84 Coso Jobs - Page 4

Not Applicable Specialism Risk & Summary A career within Internal Audit services, will provide you with an opportunity to gain an understanding of an organisation s objectives, regulatory and risk management environment, and the diverse needs of their critical stakeholders. We focus on helping organisations look deeper and see further considering areas like culture and behaviours to help improve and embed controls. In short, we seek to address the right risks and ultimately add value to their organisation. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purposeled and valuesdriven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us . Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (e.g., Preventive Controls; Detective Controls; Antifraud Controls; etc.) Mandatory skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Sarbanes Oxley Act (SOX) Internal control concepts (e.g., Preventive Controls; Detective Controls; Antifraud Controls; etc.) Preferred skill sets Experience in Internal Audit/ Process Audit concepts & methodology COSO Framework Processes, Subprocesses, and Activities as well as their relationship Years of experience required 68yrs Education qualification CA /MBA Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required Master of Business Administration, Chartered Accountant Diploma Degrees/Field of Study preferred Certifications (if blank, certifications not specified) Required Skills Internal Auditing Optional Skills Accepting Feedback, Accepting Feedback, Accounting and Financial Reporting Standards, Active Listening, Analytical Thinking, Artificial Intelligence (AI) Platform, Auditing, Auditing Methodologies, Business Process Improvement, Coaching and Feedback, Communication, Compliance Auditing, Corporate Governance, Creativity, Data Analysis and Interpretation, Data Ingestion, Data Modeling, Data Quality, Data Security, Data Transformation, Data Visualization, Embracing Change, Emotional Regulation, Empathy, Financial Accounting {+ 29 more} Available for Work Visa Sponsorship? No Government Clearance Required? No

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Asst. Manager- Governance & Enablement Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Implements IT governance strategy and guidelines, and develops/defines functional specific policies, processes and/or methods for general services for organizational units and the business in responsibility from a technical and governance perspective. SPOC, respectively Bridge Head to central IT, CYS and LC for all general Service-related topics. SPOC for GBS ASP community reg. all IT and CYS related governance and standardization topics. Coordinates resources and monitors and reports progress and milestones regularly to all stakeholders. Offer Governance related trainings for GBS BLs focusing relevant rules and regulations. Management & support of ISO topics for DS services & Products. Represent GCI ASP Lead in the various regional bodies and communities. Qualification: Bachelor"™s degree in information technology or a related field. Strong knowledge of ITIL, COBIT or other IT governance standards and Cybersecurity standards. Bais understanding in the CYS (IT) and identify potential threads Strong organizational and program management skills. 8-12 years of experience in Information technology with at least 5 years in IT governance or related area. Good communication and networking skills in an intercultural environment and across all management levels. Certified Lead auditor/Implementor in ISO 9001, ISO 27001 will be an advantage Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

