904 It Audit Jobs

As a Cybersecurity professional specializing in Third Party Risk Management (TPRM), you will utilize your expertise and skills to ensure the security of third-party relationships. With over 4 years of experience in TPRM and a strong background in IT Audits and Cloud security, you will play a crucial role in managing risks associated with external vendors and suppliers. Your responsibilities will include implementing and conducting audits based on ISO22301 standards, as well as assessing and mitigating risks related to third-party relationships. Preferred certifications such as CBCI, CBCP, ISO22301 LI or LA, Offensive Security Certified Professional, and CISA will be valuable assets in this role. Your understanding of vendor risk management considerations and knowledge of Data Protection & Privacy risks will be essential in developing and implementing relevant control frameworks. Excellent written and verbal communication skills, along with the ability to create comprehensive documentation and engaging presentations, will be key in effectively communicating risk-related information. Your motivation to work in both local and global environments, as well as your experience in Infrastructure/Application Security, IT Audit, and Information Risk Management, will contribute to the success of our cybersecurity initiatives. Moreover, possessing security certifications like CISSP, CISA, CISM, CEH, and ISO27001 will further enhance your qualifications for this role. Your ability to thrive in a cross-functional, cross-cultural matrix environment, coupled with your proactive approach to cybersecurity, will make you a valuable asset in our team dedicated to safeguarding our organization against cyber threats.,

The job involves working as an executive at KPMG in India. KPMG entities in India are professional services firms affiliated with KPMG International Limited. The firm was established in India in August 1993. Professionals at KPMG leverage the global network of firms and possess knowledge of local laws, regulations, markets, and competition. KPMG has offices in various cities across India such as Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara, and Vijayawada. The role at KPMG in India includes offering services to national and international clients across sectors. The focus is on providing rapid, performance-based, industry-focused, and technology-enabled services. This involves a deep understanding of global and local industries and extensive experience in the Indian business environment. To be eligible for this position, candidates are required to be a graduate. KPMG in India promotes equal employment opportunities for all individuals.,

You will be joining Reckitt, a company known for housing the world's most beloved and trusted hygiene, health, and nutrition brands. The core purpose of Reckitt is to protect, heal, and nurture in the continuous pursuit of a cleaner, healthier world. As part of our global team, united by this purpose, you will play a crucial role in ensuring access to top-quality hygiene, wellness, and nourishment is a universal right rather than a privilege. In the domain of Information Technology & Digital, Reckitt is currently seeking a proficient IT Controls professional to become a part of our 1st Line of Defence (1LOD) team. This role will involve implementing, rectifying, and ensuring compliance with IT controls across various systems, with a specific emphasis on the SAP environment. Your primary responsibilities will include collaborating with different business units to proactively address IT General Control (ITGC) issues, ensuring prompt remediation, and sustaining a compliant IT landscape. Your key responsibilities will encompass implementing IT controls, remediating control deficiencies in partnership with control owners, tracking and reporting issues, particularly related to SAP systems expertise, coordinating with control owners for timely execution of remediation actions, managing documentation, and supporting the risk acceptance process for unresolved issues. The ideal candidate should possess a minimum of 5 years of experience in IT controls, IT audit, or a related field within the 1LOD, with a total of 9+ years of experience. A strong grasp of IT General Controls (ITGC), IT control frameworks like COBIT/NIST/ISO 27001/SOX, hands-on remediation of IT control deficiencies, and managing risk acceptance are essential. Proficiency in SAP systems and knowledge of control requirements specific to SAP environments, including SAP Change Control processes, are crucial. Demonstrated ability to collaborate with cross-functional teams, influence stakeholders effectively, and fluency in German, Polish, or Spanish (depending on the role and region) are highly desirable. Possession of relevant certifications such as CISA, CISM, or CISSP will be considered a plus. At Reckitt, inclusion is at the core of our operations. We prioritize supporting our employees throughout their career journey, assisting them in achieving success in their unique ways.,

