86 Coso Jobs - Page 3

NY ; Hybrid Role: 3 days a week in office Apply To: diane.katz@primesoftinc.com / diane.katz@primesoftinc.com / 561-573-1581 Purpose of Position Our Client, a NYC Headquartered Banking Institution has reached out to us to help find and place the position of Senior Internal Auditor. This position is responsible for performing audit assignments including planning, conducting interviews, documenting, and testing all necessary information for an accurate assessment of risks and internal controls and assisting in drafting of the audit report with minimal oversight. Lead team liaison in data analytics, preparation of Audit Committee materials, and regulatory requests. Essential Job Functions Applies knowledge of Bank operations to develop and maintain risk assessments and contributes results to the audit planning process. Obtains and records an understanding of the Bank s processes and identifies and evaluates risks and the internal controls that mitigate the risks in all assigned operational processes. Develops risk and controls matrices and/or audit programs with minimal supervision. Performs assigned compliance and substantive testing procedures for audits, for assistance to regulators and external auditors, and for compliance with the Sarbanes-Oxley Act. Ensures audit assignments are appropriately documented, accurate, complete, and within budget. Prepares audit report drafts and other written communications with minimal supervision. Resolve requests and review notes promptly. Obtains data and prepares quarterly Audit Committee materials with minimal supervision. Advises the Internal Audit team on the use of data analytics techniques to enhance overall efficiency and effectiveness of audits. Maintains effective relationships within the team, the department and the Bank. Provides timely communication to Internal Audit Management and informs them of significant issues that surface while conducting audits. Maintains continuing education requirements. Maintains appropriate levels of confidentiality. Perform other duties as directed. Knowledge, Skills and Experience Requirements Bachelor s degree in accounting or finance or equivalent experience. Solid knowledge of auditing principles, practices and compliance standards. Strong verbal and written communication skills. Strong analytical skills. Strong data analytics. Interpersonal and relationship building skills. Knowledge of IIA Standards. Knowledge of the Sarbanes-Oxley Act of 2002. Knowledge of data analytics techniques and statistical applications. 3-5 years of financial services experience, internal or external auditing or public accounting experience with a focus on banks. Good understanding of COSO 2013 framework requirements. One or more of the following licenses or accreditations or progress toward achievement is preferred: Certified Public Accountant (CPA). Certified Internal Auditor (CIA). Certified Regulatory Compliance Manager (CRCM). Certified Trust & Financial Advisor (CTFA). Certified Fiduciary & Investment Risk Specialist (CFIRS). Certified Bank Auditor (CBA). Certified Financial Services Auditor (CFSA). Certified Community Bank Internal Auditor (CCBIA). Ability to positively interface and work well with all levels of staff and management (auditees and own department). High level of understanding of audit theory and knowledge of bank operations. Working knowledge of relevant computer programs, i.e. Microsoft Access, Word, Excel, core banking system and query. Ability to handle bank and client information and sensitive matters professionally and confidentially. Ability to manage multiple tasks and prioritize. Salary plus Benefits plus Bonus US Citizens and Green Card Holders Only Apply for this job Your Name Your Email Phone Linkedin Profile or link to a personal website Cover letter We are a technology partner for startups to large enterprises Work About Collaborate Contact

A career within Internal Audit services, will provide you with an opportunity to gain an understanding of an organisation s objectives, regulatory and risk management environment, and the diverse needs of their critical stakeholders. We focus on helping organisations look deeper and see further considering areas like culture and behaviours to help improve and embed controls. In short, we seek to address the right risks and ultimately add value to their organisation. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purposeled and valuesdriven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us . At PwC , we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (e.g., Preventive Controls; Detective Controls; Antifraud Controls; etc.) Mandatory skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (e.g., Preventive Controls; Detective Controls; Antifraud Controls; etc.) Preferred skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship

Exciting Career Opportunity in Risk Consulting. Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (e.g., Preventive Controls; Detective Controls; Antifraud Controls; etc.) Mandatory skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (e.g., Preventive Controls; Detective Controls; Antifraud Controls; etc.) Preferred skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship

UKG is seeking a dynamic and experienced Manager Internal Audit to lead and manage internal audits, overseeing a team of auditors specializing in internal controls and process evaluations, business audits, and compliance reviews. This hybrid-office role involves hands-on supervision and audit project management, mentoring the team, and ensuring the delivery of high-quality outputs. The ideal candidate will have a strong background in internal controls (ICFR), compliance (SOX), and business auditing, coupled with excellent leadership and full circle staff management skills. The Manager - Internal Audit will join an established and growing Global Internal Audit Team and will be working closely Internal Audit leaders and team members across the world. The role is expected to own full cycle of projects- from initial planning to final deliverables and issue follow-up. Our Internal Audit team fosters a culture of collaboration and innovation and utilizes top of the line audit tools and systems that ensure productive and engaging atmosphere. Key Responsibilities: a) Leadership & Team Management: Manage a small but growing team of business and financial controls focused internal auditors and foster a culture of continuous improvement and professional growth. Oversee the allocation of work and review of staff draft deliverables, ensuring audits are executed efficiently and in accordance with UKGs internal audit process and professional guidance. Provide guidance, training, and professional development to team members to enhance their skills and performance. b) Audit Planning & Execution: Contribute to project planning as basis for UKGs internal audit plan, ensuring alignment with organizational objectives and risk priorities. Oversee the planning, scoping, and execution of audits related to business processes, internal controls, and compliance with federal, state, and internal requirements. Ensure audits are performed in a professional, collaborative, and risk-focused manner while adhering to internal audit standards. c) Review & Reporting: Draft audit reports based on workpapers and observations by the team and ensure findings are clear, concise, and actionable. Develop issues in accordance with UKGs internal audit issue management process. Present audit results, key findings, and recommendations to senior management and other stakeholders. Monitor the implementation of audit recommendations and track their resolution. d) Risk Management & Compliance: Work closely with the Director - Internal Audit to identify and prioritize high-risk areas for audit coverage. Stay updated on regulatory and industry changes to ensure the audit approach remains current and relevant. Provide insights into enhancing internal controls, reducing risk, and ensuring compliance with applicable laws and regulations. e) Other: Collaborate with other departments, including risk management, compliance, and finance, to align audit objectives with organizational goals. Act as a trusted advisor to management, offering insights and recommendations to improve business processes and mitigate risks. Continuously improve the audit methodology, tools, and processes to enhance the effectiveness and efficiency of the internal audit function. Leverage data analytics and technology to provide deeper insights into audit findings and risks. Qualifications: - Bachelors degree in accounting, Finance, Business Administration, or a related field. Advanced degrees or certifications such as CA CPA, CIA or equivalent is highly preferred. - 7-10 years of experience in internal audit, with at least 35 years in a leadership or management role. - Strong knowledge of internal control frameworks (e.g., COSO), compliance standards (e.g., SOX, HIPAA), and audit methodologies. - Proven experience in leading audits across business processes, internal controls, and regulatory compliance and delivering impactful audit observations and recommendations. - Proficiency in using audit management tools and data analytics tools. Key Skills: Excellent leadership and team management skills, with a proven ability to mentor and develop high-performing teams. Strong analytical, problem-solving, and decision-making skills. Exceptional communication and interpersonal skills, with the ability to interact effectively with senior management and stakeholders. High attention to detail, with the ability to deliver high-quality audit results under tight deadlines. Ability to manage multiple priorities in a dynamic environment. Personal Attributes: - High level of integrity, professionalism, and ethical standards. - Proactive and results-oriented, with a focus on driving improvements. - Strong organizational and project management skills.