About The Role : Job Title Technology Risk Manager Corporate Title Director Location Pune, India Overview Our Corporate Bank group is a technology centric business, with an increasing move to real-time processing, an increasing appetite from customers for integrated systems and access to supporting data. This means that technology is more important than ever for the business. The CIO Corporate Bank (CB) division sits in the Banks Technology, Data and Innovation (TDI) group. The Risk and Control (R&C) team ensures the Bank's technology control priorities are effectively implemented across CIO - CB. The R&C team offers dedicated support for each Chief Information Officer (CIO) business line, advisory services for control responses, and program management services for broad control uplifts. The team's mission is to reduce the organization's technology risk exposure by implementing key bank controls, ensuring appropriate and timely resolution of audit and regulatory issues, and participating in the Bank's design of control implementations. Therefore, a role on the R&C team is integral in supporting the front-line management in identifying, assessing/measuring risks, developing/implementing remediation actions, and monitoring risks. We are looking for a technology risk manager (also known as embedded risk team lead) to join the Risk & Control team to ensure robust and sustainable control governance across CIO CB, in particular for CB Data and head for India Risk and Control team. You will be responsible for supporting the CB Chief Data Office in managing audit/regulatory/self-identified findings, participating in regulatory and audit exams, monitoring stakeholders compliance with key risk indicators, and ensuring controls are implemented effectively and sustainably. Your role will be integral in supporting the front-line management in identifying and assessing/measuring risks, determining remediation plans, monitoring levels of risk, and implementation of remediation. You will work directly with CIO-1s, the CIO Corporate Bank Risk Leads, senior technology management, business and operations stakeholders, regulatory management, and other embedded risk teams and will represent CB Risk & Control . As a senior member in the region, you will spearhead risk initiatives within the region and will oversee India applications. As a Tech Risk and Controls Director, you will play a pivotal role in shaping and implementing the firms technology risk management strategy. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Flexible working arrangements Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities: Partner with CB CDO, in risk management and control implementation. Create deep and productive relationships with the teams and finding owners for audit/regulatory/self-identified issues to ensure overall risk posture for the area is improved. Support CIO-1 portfolio(s) in managing audit/regulatory/self-identified findings to ensure appropriate and timely resolution of risks/gaps in controls, and resolve non-compliance with Bank policies, procedures and processes and non-compliance with regulations and laws. Review and revise findings lifecycle event documentation. Provide strategic direction on risk management matters to senior leadership including implementation of detailed data driven narratives to inform leadership of risks related to IT and Cybersecurity topics. Provide credible challenge across all information technology and cybersecurity enabling business growth while ensuring that risks remain within appetite. Participate in, and coordinate with technology stakeholders, on internal and external audits and regulatory exams Ensure Risk & Control topics and standards are effectively included in all Change Programs related to CB Data, in particular within the perimeter of the EDM Program. Ensure appropriate senior management awareness/oversight of follow-up on action items to resolve identified technology issues Support application teams in control implementation requirements Ensure risk remediation programs are initiated and executed. Design and implement processes to test effectiveness and sustainability of technical controls. Develop strategies for reducing the risk exposure of CIO CB portfolio(s), including preparedness of critical applications for audit and regulatory exams and working with application owners to address and prevent common risk issues Assist application owners and other technology stakeholders in identifying and documenting risks and developing remediation Tracking and reporting on CIO CB portfolio(s) key risk indicators (KRI) and control uplift programs. Assisting application owners in developing plans to ensure compliance with KRIs. Close control gaps. Ensure risk remediation programs are initiated and executed in line with the Banks policies, procedures and standards. Work with the application teams and control owners to identify and resolve potential issues in control design. Advise on effectiveness metrics, ensure control design includes proper evidence, and provide input to the design and effectiveness of centrally provided tooling. Create risk awareness and positive attitudes through specialized trainings and educate the wider Corporate Bank CDO stakeholders regarding Risk & Control. Develop and guide a culture of talent development to meet business objectives and strategy. Your Skills and Experience: Excellent communication skills, both written and verbal to present ideas and concepts effectively Extensive experience (15-20 years) in technology risk management and risk advisory Strong understanding of three lines of defense model and compliance frameworks, Experience with regulatory environments and financial services technology. Robust knowledge and experience of data risks, in particular data-related technology controls, - policies, - standards and - tools Excellent analytical and investigatory skills to identify underlying technology issues Extensive experience in assessing risk, writing issues, and developing appropriate corrective actions Demonstrate viable solutions and problem solving Relevant experience working with auditors, regulators and external auditors on exams, reports and information requests Prefer experience with designing and testing technology controls and processes Prefer technical background (application development, infrastructure engineering, etc.) How we'll support you Training and development to help you excel in your career Flexible working to assist you balance your personal priorities Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

About Us Booking Holdings India is a Center of Excellence based in Bangalore, India and was created to support the increasing business demands of the Booking Holdings Brands. The Center of Excellence provides access to specialized and highly skilled talent, leading industry best practices, and collaboration opportunities across all of our Brands. As part of our Booking Holdings India team, you will have the opportunity to be a part of the worlds leading provider of online travel, with a mission of making it easier for everyone to experience the world through six-primary consumer facing brands: Booking.com, Priceline, Agoda, KAYAK, OpenTable and Rentalcars.com. About the Role We are now looking for an IT SOx Analyst, Risk & Control (R&C) in our CoE to support R&C with SOx testing of IT Controls. You will be directly working on testing internal controls to support SOX302 attestation. The R&C IT SOx Analyst is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from SOx testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. B. responsible: key areas of responsibility will include, but are not limited to: - Execute and lead testing end to end for the assigned areas: - Design and execute the day-to-day testing activities of IT controls, with a focus on regulatory/compliance (SOx) related risks - Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation - Identify gaps in design and execution, and communicate issues and recommendations to R&C team and control owners - Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required - Collaborate and partner with R&C by providing guidance and ensuring that critical SOx controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives - Collaborate & participate within R&C to continuously improve the R&Cs capabilities and governance from SOx testing standpoint B. skilled: - The ideal candidate will have a strong background in IT risk management, IT frameworks, governance and controls, Segregation of Duties, and ERP audits. - 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment o Strong understanding of design assessment and operating effectiveness assessment of IT controls, and interface controls. o Experience in technology-based product development / DevOps processes, cloud security and other modern day technologies o Understanding of different architecture (SOA and micro services), and ability to review source codes is an added advantage. - Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT - Strong working knowledge of SOx - Ability to multitask and successfully manage multiple priorities and projects - Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team - Excellent communication skills to interact with audit teams, management and other stakeholders effectively - Ability to work effectively in a virtual environment - Fully comfortable working in English, both written and spoken - Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage - Relevant bachelors degree required - Experience working with a Big4 is preferred

