1022 Cobit Jobs - Page 5

About BNP Paribas India Solutions Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability. Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. About Business Line/function BNP Paribas Personal Investors Germany Personal Investors operates under three brands in Germany, Consorsbank , targeted to individual customers, and DAB BNP Paribas for B2B customers and Wealth Management Private Banking for wealthy clients. Consorsbank is the no. 4 full-service direct bank(1) in the market by the number of customers and the 2nd online broker by the number of executed orders by individuals(2). DAB BNP Paribas is one of the leading operators for Independent Financial Advisors and Asset Management specialists. Personal Investors Germany offers its services to around 2.0 million customers in Germany . Job Title IT SAM Specialist / License Manager Date 05-Jul-2025 Department PI Germany – ISPL Location: Chennai Business Line / Function BNPP PI Germany (IT) Reports To (Direct) Grade (if applicable) (Functional) Number Of Direct Reports 0 Directorship / Registration NA Position Purpose Overall purpose Administration and further development of the PI Germany Software Asset Portfolio as well as integration and harmonization of SAM processes with global BNPP SOAM team. PI Germany SPOC with regards to SAM topics. Responsibilities Direct Responsibilities Coordination for all questions of License Management / Software Asset Management (SAM) Controlling in the management of license and user agreements, monitoring of license agreements and preparation of license balance sheets (legal conformity & compliance) Ensuring, auditing and developing compliance in the implementation of the BNP Paribas Group's SAM requirements, as well as participation in software audits and relevant internal audits Participation in the analysis and identification of cost reduction and optimization potentials at the level of the German branch of BNP Paribas SA with a focus on IT technology (services, software, etc.) Maintaining and monitoring of the PI Germany Software Asset Portfolio Interact with internal departments and stakeholders offering guidance on SAM topics like Responsible for the introduction process of new Software product into the Software portfolio of PI Germany, this includes the introduction of new software products, reviewing business cases clarifying questions with regards to EULA / ETLA and licensing research Counterpart for the Open Source Owner for all relevant topics in case an OSS Oversee and handling of incoming tickets dealing with SAM topics (incidents, problems, changes, requests) Monitor renewals and new software purchases Coordinate and contribute to SAM audits and SAM inventories (driven by SOAM) with the internal departments and stakeholders Participate in ITIL-SAM improvement initiatives Establish and maintain processes associated with long-term SAM goals, including acquisition, documentation, deployment and usage of software Contact person for contractual sand license specific questions regarding the existing software products Contributing Responsibilities Act as an ambassador of SAM topics for PI Germany Support the local PI team in all topics related to SAM Interacting with corporate security, IAM and risk practices to ensure that the software is compliant Provide license reports on requested applications Support and guidance counterpart for the responsible Application Owners Counterpart for all Software product related questions internally and externally Technical & Behavioral Competencies Profound knowledge of ITSM & ITAM ticketing solutions (ServiceNow SAM Pro, USU) Deep architectural and conceptual knowledge of the SAM lifecycle Extensive Software Asset Management reporting skills working with CMDB, Excel and Power BI Strong customer service orientation Specific Qualifications (if Required) ITIL Foundation (or higher) mandatory ITAM / CSAM certifications at plus Agile certification at plus Skills Referential Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Ability to deliver / Results driven Communication skills - oral & written Client focused Transversal Skills: (Please select up to 5 skills) Ability to understand, explain and support change Analytical Ability Ability to manage a project Ability to develop and adapt a process Ability to set up relevant performance indicators Education Level Bachelor Degree or equivalent Experience Level At least 7 years Other/Specific Qualifications (if Required) Basic understanding of IT architecture is an advantage (TOGAF, Eagle, Zachman Framework) Basic understanding of the IT frameworks like DevOps, COBIT, CMMI, PRINCE2, PMBOK

Job Description Enforce best practices in IS/IT Security, GRC practices and frameworks. Execute basic auditing, control assessments, policy/standard/procedure writing and Implementation. Develop, implement, maintain, and oversee enforcement of policies, standards, procedures, and associated plans. Ensure compliance to PCI DSS, SOX 404, ISO, and OFAC regulatory bodies and requirements. Create and document necessary audits of Mouser Electronics policies, standards, and processes. Manage Security Awareness program by creating materials, enrolling, and provide training as needed. Participate in Business Continuity activities, audits, and security review and planning activities. Understand Mouser business organization, processes, and strategies. Clearly articulate in writing and verbally the results of all assessments to management, as needed. Generates succinct and actionable reporting to Risk Owners that provides a status on all open issues, including remediation plans and/or exception requests. Evaluate new processes and software designed for the Security GRC Program. Understand the fundamentals of setting up and maintaining network and security hardware and software systems. Assist with addressing security breaches and vulnerability issues in a timely fashion and be an active participant in the incident response processes. Maintain audit results and corresponding data to quickly respond to requests for information from internal or external auditors. Understand common networking and security hardware and software environments, security alerts and issues, protocols, standards, and trends. Understand of CobiT, ISO 27001/27002, PCI DSS, SOX 404 frameworks. ISO documentation like SOA, Risk Assessment and Risk Treatment. Six Sigma or ITIL certification preferred. Certification as a CISA, CISM, CRISC, CISSP, CGEIT, or other Information Security/IT Audit discipline preferred. Required Bachelor’s degree. This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at any time at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities. About Us About us: Our story Mouser Electronics, founded in 1964, is a globally authorized distributor of semiconductors and electronic components for over 1,200 industry-leading manufacturer brands. This year marks the company's 60th anniversary. We specialize in the rapid introduction of the newest products and technologies targeting the design engineer and buyer communities. Mouser has 28 offices located around the globe. We conduct business in 23 different languages and 34 currencies. Our global distribution centre is equipped with state-of-the-art wireless warehouse management systems that enable us to process orders 24/7, and deliver nearly perfect pick-and-ship operations.