You will help assess the design and effectiveness of internal controls over financial reporting as part of Avalara s SOX program. You will work closely with process owners to address identified gaps or deficiencies through corrective action plans. You will perform follow-up audits to ensure remediation of findings and report on remediation efforts. You will Develop standardized best practices, and systems for Internal Audit, incorporating automated audit techniques and Artificial Intelligence. You will support operational audits and ad-hoc projects. You will help develop audit goals, scope, and programs, and prepare concise reports on audit results and findings. You will develop and deliver training on Sarbanes-Oxley Section 404 and other audit areas. You will help coordinate with external auditors on their annual audit plan and facilitate collaboration with affected teams. You will support internal investigations related to financial reporting matters as they arise and audit perspectives on special projects, including business acquisitions and financing transactions. What Youll Need to be Successful Bachelors degree in Accounting, Finance, or a related field; Master s. CA, CPA, or CIA credentials strongly CRMA, CISA, or related certifications. Minimum of 2 years in auditing in public accounting or at a public company. Understanding of US GAAP, COSO internal control framework, PCAOB audit standards, and regulatory requirements. Experience with ServiceNow.

Application Airbnb was born in 2007 when two hosts welcomed three guests to their San Francisco home, and has since grown to over 5 million hosts who have welcomed over 2 billion guest arrivals in almost every country across the globe. Every day, hosts offer unique stays and experiences that make it possible for guests to connect with communities in a more authentic way. The Community You Will Join Airbnb Capability Center was set up in 2017 in Gurgaon. We provide specialized operational services which allow Airbnbs business and responsibilities across the world. These include Finance Technology, Finance Shared Services, Analytics, Engineering, amongst other verticals. Our offices are home to multi-experienced teams with an understanding of our business and community. Were hospitable, fun and we welcome all with open arms. The difference you will make In the role of Associate Principal, Control Testing, the successful candidate will be responsible for continued development of our compliance program for Section 404 of the Sarbanes-Oxley Act of 2002. You will support design and testing of key business and entity level SOX controls in a rapidly changing and growing company and technology environment within the AirControl Financial Controls group. You will evaluate the design and effectiveness of SOX controls, provide guidance to process and control owners over controls, and lead coordination with other SOX stakeholders and external auditors. You will work directly with control owners in the business (e.g. accounting and finance teams) to evaluate the controls and support business partners in the implementation and maintenance of the controls and interact and support efforts of the Company s independent auditor. As part of the annual control evaluations, you will perform walkthroughs over processes and controls to evaluate the design, test samples to evaluate the operating effectiveness, evaluate gaps, and drive the remediation of deficiencies. The role requires a well-rounded controls focused professional with accounting and operational expertise. Excellent communication, resource allocation and project management skills are critical, as well as the ability to influence across functions and various levels. The position reports to the Director, Financial Risk & Controls that rolls up to the Head of Global Risk and Internal Audit. A typical day Participate in annual scoping and risk assessment exercises and determine testing approach for manual controls within the business processes Execute design and operating effectiveness testing over manual and entity level controls Evaluate changes made to key business processes and provide best practice recommendations on controls Apply a new perspective on existing controls to recommend efficiencies in testing and evaluation approaches Support business partners in maintaining internal control documentation over key processes Participate in annual 404 compliance activities with the external auditors, including identification, evaluation, and remediation of deficiencies Support the quarterly 302 certification process Your Expertise CA in Accounting or Finance or Management Information Systems or related field Minimum of 7+ years of experience, preferably with some years of external audit or consulting experience with US publicly traded companies Understanding and experience with the requirements of Sarbanes-Oxley Act of 2002, Section 404, COSO framework, GAAP standards and PCAOB standards Experience with external auditor requirements and expectations Mission-driven, enthusiastic to learn and grow; team-oriented with a positive attitude and able to work in hyper-growth, fast paced environment Ability to work collaboratively with people at all levels of the organization, identify risks and anticipate questions, and provide actionable recommendations based on industry best practices and use influence to ensure execution Strong risk management experience, including: performing annual risk assessments, executing annual SOX control testing, and evaluating control deficiencies Role model for Airbnb core values Our Commitment To Inclusion & Belonging How Well Take Care of You: Our job titles may span more than one career level. The actual base pay is dependent upon many factors, such as: training, transferable skills, work experience, business needs and market demands. The base pay range is subject to change and may be modified in the future. This role may also be eligible for bonus, equity, benefits, and Employee Travel Credits. Pay Range 2,380,000 3,400,000 INR Offices: Gurugram, India