Role & responsibilities PAYROLL ORGANIZATION : VALUE INNOVATION LABS https://valueinnovationlabs.com/ Preferred candidate profile Title: Technical Product Owner Work Location - Bangalore Qualifications: • Bachelors degree in Computer Science, Information Technology, Business Administration, or a related field, or equivalent by experience. Masters degree or relevant certifications are a plus. • 5+ years of experience in product management or product ownership, with at least 3 years focused on Governance Risk and Compliance, enterprise risk management technologies or similar solutions. • Experience shaping integrated risk management dashboard, providing centralized views of risk activities and outcomes to management across various risk domains is required. • Experience of working with low-code/no-code solutions (including change control governance in such tools) and skills with JSON and REST APIs would be a significant differentiators. • Understanding and experience of Risk Quantification tools and techniques and the underlying mathematical models would be a significant differentiator. • Proven experience working in an agile development environment with a solid understanding of agile methodologies and principles. • Excellent communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels. • Strong analytical and problem-solving skills, with a data-driven approach to decision-making. • Ability to work independently and collaboratively in a fast-paced, dynamic environment. Preferred Qualifications: • Familiarity with other ServiceNow modules and integrations, particularly in IT Service Management (ITSM), Third Party Risk and Governance, Risk, and Compliance (GRC). • Experience in enterprise risk assessment, risk mitigation strategies, and compliance frameworks (e.g., ISO 31000, COSO). • Knowledge of industry regulations and standards relevant to risk management (e.g., GDPR, SOX, GxP). Please share the updated resume on puneet@mounttalent.com or else call & Whatsapp at 9910092142.

IT Internal Audit Manager Organization:Corporate Functions/Finance Location: Bangalore, India Level:7 - Manager People in the Corporate Function career track contribute to the running of Accenture as a high- performance business through specialization within a specific functional area and grow into internally focused roles by deepening their skills and/or developing new skills within an internal functional area. Finance professionals prepare and interpret financial plans and reports, ensuring accuracy and compliance with applicable financial rules and regulations, including internal financial controls, to mitigate risk for the company. Finance professionals may also shape and execute client deals to maximize the use of Accenture's capital and resources, manage cash and/or liaise with the investor community. Job Description: The Internal Auditor performs audit projects in accordance with Accenture's audit methodology and The Institute of Internal Auditors' (IIA) International Standards for the Professional Practice of Internal Auditing. The Internal Auditor-Information Technology focuses on audit projects that involve cyber/data security, computer operations, and IT compliance. The Internal Auditor effectively executes a wide range of Internal Audit activities in a high quality and timely manner. In their role, they perform activities that include planning and developing work programs, identifying recommendations for continuous improvement in global processes and controls, communicating results, and following up on issues reported. They are also responsible for audit strategy development, organization risk assessment/planning, and completion of special requests for Accenture Management and the Audit Committee. Key Responsibilities Depending on the role/organization the Internal Auditor-Information Technology belongs to and their career level, some or all of the following key responsibilities will apply: Participates in the detailed execution and communication of the risk-based work plan, including Accenture Management and Audit Committee special project requests. Verifies the adequacy of information technology (IT) operating procedures of the company through a systemic program of audits. Assists in development of the Company's annual audit plan and schedule. Manages audit work, including audit work plan, work papers, findings, and associated reports. Prepares and oversees the preparation of audit reports and work papers to ensure adequate documentation exists to support the completed audit and conclusions. Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned. Manages cyber/data security, IT operations, IT service delivery, and compliance audits, as assigned on a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things Identifies, recommends, and reports improvement opportunities for global processes and controls. As appropriate, identifies opportunities for continuous improvement of technology, security, financial, and other processes and evaluation of organization-driven risk. Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner. Prepares well-written and timely audit reports and high quality presentations for leadership and board level reporting. Develops audit skills and establishes/maintains relationships related to the risk areas assigned. Contributes to appropriate skilling of the IA team (e.g., recruiting, training and development, coaching/mentoring, providing career growth opportunities). Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and changes in local, state, and federal laws. Qualification Basic Qualifications: Bachelors Degree (Undergraduate degree in Computer Science/ Electronics/ IT Engineering, Information Systems, Business Administration) Certifications on Auditing and Information Security Domains (i.e. CIA, CISA, CISSP, CCSK) Cloud Security Azure Security (AZ500), AWS Certified Solutions Architect Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Minimum of 12 years experience in information technology auditing, combined audit/IT audit, or relevant information security or information technology roles. Preferred Qualifications: Big 4 experience Experience working in a global Internal Audit function Cyber security experience Strong working knowledge of operational, compliance and IT auditing techniques Broad IT knowledge in infrastructure technologies (networking, data centers, servers, etc.), application development and support, and emerging technologies. Experience with Windows and UNIX operating systems and Microsoft Office 365 Sarbanes-Oxley project experience, familiarity with COSO/COBIT framework Professional Skills: Excellent verbal and written communication skills; interpersonal and presentation skills Proven management and organizational skills Ability to train, develop, and motivate team members Demonstrated leadership in professional setting; either military or civilian Demonstrated teamwork and collaboration in a professional setting; either military or civilian Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

