11 pm IST) Minimum Years Of Experience 3 - 8 years Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech - Manager - IT Internal Controls The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional IT Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, walkthrough sessions, trainings etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech - Manager - IT Internal Controls The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional IT Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, walkthrough sessions, trainings etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Overview Founded in 1988 and headquartered in Atlanta, Georgia Trimont (www.trimont.com) is a specialized global commercial real estate loan services provider and partner for lenders and investors seeking the infrastructure and capabilities needed to make informed, effective decisions related to the deployment, management and administration of commercial real estate secured credit. We do this with a team of 1100+ extraordinary Team Members who serve a global client base from offices in Atlanta, Bengaluru, Charlotte, Dallas, Hyderabad, Kansas City, London, New York and Sydney. We empower our skilled global teams by equipping them with the necessary knowledge and advanced technology, as well as fostering a culture driven by values. This approach helps our teams excel and build meaningful client relationships, while providing the highest quality service and feeling proud of the work they do. Trimont is an innovative firm where visionary professionals come to learn, grow, and thrive with colleagues driven by curiosity and collaboration. Learn: We believe ongoing learning is critical and are focused on providing a work environment where all team members can take ownership of their careers. Grow: We work alongside the largest institutional lenders in the world, overseeing the most significant projects in the industry. This unique opportunity allows us to broaden our skillset and develop our abilities by tackling some of the industry's most challenging and exciting endeavors. Thrive: Our firm is a place where ethics and excellence meet to create an experience that matches our capabilities. There are no limits to what we as team members as an organization, can achieve together. Job Summary The Director of IT Operations will oversee infrastructure and end-user support for Trimont's two office locations in Hyderabad and Bengaluru, as well as for remote employees throughout India. As operations expand in India and additional infrastructure resources for cloud engineering are added, this role may include direct reports. Responsibilities include coordinating and directing contracted help desk services and nurturing relationships with key outsourced IT service providers. Additionally, this position will primarily manage global financial processes related to IT services, hardware, and software. The central aim of this role is to ensure a reliable, resilient, secure, and high-performance computing environment for team members in India. Responsibilities Deliver exceptional customer service to team members through an outsourced help desk. Develop and evaluate help desk metrics for ongoing enhancements. Oversee the technological components of office relocations and new office setups in India. Acquire and maintain essential hardware to support business operations, including laptops, servers, and networking equipment. Address infrastructure security vulnerabilities within established Service Level Agreements (SLAs). Partner with the security team to implement new security initiatives. Negotiate contracts with key Information Technology (IT) infrastructure vendors. Manage relationships with IT infrastructure vendors. Uphold and adhere to the IT infrastructure roadmap. Plan, forecast, and oversee technology operational expenditures. Ensure prompt entry of technology expenses into the payables system. Required Qualifications Bachelor's degree in Information Technology, Computer Science, Information Systems, or a related discipline. 7+ years of experience in IT operations. Familiarity with IT governance, risk, and compliance (GRC) frameworks, Information Technology Infrastructure Library (ITIL), Control Objectives for Information and Related Technologies (COBIT), and cybersecurity concepts. Knowledge of IT budgeting, procurement, and invoice processing. Demonstrated success in managing and planning IT operations. Established success in managing vendor relationships. Strong analytical, problem-solving, and communication abilities. Capable of working independently and collaboratively. Attention to detail with a dedication to producing high-quality work. Skilled in Microsoft Office and Microsoft technologies and platforms, including Azure. Experience in highly regulated sectors, such as financial services. Trimont is an equal opportunity employer, and we’re proud to support and celebrate diversity in the workplace. If you have a disability and need an accommodation or assistance with the application process and/or using our website, please contact us. We are proud to maintain a drug-free policy, ensuring that our community is a secure and productive space for all our team members. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech - Manager - IT Internal Controls The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional IT Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, walkthrough sessions, trainings etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech - Manager - IT Internal Controls The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional IT Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, walkthrough sessions, trainings etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech - Manager - IT Internal Controls The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional IT Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, walkthrough sessions, trainings etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech - Manager - IT Internal Controls The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Protech Tech team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of areas of IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, IT and Digital Transformations (including ERP and Cloud transformations), while enabling technology to better manage risk. As a member of our team, you will have the chance to work with industry leaders and help transform businesses by tackling the most complex challenges with our clients. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. You will be leveraging emerging technologies like AI, ML, to build and enhance new solutions and actively work in building multiple tools and assets for efficient and effective client delivery. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional IT Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of IT Risk. Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, walkthrough sessions, trainings etc. for existing and new clients. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 5-7 years of related work experience At least 3-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Your work profile We are currently hiring for our Internal Audit Team. In this role, you will be expected to build strong working relationships with both team members and clients, consistently aiming to exceed client expectations. Assist client in identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement Assist in the selection and tailoring of approaches, methods, and tools to support service offering or industry projects Facilitate use of technology-based tools or methodologies to review, design, and/or implement products and services Understand clients' business environment and basic risk management approaches Project Management : Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions Play substantive/lead role and engagement planning, economics, and billing Generate innovative ideas and challenge the status quo Participate in proposal development efforts Participate in "add-on" sales to client Membership and visibility in professional & civic organizations Identify opportunities to cross-sell other services Build and nurture positive working relationships with clients with the intention to exceed client expectations Desired qualifications Certifications of CISA, CISSP, CISM, ISO27001 preferred B.E/B.Tech in Computer Science, Information Technology or related fields. Chartered Accountant and/or MBA with Finance/IT Must have 1 - 2 years of experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits Knowledge of ERPs like SAP / OFIN / JDE / etc and their native application controls will be preferred. Must have hands on experience on regulatory requirements / international standards (SSAE / ISAE / SOX, PCI, ISO 27001) and good practices (COSO, COBIT) relating to information security. Must have Excellent English skills, excellent presentation skills, excellent soft-skills Location and way of working. Base location: Chennai Must have 1 2 years experience This profile involves frequent travelling to client locations. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Your role as a Consultant We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Consultants across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation. Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Client. Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviors and attitudes to become more inclusive.