Join Barclays as Vice President, Group SOx Assurance where youll play a pivotal role in managing Barclays Group level and BX (Barclays Execution) processes for design and operating effectiveness testing of SOx controls, including Significant Unusual Transactions and assessment of SUADs (Summary of Unadjusted Audit Differences). You will be responsible for providing assurance testing for the Entity Level Controls for Barclays ; leading the Group SOx Scoping Activity and SOx Methodology Annual Refresh and align with the overall Barclays Control Framework, COSO (Committee of Sponsoring Organizations) and ERMF (Enterprise Fraud Risk Management). Your role will have the opportunity to work closely with the external auditors in India and globally, from a Group SOx perspective. This is a people leader role, and you re expected to lead the Group team in India and functionally responsible for the UK Group team, front-ending the overall Controls Finance engagement for Barclays Execution (BX) Services. To be successful in this role, you should have: Financial Services industry experience preferably from audit or assurance background in Group/ Head Office/ Corporate Finance areas. Group Reporting and Consolidation experience in Financial Reporting areas. Understanding of minimum standards for Assurance, SOx and control issues reporting. Effective written and oral communication skills, with an ability to present credibly to senior stakeholders. Good stakeholder and people management skills. Some other highly valued skills may include: Formal accounting qualification like Chartered Accountant and certification like CIA (Certified Internal Audit) is preferred. Controllership experience. Extensive working knowledge of operational risk control processes and practices, including experience in their application across functions. You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role is based in our Chennai / Noida office. Purpose of the role To partner with the bank, to provide independent insurance on control processes and advise on improvements to ensure the efficiency and effectiveness of the bank s internal controls framework. Accountabilities Collaboration across the bank to maintain a satisfactory, robust, and efficient control environment through the execution of ad-hoc assessments and testing on the design and operational effectiveness of the internal controls, aligned to control policies and standards. Development of detailed test plans and procedures to identify weaknesses in internal controls and other initiatives aligned to the bank s control framework to mitigate any potential risks and issues, prioritised by its severity to disrupt bank operations, potential losses, and reputational impact. Communication of key findings and observations to the relevant stakeholders and business units to improve overall control efficiency and provide corrective actions to senior managers. Collaboration with other control professionals to resolve complex issues and ensure consistent testing methodologies across the bank. Development of a knowledge centre containing detailed documentation of control assessments, testing on design and operational effectiveness of procedures, findings, and the distribution of material on internal controls to train and upskill colleagues within the bank. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures.. If managing a team, they define jobs and responsibilities, planning for the department s future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements.. If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others.. OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions.. Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.

Join Team Amex and lets lead the way together. How will you make an impact in this role Our industry is rapidly evolving, and we need courageous, quick thinkers who can shape the strategic decisions that lead our business forward. Whether it s negotiating with some of our largest global partners or creating next year s financial plan, you can influence both our day-to-day PL and the future direction of the company. As part of the team, you can have the opportunity to learn and use the latest data tools and technologies and explore a range of roles to grow your career. Find your place in finance on #TeamAmex. The objective of the SOX Office Governance team is to provide specialized and strategic risk advisory specific to the Sarbanes-Oxley Act as it pertains to AXP. Finance is looking for a SOX Governance Manager with a background in Financial Reporting who will be focused on ensuring adherence to and providing SME advisory regarding the Sarbanes-Oxley (SOX) Act. This role will involve extensive collaboration with multiple partners across numerous business units, functional areas, and geographies. The Manager SOX Governance will: Review, risk assess and evaluate AXP business processes for the Financial Reporting Pillar and collaborate with stakeholders like Control Management, Business teams and ORGG Provide technical SOX and ICFR guidance and advisory to the AXP enterprise through targeted trainings to increase awareness and understanding of SOX including the COSO framework Oversee AXP s program to review third-party vendors including SOC-1 and equivalent report assessments Advise Business Tech partners and Automation COEs around implementation and delivery of automated solutions processes which impact AXP s internal controls over financial reporting Implement the SOX Office s risk-based approach to drive SOX process walkthroughs and maintain effective internal controls over financial reporting Manage quarterly deliverables for AXP s Deficiency Evaluation Committee reporting for senior leadership Lead ICFR assessment of Management / Regulatory Driven projects Preferred Qualifications: Bachelor s degree in Accounting, Finance, or related field. Certifications related to accounting and audit (e.g., CPA/CA, CISA, CIA) are advantageous Subject matter expertise in the Sarbanes-Oxley Act, financial reporting risk, Information Technology Ability to implement change and function as a catalyst to further improve the internal controls over financial reporting framework across global processes and system application controls. Ability to provide thought leadership around key initiatives of innovation and efficiency for the SOX Office Strong understanding of risk and controls, audit procedures, Sarbanes-Oxley and process self-assessments Benefits include: Competitive base salaries Bonus incentives Support for financial-well-being and retirement Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location) Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need Generous paid parental leave policies (depending on your location) Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunities

About PhonePe Group: PhonePe is India s leading digital payments company with 50 crore (500 Million) registered users and 3.7 crore (37 Million) merchants covering over 99% of the postal codes across India. On the back of its leadership in digital payments, PhonePe has expanded into financial services (Insurance, Mutual Funds, Stock Broking, and Lending) as well as adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store which is Indias first localized App Store. The PhonePe Group is a portfolio of businesses aligned with the companys vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services. Culture At PhonePe, we take extra care to make sure you give your best at work, Everyday! And creating the right environment for you is just one of the things we do. We empower people and trust them to do the right thing. Here, you own your work from start to finish, right from day one. Being enthusiastic about tech is a big part of being at PhonePe. If you like building technology that impacts millions, ideating with some of the best minds in the country and executing on your dreams with purpose and speed, join us! We Are Looking For Responsibilities: Develop and execute an annual management testing plan for ICFR controls, Anti-corruption financial controls and group wide controls. Ensure that gaps are remediated timely by proactively engaging with the business, tech and controllership team. Prepare and maintain documentation of each key control (ICFR, ACFC group wide) and engage with internal external auditors/stakeholders on controllership behalf as required. Identify and communicate potential risks and control weaknesses to senior management. Prepare clear, concise, and insightful audit reports summarizing findings and recommendations. Identify opportunities for process improvements and efficiency gains within the internal financial control team. Contribute to the development and enhancement of audit methodologies and tools. Supervise, mentor, and develop a team of internal risk and control auditors, fostering a collaborative and high-performing environment. Provide guidance and feedback to team members, ensuring quality and consistency in risk management work. Qualifications: Minimum of 8-10 years of progressive experience in internal audit / external audit (tech + process), with a proven track record of success. Strong understanding of internal audit standards, risk management frameworks (e.g., COSO), and control methodologies. Strong communication, presentation, and interpersonal skills. Experience in leading and managing audit teams. PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. Read more about PhonePe on our blog . Life at PhonePe PhonePe in the news