Position Overview Job Title- I&A On-boarding Information Security Analyst, Associate Location- Pune, India Role Description: As “I&A On-boarding Information Security Analyst” you will be part of Access Lifecycle On-boarding global family which includes access management for application end user recertification On-boarding, user access for request & approval, user provision On-boarding and Functional Taxonomy SoD On-boarding & maintenance as well as IDAHO (Access concept) SME as central DB services. Deutsche Bank is looking for bright and open-minded individuals to support Business Identity & Access Services within Access Lifecycle Solution On-boarding team for application end user request & approval as well as end user access provision central service On-boarding. A key success factor of the Access Lifecycle Solution On-boarding team is the quick understanding of complex application set ups for Identity & Access Management and support Information Security Officer (ISO) and IT Application Owner (ITAO) along end-to-end central solution On-boarding process across DB. You will gain insights into the complete Identity & Access Management lifecycle as you will learn about the roles and entitlements and their set up, segregation of duties, application authentication and authorization process. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities As “I&A On-boarding Information Security Analyst” you will be responsible to perform On-boarding assessments if an IT asset is applicable for end user application access for request & approval and business requirement gathering (based on existing KOP ID Admin procedures) to identify, how future user provisioning (ID Admin via automated connector or manual, centrally or decentral managed) will be set up between central request & approval platform and to be on-boarded application in adhering to Information Security (IS) internal and regulatory requirements. Efficiently engage, manage, and influence the main stakeholders, along with application On-boarding process including Information Security Officer, IT Application Owner, Engineering and Operations teams Provide process improvement inputs to various stakeholders involved. Proactively seek ways to improve upon existing practices and processes. Display insight and ability in identifying issues and develop successful solutions. Report and escalate potential risks to the management to help avoid / minimize the impact. Work with multiple, distributed teams (across different locations) Support develops key operational procedures where necessary and ensure adherence to all such defined policies. Comfortable with associated disciplines of Security Policy and Governance in banking domain Very good presentation and communication skills allowing to communicate with our stakeholders. A structured and methodological way of working with the objective to deliver high quality results. Supports tough people decisions to ensure people performance is aligned with organization imperatives and needs. Addresses individual performance issues, where necessary, to drive for high performance. Pro-active and flexible working approach, Team spirit Your Skills And Experience Minimum 5 years working experience in Identity & Access Management, Governance, Risk and Control related topics. Team management experience Basic knowledge and/or willingness to work with industry best practices and frameworks like ISO27001, NIST, CSA CCM, COBIT, ITIL Good business analyses knowledge of system design, development, implementation, and user support principles and practices Knowledge of IT Service Management or IT Governance or IT Delivery Management or IT Project Management or IT Delivery background or IT Security Knowledge on Database Systems, application interactions and server operating systems Excellent Excel knowledge Competencies: Self-motivated and flexibility to work autonomously in virtual and multicultural teams. Good communication skills (both written and verbal), fluent in English (written/verbal) Good analytical skills and problem-solving abilities Pro-active and flexible working approach A structured and methodological way of working with the objective to deliver high quality results. Flexible mindset with an eye for detail and continuous improvement Good understanding in business related information Being flexible, open minded, able to share information, transfer knowledge and expertise to stakeholders and other team members. How We’ll Support You Training and development to help you excel in your career. Coaching and support from experts in your team. A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

Technical Strong experience in review of guideline defined, conducting regulatory assessments for BFSI (E.g. RBI, SEBI, IRDAI). Global guidelines knowledge which includes NIST, ISO27001, PCI-DSS, COBIT, etc. Assisting in remediating gaps on the defined guidelines for the client. Performing System Audit and conducting technology landscape review. Having worked on Information Technology Risk Assessment areas such as NIST, ISO27001, PCI-DSS, COBIT, etc. Experience of handling IT audits and reviews. Good understanding on technology topics related to cyber security, encryption, architecture resiliency , business continuity, disaster recovery, IT Governance, Third party outsourcing risk and information security/technology risk. Certification - CISA, CISSP, ISO27001 Soft Skills Good presentation and report writing skills is mandatory. Excellent communication skills and confident demeanor Experience of working with client stakeholders Good problem-solving skills.

About Us We are the independent expert in assurance and risk management. Driven by our purpose, to safeguard life, property, and the environment, we empower our customers and their stakeholders with facts and reliable insights so that critical decisions can be made with confidence. As a trusted voice for many of the world’s most successful organizations, we use our knowledge to advance safety and performance, set industry benchmarks, and inspire and invent solutions to tackle global transformations. About Business Assurance We help companies ensure compliance, build high-performing management systems, and meet competence needs within a wide range of industries. DNV helps companies understand Working with us, you can be involved in technically challenging and innovative projects worldwide demanding a broad variety of expertise. Our strong focus on research and innovation opens an array of opportunities, and allows you to engage in projects which develop next generation solutions. and manage their risk picture through our management system certification and training portfolios. About The Role DNV is seeking Assessment manager – TISAX for our Management System Certification (MSC) service line. We prefer already qualified candidates, but we are open for candidates with sufficient background. Perform 3rd-party audits and trainings according to TISAX, ISO/IEC 27001, ISO 9001, ISO 27701 Provide timely and accurate reviews of client’s corrective action and closure Provide customers with timely, complete, and accurate reports of their current level of conformity / implementation of their management system x Maintain schedule of audit activity with Management System clients Maintain appropriate auditor credentials and pursues advancement of those credentials and other related credentials as needed. Ensuring compliance with accreditation rules /ENX rules and other internal or external requirements. Ability to manage Key Customers. Supporting the sales team on technical aspects. Familiarity with use of digital tools What we offer Flexible work arrangements for better work-life balance Generous Paid Leaves (Annual, Sick, Compassionate, Local Public, Marriage, Maternity, Paternity, Medical leave) Medical benefits ( Insurance and Annual Health Check-up) Pension and Insurance Policies (Group Term Life Insurance, Group Personal Accident Insurance, Travel Insurance) Training and Development Assistance (Training Sponsorship, On-The-Job Training, Training Programme) Additional Benefits (Long Service Awards, Mobile Phone Reimbursement) Company bonus/Profit share. *Benefits may vary based on position, tenure/contract/grade level* DNV is an Equal Opportunity Employer and gives consideration for employment to qualified applicants without regard to gender, religion, race, national or ethnic origin, cultural background, social group, disability, sexual orientation, gender identity, marital status, age or political opinion. Diversity is fundamental to our culture and we invite you to be part of this diversity. About You Bachelor’s degree in computer science, Mechanical, Automobile, or equivalent & ideally a higher-level qualification Lead auditor Qualifcation in ISO 27001:2022(CQI- IRCA) and Lead Assessor Training on TISAX Overall, 10 Years of experience in which at least 4 years FTE of working experience (as direct employee, consultant, etc.) within companies of automotive manufacturing or direct supply chain and 6 years in IT Audit experience in automotive sector (manufacturing or direct supply chain): in the following standards: TISAX, ISO 9001, IATF 16949, A-Spice, ISO26262. Great attitude, Analytical skills and communication skills. Preferred: ITIL Certified, ISO 22301, ISO 20000-1, CISA, CISM, CISSP, MCSE, MCSA and/or MBA Good understanding of relevant regulations and industry standards (e.g. GDPR, ITIL Framework, FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA, HiTrust and GLBA), best practices and methodologies and the ability to apply these requirements to organizational internal control frameworks.