About Us At SBI Card, the motto Make Life Simple inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone. SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, colour, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work. What s in it for YOU SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees Admirable work deserves to be rewarded. We have a well curated bouquet of rewards and recognition program for the employees Dynamic, Inclusive and Diverse team culture Gender Neutral Policy Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits Commitment to the overall development of an employee through comprehensive learning & development framework Role Purpose To effectively execute Enterprise Risk Management framework, interact with senior management team, highlight gaps in processes/ controls through effective risk assessment and governance of risk management processes in the organization. Role Accountability Organize and manage Enterprise Risk Management Committee (ERMC), Operational Risk Management Committee (ORMC), Information Security Committee(ISC) and New Product Introduction (NPI) meetings and highlight new material risks for the company and to ensure they are discussed at appropriate forums Prepare agenda/documentation/ minutes/ for ERMC, ORMC, NPI and ISC meetings and ensure adequate follow up of the issues/ recommendations of the committees and perform independent validation of closed items, highlight gaps to committee, if any Monitor Enterprise Risk Management practices to identify, analyze and report enterprise wide risk Ensure effective implementation of organization s risk management policy in accordance with risk appetite/ risk objectives and ISO 31000 framework and ensure its compliance with regulations and alignment with SBI policy strategically Design and maintain risk management tools like Key Risk Indicators, loss database, scenario analysis, stress test, etc. Report performance of KRI against management approved thresholds to risk committee Review KRI library including risk thresholds annually and recommend for update to VP ERM, wherever required Policy governance - Track policy approval due date, align documents with parent policy and regulatory guidelines, discuss gaps with policy owner and ensure document is updated before submission to board for approval and obtain stakeholder inputs before policy submission to policy review committee Develop frameworks and risk management programs to build risk proficiency and enhance organization risk culture Assist in strengthening ORM Framework, participate in Risk and Control Self-Assessment (RCSA) exercise, identify vulnerabilities and potential control gaps, discuss and formulate action items with process owners to bridge gaps and track action items for timely closure Perform independent testing to evaluate efficacy of internal controls, process, procedures or systems and consult with first line to open issues related to control failures, implementation plans and timelines to implement recommended actions Manage OR incidents, liaise with business for RCA, resolution and corrective action plan and report OR incident report to senior management Prepare ISO 27001 risk register and ensure it is current and updated Ensure adherence to regular process documentation practices in compliance with the process guidelines Measures of Success Completeness and timeliness in Board documentation, Timely reporting to SBI Monthly ORMC and quarterly ERMC are held in time and minutes circulated and tracked for implementation Effective Policy Management and Risk policy implementation Product governance and reviews are held as per schedule and in line with NPI process RCSA testing is done as per the process defined No adverse regulatory/audit findings Timely design and implementation of Risk awareness programs Timely and accurate updation of process documentation Process Adherence as per MOU Technical Skills / Experience / Certifications Extensive knowledge of Enterprise Risk Management frameworks and principles Experience in preparing deliverables for Management Committees and Board reporting Ability to apply Risk Management techniques for risk identification, assessment, measurement and the monitoring of exposures that may threaten the organization, come up with recommendation for result-oriented solutions Understanding of COSO Internal Controls Framework and ISO 31000 framework Understanding of Basel III Operational Risk Competencies critical to the role Team Player and ability to operate with tight deadlines Strong Communication & Interpersonal Skills with ability to effectively communicate across all levels of an organization and outside company boundaries Qualification CA/MBA Finance Preferred Industry BFSI, Any