You Lead the Way. We ve Got Your Back. At American Express, you ll be recognized for your contributions, leadership, and impact every colleague has the opportunity to share in the company s success. Together, we ll win as a team, striving to uphold our company values and powerful backing promise to provide the world s best customer experience every day. And we ll do it with the utmost integrity, and in an environment where everyone is seen, heard and feels like they belong. Join Team Amex and lets lead the way together. How will you make an impact in this role? Our industry is rapidly evolving, and we need courageous, quick thinkers who can shape the strategic decisions that lead our business forward. Whether it s negotiating with some of our largest global partners or creating next year s financial plan, you can influence both our day-to-day P&L and the future direction of the company. As part of the team, you can have the opportunity to learn and use the latest data tools and technologies and explore a range of roles to grow your career. Find your place in finance on #TeamAmex. The objective of the SOX Office Governance team is to provide specialized and strategic risk advisory specific to the Sarbanes-Oxley Act as it pertains to AXP. Finance is looking for a SOX Governance Manager with a background in Financial Reporting who will be focused on ensuring adherence to and providing SME advisory regarding the Sarbanes-Oxley (SOX) Act. This role will involve extensive collaboration with multiple partners across numerous business units, functional areas, and geographies. The Manager SOX Governance will: Review, risk assess and evaluate AXP business processes for the Financial Reporting Pillar and collaborate with stakeholders like Control Management, Business teams and ORGG Provide technical SOX and ICFR guidance and advisory to the AXP enterprise through targeted trainings to increase awareness and understanding of SOX including the COSO framework Oversee AXP s program to review third-party vendors including SOC-1 and equivalent report assessments Advise Business Tech partners and Automation COEs around implementation and delivery of automated solutions processes which impact AXP s internal controls over financial reporting Implement the SOX Office s risk-based approach to drive SOX process walkthroughs and maintain effective internal controls over financial reporting Manage quarterly deliverables for AXP s Deficiency Evaluation Committee reporting for senior leadership Lead ICFR assessment of Management / Regulatory Driven projects Preferred Qualifications: Bachelor s degree in Accounting, Finance, or related field. Certifications related to accounting and audit (e. g. , CPA/CA, CISA, CIA) are advantageous Subject matter expertise in the Sarbanes-Oxley Act, financial reporting risk, Information Technology Ability to implement change and function as a catalyst to further improve the internal controls over financial reporting framework across global processes and system application controls. Ability to provide thought leadership around key initiatives of innovation and efficiency for the SOX Office Strong understanding of risk and controls, audit procedures, Sarbanes-Oxley and process self-assessments Benefits include: Competitive base salaries Bonus incentives Support for financial-well-being and retirement Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location) Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need Generous paid parental leave policies (depending on your location) Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunities

Key Responsibilities 1. Assist in Control Walkthroughs i) Participate in process walkthroughs to understand business processes and controls. ii) Document control processes, identify key risks, and assist in evaluating the effectiveness of internal controls. 2. Perform SOX Control Testing i) Execute testing procedures to assess the design and operating effectiveness of internal controls in compliance with the Sarbanes-Oxley Act (SOX). ii) Gather, review, and validate audit evidence to support audit findings. iii) Work closely with process owners to address control deficiencies and recommend remediation plans. 3. Perform Substantive Testing i) Conduct substantive audit procedures, including sampling and data validation. ii) Perform analytical reviews to identify discrepancies or anomalies in financial and operational data. iii) Document test results and assist in preparing audit work papers. 4. Perform Internal Audits i) Assist in executing internal audit assignments across different business functions. ii) Identify process inefficiencies, control gaps, and compliance risks. iii) Support in drafting audit reports and recommendations to improve internal controls and operational effectiveness. Competencies and skills We are seeking a highly motivated and detail-oriented Internal Audit Trainee to join our Internal Audit team. This role provides an excellent opportunity to gain hands-on experience in internal auditing, SOX compliance, and control testing. The trainee will assist in performing walkthroughs, control testing, substantive testing, and internal audits under the guidance of experienced auditors. Qualifications Bachelor s degree in Accounting, Finance, Business Administration, or a related field (or currently pursuing). Basic understanding of internal auditing principles, risk management, and SOX compliance. Strong analytical and problem-solving skills. Attention to detail and ability to work with large datasets. Proficiency in Microsoft Excel, Word, and PowerPoint Good communication and interpersonal skills. Ability to work independently and collaboratively in a team environment. Preferences: (Preferred attributes for the position, if any) Basic knowledge of auditing frameworks such as COSO, PCAOB, and risk-based auditing. Exposure to audit tools and techniques. Internship or prior experience in internal audit, risk, or compliance (preferred but not mandatory). Important Facts

Key Responsibilities: Governance & Risk Management : Overseeing technology-driven processes, managing risks, and ensuring compliance within the organization. Risk & Control Assessments : Working closely with management to identify, assess, and monitor risks and controls related to technology and security. Collaboration : Collaborating with process owners to create risk and control matrices, process narratives, and flowcharts. Control Effectiveness : Assessing the design and operating effectiveness of technology-related processes and controls. Self-Assessments & Audits : Conducting reviews of Risk and Control Self-Assessments (RCSAs) and supporting audits. Project Management : Overseeing project status, identifying risks and roadblocks, and ensuring project alignment with management and audit requirements. Regulatory Compliance : Advising management on regulatory compliance, especially regarding security and technology issues. Team Development : Providing feedback to team members and helping them with growth opportunities. Time Management : Balancing competing priorities to keep projects on track. Skills & Qualifications: Educational Background : Bachelor's degree in Information Systems, Computer Science, or related field. Experience : Minimum of 3-5 years in operations and technology governance, risk management, compliance, and audit. Compliance Frameworks Knowledge : Familiarity with standards such as COBIT, NIST, GLBA, SOX, PCI, ISO27001. Certifications : Professional certifications such as CPA, CIA, CISA, CISM, or CISSP preferred. Risk Management Expertise : Proficiency in risk management tools and methodologies. Communication Skills : Ability to communicate complex issues clearly and effectively. Project Management Tools : Experience with tools like ServiceNow, Predict360, Jira, and Microsoft Office tools (Word, Excel, PowerPoint, Visio). Collaboration & Independence : Ability to work well both independently and as part of a team. Audit Experience : Experience with regulatory exams, SOX compliance, and internal/external audits. Attention to Detail : Strong organizational and prioritization skills. Soft Skills: Strong communication and writing skills. Demonstrated ability to build relationships with senior management. Ability to manage multiple projects simultaneously.