Hiring for one of the leading Automobile Manufacturing Organization Location : Gurgaon Exp : 4-7 years Qualification : B.Tech Roles and Responsibilities: Develop and implement risk assessment models and frameworks. Identify potential threats and vulnerabilities, and assess their potential impact on business operations. Monitor and report on risk indicators, risk appetite thresholds, and key risk metrics. Collaborate with cross-functional teams to develop risk mitigation plans. Ensure the MSIL’s compliance with legal, regulatory, and internal policy requirements. Conduct regular audits and compliance reviews; report findings and recommend corrective actions. Stay up to date on relevant laws, regulations, and best practices (e.g., NIST, CSI, xx). Develop, implement, and maintain compliance training programs for employees. Liaise with Security Operation Team, IT Team, IS Governance Team and contribute towards investigation, compliance breaches and risk incidents. Liaise with Information & Cybersecurity Incident Response Team, perform root-cause analysis, and implement corrective actions. Prepare regular risk and compliance reports for executive leadership and the MSIL Board. Skills Required: 1.Cybersecurity Fundamentals 2.IT Infrastructure Knowledge 3. Risk Assessment frameworks & Tools – Proficiency in tools like RSA Archer, ServiceNow GRC, or MetricStream. 4. Data Privacy & Protection – Knowledge of data handling standards like GDPR, HIPAA, and ISO/IEC 27001. 5. Regulatory Frameworks – Deep understanding of SOX, PCI-DSS, NIST, COBIT, and other relevant standards 6.Audit Management – Ability to conduct internal audits, manage external audits, and respond to findings. 7.Policy Development – Experience in drafting, implementing, and updating IT compliance policies.4. Assertiveness and negotiation skill 8.Problem-Solving and Decision-Making 9.Communication – Clear reporting to stakeholders and translating technical risks into business language. 10.Managing cross-functional teams and training staff on compliance best practices.

Qualcomm India Private Limited is offering a unique opportunity to join the Corporate Internal Audit & Advisory Services department within the SOX Program Management Office (PMO) organization to support the IT SOX 404 and 302 Compliance efforts. Your role will involve leading the IT SOX 404 risk assessment and scoping exercise, executing process and control walkthroughs, assessing control design, developing test plans, performing independent testing, and assisting in deficiency root cause analyses. You will also provide effective supervision to other auditors, collaborate with Qualcomm management to identify financial risks and assess business impacts, and work closely with external auditors to ensure all deadlines are met with high-quality deliverables. To be successful in this role, you should have three to seven years of recent relevant professional experience in IT SOX compliance, preferably for a fast-paced global company or a public accounting firm. Prior SOX PMO experience is preferred, along with strong project management skills, critical thinking, decision-making abilities, and a self-motivated attitude. You should also possess exceptional prioritization, organization, and time-management skills to consistently meet deadlines in a fast-paced environment. Additionally, you must have a solid understanding of internal controls, frameworks (COSO, COBIT), audit methodology, SOX 302 and 404 requirements, and IT and business process risks and controls. Professional certifications such as CPA, CISA, or CIA are preferred, along with ERP experience with Oracle EBS. Fluency in English and strong communication and presentation skills are essential, as well as the ability to work independently, handle multiple projects simultaneously, and deliver high-quality work products. Qualcomm is an equal opportunity employer and is committed to providing accommodations for individuals with disabilities during the application/hiring process. If you have a disability and need assistance, you can reach out to myhr.support@qualcomm.com or Qualcomm's toll-free number. The company expects its employees to adhere to all applicable policies and procedures, including security and confidentiality requirements. If you are interested in this challenging opportunity with Qualcomm, please apply with your Bachelor's degree in Accounting, Business Administration, Management Information Systems, or a related field. Join us in the Invention Age and be a part of transforming 5G technology into world-changing innovations.,

Job Description We’re hiring a skilled Compliance Lead to join our Information Security Group (ISG) at Grazitti Interactive. In this high-impact role, you’ll spearhead Governance, Risk, and Compliance (GRC) initiatives, drive external audit processes, develop compliance frameworks, and ensure organizational alignment with key regulatory standards. If you have a solid background in risk management, policy development, and IT audit readiness—with a deep understanding of frameworks like ISO27001, COBIT, and NIST—this is your opportunity to lead and create tangible impact. Key Skills 8+ years in GRC, compliance, or IT risk management. Bachelor’s degree in a relevant field; CISA, CISSP, or CISM preferred. Hands-on experience with ISO27001/2, ISO31000, NIST, COBIT, COSO, ITIL. Knowledge of GDPR, HIPAA, CCPA, ITGC, and SOX compliance. Strong understanding of internal controls and security policies. Experience in external/internal audits and incident response planning. Excellent communication and stakeholder management skills. Process-oriented with strong documentation and analytical capabilities. Roles and Responsibilities Design and execute enterprise-wide GRC strategies. Ensure compliance with GDPR, HIPAA, ISO, and other global standards. Lead documentation efforts for SOX controls and ITGCs. Collaborate with legal teams to interpret regulations. Act as the primary contact for external auditors. Lead planning, documentation, and closure of compliance audits. Conduct in-depth risk assessments and advise mitigation strategies. Maintain up-to-date risk registers and track remediation actions. Draft and implement information security policies. Establish and enforce internal controls for IT and SaaS environments. Apply COSO, COBIT, and ITIL best practices for governance. Review control effectiveness through regular audits. Design incident response plans and lead resolution efforts. Build awareness programs and train teams on compliance best practices. Drive a culture of compliance and operational integrity. Communicate risk and compliance posture to executive leadership. Document and maintain audit trails for transparency.