Role Description Role Proficiency: Independently develops error free code with high quality validation of applications guides other developers and assists Lead 1 – Software Engineering 3–5+ years of experience in IT governance, risk, compliance, or technical writing within an IT environment. Strong understanding of IT frameworks and standards such as ISO 27001, NIST, COBIT, ITIL. Excellent written and verbal communication skills, with a keen eye for detail and clarity. Proficient in policy writing, documentation standards, and collaboration tools (e.g., MS Office, Confluence, SharePoint). Ability to work independently and manage multiple priorities in a dynamic environment. Experience with risk assessment or audit processes is a plus. Skills It Security,Technical Writing,Excellent Communication Show more Show less

Position Overview Job Title: Information Security Risk Specialist , AVP Location: Mumbai, India Role Description An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The team has a global footprint in Frankfurt, Singapore, London, Mumbai and USA. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Provide data and analytics reporting to support the team in monitoring the Information Security and Technology Risk Appetite, breaches and remediation. Where required support the implementation of automated data and analytics reporting process. Support the team delivery of Non-Financial Risk Management (NFRM) priorities such as risk & control assessments, scenario analysis, risk appetite. Monitor and challenge 1LOD Risk and Control Assessments (including results of 1LOD control testing/assurance). Perform 2LOD control assurance through targeted reviews of areas of concern. Gain an understanding and be able to articulate key Information Security and Technology regulatory requirements across APAC/MEA and their impact and implementation into the Information Security and Technology Risk Framework. Your Skills And Experience University degree (Computer Science, Business Administration or equivalent). Majors in Information Security and / or Risk Management are a plus. Experience (4+ years) in Information Security or Information Technology with experience in the Finance industry and/or a major Technology or Consultancy company preferred. Some level of technical understanding and training either as a data analyst, developer, business analyst or project manager. Knowledge of Information Security and Technology industry regulatory standards and/or Risk Frameworks (e.g. EBA Guidelines ISO / 27000 Series, COBIT 2019, DORA) are a plus. Relevant professional certifications e.g. CISSP, CISA, CISM, CRISC, ITIL, ISO27001 Lead Auditor or similar are a plus. Experience of working in large global teams yet comfortable working independently without day-to-day oversight and steer. Strong communication skills (English required). How We’ll Support You Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment. Show more Show less

The Internal Auditor II will coordinate, budget, and execute audit plans designed to identify risk, to mitigate loss, and to protect the people, assets, and cash flow of the company. ESSENTIAL DUTIES AND RESPONSIBILITIES Assist manager to develop audit scope using risk assessment techniques. With appropriate approval, create or revise audit programs where necessary to accomplish audit objectives. Coordinate and lead site and project reviews (time and resource budgeting) with the Internal Audit Manager, external auditors, and regulatory agencies. Conduct audits in accordance with approved audit programs while effectively managing time budgets. Prepare audit workpapers documenting each audit step in the audit program. Ensure information is presented clearly, concisely, accurately, in a logical format, and has appropriate audit conclusions. Express ideas and information in a clear and concise manner. Prepare written presentations to management at the conclusion of an audit, discussing deficiencies, recommending corrective actions, and suggesting improvements in internal controls. Maintain updated knowledge of rules, regulations, and standards in the fields of internal audit, accounting, information technology and/or other related matters of interest to the department. Provide timely feedback to the in-charge or Internal Audit Manager about the status of the audit and as issues arise. Elevate real and emerging business control issues/problems to the Internal Audit Manager and local management if needed. Educate functional management in business risk concepts and suggest cost effective approaches to mitigate risk. Complete periodic education to stay informed of emerging issues and maintain a degree of professionalism. Review and compliment external auditing roles and practices. Train and educate other auditors in knowledge of audits using the COSO and/or CobIT frameworks. Demonstrate understanding of Jabil s goals business strategy and key industry trends and issues in the markets. Use internal and external data to understand the underlying causes / drivers of issues and opportunities. Gain a basic understanding of the roles and processes of other functional departments. Ability to travel internationally. Adhere to all safety and health rules and regulations associated with this position and as directed by supervisor. Comply and follow all procedures within the company s various administrative policies including but not limited to security and non-disclosure policies. Ensure all sensitive and confidential information is handled appropriately. May perform other duties and responsibilities as assigned. KNOWLEDGE REQUIREMENTS Understanding of internal audit standards, procedures, techniques, risk assessment practices, and frameworks such as COSO. Understanding of accounting principles and techniques. Other specialty areas (IT, security, fraud investigation, etc) are additionally preferred. Basic critical thinking and analytical skills to help evaluate information received and identify critical trends in the information being reviewe'd. Understanding of the technical aspects of accounting and financial reporting. Proficiency with the Microsoft Office suite of products. Familiarity with AuditBoard and SAP is preferred. EDUCATION EXPERIENCE REQUIREMENTS bachelors Degree required preferably in Accounting or related field. Minimum 3 - 5 years related work experience related to audit, accounting, finance and operations. ACA, CA, CPA, CIA, or equivalent preferred. Or an equivalent combination of education, experience and/or training