Location - Bengalore, Chennai, , Pune, Kolkata, Kerala, Noida, Gurgaon EXP - 3-7 Years Your key responsibilities are to Graduate (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc. with at least 3-7 years of experience Bring your significant experience in applying relevant technical knowledge in at least one of the following engagements: (a) ISO assessments (b) NIST assessments (c) Data privacy audits (d) Network and Infrastructure audits (e) Cyber Maturity Assessment (f) IT Policies and Standards Assessment (g) IAM and IT Asset Management (h) IT Health Check Test and supervise the delivery of assigned controls not limited to ITGC and ITAC but System Architecture, Operating Systems, Databases, Networks, Security Systems, Cloud Services, Asset Inventories, Incident Management, Recovery Management, ISO27001 & NIST assessment, Privacy Assessment, Cyber Maturity Assessment, IT Policies and Standards Assessment and Software Development Lifecycle (SDLC); using experience and knowledge to intervene and redirect testing as required, resolving, or redirecting escalations as required. Review IT Policies and Standards and ensure that they are as per the different industry standard. Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Familiar with IT industry frameworks such as ISO27001, NIST, PCI-DSS, SOX, FDA, HIPAA: Privacy, HIPAA: Security and HITECH Act. Third party reporting standards (particularly SSAE16), other reporting and industry specific standards and, if applicable, trust-based standards such as SysTrust and WebTrust.

Preferred Qualifications/ Skills • Preferred experience working in an international client-facing role on SOX and Audit engagements. • Qualified Accountant / Auditor with one or more degrees like CA, CPA, CIA, MBA • Required overall experience in internal and/or external audit, process re-engineering, process reviews, Sarbanes-Oxley implementation, Finance function or risk management function at a Top Corporate with meaningful experience in SOX projects. • Must be able to work at times, multiple assignments simultaneously. • Excellent report writing and presentation skills, analytical mind, and problemsolving abilities. • The position requires the ability to work effectively with all levels of staff and balance. • confidential information discretely and expertly. • Good PC skills, including Word, Excel, and Visio. • Excellent communication and teaming skills. For Associate Consultants, reasonable • interpersonal skills are a must.

Job Description - Following our Business Code of Conduct and always acting with integrity and due diligence - Understands business needs and in depth understanding of Tesco processes - Builds on Tesco processes and knowledge by applying CI tools and techniques. - Responsible for completing tasks and transactions within agreed metrics - Solves problems by analyzing solution alternatives - Performing audits as per the audit calendar and ensuring timely completion and drive closure of open observations - Ensuring audits are done as per the audit methodology and all audit workings papers are duly saved - Acquiring process training and ensuring process has adequate control to mitigate the risk - Checking adequacy of controls through sample testing - Rolling out accurate report on continuous monitoring for all the critical parameters through ACL - Ensuring periodical validation to adherence of data protection compliance Qualifications - Analytical approach - Problem solving skills - Strong Communication (written & verbal) - Microsoft Word, Excel, Visio and PowerPoint applications, - Functional area knowledge in Audits, Finance & Accounts

The Area: Morningstar is a leading global provider of independent investment insights. Our core competencies are data, research, and design, and we employ each of these to create products that clearly convey complex investment information. Our mission is to empower investor success and everything we do at Morningstar is in the service of the investor. Reporting to the Audit Committee of the Board of Directors, the purpose of the Global Audit and Assurance (GAA) function is to strengthen Morningstar s ability to create, protect, and sustain value by providing the Company with organizationally independent, risk-based, and objective assurance and consulting services to evaluate and improve Morningstar s governance, risk management, and control processes. The Role: Morningstar is looking for a Manager of GAA to play a critical role in the Mumbai Internal Global Audit Assurance function. This dynamic position offers an exciting opportunity to administratively lead a focused team of experienced auditors and to also execute a variety of projects, including risk assessments, audit engagements, advisory reviews, and special projects aimed at enhancing risk management, control, and governance. The role reports to the Global Audit Assurance Director and will be a key member of the functional leadership team. This is a full-time position and is based in Morningstar s Mumbai office. The manager may be required to travel to a number of domestic and international locations in support of our annual internal audit plan. Responsibilities Develop, schedule, and execute the risk-based audit plan that addresses the relevant and evolving business risks facing the company. Prepare and/or review the audit planning documents, audit programs, and supporting work papers. Prepare and/or review audit reports ensuring that all significant risk and internal control weaknesses are identified and that effective recommendations to address deficiencies are provided. Monitor the status of management corrective action plans and follow up as appropriate. Assist in managing the department s Quality Assurance and Improvement Program and external quality review. Provide guidance to management on internal control, governance, risk, and compliance activities. Promote high levels of ethical awareness and conduct and assist in the performance of investigations when appropriate. Implement data analytics and automation initiatives within internal audit activities to enhance efficiencies and increase audit effectiveness. Administratively manage a professional audit team with sufficient knowledge, skills, expertise, and professional certification to meet the audit requirements. Contribute to the continuous improvement of the overall IA methodology to ensure adherence to best practices. Ensure the professional development of the team through coaching and internal and external training. Assist in preparing reports to the audit committee. Coordinate with the Company s external audit firm co-source partners and cultivate external relationships. Partner with the SOX program to ensure key controls are tested in alignment with the audit plan. Perform other related duties as assigned. Requirements A bachelor s degree or equivalent in Accounting or Finance is required. A master s degree is a plus. CIA and/or CPA required; CISA and CFE considered a plus. Minimum of 8 years of progressive industry or public accounting experience (preferably with the Big 4 or national CPA firm and/or similar experience in corporate Internal Audit). Exceptional knowledge of internal audit standards, procedures, and techniques. Experience in executing and managing operational, financial, compliance, and IT audits and advisory engagements related to Risk Management, Governance, and controls. Strong understanding of COSO and GAAP. Strong experience performing data analytics and driving automation to realize efficiencies (preferably using tools such as Alteryx, Tableau, Power BI, UI Path, Automation Anywhere). Experience with electronic work paper tools (TeamMate, Workiva etc.) desired. Ability to effectively execute and manage several projects in multiple locations and manage time and the team effectively. Effective oral and written communication skills and the ability to write clear and concise audit reports. Proven ability to build and foster high-performance teams; build relationships with team members, business leaders, and global business functions. Flexibility/ adaptability to work a non-standard schedule as needed to accommodate various time zones where some process owners are located. Willingness to travel to domestic and international offices. Morningstar is an equal opportunity employer. Morningstar s hybrid work environment gives you the opportunity to work remotely and collaborate in-person each week. We ve found that we re at our best when we re purposely together on a regular basis, at least three days each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you ll have tools and resources to engage meaningfully with your global colleagues. R08_DBRSLtdCanada DBRS Limited - Canada Legal Entity