Job Title: TPRM Manager Location: Chennai Experience: 6+ Years Employment Type: Full-Time Job Summary: We are seeking an experienced and proactive Third Party Risk Management (TPRM) Manager to join our growing risk and compliance team. The ideal candidate will be responsible for managing the end-to-end third-party risk lifecycle, driving compliance with regulatory and organizational standards, and collaborating with cross-functional teams to ensure robust information security and risk management practices. Key Responsibilities: Lead and manage third-party risk assessments across vendors, service providers, and partners. Evaluate vendor controls around cybersecurity, data privacy, compliance, and operational risk. Collaborate with procurement, legal, IT security, and business teams to ensure third-party risks are identified, assessed, monitored, and mitigated effectively. Ensure compliance with ISO 27001, regulatory requirements, and internal GRC frameworks. Develop and maintain TPRM documentation, policies, processes, and metrics. Work closely with audit and compliance teams for periodic reviews, internal audits, and external regulatory audits. Monitor vendor performance and maintain an updated risk register. Conduct control testing, review vendor SOC reports, and track remediation plans for non-compliance or control gaps. Provide training and awareness sessions on third-party risk, GRC, and IT security standards to stakeholders. Required Skills and Experience: Minimum 6 years of hands-on experience in Third Party Risk Management (TPRM) . Strong knowledge of GRC frameworks , ISO 27001 , IT Audit , and Network Security . Experience with cloud security and assessing cloud-based vendors (AWS, Azure, GCP). Familiarity with regulatory frameworks such as GDPR, RBI, SEBI, etc. Experience in risk assessment methodologies, control frameworks (NIST, COBIT), and issue tracking/remediation processes. Strong stakeholder management, analytical thinking, and problem-solving skills. Excellent communication, documentation, and presentation skills. Preferred Qualifications: Bachelor's degree in Information Security, Computer Science, or a related field. Certifications such as CISA , CRISC , ISO 27001 Lead Auditor/Implementer , CISSP , or similar are a plus. Prior experience working in BFSI, IT/ITES, or consulting firms will be advantageous. Immediate joiners preferred.

Job Title: TPRM Manager Location: Gurgaon & Bangalore Experience: 6+ Years Employment Type: Full-Time Job Summary: We are seeking an experienced and proactive Third Party Risk Management (TPRM) Manager to join our growing risk and compliance team. The ideal candidate will be responsible for managing the end-to-end third-party risk lifecycle, driving compliance with regulatory and organizational standards, and collaborating with cross-functional teams to ensure robust information security and risk management practices. Key Responsibilities: Lead and manage third-party risk assessments across vendors, service providers, and partners. Evaluate vendor controls around cybersecurity, data privacy, compliance, and operational risk. Collaborate with procurement, legal, IT security, and business teams to ensure third-party risks are identified, assessed, monitored, and mitigated effectively. Ensure compliance with ISO 27001, regulatory requirements, and internal GRC frameworks. Develop and maintain TPRM documentation, policies, processes, and metrics. Work closely with audit and compliance teams for periodic reviews, internal audits, and external regulatory audits. Monitor vendor performance and maintain an updated risk register. Conduct control testing, review vendor SOC reports, and track remediation plans for non-compliance or control gaps. Provide training and awareness sessions on third-party risk, GRC, and IT security standards to stakeholders. Required Skills and Experience: Minimum 6 years of hands-on experience in Third Party Risk Management (TPRM) . Strong knowledge of GRC frameworks , ISO 27001 , IT Audit , and Network Security . Experience with cloud security and assessing cloud-based vendors (AWS, Azure, GCP). Familiarity with regulatory frameworks such as GDPR, RBI, SEBI, etc. Experience in risk assessment methodologies, control frameworks (NIST, COBIT), and issue tracking/remediation processes. Strong stakeholder management, analytical thinking, and problem-solving skills. Excellent communication, documentation, and presentation skills. Preferred Qualifications: Bachelor's degree in Information Security, Computer Science, or a related field. Certifications such as CISA , CRISC , ISO 27001 Lead Auditor/Implementer , CISSP , or similar are a plus. Prior experience working in BFSI, IT/ITES, or consulting firms will be advantageous. Immediate joiners preferred.

The first line Tech Risk function for business divisions (Corporate Bank (CB), Investment Bank (IB) and Operations (Ops) at Deutsche Bank sits within the Divisional Control Office (DCO) embedded in the Business. CB and IB front-to-back have the largest footprint within the banking divisions, and you will be part of a dynamic team, consistently in demand for providing insights and managing Information Technology (IT) and Information Systems (IS) risks on behalf of the business. You will join the Banks journey and contribute towards our strategic goal of managing risk within appetite whilst enabling adoption of emerging and new technologies for business growth. You will report directly to the Head of Technology Risk for CB and IB, oversee initiatives in India and deputize at management forums as necessary. Your key responsibilities Manage a team of 35+ members across all people related subjects including hiring, identifying, and developing talent across fungible team, staff retention, cross training, cultivating change and risk conscious mindset. Drive understanding and representation of IT& IS risks with business line heads across CB and IB front-to-back divisions and work closely with Head of Tech Risk Governance to successful implement initiatives in India Manage global stakeholders and prioritization of delivery of DCO BOW from the teams located in Mumbai, Pune and Bangalore Lead innovation, efficiency initiatives & automation through use of Data Analytics or AI models to enhance maturity in Technology risk management and empower decision making. Be a strategic partner with Senior Leadership including DCO and business aligned CIO divisions to drive the control-based risk exposure and management discussions Ensure management transparency by way of timely reporting and represent the IT/IS risk types, and remediation plans against appetite at the various divisional Non-financial Risk Council forums Manage all aspects of Front Office Technology risk, working closely with Risk leads in the Technology divisions including tracking of Self-Identified Issues, Audit Findings Work closely with peers leading other pillars in the team (such as Divisional Chief Information Security Office) to establish an effective risk management 1st line function in the Business Partner with 2nd LoD, NFRM (Non-Financial Risk Management) to ensure alignment towards Group wide minimum control standards and risk appetite framework Promote and support proactive IT risk culture at the Bank. Your skills and experience Previous experience in similar Technology risk roles in a front office IB/ CB division or IT audit (internal/external) in a cross-cultural and diverse operating environment with knowledge of business products In-depth knowledge of industry-wide risk landscape and global regulatory expectations, and leading engagement prep Strong understanding of Industry best practices in Technology Risk Frameworks such as National Institute of Standards and Technology (NIST), Control Objectives for Information and Related Technology (COBIT) and fundamentals of Artificial Intelligence/ Machine Learning (AI/ML) and Cloud based services Excellent communication, presentation and collaboration skills, with result-oriented mindset.