Perform the BCM lifecycle activities for the Allianz Technology entity, including business impact analysis (BIA), risk identification and assessment (RIA), response strategies, response planning, exercise and testing Regularly participate in reviews and recuring interactions being undertaken by Central Protection Resilience Office, including reporting resilience results to Central Protection Resilience Office. Interact with local players from Infrastructure, Applications and other key internal stakeholders in drafting and updating DR Plans and IT BCPs; in performing DR tests. Create awareness of Protection Resilience and associated responsibilities within AZT entity Upon request, provide advice to the local management and to the local information/service/process owners on protection and resilience aspects. Ensure remediation of all audit findings (if any) within timelines. Keep up to date on the relevant company policies, standards and processes. Professional experience in BCM, ITSCM or Crisis Management or any other relevant resilience discipline Internal Strong IT background with knowledge of infrastructure and/or business application layers. A good understanding of cloudification is a strong plus. Understanding of Information technology systems and their connection in relation to resilience. Basic knowledge and understanding of relevant local and international regulatory environment and standards such as: DORA, ISO Standards, ITIL, COBIT etc Preferred but not mandatory. Mandatory skills Strong Programming Languages: .NET (C# or VB.NET), Scripting (PowerShell, VBScript), Angular "One Identity manager implementation experience / customer connector build /Integration with 3rd party target system

Introduction In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology. Your Role And Responsibilities Experience in Internal Control, General Computer and Application Control Audit background. Knowledge and experience in various Information security standards / regulations / best practices (ISO-27001, COBIT, PCI-DSS, GDPR, HIPAA, SOC2, etc. Knowledge of efficient way to protect the system, networks, software, data and information systems against security threats. Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, data loss prevention and privacy Preferred Education Master's Degree Required Technical And Professional Expertise Good understanding of, and experience with Information Risk Management, IT Security and Compliance and Security Controls and Audit. Understanding of internal and external IT security standards, SOX, PCI, SOC2/1, ISO27001 standards and relevant legal compliance aspects Good understanding of cloud security requirements and third-party control assurance. Ability to interface with different groups (Third parties, Business and IT) internal and external to IT (security) and to network globally across Group businesses, as well as with external groups. Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, data loss prevention and privacy Preferred Technical And Professional Experience Knowledge of Data Security Standards: PCI DSS, Privacy Principles Driving Platform / Application security and compliance Ability to foresee and identify mitigation strategies for Risks & Analytical and problem solving skills Show more Show less

YOUR ROLE. Responsibilities include but not limited to: Assess technology, cybersecurity, and privacy risks within client environments and the related controls and provide practical remediation plans Conclude on the business impact to the organization as it relates to identified cybersecurity, technology, and/or privacy risks Manage multiple engagements while maintaining company quality standards Work with clients in a broad array of industries including information technology, financial services, retail & consumer products, pharmaceuticals, electronics, manufacturing, media, and government contracting etc. Understand clients’ organizations and provide value-added solutions and best practices Proactively manage client issues and expectations. Understand and appreciate the firm’s model of balancing client needs with profitability Review and evaluate client IT environment including IT systems, processes, and controls to ensure compliance with prevailing regulatory laws and requirements Work with clients to test for compliance with various prevailing regulatory laws, requirements, and standards including but not limited to Sarbanes-Oxley Act of 2002, NYDFS, GDPR, CCPA, PCI DSS, ISO 27001, HIPAA, CMMC, etc. Ensure engagement reporting observations and recommendations are based on a complete understanding of the process, circumstances, and risk Prepare formal written reports providing recommendations for management to strengthen and improve operations in addition to identifying cost or efficiency savings Identify areas for risk transformation and automation to assist clients with reducing the cost of compliance Act as a professional mentor and coach to junior team members, participating in the performance management cycle Participate in business development activities such as professional networking, proposal development, etc. YOUR EXPERIENCE. The successful candidate will have: A minimum of seven (7) years of experience with the following: Working knowledge of Cloud Security Framework, General Data Protection Requirement (GDPR), COBIT 5, PCI DSS, ISO 27001/2, HIPAA, California Consumer Protection Act (CCPA), NIST 800-171/800-53/NIST 800-37 required Background and understanding of the risks and controls in technologies such as web, cloud, client/server, open systems architecture, data warehousing, and imaging Proficient understanding of Cloud security, Identity and Access Management, ERP, Operating Systems, Databases, and Network Infrastructure components Knowledge of risks and controls in emerging technologies based on Blockchain, Internet of Things (IoT), and Artificial Intelligence is a plus Experience managing simple and complex information technology internal audits Experience managing team of various sizes across geographical boundaries Exceptional oral and written communication skills Demonstrated ability to manage client engagements and supervise staff Bachelor’s Degree required, Master’s Degree preferred CISA, CISSP, CCSK, CIPP, or CRISC required Show more Show less