Overview: Cvent is a leading meetings, events, and hospitality technology provider with more than 4,800 employees and ~22,000 customers worldwide, including 53% of the Fortune 500. Founded in 1999, Cvent delivers a comprehensive event marketing and management platform for marketers and event professionals and offers software solutions to hotels, special event venues and destinations to help them grow their group/MICE and corporate travel business. Our technology brings millions of people together at events around the world. In short, we re transforming the meetings and events industry through innovative technology that powers human connection. The DNA of Cvent is our people, and our culture has an emphasis on fostering intrapreneurship - a system that encourages Cventers to think and act like individual entrepreneurs and empowers them to take action, embrace risk, and make decisions as if they had founded the company themselves. At Cvent, we value the diverse perspectives that each individual brings. Whether working with a team of colleagues or with clients, we ensure that we foster a culture that celebrates differences and builds on shared connections. In This Role, You Will: Perform and manage IT internal audit, security risk assessment, and IT governance, risk, and compliance projects across Cvent s global business and IT operations. The candidate s responsibilities will include performing IT general controls / IT application controls testing (60-70%) and supporting security compliance audits (30-40%). Past experience in IT audit with a working knowledge of Sarbanes-Oxley, COSO framework, and relevant security compliance frameworks is preferred. Duties will include, but may not be limited to: Lead IT testing efforts for the company s global internal controls compliance programs, including planning, testing, and evaluating IT general controls and IT application controls. Coordinate and perform walkthrough discussions with business owners to document an understanding of control/process designs. Ensure the preparation of detailed and well-organized audit workpapers, documenting testing procedures, findings, and recommendations. Investigate and address complex issues and control deficiencies, collaborating with leaders from across the organization to develop effective solutions. Support security risk assessments, security compliance audits (e.g., PCI DSS, SSAE 18/SOC 1/SOC 2, ISO 27001:2013), and external audits. Assist with maintenance of compliance documentation consisting of policies, standard operating procedures, guidelines, flowcharts, and process narratives. Heres What You Need: 3-6 years of demonstrated experience in IT auditing, security risk management, or governance risk, and compliance. Working knowledge of Sarbanes-Oxley, COSO, and relevant industry security standards (e.g., ISO 27001:2013, PCI DSS, and SOC 1 / SOC 2). Ability to learn quickly with a willingness to take ownership for new projects in a dynamic, fast-changing, entrepreneurial environment. Ability to collaborate across teams, regions, and cultures. This role will work collaboratively and cross-functionally with the Internal Controls, Information Security, and Internal Audit teams (based in India and the United States) to manage the company s global and rapidly evolving internal controls and compliance programs. Good interpersonal communication skills with the confidence to engage and collaborate with internal stakeholders, senior management, and external auditors to achieve positive compliance outcomes. Excellent presentation and written communications skills and a team-focused attitude. Proficiency with productivity and collaboration tools, such as AuditBoard, Microsoft Office, Slack, Box, and Zoom. Knowledge of Oracle EBS, AWS, and common enterprise SaaS solutions (e.g., Salesforce, Coupa, Workday) is a plus. Possess or actively seeking relevant certifications, such as CA, CIA, CISSP, CISA, CISM, or CRISC.

About The Role : Drives the development and/or compliance of enterprise and business group information security and privacy policies to protect Intel's information assets, intellectual property, and privacy data. Documents security procedures, maintains the cyber risk registry and reports on continual improvement efforts. Participates in the planning and conducts security and privacy risk assessments to examine and verify security capabilities, behaviors, and controls for authentication, authorization, integrity, availability, assurance, audit, and disposal of Intel's information assets including determining exposure and compliance levels. Contributes to security and privacy risk assessments which identify threats, consequences, and vulnerabilities to business unit key assets, products, and services. Ensures adequate security processes and solutions are in place to mitigate or remediate identified risks sufficiently to meet business objectives, contractual, and/or regulatory requirements. Drives incident response activities ensuring security incidents are properly contained, eradicated, and recovered. Participates in internal security privacy assessments and compliance reviews, conducts risk analysis of business processes and technology solutions to evaluate whether they comply with internal security, privacy policies and standards as well as regulatory/industry requirements and best practices. Works with security teams to perform tests and uncover network vulnerabilities. Supports the assessment of all security and privacy risks across the enterprise including but not limited to, security operations, vulnerability lifecycle management, identity and access management, cryptography, forensics, regulatory compliance, governance risk and controls, internal counterespionage, threat detection and mitigation, system compliance, physical security analysis and security management. Qualifications Job Qualifications: You must possess the below minimum qualifications to be initially considered for this position: Bachelor's degree in Information Technology, Computer Science, Accounting, Finance, or a related field. Minimum of 5-10 years of experience in IT audit, IT compliance, or a related field, with at least 3 years in a SOx manager role. In-depth knowledge of SOX requirements and IT control frameworks (e.g., COBIT, COSO). Proven experience with IT general controls (ITGCs), application controls, and automated controls. Excellent communication, analytical, and problem-solving abilities. Ability to work effectively with cross-functional teams and manage multiple priorities. Professional certifications such as CISA, CISSP, or CPA is highly preferred. Inside this Business Group Intel's Information Technology Group (IT) designs, deploys and supports the information technology architecture and hardware/software applications for Intel. This includes the LAN, WAN, telephony, data centers, client PCs, backup and restore, and enterprise applications. IT is also responsible for e-Commerce development, data hosting and delivery of Web content and services.