Preparation and Review of Monthly MIS Reports 1. In-depth P and L Analysis and review of expenses and accounting for Prepaid Expenses and Provision for expenses 2. Preparation of various MIS for Operations and Dept. Heads 3. Analysis of following Variances - a. Month on Month b. Year on Year c. Actual vs Budget d. Quarter on Quarter 4. Tracking of subsequent booking against Provisions booked in the previous month Budgeting Activity 1. Co-ordination with Operations for preparation of Kandivali s Revenue Expense Budget 2. Preparation of Revenue budget for Support functions Consolidation of Sector Expenses - Actual and Budget 1. Monthly / Quarterly MIS for Expenses at Manufacturing Level with detailed analysis 2. Consolidation of Revenue Budget at AD+MVML Level 3. Preparation of PPT for Budget Review by Sr. Management with detailed analysis 4. Manage the Budget released in WBS and expenses being booked Monitoring and Controlling of internal control system 1. Ensure compliance with Internal Controls 2. Ensure all review evidences / working as mentioned in the RCM are available and uploaded on the Controls Manager Portal Liaising and co-ordination with statutory auditors 1. Liaising with Auditors during Quarter-end Limited Reviews and Annual Audit 2. Preparation and Circulation of required schedules 3. Review of Trial Balance and ensure no unexplainable variances are observed 4. Monitor the schedules being circulated to Sector Accounts and Auditors and the timelines Liaising and co-ordination with Tax auditors Ensure completion of Tax audits as per the deadline provided by Corporate Taxation. This requires co-ordination with various teams within Accounts and also CSR / Corporate taxation / GST teams Involvement with ICFR /COSO Conduct Management Testing for the processes assigned. Also, get the own processes tested by providing necessary explanation and review evidence to the Auditor Various IT Improvements and initiatives undertaken Automation of Routine Activities and Leveraging IT to help in better and Standard MIS to Operations and to Management. Experience 1 or 2 yrs. experience with Excel /SAP knowledge & CA fresher Industry Preferred Exposure to Manufacturing company during Articleship. Qualifications CA Competencies Good knowledge in GST, Income Tax, SAP & MS Office.

This role is for one of the Weekday's clients Min Experience: 4 years Location: Telangana, Hyderabad JobType: full-time We are seeking a detail-oriented and experienced Internal Auditor to join our Internal Audit team. The ideal candidate will be responsible for assessing the effectiveness of internal controls, risk management, and governance processes across various functions of the organization. The role will focus on ensuring compliance with internal policies, regulatory frameworks including SOX and ISO , and established standards such as COSO . You will play a critical role in strengthening our control environment and providing assurance to senior leadership. Requirements Key Responsibilities: Plan, execute, and report on risk-based internal audit engagements across business units and functions. Evaluate the design and effectiveness of internal controls and recommend improvements to mitigate risk and enhance operational efficiency. Conduct audits in line with COSO framework, SOX requirements, and ISO standards. Prepare detailed audit reports that provide insights into key issues, root causes, and practical recommendations. Collaborate with process owners to develop action plans and track the implementation of audit findings. Support the organizations compliance efforts by conducting periodic reviews and assessments of internal policies and procedures. Participate in the development and continuous enhancement of the Internal Audit (IA) methodology and tools. Engage in cross-functional audits and provide guidance on control requirements in new business initiatives or changes. Assist in developing the annual audit plan based on risk assessment and business priorities. Stay updated on industry best practices, regulatory changes, and developments in governance and internal auditing. Required Skills & Qualifications: Bachelor's degree in Accounting, Finance, Business, or a related field; relevant certifications such as CIA , CISA , or CPA are highly desirable. 4–10 years of progressive experience in internal audit , risk management, or compliance functions, preferably in a mid to large-sized organization or consulting firm. Strong knowledge of internal controls , COSO framework , and SOX compliance processes. Familiarity with ISO standards (e.g., ISO 27001, ISO 9001) and their relevance to audit and risk assessment. Demonstrated ability to critically analyze processes, identify control gaps, and deliver actionable recommendations. Excellent communication skills, both verbal and written, to effectively present findings and influence stakeholders. High level of integrity, ethical behavior, and professionalism. Proficiency in MS Office tools; experience with audit tools or GRC systems is a plus.