Job Opportunity: Protection & Resilience Expert at Claidroid Technologies Be Part of the Digital Transformation Revolution! At Claidroid Technologies, we’re transforming enterprises globally through cutting-edge solutions in Enterprise Service Management and Enterprise Security . With expertise across ServiceNow , Identity and Access Management (IAM) , and Digital Archiving , our dynamic teams drive innovation and impact in India, Helsinki, and the USA. If you're passionate about Protection & Resilience Expert and ready to contribute to groundbreaking projects, this is your chance! 🔍 Position: Protection & Resilience Expert 📍 Location: Pune/TVM 💼 Mode: Hybrid (Flexibility with Work-from-Home and On-Site Work) Your Role: We are seeking a proficient Protection & Resilience Expert to join our team. The ideal candidate will have 5+years of experience as Expert, with a strong backgroud in IT background with knowledge of infrastructure. An Crisis Management job typically involves knowledge of infrastructure and/or business application layers. Key requirements/skills/experience : • 5 years professional experience in BCM, ITSCM or Crisis Management or any other relevant resilience discipline Internal. • Regularly participate in reviews and recuring interactions being undertaken by Central Protection & Resilience Office, including reporting resilience results to Central Protection & Resilience Office. • Strong IT background with knowledge of infrastructure and/or business application layers. A good understanding of cloudification is a strong plus. • Understanding of Information technology systems and their connection in relation to resilience. • Basic knowledge and understanding of relevant local and international regulatory environment and standards such as: DORA, ISO Standards, ITIL, COBIT etc. Preferred but not mandatory. • Ability to work independently with minimal supervision, organized and results-focused. • Robust knowledge and experience in project management • Academic background or degree in Computer science, engineering, economics or similar disciplines. • Proven command of the English language - verbal and written. • Excellent communication skills, with the ability to convey compliance and corporate governance issues effectively. • Proficiency in Microsoft Office products. Why Join Claidroid Technologies? Work with global teams on innovative, large-scale projects. Thrive in a dynamic, fast-growing company with a commitment to professional growth. Enjoy the flexibility of hybrid work arrangements . Collaborate with some of the best minds in Enterprise Security and Service Management . Ready to Shape the Future? We’re excited to meet professionals who are as passionate about technology and transformation as we are. Show more Show less

Senior Associate IT Risk Advisory Experience: 3 to 15 years of post-qualification experience in risk advisory/ related internal audit/ IT SOX audit experience preferably in big 4 or related business experience Qualification: Certified Information Systems Auditor/ Bachelor of Engineering/ B.Tech/ Masters in Business Administration with major in Information Technology & Systems Shifting timings: 2pm to 11PM Mode: WFO Location- Bangalore (Brookefield/ JP Nagar) Responsibilities: Manage a portfolio of engagements, by leading a team of Assistant Manages, Senior Associates and Associates/ Analyst Ensure the work delivered is of high quality through spot checks, periodic reviews, quality review/ assurance process Identify areas requiring improvement in the client's business processes to enable preparation of recommendations Improve engagement productivity and identify opportunities for improving client service Proactively engage with stakeholders to identify, develop and implement new work areas and enable growth of existing client work Ensure compliance with engagement plans and internal quality & risk management procedures of the firm Anticipate and identify engagement related risks and escalate/manage issues as appropriate on a timely basis Demonstrate industry expertise (detailed understanding of the industry, trends, issues/ challenges and leading practices) Preparation of reports/ deliverables/ status updates/ audit committee presentations etc. Demonstrate an application & solution-based approach to problem solving technique Develop strong working relationships with client and on shore stakeholders Actively establish & strengthen client (functional heads & key influencers) and internal relationships Assist Associate Directors and Directors in developing new methodologies, internal initiatives, marketing collaterals, and business proposals etc. Actively manage engagement budgets and ensure all stakeholders are updated timely Lead the charge in developing business proposals and new solution / methodology development Contribute to knowledge management sessions within the practice Should have good written, communication and interpersonal skills Demonstrate the ability to effectively discharge supervisory responsibilities Manage larger teams – motivate, counsel & develop junior colleagues Demonstrate ability to conceptualize & translate lessons learned on client engagements into relevant training sessions for junior colleagues and contribute to learning & development initiatives Provide real-time constructive verbal feedback to team members and facilitate timely completion of engagement Contribute to effective teamwork in internal engagement situation Support knowledge sharing efforts and continually improves processes so that the work team can capture and leverage knowledge Create a positive learning culture, coaches, counsels and develops team members Mentor Assistant Managers, Senior Associates and Associates/ Analysts within the practice Skills Candidates should have proficient knowledge (both in leading and execution) in the areas of – IT General Controls testing (ITGC), including platforms, ERP applications like SAP and databases for – IT General Controls testing for Internal Audits (IA), Sarbanes-Oxley (SOX) 302, 404 audits, Third party reporting review e.g. SOC1, SOC2 etc. Governance, risk and compliance (GRC) Gaining an understanding of the clients' IT applications and infrastructure to determine the effectiveness of the control environment through performing and reviewing process walkthroughs with – Experience of Windows, Oracle, SQL or UNIX environments Knowledge of IT industry practice methodologies (e.g. COSO, COBIT, ITIL) is preferable Awareness of internal auditing standards issued by IIA, ICAI & ISACA Data analytics support for Internal Audits (IA), Sarbanes-Oxley (SOX) 404 assessments and other advisory services Microsoft office tools (Word, Excel, Access, Power point etc.) with demonstrated ability to coach young team members on the respective tools. Show more Show less