You will be joining KPMG in India, a professional services firm affiliated with KPMG International Limited since August 1993. As part of this network, you will have access to a global network of firms while being well-versed in local laws, regulations, markets, and competition. KPMG has established offices in various cities across India including Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara, and Vijayawada. Your role at KPMG in India will involve offering services to both national and international clients across different sectors. The focus will be on providing rapid, performance-based, industry-focused, and technology-enabled services that demonstrate a deep understanding of global and local industries, as well as extensive experience in the Indian business environment. As a part of KPMG in India, you will have the opportunity to work in a diverse and inclusive environment that values equal employment opportunities for all individuals. Your qualifications and skills will be key in contributing to the success of our clients and the growth of the organization.,

URGENT HIRING !!! location's : Canada , Australia , New Zealand ( Not In India ) Benefits : Medical Insurances , Travel allowances , Flight Tickets , Meals , etc For more information call or whatsapp +91 9220850077 Key Responsibilities: Oversee all employee related IT responsibilities such as account creation and employee lifecycle management. Be the custodian of IT security enforcement and access management. Set up, configure, and maintain company laptops, company and client servers (on prem and cloud), and peripherals such as printers, scanners, and office AV and AV conference facilities and telecommunication systems. Ordering of all IT related equipment, including laptops, company mobiles peripheries and ergonomic kit as required and maintenance of inventory equipment (serial numbers and kit allocation) Perform audits and tests on systems, networks, and hardware to ensure functionality, compliance and security is maximised. Respond to internal support requests and troubleshoot software and hardware problems that arise. Ensure all software and hardware is up to date, licensed and install updates as required and to maintain standards and compliance e.g. security patches and Antivirus protection. Undertake routine maintenance to avoid systems outages and failures. Maintain computer networks, systems and hardware documentation and IT guidance for colleague's reference.

The Senior Manager ERP Assurance leads a global team of IT assurance experts responsible for designing and evaluating the efficiency of IT Application Controls across the company's IT landscape. This role involves interacting with senior stakeholders internally and externally. Key responsibilities include co-designing and enhancing Novartis" IT controls landscape, focusing on reviewing critical IT Application Controls related to financial reporting in collaboration with the Corporate Financial Controls and Compliance Team. The role also involves providing assurance on ERP systems such as SAP, identifying opportunities for process and IT controls improvement, and ensuring SOX compliance through testing of IT application controls. The Senior Manager ERP Assurance will lead the risk assessment processes, collaborate with IT Application Owners and Business Process Owners to evaluate internal controls during the implementation of new ERP systems or technology solutions, and advise on the structure of internal controls based on automation and data analytics. Additionally, the role involves leading a team of IT assurance experts, coaching and developing junior team members, and collaborating with external auditors and internal stakeholders. Essential Requirements: - University degree in economics, business informatics, or computer science with a background in IT Audit or Internal Controls, preferably from a Big 4 firm, with over 10 years of relevant experience. - Extensive experience in auditing ERP systems, particularly application controls in SAP systems, IT environments, and business process controls. - Proficiency in managing IT assurance or audit engagements and teams, including a solid understanding of external audit approaches and methodologies. Desirable Requirements: - Ability to lead teams across multiple locations and time zones. - Strong skills in managing senior stakeholders and effective communication with technical and business contacts. - Entrepreneurial mindset, structured approach to work, and result-oriented focus. - Excellent communication, presentation, and business writing skills in English, with a preference for experience in the pharma industry and shared services. Novartis is committed to fostering an inclusive work environment and diverse teams that reflect the patients and communities they serve. If you are passionate about making a difference and collaborating with like-minded individuals to drive breakthroughs in patient care, consider joining us at Novartis. Learn more about our culture and opportunities at https://www.novartis.com/about/strategy/people-and-culture. To explore the benefits and rewards of working at Novartis, refer to our handbook at https://www.novartis.com/careers/benefits-rewards. Join the Novartis Network by signing up for our talent community to stay informed about relevant career opportunities as they arise: https://talentnetwork.novartis.com/network. Division: Finance Business Unit: CTS Location: Hyderabad, India Company / Legal Entity: IN10 (FCRS = IN010) Novartis Healthcare Private Limited Alternative Location: Selangor, Malaysia Functional Area: Audit & Finance Job Type: Full time Employment Type: Regular Shift Work: No For individuals with disabilities requiring accommodation during the recruitment process or while performing job functions, Novartis is committed to providing reasonable accommodations. Please contact [email protected] with your request and include the job requisition number in your message.,