The person will be responsible for risk-based audit activities across several different business areas within Crisil. As an Associate Director in Crisil Internal Audit team the person will be responsible for leading internal audit process reviews in collaboration with an internal audit service provider, implementing and executing enterprise risk management (ERM) framework defined, leading risk-related projects, and performing technology audits. The role requires strong stakeholder management, risk assessment expertise, and the ability to provide insights on process enhancements. The ideal candidate for this role must be an experienced financial services professional with strong internal control and auditing skills, experience in ERM engagements with a strong level of comfort with data and technology. Partner with the internal audit service provider to plan and execute the internal audit program. Lead and execute internal audit process reviews, ensuring compliance with regulatory and organizational standards. Conduct technology audits (40-50% focus), including cybersecurity, data privacy, and emerging technology risk assessments. Develop and execute risk-based audit plans, ensuring the identification of key control gaps and associated risks. Oversee Enterprise Risk Management (ERM) governance, including risk identification, assessment, and mitigation strategies. Lead and manage risk-related projects, ensuring timely delivery and alignment with business objectives. Engage with senior stakeholders, providing risk insights and recommendations to enhance internal controls and risk management processes. Monitor regulatory developments and emerging risks, advising leadership on potential impacts. Support process improvements and automation initiatives to enhance audit efficiency and risk assessment frameworks. What We re Looking For: Strong understanding of internal audit methodologies, risk-based auditing, and industry best practices. Experience in conducting technology audits, including cybersecurity, cloud governance, data analytics, and IT risk management. Strong analytical, problem-solving, and critical-thinking skills with the ability to assess complex business processes. Excellent communication skills (both verbal and written) to engage with senior stakeholders and present audit findings effectively. Ability to work independently, manage multiple assignments, and collaborate with cross-functional teams. Proficiency in risk assessment frameworks (e.g., COSO, NIST, ISO 27001) and regulatory requirements. Basic Qualifications: Minimum 10-11 years of experience in financial services internal audit or related roles (operational risk, credit risk, compliance risk). Experience with integrated audits, electronic work papers and standard productivity tools. Strong academic and professional credentials including an undergraduate degree Professional certifications preferred (CA, CAMS, CRMA, CISA, CISM, CISSP etc.).

Experience in Internal Audit/ Process Audit concepts & methodology Processes, Subprocesses, and Activities as we'll as their relationship Must be proficient in MS Office Sarbanes Oxley Act (SOX)/ IFC Reviews, SOP s Internal control concepts (eg, Preventive Controls; Detective Controls; Risk Assessment; Antifraud Controls; etc) Mandatory skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as we'll as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (eg, Preventive Controls; Detective Controls; Antifraud Controls; etc) IT System(s) in use/ ERP Environment Other applicable common laws (eg, Income Tax Act 1967, Companies Act 1956, Prevention of Food Adulteration Act, etc) Comfortable working on an IC model or leading a team of Specialist/ Associate Collaboration with the different stakeholders on the complex assessment issues to develop possible recommendations Documents findings and proposes recommendations that deal with root cause of issues and impact to the organization Should be able to assist with the timely completion of tasks, development of client deliverables and status reporting. GRCAPM Preferred skill sets Client and internal stakeholder management Project / delivery management Experience with analysis in high volume data environments. Years of experience required 3+ Years Education qualification Any graduation Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required Bachelor of Commerce, Master of Business Administration, Chartered Accountant Diploma Required Skills Banking, Internal Auditing, Investments Optional Skills Operational Risks, Risk Compliance, Risk Reporting

We are seeking a proactive and experienced SAP GRC(Access) Senior Consultant, responsible for managing and maintaining the SAP Governance, Risk, and Compliance (GRC) Access Control solution. This role involves ensuring that access to SAP systems is governed by company policies and compliance requirements, minimizing risk and preventing unauthorized access. Implement, configure, and maintain SAP GRC Access Control modules, including Access Risk Analysis (ARA), Emergency Access Management (EAM), Business Role Management (BRM), and Access Request Management (ARM). Define and enforce access control policies, procedures, and security standards to comply with internal controls and external regulations. Conduct regular access risk assessments and segregation of duties (SoD) analysis to identify and mitigate potential access conflicts. Manage the access request and approval process, ensuring that user access is granted according to established governance policies. Coordinate with audit teams to support internal and external audit activities related to access controls. Develop and maintain documentation for GRC Access Control processes and procedures. Provide training and support to end-users and business process owners on GRC Access Control functionalities. Monitor and report on access compliance metrics and KPIs. Collaborate with the SAP security team to align GRC Access Control with overall SAP security strategies. Troubleshoot and resolve issues related to access governance. Experience 3-7 years of relevant experience in SAP GRC(Access) Successfully completed at least two end-to-end implementations. In depth knowledge on SAP GRC Access Control implementation, configuration, and administration. Strong understanding of access governance principles, risk management, and compliance requirements. Experience of having worked in a client facing delivery role. Experience in working in client-facing delivery roles, with a proven ability to manage stakeholder relationships. Competencies / Skills Knowledge of internal control frameworks (eg, SOX, COSO) and audit methodologies. Experience with SAP security concepts, role design, and user administration. Proficiency in SAP reporting and data analysis tools. Strong customer handling skills, with the ability to build relationships and provide mentorship to team members. Excellent communication skills for translating functional requirements into design documents. Advanced analytical and problem-solving capabilities, with a focus on data-driven decision-making. Able to handle multiple priorities and deadlines in a fast-paced environment. Ability to work collaboratively within diverse teams, while independently driving key deliverables. Education Graduate from a reputed educational institution. Certification in SAP GRC (preferred). Note Must possess a valid passport and be willing to travel for client site work (domestic and international).

