9 Controls Testing Jobs

4+ years of Compliance experience Relevant experience in Financial Services industry and / or risk & control domains covering operational risk, controls testing / evaluation, compliance, internal audit, risk management etc. Discuss Legal & Public Affairs related laws (vast & Complex) with I&P Senior Leadership and Key Stakeholders in the US. Oversee the Front Line's execution and challenges appropriately on compliance related decisions CS Certification & Legal experience required.

Role & responsibilities Strong understanding of ITGC, ITAC, SOC reports, and working knowledge of Audit tools & ServiceNow (SNOW) • Exposure to SOX, NIST 800-53, ISO 27000 series standards. Ability to support and document audit findings including action plans, remediation timelines, and closure tracking. Comfortable working from office/client location and in shift-based schedules Strong communication, stakeholder management, and project management skills Candidates holding CISA, CISM, ISO 27001 certifications will have an added advantage Preferred candidate profile Educational Background: Graduation / B.E. / B. Tech in any specialization Required Experience: 1-8 years in IT Audits, including ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC. Experience with IT Financial Audit, Business Automated Controls, and IT Risk Consulting or other compliance/regulatory audits. Perks and benefits How you'll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their careers Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you

Role & responsibilities Strong understanding of ITGC, ITAC, SOC reports, and working knowledge of Audit tools & ServiceNow (SNOW) • Exposure to SOX, NIST 800-53, ISO 27000 series standards. Ability to support and document audit findings including action plans, remediation timelines, and closure tracking. Comfortable working from office/client location and in shift-based schedules Strong communication, stakeholder management, and project management skills Candidates holding CISA, CISM, ISO 27001 certifications will have an added advantage Preferred candidate profile Educational Background: Graduation / B.E. / B. Tech in any specialization Required Experience: 1-8 years in IT Audits, including ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC. Experience with IT Financial Audit, Business Automated Controls, and IT Risk Consulting or other compliance/regulatory audits. Perks and benefits How you'll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their careers Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you

We are seeking an experienced and highly skilled SOX Consultant to join our team at PayPal (offshore). The ideal candidate will have a strong background in IT and a proven track record in IT SOX compliance. As a SOX Consultant, you will be responsible for assessing, testing, and reviewing IT controls, particularly in the realm of IT Application and IT General Compliance (ITGC). Key Responsibilities: Perform IT SOX Compliance activities, including both IT Application Compliance and IT General Compliance (ITGC) . Conduct risk assessments to identify control gaps, evaluate risks, and provide recommendations for mitigation. Review and test IT controls for effectiveness and compliance with SOX regulations. Provide detailed narrative documentation of control testing, assessment findings, and remediation efforts. Collaborate with cross-functional teams to evaluate application architecture and flow diagrams for onboarding new applications. Review controls documentation and ensure compliance with internal and external regulations. Work with clients, particularly in the software industry, to assess and test ITGC controls . Participate in controls testing , ensuring that all activities are in alignment with SOX compliance standards. Develop and maintain clear documentation related to SOX processes and controls. Provide recommendations to improve internal controls and mitigate risks in IT processes. Act as a liaison between IT, compliance, and audit teams to ensure smooth compliance workflows. Key Requirements: 5+ years of experience in the IT industry with a focus on IT compliance and risk management. Proven experience in IT SOX compliance , particularly with IT Application Compliance and IT General Compliance (ITGC) . Hands-on experience in risk assessments , controls review , and controls testing . Experience working with ITGC controls for software clients. Strong ability to create clear and concise narrative documentation . Ability to read and understand architecture diagrams and flow charts to onboard and assess new applications. Strong analytical, problem-solving, and communication skills. Proactive attitude with a willingness to contribute beyond basic responsibilities. Familiarity with relevant SOX standards and regulatory requirements. Preferred Qualifications: Experience working in an offshore environment. Certifications such as CISA , CISSP , or equivalent are a plus.