You will be responsible for executing IT controls testing for the assigned portfolio of controls/stakeholders to deliver to agreed time and quality standards. Your main tasks will involve performing ITGC testing activities in areas such as Access Management, Change and Release Management, Incident Management, and SOC Report Reviews. Additionally, you will be testing IT Application Controls (ITACs), IT Dependent Manual Controls (ITDM), and Key Reports. It will be your duty to assess the impact of deficiencies in ITGC and automated control testing on financial reporting and support the ICFR Technology manager in determining appropriate actions to remediate control deficiencies identified from testing. Furthermore, you will be required to learn Tesco's business processes to be more effective in assessing the impact of ineffective controls and designing remediation activities. To excel in this role, you should have experience with SOX/IT Internal Controls audit, implementation, and design improvement. A strong knowledge of IT auditing concepts and principles is essential, alongside an understanding of IT General Controls, IT Automated Controls, and IT-Dependent Controls. It is crucial that you possess a good understanding of business drivers and how they impact technology, as well as hands-on understanding of information security domains and assurance frameworks. Excellent written and verbal communication and presentation skills are also required, along with experience in hands-on delivery of IT audit and/or assurance work. In conclusion, your role will be pivotal in ensuring the effectiveness of IT controls testing within the organization, thereby contributing to the overall success of Tesco Bengaluru's IT infrastructure and operations.,

We are searching for a proficient Information Security Auditor to become a part of our team. In this position, you will play a key role in safeguarding our organization's data and IT systems against cyber threats and ensuring compliance with industry standards. To qualify for this role, you should hold a Bachelor's or Master's degree in Computer Science, Information Technology, or Cybersecurity. In addition, you must have a minimum of two years of experience in IT Security or IT Audit. It is essential to possess knowledge of software development processes and hold at least one IT Security certification, such as CISA, CISSP, or a similar technical certification. You should have a deep understanding of industry security frameworks like NIST and CIS, along with a grasp of inherent and control risks. Proficiency in ISO 27001/2 standards is crucial. Moreover, you should have proven experience in implementing or testing IT General Controls and possess excellent verbal and written communication skills to effectively interact with leaders at all levels. The capability to work autonomously in a dynamic environment is also required. Desirable qualifications include diverse IT experience in areas like programming, systems analysis, and security administration. Strong project management skills and the ability to manage multiple tasks simultaneously are also beneficial. Join our team and play a vital role in protecting our information systems while gaining exposure to cutting-edge technologies and business processes. Your responsibilities will include gaining a comprehensive understanding of the organization's business objectives, processes, goals, and strategies to analyze and interpret IT risks and technology challenges effectively. You will be responsible for examining and assessing technology and business risks through IT audits, defining audit plans, scope, and procedures, and preparing detailed audit reports. Stay updated on industry trends relevant to our environment, including those in automotive, finance, mobility, technology, cybersecurity, and auditing. Contribute to the development of a risk-based IT audit plan and evaluate areas of risk that require IT audit procedures. Execute these audit procedures based on their risk and impact on the business, covering various applications, technologies, and business processes. Collaborate with internal and external partners and oversee the completion of planned actions. Support departmental transformation initiatives by testing new processes and creating audit responses. Proactively identify business initiatives and changes in the business environment and assess their impact on both the business and control environment. Collaborate with global business auditors on combined business and IT audits. Maintain regular communication with the Internal Controls, Office of General Counsel (OGC), and Enterprise Cybersecurity & Policy teams. This role may involve travel as needed.,