Role- Internal Auditor Experience- 3+ years Location- Ahmedabad Female candidates only Roles & Responsibilities: The Internal Auditor will execute internal audits under the direction of the Internal Audit Senior Manager and Zone Audit Director. The Senior Internal Auditor based in Ahmedabad will perform audits cross multiple zones, including Europe, Middle East and Africa, Asia pacific, and potentially certain global audits. Key responsibilities include:  Support the Internal Audit manager to conduct the audit engagements, including the budgeting and staffing assignments for the different areas of review, ensuring that adequate documentation and timely execution of the tasks to successfully complete each project.  Lead business process reviews to evaluate the design and operating effectiveness of internal controls over the business cycles, as well as the efficiency and effectiveness of operations;  Lead reviews to assess the accuracy of the financial statements.  Lead reviews to evaluate IT applications and the adequacy/efficiency of accounting, financial and operating procedures established for IT control purposes.  Determine compliance with established Finance and/or IT policies and Sarbanes Oxley legislation.  Prepare reports based upon audit results, audit documentation, and management action plans defined to address observations noted.  Maintain business management timely informed on audit progress, including road blocks, and observations via update meetings and closing conferences.  Update Audit Manager and Zone Audit Director as needed on audit progress and potential issues in a timely manner.  Be part a global Internal Audit Competency Center of selected business process. As such, work closely the Internal Audit Manager responsible for the area of expertise to analyze issues with global/regional/local impacts, develop trend analysis and compile best practices to be shared through the organization for adoption.  Assess the efficiency and effectiveness of actions implemented to address audit issues. Communication :  Communicate effectively verbally and in writing by adopting appropriate communication style to individuals at all levels of the organization and remaining open to disagreement or new ideas.  Articulate understanding of business areas under review, and demonstrates thorough test work and solid rationale for potential audit issues.  Update Audit Manager and Zone Audit Director as needed on audit progress and potential issues in a timely manner. Leadership:  Develop an open and honest working relationship with those being audited and maintain a professional approach at all times.  Share best practices, tools and testing methodologies with other team members, and contribute to departmental projects.  Will be leading an audit team, and will be the key point of contact with those being audited.  Displays leadership and project management skills to complete quality work on time with budgeted resources. Qualifications & Skills:  Undergraduate degree in Finance/Business Administration, Accounting and/or in Computer Science, MIS, or other relevant field.  3-4 plus years of professional experience in an audit related role within a Big-4 accounting firm and/or large corporation’s internal audit department preferred. Additional finance experience would be a plus.  General knowledge of risk/control frameworks (COSO, COBIT) required.  A professional accounting/audit certification (CPA, CIA, etc.) or IT (CISA, CIA, CISM, etc.) certification preferred.  FMCG/Manufacturing experience preferred.  Sarbanes-Oxley experience preferred.  US GAAP/IFRS experience preferred.  SAP knowledge preferred.  Goal-oriented and outgoing with strong interpersonal and teamwork skills.  Strong written and verbal communication skills.  Ability to think and work analytically.  Ability to develop strong and lasting relationships with all levels of management.  Willingness to travel (50%).  Must fluently speak English (Asian/European languages are plus). The qualified candidate must be able to work with multiple organizations and teams, consistently meet deadlines and work well under time constraints and be able to quickly learn and understands diverse business areas/systems. Show more Show less

Job Description #KGS We are recruiting for Assistant Manager / Manager in the Technology M&A team. In this role you would leading small to medium sized engagements (technology due diligence, post-merger integrations, carve outs) and being the day to day support for clients on these engagements. You will work closely alongside Senior Managers/Directors on delivery of multiple projects simultaneously. Your responsibilities will include Due Diligence Analyzing target data to build up a view on the technology of the business including cost, products and systems, and IT contracts Finding risks in Target’s IT environment, remediations and associated costs Condensing the data and explaining findings to other team members, highlighting the impact of technology on the business strategy, operations, and ultimately, deal valuation Developing an understanding of IT benchmark and qualitative information to provide insights to clients to describe a typical IT function Assisting and leading client communications, calls and meetings Contributing content for sections of IT reports/deliverables Integration and Separation Advising clients and managing all client communications on all technology aspects of integration, separation (carve outs) and optimization initiatives (e.g. synergy analysis) including the development of target operating models, understanding the current IT landscape, defining transitional service agreements, developing detailed plans, and supporting the implementation of such plans. Leading the technology workstream in integrations and separations within a larger team of Integration & Separation colleagues to fulfil their workstream objectives Facilitating and leading key client workshops and meetings Identifying, reviewing, or calculating client synergies for IT within a larger team Wider Responsibilities Business development, ensuring high chargeability of the KGS team Project Management, including work allocations, guiding and reviewing quality of work of junior project team members People management, managing the performance of junior staff members through coaching and mentoring Interacting with senior client stakeholders as well as internal stakeholders (KPMG Partners and Directors) Supporting the growth of the team through development of new propositions and initiatives Ensuring engagement management protocols are followed and kept up to date including quality and risk management When you are not working on a project, you will provide support to senior colleagues in a