In this role, you will: Participate in less complex development and design of methodologies and standards for review activities companywide in alignment with the risk management framework Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs, risks, and controls according to standards and other applicable policies within Independent Testing Support and implement less complex initiatives with low to moderate risk and exercise independent judgment to guide risk reporting, escalation, and resolution Present recommendations for resolving more complex situations and exercise independent judgment while developing expertise in risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners and management Required Qualifications: 2+ years of Independent Testing experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: Develop and design methodologies and standards for review activities across the Enterprise in alignment with the Risk Management Framework Experience in conducting walkthroughs, design and operational effectiveness 1+ year of good hands-on controls testing, audits, testing and validation

Divisional Risk and Control Analyst TDI Controls Testing & Assurance, AS Role Description Infrastructure Chief Operating Office (COO) is responsible for the effective operation of the infrastructure functions, driving operational efficiency whilst supporting the effective delivery of infrastructure services in line with business objectives and control requirements. It also includes oversight of Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). Infrastructure Divisional Control Office (IDCO) as part of Infrastructure COO, provides services to multiple functions in infrastructure. The IDCO function is a dedicated risk, control, and regulatory oversight function, with prime responsibility for managing and proactively mitigating risk across the full breadth of the Technology and Infrastructure organization. Function also provides a consolidated view and central coordination of (non-financial) risks, as well as effective, efficient, and consistent standards and policies. (Technology Data & Innovation) TDI Control Testing & Assurance team part of IDCO identifies, tracks and reports control testing & assurance activities, conducts independent controls testing (design and operating effectiveness) on different risk types in line with the Control Testing Standards. The team also focuses on regulatory and risk-based assurance requirements. This role is within TDI Control Testing & Assurance team. Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Flexible working arrangements Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Perform Control Testing in line with Control Testing methodology/minimum standard Identify control deficiencies (findings), risks related to elements of controls, participate in findings agreement with stakeholders, escalate potential issues and exception items noted during the testing to senior management for discussion and further investigation, if deemed necessary Prepare Control Testing workpapers for senior management detailing testing results, document findings with highest quality Track Control Testing identified findings, perform required follow-up on open findings Consider regulatory and internal firm policy requirements as well as established best practices for control assurance. Support controls assurance activities Support in monitoring Control testing teams adherence to Control Testing methodology/minimum standards Support, contribute in managing Control Testing vendor resources, where applicable Track testing related effort/budget Plan Vs. Actuals throughout the testing lifecycle Build and maintain solid working relationships with key stakeholders such as within the DCO, IDCO, TSCO, GTI and other Testing Teams including Divisions/sub-divisions, 2 LoD and Group Audit (GA) Your skills and experience University degree preferably in Computer Science, Mathematics, Engineering or a related subject or equivalent qualification in the areas of information security. Professional/industry recognized qualifications e.g., CISA, CISSP, CISM, CRISC are beneficial. Experience in Cloud Security audit/testing, GCP (Google Cloud Platforms) or Professional/industry recognized qualifications e.g., CCSP, CCSK will be an advantage Good knowledge of auditing IT application controls, e.g., from IT audits or IT risk management. Understanding of the relationship between IT risk and underlying business process risk. Knowledge of regulations governing financial institutions is beneficial. Strong written and verbal communication skills and the ability to communicate effectively in conflict situations. Strong organizational skills and attention to detail. Ability to work under pressure, multi-task and prioritize workload. Strong analytical skills and structured thought process with the ability to clearly articulate control deficiencies and related risk Flexible, proactive, and innovative mind set with strong organizational skills to take ownership and responsibility for agreed targets and to meet them within budget to enable a timely and efficient completion of projects. This is an IC (individual contributor) role.