As a pioneering health-tech platform dedicated to making healthcare accessible, affordable, and preventive, Visit Health is seeking an IT Audit and Compliance Executive to enhance security frameworks, regulatory compliance, and risk management initiatives. The ideal candidate will ensure adherence to industry regulations, implement security best practices, and lead audits to maintain compliance with international standards. Responsibilities: Security Governance & Risk Management: - Develop and implement security policies, standards, and guidelines. - Conduct risk assessments and security audits to identify vulnerabilities and mitigate risks. - Collaborate with IT and legal teams to ensure secure infrastructure and data protection. - Monitor emerging security threats and recommend appropriate countermeasures. Regulatory Compliance & Audits: - Ensure compliance with industry regulations such as ISO 27001, HIPAA, GDPR, SOC 2, PCI-DSS, NIST, and others. - Lead internal and external security audits, managing relationships with auditors and regulators. - Develop compliance reports and maintain documentation for audits and assessments. - Educate internal teams on compliance requirements and security best practices. Data Protection & Privacy: - Implement and maintain data protection policies to safeguard sensitive information. - Work with legal and IT teams to ensure compliance with global privacy laws (e.g., GDPR, CCPA). - Conduct Data Protection Impact Assessments (DPIAs) and oversee incident response plans. Incident Management & Response: - Develop and maintain incident response plans and security monitoring mechanisms. - Lead investigations into security incidents, breaches, and compliance violations. - Coordinate with cybersecurity teams to implement security controls and remediation strategies. Training & Awareness: - Conduct security awareness training for employees to promote a security-first culture. - Stay updated on new regulations and industry trends to proactively adapt policies. Join Visit Health in empowering workplaces with accessible, affordable, and impactful healthcare by ensuring the security, compliance, and risk management of our innovative health-tech platform.,