number of different aspects such as preparation of proposal materials, development of propositions Job Requirements Mandatory Skills MBA / Bachelor’s degree in a related field from an accredited college/university preferably with major in Technology 6 to 10 years of experience in M&A IT Integration and Separation / IT strategy / IT due diligence / solution architecture / IT project management Good overall understanding of the following areas with specialist knowledge of at least one Application Support & Maintenance Network & Data Center Operations Management Software Development Life Cycle Service Management Cyber Security End user computing Disaster Recovery/Business Continuity Cloud-based Deployment Models (e.g., Infrastructure-as-a- Service) Software Asset Management/Compliance Infrastructure Optimization (e.g., consolidation, rationalization, cost savings) Service Level Definition and Agreements / IT Scorecard and Metrics Enterprise Resource Planning Technology certifications such as ITIL, AWS, Azure, GCP, TOGAF, COBIT, CISSP, COMPTIA etc. would be a plus Knowledge about enterprise business applications (e.g. ERP, CRM) Experience in assisting with technology assessment/diligence Preferred Skills A good understanding of, or preferably a background in, an M&A environment IT specialization such as: IT strategy, applications, infrastructure, architecture, cyber security Experience in facilitating client meetings, workshops and interviews Project management experience and track record of successful delivery of projects Comfort with ambiguity, fluid consulting situations and a highly pressured environment as characteristic of transactions Ability to work well under pressure, learn quickly and leverage skills in new situations Ability to travel at a moderate level Show more Show less

Manage IT audits (SOX, ITGC), ensure quality delivery, review testing docs, identify process gaps, prepare reports, handle clients, guide juniors, support proposals, and improve engagement productivity.. Required Candidate profile Looking for 3–5 yrs exp in IT audits (SOX, ITGC), risk assessment, SOC1/2, with strong MS Office skills, good communication, and CISA/BE/B.Tech/MBA/MCA background. Big 4 experience preferred.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting – AI Governance - Senior Manager The opportunity: your next adventure awaits. Are you a tech-savvy professional with a risk mindset who is passionate about building a better working world through the power of people, technology, and innovation? We have an incredible opportunity for you to join our dynamic Enterprise Risk team and make a real impact in the rapidly evolving world we live in. Within Risk Consulting, you will focus in the areas of Artificial Intelligence (AI) Risk Management and Governance which would cover AI Auditing techniques, AI Risk and Controls, Pre-Implementation reviews, Data Privacy reviews, AI application security and BCP review of AI Applications. This is client-facing role in a rapidly growing practice, where you’ll build client relationships with key stakeholders, including management executives for some of the most globally recognized brands. It makes this the perfect place to gain a deeper understanding of complex businesses transactions, all the while recommending solutions to some of the most pressing business challenges and process inefficiencies. You will also team up with our global professionals in multidisciplinary engagements, helping major global clients transform and sustain business performance. By plugging into our market-leading global network, you'll gain the experience you need to become an exceptional AI Risk Advisor Key Responsibilities The purpose of this role will be to supervise delivery, provide technical and project leadership to your team members, as well as build relationships with clients. While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes. Additionally, you will: Understand client’s challenges and industry related issues and offer solutions in the areas of process, technology and regulatory risk Participate in go to market, create proposals and respond to RFPs, client orals etc. Identify opportunities for cross-selling to current clients/introduce colleagues from other service lines. Jointly lead global account relationships along with onshore, manage engagement deliveries, quality and drive the growth agenda on accounts. Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Manage a team of Seniors and Staffs (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment. Play an active role in counselling and mentoring junior consultants within the firm. Use knowledge of the current tech environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Assist with cultivating and managing business development opportunities. Understand EY and its service lines and actively assess/present ways to serve clients. Skills And Attributes For Success You will leverage your proven track record of technology plus business process internal audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of AI Risk solutions To qualify for the role, you must have A bachelor’s or master’s degree and approximately 9-12 years of internal audit related work experience At least 5 years of experience in Internal Audit, Risk and Compliance in the following areas - Skilled in business process and operational internal audits - P2P, O2C, policy reviews etc and risk reviews IT Pre-implementation and Post implementation reviews. Compliance and regulatory assessments – Risk and Controls Risk Assessment – Assessment of internal processes to identify security findings, vulnerabilities, and control gaps/deviations identified on applications and infrastructure. Develop risk control matrix in line with COSO, COBIT, ISO, NIST and ITIL Best Practice and recommendations. Control Monitoring / Testing - Understanding of SOX, Cyber and compliance standards like PCAOB, PCI, ISO27001, perform test the design and operational effectiveness of the controls. Defect / Gap Identification: Identify the extent, materiality, confidentiality, integrity and the availability related deficiencies in the client environment and evaluate against industry standards. IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Knowledge of AI is preferred but not mandatory Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, process and IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CIA, CISA, CISM, CISSP EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Summary Position Summary ServiceNow Developer — Solution Advisor Deloitte’s Cyber