Role Description The team is part of the Team Business Risk & Controls (BRC). The PB BRC guards the Protect agenda by overseeing non-financial risks, conduct & control topics and regulatory changes. The team works across global PB franchise delivering complex key risk and control agenda, adding value for the Business to reduce complexity and enhance controls. The team works with cross-functional and global teams, collaborating with multiple stakeholders globally across the bank. About Deutsche Bank: Deutsche Bank is the leading German bank with strong European roots and a global network. Were driving growth through our strong client franchise. Against a backdrop of increasing globalization in the world economy, Deutsche Bank is very well-positioned, with significant regional diversification and substantial revenue streams from all the major regions of the world. We serve our clients real economic needs in commercial banking, investment banking, private banking and asset management. We are investing heavily in digital technologies, prioritizing long term success over short-term gains, and serving society with ambition and integrity. All this means a career packed with opportunities to grow and the chance to shape the future of our clients. About the business division Private Bank combines Deutsche Banks private clients business in Germany and its international business with private and commercial clients together with Wealth Management in a single division. In both the domestic German market and worldwide the Private Bank provides high-quality advice to ~20 million clients and a broad range of financial services in many countries ranging from day-to-day banking services right through to advisory services for sophisticated Private Banking and Wealth Management clients. In Italy, Spain, Belgium, and India the Private Bank offers its services to corporate clients as well as small and medium-sized enterprises. The Private Bank is a strong pillar of the Group: a modern bank that boasts capital markets and financing expertise, a strong global network, and modern digital services. Your key responsibilities This role is part of PB Controls Team, within Private Banks Business Risk and Controls (BRC) Global functions. This position is based out of Mumbai. The individual would be required to support Private Banks efforts towards a strong controls culture by actively supporting and owning various framework driven requirements. Role specifically requires the individual to work closely with PB business stakeholders, and BRC colleagues, to centrally support the requirements from the NFR Controls Framework including: Control Advisory: Review and challenge any new proposed key controls, support Control assessments and other NFR framework driven requirements. Control Change Process: Providing support to Control change proposals as necessitated by existing findings, any identified control GAPs, changes in PB Business landscape, cross divisional reviews etc. Controls Inventory: Gatekeep Private Banks Key controls inventory to ensure completeness, accuracy and traceability of control instance records for Private Bank. Control Assurance: Contribute to Private Banks Annual Control Assurance Planning process; and the execution of Annual Control Assurance plan. This includes Independently leading Control Operating Effectiveness and/or Design Effectiveness testing requirements, as part of the Annual Assurance deliverables. Support Other deliverables as part of Banks Control framework requirement incl. Control Assessments, Annual certifications, Establishing Findings to Key Control Linkages accurately, MCS Gaps and Issues to effectively support with data points for downstream processes Contribute to divisional/ Global projects and CTB activities, from Controls perspective Develop understanding of other Non-Financial risk frameworks and related processes Contribute to the development and build know-how within the team Developing effective partnerships with Cross divisional DCOs, Business stakeholders/colleagues & Infrastructure partners Your skills and experience Education & Experience: Strong understanding of Non-Financial Risk and Control design principles Extensive experience with Control Records, Controls Testing, Assurance or Business Control Unit Strong work ethic, commitment to excel and capacity to work effectively with limited supervision Structured and detail-oriented with strong analytical and problem-solving skills Must be an effective communicator (written and spoken), with ability to influence senior stakeholders University degree Personal Characteristics: Delivery-focused, able to support deliverables to deadlines Eagerness to learn and adapt to new situations and processes Ability to learn quickly and think laterally Strong Team Player skills as well as demonstrated capability to own tasks Driven and able to handle day-to-day routine as well as cope with shifting priorities to meet needs and demands

Maintain documentation of IT and information security controls as part of on-going compliance efforts (SOX, SSAE-16 SOC, etc.): Work directly with Internal Audit and control owners to obtain evidence for our SOX and SOC compliance activities Required Candidate profile BS in Computer Science, Information Security, Accounting or a related field 4+ years of overall experience with 3+ years of relevant experience in IT audit, Controls Assurance, Security Assurance

You will be joining the Control Assurance & Risk Identification (CARI) Team in the Investment Banks Divisional Controls Office (DCO). DCO is responsible for the global control environment across IB and is closely aligned with the business, providing central oversight for Front Office (FO) control framework activities, including design, implementation, and ongoing assurance/validation of key FO owned controls. The purpose of the CARI Team is to provide IB with assurance that Non-Financial Risk key controls are complete, accurate, designed and operating effectively. The CARI Teams responsibilities include: Testing the design and operating effectiveness of IB FO owned key controls Checking and challenging proposed control designs by Finding/Control Owners to ensure risks are adequately mitigated in the long term Guiding Finding/Control Owners as to what an effective and sustainable control entails Performing quality assurance (QA) on Investment Bank (IB) Governance Fora Executing detection tests to stress test the operating effectiveness of key controls Running Scenario Analysis workshops and Emerging Risk Forums either to explore potential Non-Financial Risk threats or to stress test the control environment Reviewing the design of new FO owned key controls before approval at the IB Control Design Authority Council (CDA) Identifying and monitoring metrics to check that controls are operating Your key responsibilities Testing the design and operating effectiveness of IB FO owned key controls Reviewing Action and Finding closure packs to check the remediation is in line with expectations and asking Finding owners to make changes where required, before submitting the Finding for closure by Group Audit or Compliance. Guiding Finding/Control Owners as to what an effective and sustainable control entails Supporting and overseeing Assurance Team members in Mumbai when they perform assurance Your skills and experience Strong understanding of control design principles and Non-Financial Risk Extensive experience in Audit, Controls Testing, Assurance, or the Business Control Unit with in-depth knowledge of IB products Effective communicator, who can write concisely, present effectively, and manage and influence senior stakeholders Proactive and delivery focused with the ability to work in a fast-paced environment with tight deadlines Structured and detail-oriented with strong analytical and problem-solving skills Proficient in Excel, PowerPoint, and Word