Job Title: Deputy Manager - IT Governance Location : Mumbai (Work from Office only). Candidates looking for Remote/Hybrid work opportunities need not apply. Responsibilities: As GRC (Governance, Risk, and Compliance) Manager is responsible for overseeing and managing the risk assessment, remediation, and monitoring of information and technology process risks. This role involves ensuring that all risk and compliance activities are performed effectively by various control functions. The GRC Manager also serves as an internal consultant, providing guidance to operating functions and business lines on risk-related matters. Additionally, they are tasked with identifying, assessing, quantifying, reporting, communicating, mitigating, and monitoring process risks to ensure the organization's overall security and compliance posture. Ensure strong governance on risk and compliance performed by various control functions. Manage risk assessment, remediation, and monitoring of information and technology • Identify, assess, quantify, report, communicate, mitigate, and monitor process risks. Support the implementation of information security policies. Discuss risk closure, mitigation, and acceptance with stakeholders. Ensure periodic entitlement reviews are completed, and risks are managed to an acceptable level. Collaborate with control functions to track and mitigate identified risks. Work with technology leaders to identify control gaps. Act as a subject matter expert for risk and controls related to operations. Maintain strong working relationships with stakeholders. Review and refine policies and processes based on industry best practices. Track identified risks and ensured their closure within defined timelines. Prepare and maintain risk heat maps and risk registers. Framework Implementation of IT Governance: Assist in Implementing a comprehensive IT governance framework for the IFTAS, policies, and procedures aligned with industry best practices (e.g., COBIT, ITIL) and organizational goals. Assist in establishing clear roles, responsibilities, and accountability for IT decision-making processes across the organization. Assist in developing and managing the IT policy lifecycle, including creation, review, approval, and communication. Strategic Alignment & Planning: Assist in ensuring IT strategies, initiatives, and investments are directly aligned with the overall business strategy and objectives. Facilitate the IT strategic planning process, translating business needs into actionable IT priorities. Assist in developing and track key performance indicators (KPIs) and metrics to measure the effectiveness of IT governance and overall IT performance. Risk Management & Compliance: Identify, assess, and monitor IT-related risks, including cybersecurity, data privacy, and operational risks. Ensure IT compliance with relevant internal policies, external regulations (e.g., GDPR, RBI guidelines, SEBI regulations if applicable), and industry standards. Manage IT audits (internal and external), facilitate responses, and track remediation efforts. Assist in financial , corporate governance, HR,Admin audits in line with CAG and other statutory requirements under the companies act 2013 and other relevant acts as applicable. Performance & Value Management: Establish processes for IT performance management, ensuring efficient and effective delivery of IT services and projects. Assist in development of mechanisms to measure and report on the business value delivered by IT investments. Drive continuous improvement initiatives within the IT organization based on governance insights. Stakeholder Engagement & Communication: Help in liaising between IT and business stakeholders to ensure clear communication and shared understanding of IT governance principles and outcomes. Facilitate governance committees and working groups, preparing agendas, minutes, and tracking action items. Educate and advocate for IT governance best practices across the organization. Education: Bachelor's degree in any stream Experience: - 6 years of experience in auditing domain within both government and public sector undertakings is preferable. - Expertise in compliance audit and MIS reporting required for Governance is mandatory. Knowledge : - 6+ years of progressive experience in IT, with at least 3+ years specifically in IT Governance, Risk Management, Compliance, or IT Audit. - Demonstrated experience in developing and implementing IT governance frameworks (e.g., COBIT, ITIL). - Proven ability to manage complex projects and drive organizational change. Skills: Strong communication, presentation, and interpersonal skills, with the ability to influence stakeholders at all levels. Strong working relationships with team members and the ability to motivate them. Knowledge in areas such as Application Security, Data Security, Identity Access Management, Information, Infrastructure Technology, GDPR, and ISO Audits. Solid understanding of Risk Management Lifecycle and exposure to standards like SOX, COBIT, PCI-DSS, NIST Control, etc. Understanding of Security incident response aspects is desirable. Good analytical, problem-solving, and interpersonal skills. Proficiency in risk assessment methodologies and compliance frameworks. Ability to work independently and as part of a cross-functional team.

Role & responsibilities Perform 3rd-party audits and trainings according to ISO/IEC 27001, ISO 9001, ISO 20000-1, ISO 22301 & other IT specific standards/ frameworks Provide timely and accurate reviews of clients corrective action and closure Provide customers with timely, complete, and accurate reports of their current level of conformity / implementation of their management system Maintain schedule of audit activity with Management System clients Maintain appropriate auditor credentials and pursues advancement of those credentials and other related credentials as needed. Ensuring compliance with accreditation rules and other internal or external requirements. Ability to manage Key Customers. Supporting the sales team on technical aspects. Familiarity with use of digital tools Preferred candidate profile Bachelors degree in computer Science or equivalent & ideally a higher-level qualification Overall 10 years experience , 5 Plus years’ Experience in IT /Management system Implementation / certification and Minimum 5 years of profound experience in the field of information security and External audits Great attitude, Analytical skills and communication skills. Preferred: ITIL Certified, CISA, CISM, CISSP, MCSE, MCSA and/or MBA Good understanding of relevant regulations and industry standards (e.g. ITIL Framework, FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA, HiTrust and GLBA), best practices and methodologies and the ability to apply these requirements to organizational internal control frameworks.