Risk Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’s Cyber Risk Services have been recognized as a leader by a number of independent analyst firms. IDC MarketScape named Deloitte as a Leader in the first 2024 for Worldwide Cybersecurity Consulting Services: Global System Integrators/Consultancies . Source: Worldwide Systems Integrators/Consultancies for Cybersecurity Consulting Services 2024 Vendor Assessment, By Cathy Huang, Published January 2024 – ID#US50463423 Work you will do As a Consultant in Governance, Risk, and Compliance ( GRC )/ Integrated Risk Management (IRM) at Deloitte, you will play a pivotal role and be instrumental in helping our clients manage and mitigate risks associated with their governance, risk management, and compliance activities by focusing on delivering continuous, high-quality GRC services to our clients . This role involves a blend of strategic advisory, process improvement, and technology implementation, tailored to ensure continuous compliance and effective risk management strategies are in place. This role also involves ensuring compliance with regulatory requirements and managing risks effectively. The ideal candidate will have a strong background in GRC frameworks, excellent analytical skills and adept in developing workflows in GRC tools like ServiceNow, Archer, Aravo or OneTrust As a Consultant, you would be expected to perform the following activities: Take ownership of SDLC efforts for successful build, test, and rollout of GRC solution into productionuse. Conduct thorough risk assessments and implement solutions to minimize exposure and enhance business resilience. Well versed with the application deployment and configuration baselines, and understanding of how the application environment operates in a secure environment and how exceptions are handled duringoperations; Utilize GRC tools to automate risk management and compliance monitoring tasks. Configure GRC solutions like risk management (enterprise and IT risk), compliance management, issue and corrective action plan management, exception management, policy lifecycle management, privacy management, third party risk management, audit management, threat and vulnerability management, security operations management, business continuity management for clients acrossindustries. Understand the business requirement and define & document user stories, create UI mock-ups and having a roll-up the sleeves approach to execute and make thingshappen. Define, enhance, and implement enterprise risk management frameworks based on industry standards and frameworks (e.g. ISO 27001, COSO, COBIT, PCI, NIST, and HIPAA etc.) on GRC technologies such as Archer, ServiceNow or Aravo. Ensure compliance with all relevant local, national, and international laws and regulations. Regularly update internal policies to align with changing regulatory landscapes to ensure that they are effectively integrated into the clients' operational processes. Provide ongoing support and enhancements to risk management frameworks that align with client objectives and regulatory requirements. Assist in developing GRC governance and operating model for the set up and sustainment of the GRCprogram. Prepare detailed reports on compliance activities, risk assessments, and mitigation plans. Ensure all documentation is accurate and audit ready. The team Want to work at one of the fastest growing and industry leading risk management consulting firms that will give you an enriching experience to build your career and brand? If yes, then look no further, Deloitte’s Cyber Risk Services practice is the place for you. The Cyber Governance, Risk, and Compliance (GRC)/ Integrated Risk Management (IRM) is one of the most rapidly growing market offerings with capability spanning - GRC strategy, design, and implementation of GRC & Security solutions using confluence of ServiceNow, Archer, Aravo and OneTrust. Individuals who take deep personal accountability for their work, have a passion for excellence, driven to achieve their full potential and understand the value of building relationships with clients and the industry, are encouraged to realize our requirement for GRC. The GRC Solution Advisor is expected to have an in- depth understanding of GRC tools as mentioned above, leading practices and have demonstrated experience in the design and implementation of their solutions. Understanding of risk and compliance pain points and how they can be addressed effectively through a scalable and usable GRC technology is key to success in thisrole. This role involves working closely with clients to understand their needs, designing solutions that leverage all the tool’s capabilities to enhance their GRC processes, and ensuring the successful implementation and operation of these solutions. Required: Education: Bachelor’s degree in Computer Science/ Information Technology, or a related field. Experience: Minimum of 3-5 years of experience in implementing GRC solutions and/or in ServiceNow/Archer/Aravo/OneTrust or cyber strategy. Well versed with at least 1 GRC tool such as ServiceNow/Archer/Aravo/OneTrust. Gathering and documenting business requirements and identifying gaps within existing systems and processes. Hands-on experience on at least 2 GRC modules (ERM, ITRM, TPRM, SecOps, Issues Management, Policy & Compliance Management, etc.). Hands-on experience in on-demand and out-of-the-box solution developments, access control, rules & events, notifications, data integrations, UI, reports and dashboards, workflows and other administrative activities in tools like ServiceNow/Archer/Aravo/OneTrust. Experience on Privacy Enhancement and Automation tools such as OneTrust. Proficient in risk management processes and compliance regulations. Proven experience in GRC, particularly within a consulting environment. Proficiency with scripting language in implementing API integrations with external system Must have development experience in more than 2- 3 projects from scratch to till go-live Strong understanding of GRC frameworks such as COBIT, ISO 27001, NIST, etc. Strong analytical and problem-solving skills. Excellent interpersonal and communication skills, capable of working effectively with clients and team members. Flexibility in work hours may be necessary to meet project deadlines and client needs. Preferred: Education: Master’s degree in Business Administration, Cyber Security or a related field GRC Certifications: ServiceNow CSA, Archer Administrator Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 301258 Show more Show less