Nium, the Leader in Real-Time Global Payments Nium , the global leader in real-time, cross-border payments, was founded on the mission to deliver the global payments infrastructure of tomorrow, today. With the onset of the global economy, its payments infrastructure is shaping how banks, fintechs, and businesses everywhere collect, convert, and disburse funds instantly across borders. Its payout network supports 100 currencies and spans 220+ markets, 100 of which in real-time. Funds can be disbursed to accounts, wallets, and cards and collected locally in 35 markets. Nium's growing card issuance business is already available in 34 countries. Nium holds regulatory licenses and authorizations in more than 40 countries, enabling seamless onboarding, rapid integration, and compliance – independent of geography. The company is co-headquartered in San Francisco and Singapore. About the Team: Tech Support team’s goal is to offer better customer service and manage anything that happens in a live/production environment. Nium is one of the beasts to use all the latest tools for support functions. Tools like Kibana, Nagios, and cloud watch enable us to have greater visibility of our services offered to clients and eventually makes our system available round the clock, our uptime is always greater than 99.95%. About the Role: As part of Tech support team, you will be responsible for resolving technical issues faced by users, whether related to software, hardware, or network systems. They troubleshoot problems, offer solutions, and escalate complex cases to specialized teams when necessary. Using ticketing systems, they manage and prioritize support requests to ensure timely and effective resolutions. This role requires strong problem-solving abilities, excellent communication skills, and a solid understanding of technical systems to help users maintain productivity. Key Responsibilities: Based on customer insights and channel performance data, develop and execute on a content roadmap that engages key personas at each point in the customer journey, from top-funnel acquisition to nurture and ongoing customer education, both on Nium offerings as well as the industry Build, develop and manage a high-performing team and culture to achieve breakthrough results; exceptionally high standards and holds self and others accountable Generating editorial ideas and concepts Work with regional Growth Marketing teams to ensure content development aligns with funnel-building objectives for each target segment Measure the impact of our content strategy as well as the performance of individual assets and proactively refine our resource allocation and prioritization accordingly Requirements: 5-7 yrs experience in Supporting production applications on AWS or other cloud platforms Good knowledge of RDBMS (PostgreSQL or MSSQL) and NoSQL databases Willing to work in day/night shifts Understanding of troubleshooting and monitoring microservice and serverless architectures Working knowledge of containerization technology and various orchestration platforms. e.g., Docker, Kubernetes etc. for troubleshooting and monitoring purposes Experience in build and deploy automation tools (Ansible/Jenkins/Chef) Experienced in release and change management, incident, and problem management both from a technology and process perspective Familiar with Server log Management with tools like ELK, and Kibana Certification in ITIL, COBIT or Microsoft Operations Framework would be an added plus Experience with Scripting languages or shell scripting to automate daily tasks would be an added plus Ability to Diagnose and Troubleshoot Technical Issues Ability to work proactively to identify the issue with the help of log monitoring Experienced in monitoring tools, frameworks, and processes Excellent interpersonal skills Experience with one or more case-handling tools like: Freshdesk, Zendesk, JIRA Skilled at triaging and root cause analysis Ability to provide step-by-step technical help, both written and verbal What we offer at Nium We Value Performance: Through competitive salaries, performance bonuses, sales commissions, equity for specific roles and recognition programs, we ensure that all our employees are well rewarded and incentivized for their hard work. We Care for Our Employees: The wellness of Nium’ers is our #1 priority. We offer medical coverage along with 24/7 employee assistance program, generous vacation programs including our year-end shut down. We also provide a flexible working hybrid working environment (3 days per week in the office). We Upskill Ourselves: We are curious, and always want to learn more with a focus on upskilling ourselves. We provide role-specific training, internal workshops, and a learning stipend We Constantly Innovate: Since our inception, Nium has received constant recognition and awards for how we approach both our business and talent opportunities. - 2022 Great Place To Work Certification - 2023 CB Insights Fintech 100 List of Most Promising Fintech Companies . - CNBC World’s Top Fintech Companies 2024. We Celebrate Together: We recognize that work is also about creating great relationships with each other. We celebrate together with company-wide social events, team bonding activities, happy hours, team offsites, and much more! We Thrive with Diversity: Nium is truly a global company, with more than 33 nationalities, based in 18+ countries and more than 10 office locations. As an equal opportunity employer, we are committed to providing a safe and welcoming environment for everyone. For more detailed region specific benefits : https://www.nium.com/careers#careers-perks For more information visit www.nium.com Depending on your location, certain laws may regulate the way Nium manages the data of candidates. By submitting your job application, you are agreeing and acknowledging that you have read and understand our Candidate Privacy Notice located at www.nium.com/privacy/candidate-privacy-notice .