EY GDS Consulting - Financial Services Third-Party Risk Management (FS TPRM) Senior As part of our EY- FS TPRM team, you will help clients enhance their business performance by translating their strategies into realities. Working with EY-high performing teams, you will help clients to grow, innovate, protect, and optimize their business performance. The opportunity Were looking for Seniors with expertise in Third-Party Risk Management to join the leadership group of our EY- FS TPRM team . It is a fantastic opportunity to be part of a leading firm while being instrumental in the growth of a new service offering. Your key responsibilities Lead and work closely with the manager in the delivery of Third-Party Risk Management (TPRM) engagements. Lead the design and implementation of TPRM operating models, identifying, evaluating, and providing solutions to evaluate complex business and technology risks. Follow policies and procedures that support the successful implementation of TPRM operating models. Facilitate process walkthrough discussions to document end-to-end business processes and functional requirements. Assess the application of legal and regulatory requirements to clients TPRM practices. Lead/Participate in technology enhancement requirements such as Automation, Data Analytics, AI to support TPRM processes. Assist in the selection and tailoring of approaches, methods, and tools to support service offering or industry projects. Demonstrate a general knowledge of market trends, competitor activities, EY products, and service lines. Build and nurture positive working relationships with clients to achieve exceptional client service. Contribute to Identifying opportunities to improve engagement profitability. Assist leadership in driving business development initiatives and account management. Participate in building strong internal relationships within EY Consulting Services and with other services across the organization. Skills and attributes for success Maintain an educational program to develop personal skills continually. Constantly upskilling as per market trends. Understand and follow workplace policies and procedures. Attend L&D programs and exhibit a thorough knowledge of consulting methodology and consulting attributes. Exhibit initiative and participate in corporate social and team events. To qualify for the role, you must have 3 to 6 years of demonstrated experience with Risk Management across the Third-Party engagement lifecycle (pre-contracting, contracting, and post contracting) and an understanding of the associated organizational infrastructure (e.g., relevant internal controls, business processes, governance structures). Strong understanding of the TPRM framework, Risk Management, Information Security practices. Demonstrate a good understanding of the Contract Risk Review management process. Hands-on exposure to TPRM tools and technology solutions (e.g., GRC enablement solutions, such as Process Unity, Prevalent, Archer, ServiceNow, etc.). Demonstrated knowledge of standards such as ISO 27001/2, ISO 22301, ISO 27018, PCI – DSS, HITRUST, etc. Good knowledge of privacy regulations such as GDPR, CCPA, etc. Good knowledge of regulations such as FISMA, HIPAA, Reg SCI, MAS, etc. Good knowledge of TCP/IP, concepts of OSI layer and protocols, networking and security concepts, Physical & Environmental Security, Asset Security and Identity & Access Management. Good knowledge of OS (Windows / Linux) security, Database security, IT infrastructure (switches, routers, firewalls, IDS, IPS, etc.), Security architecture design, and review. Good familiarity with OWASP, and Secure SDLC standards/frameworks, anti-virus solutions (e.g., Symantec, McAfee, etc.). Good experience in LAN/WAN architectures and reviews. Good knowledge of incident management, disaster recovery, and business continuity management, cryptography. Good to have prior Big-4 experience. Good to have certifications - CISSP, CISA, CISM, CTPRP, CIPP, ISO 27001 Lead Auditor or Lead Implementer Ideally, you’ll also have Project Management skills. Exposure to tools like Process Unity, ServiceNow, Archer. What we look for A Team of people with enthusiasm to develop new skills and knowledge and experience to succeed and inquisitiveness to learn new things in this fast-moving environment. Actively tracks and communicates engagement performance and planning to EY engagement management, ensuring project milestones remain on track and are completed timely. Actively mentors and trains team members on Third-Party Risk Management processes, governance, and frameworks. Works cross-functionally with team members to support and drive a collaborative team environment. Creates and design effective presentations as a means for communicating project and deliverable progress to clients. Performs sophisticated data analyses to understand client s business and identify risk Executes advanced services and supervise staff in delivering essential services. Understands client s business environment and basic risk management approaches Actively participates in decision making with engagement management and seek to understand the broader impact of current decisions. Actively contributes to improving operational efficiency on projects & internal initiatives. What working at EY offers At EY, we’re dedicated to helping our clients, from the startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is on education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your progress with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching, and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you

Location- Bangalore, Hyderabad, Kolkata, Kerala, Pune, Noida, Gurgaon Exp- 3-6 Years To qualify for the role, you must have A bachelors or masters degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Risk Assessment – Assessment of internal processes to identify security findings, vulnerabilities, and control gaps/deviations identified on applications and infrastructure. Develop risk control matrix in line with COBIT, ISO, NIST and ITIL Best Practice and recommendations. Asses. Control Monitoring / Testing - Understanding of Cyber and compliance standards like PCI, ISO27001, perform test the design and operational effectiveness of the controls. Control Automation – Identify controls automation opportunities through analytics platform to monitor the operational effectiveness on the regular basis. Defect / Gap Identification: Identify the confidentiality, integrity and the availability related deficiencies in the client environment and evaluate against industry standards. Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, ISO 27001, and others (as relevant)

Control & Compliance Position: Lead-Client Ops Education: CA/CA inter Exp: 12+ yrs Exp in Risk assessment, ToD/ ToE for process controls relating to P2P, O2C, & R2R,SOX principles, COSO Frameowrk. Loc: Jaipur Salary upto.30LPA Regards, Js4u Team

Client Responsibilities: Execution on client engagement - Ensure consistent quality deliverables as per client requirements on SOC1/SOC2/Hitrust engagements Determine that the work delivered is of high quality through self-review/ assurance process with respect to complete and accurate documentation of testing results Identify raise any potential deficiencies/exceptions related to the engagement on a timely basis. Develop strong working relationships with stakeholders Actively participate in knowledge management sessions within the practice Should have excellent written, communication and interpersonal skills Attention to detail and strong organization and analytical skills Must have (Proficient) Subject knowledge of their areas of specialization Adept in Microsoft office tools (Word, Excel, Power point) Excellent written and spoken communication skills Strong willingness to learn and to work effectively across multi-cultural teams Good to have (rudimentary awareness) Candidates should have good knowledge in executing in the areas of: Understanding of Risk Management, Risk/ Control correlations and matrix Understanding of IT General Controls and controls-based testing (e.g., SOC 1 and SOC 2) is required (with 0 years of experience, candidate is expected to have some knowledge around it) Experience with different control frameworks and standards such as COSO, ISO27001/2, NIST, PCI Experience with analytics (such as Power BI, Alteryx) is desirable but not mandatory.