Summary Position Summary ServiceNow Developer — Lead Solution Advisor Deloitte’s Cyber Risk Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise. Deloitte’s Cyber Risk Services have been recognized as a leader by a number of independent analyst firms. IDC MarketScape named Deloitte as a Leader in the first 2024 for Worldwide Cybersecurity Consulting Services: Global System Integrators/Consultancies . Source: Worldwide Systems Integrators/Consultancies for Cybersecurity Consulting Services 2024 Vendor Assessment, By Cathy Huang, Published January 2024 – ID#US50463423 Work you will do As a Senior Consultant in Governance, Risk, and Compliance ( GRC )/ Integrated Risk Management (IRM) at Deloitte, you will play a pivotal role and be instrumental in helping our clients manage and mitigate risks associated with their governance, risk management, and compliance activities by focusing on delivering continuous, high-quality GRC services to our clients . This role involves a blend of strategic advisory, process improvement, and technology implementation, tailored to ensure continuous compliance and effective risk management strategies are in place. This role also involves ensuring compliance with regulatory requirements and managing risks effectively. The ideal candidate will have a strong background in GRC frameworks, excellent analytical skills and adept in developing workflows in GRC tools like ServiceNow, Archer, Aravo or OneTrust As a Consultant, you would be expected to perform the following activities: Take ownership of SDLC efforts for successful build, test, and rollout of GRC solution into productionuse. Conduct thorough risk assessments and implement solutions to minimize exposure and enhance business resilience. Well versed with the application deployment and configuration baselines, and understanding of how the application environment operates in a secure environment and how exceptions are handled duringoperations; Utilize GRC tools to automate risk management and compliance monitoring tasks. Configure GRC solutions like risk management (enterprise and IT risk), compliance management, issue and corrective action plan management, exception management, policy lifecycle management, privacy management, third party risk management, audit management, threat and vulnerability management, security operations management, business continuity management for clients acrossindustries. Understand the business requirement and define & document user stories, create UI mock-ups and having a roll-up the sleeves approach to execute and make thingshappen. Define, enhance, and implement enterprise risk management frameworks based on industry standards and frameworks (e.g. ISO 27001, COSO, COBIT, PCI, NIST, and HIPAA etc.) on GRC technologies such as Archer, ServiceNow or Aravo. Ensure compliance with all relevant local, national, and international laws and regulations. Regularly update internal policies to align with changing regulatory landscapes to ensure that they are effectively integrated into the clients' operational processes. Provide ongoing support and enhancements to risk management frameworks that align with client objectives and regulatory requirements. Assist in developing GRC governance and operating model for the set up and sustainment of the GRCprogram. Prepare detailed reports on compliance activities, risk assessments, and mitigation plans. Ensure all documentation is accurate and audit ready. The team Want to work at one of the fastest growing and industry leading risk management consulting firms that will give you an enriching experience to build your career and brand? If yes, then look no further, Deloitte’s Cyber Risk Services practice is the place for you. The Cyber Governance, Risk, and Compliance (GRC)/ Integrated Risk Management (IRM) is one of the most rapidly growing market offerings with capability spanning - GRC strategy, design, and implementation of GRC & Security solutions using confluence of ServiceNow, Archer, Aravo and OneTrust. Individuals who take deep personal accountability for their work, have a passion for excellence, driven to achieve their full potential and understand the value of building relationships with clients and the industry, are encouraged to realize our requirement for GRC. The GRC Solution Advisor is expected to have an in- depth understanding of GRC tools as mentioned above, leading practices and have demonstrated experience in the design and implementation of their solutions. Understanding of risk and compliance pain points and how they can be addressed effectively through a scalable and usable GRC technology is key to success in thisrole. This role involves working closely with clients to understand their needs, designing solutions that leverage all the tool’s capabilities to enhance their GRC processes, and ensuring the successful implementation and operation of these solutions. Required: Education: Bachelor’s degree in Computer Science/ Information Technology, or a related field. Experience: Minimum of 5-7 years of experience in implementing GRC solutions and/or in ServiceNow/Archer/Aravo/OneTrust or cyber strategy. Well versed with at least 1 GRC tool such as ServiceNow/Archer/Aravo/OneTrust. Gathering and documenting business requirements and identifying gaps within existing systems and processes. Hands-on experience on at least 2 GRC modules (ERM, ITRM, TPRM, SecOps, Issues Management, Policy & Compliance Management, etc.). Hands-on experience in on-demand and out-of-the-box solution developments, access control, rules & events, notifications, data integrations, UI, reports and dashboards, workflows and other administrative activities in tools like ServiceNow/Archer/Aravo/OneTrust. Experience on Privacy Enhancement and Automation tools such as OneTrust. Proficient in risk management processes and compliance regulations. Proven experience in GRC, particularly within a consulting environment. Proficiency with scripting language in implementing API integrations with external system Must have development experience in more than 2- 3 projects from scratch to till go-live Strong understanding of GRC frameworks such as COBIT, ISO 27001, NIST, etc. Strong analytical and problem-solving skills. Excellent interpersonal and communication skills, capable of working effectively with clients and team members. Flexibility in work hours may be necessary to meet project deadlines and client needs. Preferred: Education: Master’s degree in Business Administration, Cyber Security or a related field GRC Certifications: ServiceNow CSA, Archer Administrator Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 301260 Show more Show less