Job Description Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion it's a place where you can grow, belong and thrive. Your day at NTT DATA The Senior Solutions Architect is an advanced subject matter expert, primarily responsible for consulting with the client and working with internal teams to create strategies, transformational designs and the architectural vision for more complex solutions that address the clients needs. This role provides multi-technology consulting services on all aspects of application software, infrastructure and related technology components. What you'll be doing Key Responsibilities: Contributes to the development of complex solution architectures in specific business, infrastructure or functional areas. Identifies and evaluates alternative architectures and the trade-offs in cost, performance and scalability. Produces specifications of cloud-based or on-premises components, tiers and interfaces, for translation into detailed designs using selected services and products. Supports a change programme or project through the preparation of technical plans and application of design principles that comply with enterprise and solution architecture standards. Accountable for understanding client requirements, collecting data, delivering analysis and problem resolution. Monitors the external environment to gather intelligence on emerging technologies. Creates reports and technology roadmaps and shares knowledge and insights with others. Designs components using appropriate modelling techniques following agreed architectures, design standards, patterns and methodology. Creates multiple design views to address the concerns of the different stakeholders of the architecture and to handle both functional and non-functional requirements, including proof of concept (POC). Reviews, verifies and improves own designs against specifications. Makes recommendations for the development of new go to market services and contributes knowledge on relevant verticals. Operates across both the technical levels within the enterprise architecture and the value chain in order to develop holistic and integrated solutions. Provides coaching and mentoring to less experienced Solutions Architects. Knowledge and Attributes: Advanced knowledge of multi-vendor service integrations and cross-functional software, OS's and infrastructure designs. Excellent communication skills both verbal and written coupled with excellent interpersonal skills to build solid working relationships with internal and external stakeholders. Advanced knowledge on how specific infrastructures and application software are deployed in line with relevant methodologies and frameworks. Ability to develop and leverage their advanced specialist knowledge of reference architectures. Ability to maintain knowledge of trends and development in technology domains. Ability to keep abreast of industry trends and emerging technologies. Advanced ability to collaborate with cross functional teams such as sales, product, delivery etc. Academic Qualifications and Certifications: Bachelor's degree or equivalent in computer science, engineering or business or a related field. Certification and working knowledge of Enterprise Architecture methodologies (for example, TOGAF, Zachman, SOA, ITIL, COBIT, etc.). Safe Scaled Agile certification advantageous. Required Experience: Advanced professional technical, IT or Operations experience within a large scale (preferably multi- national) technology services environment on the following areas: Software Development, Application Support and Infrastructure Support. Advanced Project or Program Management experience would be preferred but not essential. Advanced client engagement and consulting experience coupled with solid experience in client needs assessment and change management. Advanced experience in integrating the solution for the particular project with the business domain, enterprise concerns, industry standards, established patterns and best practices. Advanced experience working in an agile development environment. Advanced experience in developing, selling and delivering technical solutions. Workplace type: On-site Working About NTT DATA NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo. Equal Opportunity Employer NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion it's a place where you can grow, belong and thrive. Your day at NTT DATA The Solutions Architect is a seasoned subject matter expert, primarily responsible consulting with the client and working with internal teams to create strategies, transformational designs and the architectural vision for complex solutions that address the clients needs. This role provides multi-technology consulting services on all aspects of application software, infrastructure and related technology components. What you'll be doing Key Responsibilities: Contributes to the development of solution architectures in specific business, infrastructure or functional areas. Identifies and evaluates alternative architectures and the trade-offs in cost, performance and scalability. Produces specifications of cloud-based or on-premises components, tiers and interfaces, for translation into detailed designs using selected services and products. Supports a change programme or project through the preparation of technical plans and application of design principles that comply with enterprise and solution architecture standards. Takes responsibility for understanding client requirements, collecting data, delivering analysis and problem resolution. Monitors the external environment to gather intelligence on emerging technologies. Creates reports and technology roadmaps and shares knowledge and insights with others. Designs components using appropriate modelling techniques following agreed architectures, design standards, patterns and methodology. Creates multiple design views to address the concerns of the different stakeholders of the architecture and to handle both functional and non-functional requirements, including proof of concept (POC). Reviews, verifies and improves own designs against specifications. Contribute to the development of new go to market services and contributes knowledge on relevant verticals. Operates across both the technical levels within the enterprise architecture and the value chain in order to develop holistic and integrated solutions. Knowledge and Attributes: Seasoned knowledge of multi-vendor service integrations and cross-functional software, OS's and infrastructure designs. Excellent communication skills both verbal and written coupled with excellent interpersonal skills to build solid working relationships with internal and external stakeholders. Seasoned knowledge on how specific infrastructures and application software are deployed in line with relevant methodologies and frameworks. Ability to develop and leverage their seasoned specialist knowledge of reference architectures. Ability to maintain knowledge of trends and development in technology domains. Ability to keep abreast of industry trends and emerging technologies. Seasoned ability to collaborate with cross functional teams such as sales, product, delivery etc. Academic Qualifications and Certifications: Bachelor's degree or equivalent in computer science, engineering or business or a related field. Certification and working knowledge of Enterprise Architecture methodologies (for example, TOGAF, Zachman, SOA, ITIL, COBIT, etc.). Safe Scaled Agile certification advantageous. Required Experience: Seasoned professional technical, IT or Operations experience within a large scale (preferably multi- national) technology services environment on the following areas: Software Development, Application Support and Infrastructure Support. Seasoned project or program management experience would be preferred but not essential. Seasoned client engagement and consulting experience coupled with solid experience in client needs assessment and change management. Seasoned experience in integrating the solution for the particular project with the business domain, enterprise concerns, industry standards, established patterns and best practices. Seasoned experience working in an agile development environment. Seasoned experience in developing, selling and delivering technical solutions. Workplace type: Hybrid Working About NTT DATA NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo. Equal Opportunity Employer NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today.

Key responsibilities This position is a leading role in managing the compliance portfolio for all global, regional, and country-based assets and systems. As a compliance consultant dedicated to the EY Service Line and function, you will be both an individual contributor capable of supporting multiple projects and lead a team of compliance specialists focused on improving the risk posture of the Service Line or function. In other words, it is not just an oversight role, but one that requires detailed understanding of the Service Line, business drivers, key risks and issues, and can help strategize on risk reduction strategies based on analysis of compliance data and trends. You will lead a team focusing on these pillars: Risk Management and Reduction: Take ownership of the Portfolio or Service Line of security risk and compliance, engaging directly with key EY leaders to reduce risks by providing insights on top risks impacting the security posture of the businesses. Engage in compliance and risk-based investment planning to mitigate these risks effectively. Trend Identification and Remediation: Identify security risk trends and themes that require a comprehensive approach to remediation. Lead and spearhead these efforts, ensuring that risks are mitigated in a timely and efficient manner. Proactive Security Initiatives: Proactively seeking out and identifying security risks, weaknesses, and potential vulnerabilities in systems and processes before they can be exploited and independently stand-up initiatives to address them.Improve compliance with security standards and policies though continuous improvement and innovation in security practices. Governance, Risk, and Compliance (GRC) Management: Manage the end-to-end workflow of security compliance of risk findings in our Governance, Risk, and Compliance (GRC) tool to ensure continuity and compliance with security policies, standards and regulations. And focus on the following responsibilities: Define compliance strategies and remediation recommendations that provide pragmatic security guidance that balance business benefit and risks. Develop appropriate risk treatment and mitigation options to address security risks identified during security reviews or audits. Translate technical vulnerabilities into business risk terminology for the business. Maintain compliance framework assessment toolkits used in testing and validation procedures. Be accountable for and lead assessments for technology infrastructure, applications and third-party dependencies, aligning to regulations, best practices and corporate governance. Skills and attributes for success Significant working security experience and knowledge in the management of compliance with company security policies in the following areas: Strong leadership and organizational skills Strategic skills to assist with the development of a long-term vision for EY's risk management security framework & approach Ability to appropriately balance firm security needs with business impact & benefit Ability to facilitate compromise to incrementally advance security strategy and objectives An overall understanding of the business objectives of EY with an ability to build relationships across EY Ability to team well with others to facilitate and enhance the understanding & compliance to security policies Experience facilitating meetings with multiple customers and technical staff, including building consensus and mediating compromise Execute top-down assessment of risk based on policy compliance data and risks Experience conducting risk assessments, vulnerability assessments, vendor and third-party risk assessments and recommending risk remediation strategies Looks for ways to continually improve our compliance with Information Security policies Create, promote, and oversee enforcement protocols, enabling consistency across diverse internal stakeholders Investigate any violations of policies and recommend corrective action. Develop training materials and conduct training sessions to educate on policies and enforcement protocols Develop metrics to evaluate the effectiveness of policy enforcement, and generate regular reports Identify policy and enforcement gaps and propose improvements. Projects advanced consultative skills to conduct effective questioning to break down complex issues into core elements, formulate appropriate ideas or planning and negotiate those ideas and plans clearly and concisely to advance a cooperative engagement by all levels of the organization including senior and/or executive management Proficient understanding of business focus and processes and the ability to inject cybersecurity compliance into the business through teamwork and influence Ability to maintain a high level of integrity, trustworthiness and confidence to represent the company and security leadership with the highest level of professionalism Ability to remain credible with the team and external constituents through sustained industry knowledge Proven project leadership with both legacy and emerging technologies to assess and manage business risk and enforce security controls Wide-ranging knowledge in technical infrastructure and applications, from legacy through next generation To qualify for the role, you must have A minimum of 10 years experience in the field of Cyber Security, Information Security, or related discipline At least 5 years experience in a leadership role managing a distributed team and workforce Advanced degree in Cyber Security, Information Security, Computer Science or a related discipline; or equivalent work experience One or more of the following or equivalent certifications: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Processional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT Experience working with common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT Demonstrated leadership experience and thorough understanding of various regulatory requirements and laws such as, but not limited to, PCI, SOX, HIPAA, HITRUST, GDPR and GLBA. Experience in policy enforcement and security compliance, awareness and learning at a publicly traded company Strong understanding of governance, risk, and compliance (GRC) frameworks and tools Proven competence in communicating confidently and effectively with clients, vendors, and all levels of management Experience in managing the communication of security findings and recommendations to IT project teams and management Skilled in executive level presentations and briefings Proven ability to identify and mitigate security risks proactively Insight into the business advantages of good risk management and internal controls beyond compliance purposes Demonstrated leadership, negotiation and collaboration skills, and ability to influence up and down Proven ability to manage multiple projects and meet deadlines in a fast-paced and changing environment Demonstrated experience in managing end-to-end security compliance enablement projects Extensive experience with security compliance regulations Strong English language skills: excellent writing, presentation, interpersonal, and communication skills are required Capable of working with diverse teams and promoting an enterprise-wide, collaborative security culture Ability to work flexibly and adapt to changing environments Ideally, you'll also have Exceptional judgment, tact, and decision-making ability Familiarity with local and regional regulatory requirements and how they impact IT policies Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change Outstanding management, interpersonal, communication, organizational, and decision-making skills Experience with RSA Archer and/or IBM Open Pages An ability to utilize core risk and controls skills in a broad range of projects both in a traditional internal audit and in advisory projects aimed at assisting in the implementation of controls / improvements

Company Description At Astra Cybertech, we are cybersecurity experts committed to safeguarding digital assets. With a team of seasoned professionals offering a comprehensive suite of cybersecurity services, we aim to build resilient defense strategies tailored to specific requirements. Our focus is on staying ahead of evolving cyber threats and providing customized training and security consulting services to bolster your cybersecurity framework. . Key Responsibilities: In this key role, you will lead comprehensive risk assessments, ensure compliance with standards like ISO 27001 and SOC 2, and oversee internal and external audits. Governance & Compliance Lead and perform end-to-end audits covering ITGC, cybersecurity, privacy, and third-party risk. Review governance structure, policy lifecycle, and enterprise risk posture. Ensure compliance with relevant regulatory requirements (e.g., RBI, SEBI, IRDAI, GDPR). Audit Execution Develop detailed audit plans, risk assessments, and testing procedures. Conduct control walkthroughs, validate control designs, and test operating effectiveness. Collect, analyze, and evaluate evidence to support audit conclusions. Reporting & Risk Management Draft comprehensive audit reports, highlighting findings, risks, and recommendations. Work with stakeholders to track remediation of audit issues and validate closure. Assist in risk register maintenance and the development of corrective action plans (CAPs). Stakeholder Engagement Collaborate with cross-functional teams including IT, InfoSec, Legal, and Risk. You will be responsible for enhancing security controls, developing policies, and leveraging GRC platforms to provide strategic insights to leadership. Present findings to senior leadership and support regulatory inspections and external audits. Conduct awareness/training sessions on audit readiness and compliance topics. Frameworks & Tools Apply frameworks like ISO 27001, NIST CSF, COBIT, CIS Controls. Utilize GRC tools (e.g., Archer, ServiceNow GRC, Metric Stream) for control and risk management. Leverage technical tools for control validation (e.g., SIEM, DLP, PAM, vulnerability scanners). Skills : Excellent analytical, documentation, and report writing skills. Deep technical understanding of IT infrastructure, security tools, and processes. Effective communication and stakeholder management skills. Qualification: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field. 4+ years of GRC experience, deep knowledge of frameworks like NIST, and strong analytical skills.. Exposure to regulatory guidelines (IRDAI, RBI, SEBI, etc.). ISO 27001 certification mandatory. Professional certifications such as CISSP, CISA, or CRISC are highly desirable. Immediate Joiners Preferred. .

Description Job Description We’re hiring a skilled Compliance Lead to join our Information Security Group (ISG) at Grazitti Interactive. In this high-impact role, you’ll spearhead Governance, Risk, and Compliance (GRC) initiatives, drive external audit processes, develop compliance frameworks, and ensure organizational alignment with key regulatory standards. If you have a solid background in risk management, policy development, and IT audit readiness—with a deep understanding of frameworks like ISO27001, COBIT, and NIST—this is your opportunity to lead and create tangible impact. Skills Key Skills 8+ years in GRC, compliance, or IT risk management. Bachelor’s degree in a relevant field; CISA, CISSP, or CISM preferred. Hands-on experience with ISO27001/2, ISO31000, NIST, COBIT, COSO, ITIL. Knowledge of GDPR, HIPAA, CCPA, ITGC, and SOX compliance. Strong understanding of internal controls and security policies. Experience in external/internal audits and incident response planning. Excellent communication and stakeholder management skills. Process-oriented with strong documentation and analytical capabilities. Responsibilities Roles and Responsibilities Design and execute enterprise-wide GRC strategies. Ensure compliance with GDPR, HIPAA, ISO, and other global standards. Lead documentation efforts for SOX controls and ITGCs. Collaborate with legal teams to interpret regulations. Act as the primary contact for external auditors. Lead planning, documentation, and closure of compliance audits. Conduct in-depth risk assessments and advise mitigation strategies. Maintain up-to-date risk registers and track remediation actions. Draft and implement information security policies. Establish and enforce internal controls for IT and SaaS environments. Apply COSO, COBIT, and ITIL best practices for governance. Review control effectiveness through regular audits. Design incident response plans and lead resolution efforts. Build awareness programs and train teams on compliance best practices. Drive a culture of compliance and operational integrity. Communicate risk and compliance posture to executive leadership. Document and maintain audit trails for transparency. Contacts Email: careers@grazitti.com Address: HSIIDC Technology Park, Plot No – 19, Sector 22, 134104, Panchkula, Haryana, India

The Technology GRC Manager at C1 is responsible for overseeing and managing the risk assessment, remediation, and monitoring of information and technology process risks. In this role, you will ensure that all risk and compliance activities are effectively performed by various control functions. As an internal consultant, you will provide guidance to operating functions and business lines on risk-related matters, in addition to identifying, assessing, quantifying, reporting, communicating, mitigating, and monitoring process risks to uphold the organization's overall security and compliance posture. Your responsibilities will include ensuring strong governance on risk and compliance, managing risk assessment, remediation, and monitoring of information and technology process risks, serving as an internal risk consultant, and collaborating with control functions to track and mitigate identified risks. You will work closely with technology leaders to identify control gaps, act as a subject matter expert for risk and controls related to operations, and maintain strong working relationships with stakeholders. Additionally, you will review and refine policies and processes based on industry best practices, track identified risks, and ensure their closure within defined timelines, as well as prepare and maintain risk heat maps and risk registers. To excel in this role, you must possess excellent executive-level communication skills, strong working relationships with team members, and the ability to motivate them. Knowledge in areas such as Application Security, Data Security, Identity Access Management, Information, Infrastructure Technology, GDPR, and ISO Audits is essential. A solid understanding of the Risk Management Lifecycle and exposure to standards like SOX, COBIT, PCI-DSS, and NIST Control are required. An understanding of Security incident response aspects is desirable, along with good analytical, problem-solving, and interpersonal skills. The ideal candidate should have a B.E in Computer Science/Information Technology or equivalent qualification with 8-12 years of experience. An industry-recognized certification in information security such as CISSP, CISM, CISA, etc., would be advantageous.,

Role & responsibilities Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either System audit, IT reviews, Technology Risk Assessments & Gap Assessments inline with circulars issued by SEBI/RBI/IRDAI. Technical Strong experience in review of guideline defined, conducting regulatory assessments for BFSI (E.g. RBI, SEBI, IRDAI). Global guidelines knowledge which includes NIST, ISO27001, PCI-DSS, COBIT, etc. Assisting in remediating gaps on the defined guidelines for the client. Performing System Audit and conducting technology landscape review. Having worked on Information Technology Risk Assessment areas such as NIST, ISO27001, PCI-DSS, COBIT, etc. Experience of handling IT audits and reviews. Good understanding on technology topics related to cyber security, encryption, architecture resiliency , business continuity, disaster recovery, IT Governance, Third party outsourcing risk and information security/technology risk. Certification - CISA, CISSP, ISO27001 Soft Skills Good presentation and report writing skills is mandatory. Excellent communication skills and confident demeanor Experience of working with client stakeholders Good problem-solving skills. Preferred candidate profile

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. EY- Cyber Risk Compliance and Resilience – Senior Manager As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Senior Manager who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 15 years of overall experience At least 10 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. EY- Cyber Risk Compliance and Resilience – Senior Manager As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Senior Manager who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 15 years of overall experience At least 10 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. EY- Cyber Risk Compliance and Resilience – Senior Manager As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Senior Manager who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 15 years of overall experience At least 10 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. EY- Cyber Risk Compliance and Resilience – Senior Manager As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Senior Manager who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 15 years of overall experience At least 10 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. EY- Cyber Risk Compliance and Resilience – Senior Manager As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Senior Manager who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 15 years of overall experience At least 10 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

Position Overview Job Title: I&A On-boarding Information Security Analyst, Associate Location: Pune, India Corporate Title: AS Role Description As “I&A On-boarding Information Security Analyst” you will be part of Access Lifecycle On-boarding global family which includes access management for application end user recertification On-boarding, user access for request & approval, user provision On-boarding and Functional Taxonomy SoD On-boarding & maintenance as well as IDAHO (Access concept) SME as central DB services. Deutsche Bank is looking for bright and open-minded individuals to support Business Identity & Access Services within Access Lifecycle Solution On-boarding team for application end user request & approval as well as end user access provision central service On-boarding. A key success factor of the Access Lifecycle Solution On-boarding team is the quick understanding of complex application set ups for Identity & Access Management and support Information Security Officer (ISO) and IT Application Owner (ITAO) along end-to-end central solution On-boarding process across DB. You will gain insights into the complete Identity & Access Management lifecycle as you will learn about the roles and entitlements and their set up, segregation of duties, application authentication and authorization process. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities As “I&A On-boarding Information Security Analyst” you will be responsible to perform On-boarding assessments if an IT asset is applicable for end user application access for request & approval and business requirement gathering (based on existing KOP ID Admin procedures) to identify, how future user provisioning (ID Admin via automated connector or manual, centrally or decentral managed) will be set up between central request & approval platform and to be on-boarded application in adhering to Information Security (IS) internal and regulatory requirements. Efficiently engage, manage, and influence the main stakeholders, along with application On-boarding process including Information Security Officer, IT Application Owner, Engineering and Operations teams Provide process improvement inputs to various stakeholders involved. Proactively seek ways to improve upon existing practices and processes. Display insight and ability in identifying issues and develop successful solutions. Report and escalate potential risks to the management to help avoid / minimize the impact. Work with multiple, distributed teams (across different locations) Support develops key operational procedures where necessary and ensure adherence to all such defined policies. Comfortable with associated disciplines of Security Policy and Governance in banking domain Very good presentation and communication skills allowing to communicate with our stakeholders. A structured and methodological way of working with the objective to deliver high quality results. Supports tough people decisions to ensure people performance is aligned with organization imperatives and needs. Addresses individual performance issues, where necessary, to drive for high performance. Pro-active and flexible working approach, Team spirit Your Skills And Experience Minimum 5 years working experience in Identity & Access Management, Governance, Risk and Control related topics. Team management experience Basic knowledge and/or willingness to work with industry best practices and frameworks like ISO27001, NIST, CSA CCM, COBIT, ITIL Good business analyses knowledge of system design, development, implementation, and user support principles and practices Knowledge of IT Service Management or IT Governance or IT Delivery Management or IT Project Management or IT Delivery background or IT Security Knowledge on Database Systems, application interactions and server operating systems Excellent Excel knowledge Competencies: Self-motivated and flexibility to work autonomously in virtual and multicultural teams. Good communication skills (both written and verbal), fluent in English (written/verbal) Good analytical skills and problem-solving abilities Pro-active and flexible working approach A structured and methodological way of working with the objective to deliver high quality results. Flexible mindset with an eye for detail and continuous improvement Good understanding in business related information Being flexible, open minded, able to share information, transfer knowledge and expertise to stakeholders and other team members. How We’ll Support You Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.