As one of the world s leading asset managers, Invesco is dedicated to helping investors worldwide achieve their financial objectives. By delivering the combined power of our distinctive investment management capabilities, we provide a wide range of investment strategies and vehicles to our clients around the world. If youre looking for challenging work, smart colleagues, and a global employer with a social conscience, come explore your potential at Invesco. Make a difference every day! Job Description Department: The Invesco Internal Audit function provides independent assurance, advisory, and investigative services for the organization. Partnering closely with business leaders, the department focuses on the most critical risks and issues facing the organization and delivers strategic, innovative, and data-driven results. The department strives to be valued business advisors that provide meaningful solutions and insights, not just information and recommendations. Our team continuously seeks opportunities to improve our methodology by leveraging technology, data, agile principles, and creative solutions to maximize value to the organization. Role Summary: The Assistant Manager, IT Internal Audit, is responsible for conducting Sarbanes-Oxley testing, traditional internal audits, and other projects assigned by the Audit Director. This role requires obtaining an understanding of the areas under review, executing internal control tests, and documenting the results in accordance with Invesco s agile auditing principles and applicable professional standards. Key Responsibilities: Audit Planning and Execution: Plan and execute Sarbanes-Oxley testing and traditional internal audits of applicable business areas, as requested by the Audit Director and the Internal Audit Leadership Team. This includes: Performing assessments and evaluating the design and operation of global ITGCs, IT Application Controls, and IPE (Key Reports) to determine the effectiveness of controls, identify gaps, and implement action plans to remediate gaps. Assessing risks associated with system implementations and working with management to identify and implement controls to address identified risks. Partnering with global IT and Business Leadership to manage, control, perform, and audit activities related to SOX regulations and the ITGC environment. Reviewing control descriptions, process narratives, and testing strategies for reasonableness and accuracy. Influencing stakeholders and related affiliates to implement necessary process modifications to meet regulatory needs. Reviewing and implementing remediation of control gaps found from SOX and ITGC/ITAC/IPE reviews and risk assessments. Partnering with the Big 4 audit team to handle both administrative and testing tasks. Documentation and Reporting: Conduct walkthroughs, document business procedures, evaluate key controls, and develop audit programs to guide test work. Execute audit testing, complete high-quality work papers, and obtain management acceptance on control weaknesses and action plans. Manage assignments within timeframes, foster relationships with business partners, and promote a culture of risk and control awareness. Continuous Improvement: Embrace a culture of agility, innovation, and continuous improvement within the Internal Audit function. Special Projects: Perform other duties and special projects as assigned by the Audit Director. Qualifications and Experience: Education: Bachelor s degree in Information Systems, Computer Science, Engineering, or Finance preferred. Other business or technology-related degrees considered depending upon relevant experience. Certifications: Professional auditing, security, or technology designation (e.g., CISA, CISSP, CCSP, AWS Cloud Practitioner, etc.) or actively pursuing the completion of such designation preferred. Experience: Minimum 2-4 years of auditing experience with strong knowledge of general controls and SOX Compliance, technology audit, consulting, or information security roles. Previous experience in audit-related, risk management, and/or compliance roles is desirable. Technical Skills: Knowledge of IT Security aspects towards key areas like Cloud Computing, database management systems, SDLC, IT general controls (ITGC), COBIT, and experience working with agile development methodologies. Sound experience with SOX 404 documentation and testing compliance. Analytical Skills: Strong critical thinking, analytical, and decision-making skills. Knowledge of analytical tools such as Tableau is an added advantage. Communication Skills: Excellent verbal and written communication skills in English. Project Management: Strong project management, interpersonal, and administrative skills. Professional Ethics: Demonstrates high professional ethics. Microsoft Office: Proficient in Microsoft Office (MS Word, Excel, PowerPoint, etc.). Key Competencies: Integrity and Ethics: Uphold the highest standards of integrity and ethical behavior. Critical Thinking: Apply critical thinking and problem-solving skills to identify risks and develop effective audit strategies. Adaptability: Demonstrate flexibility and adaptability in a rapidly changing business environment. Collaboration: Work effectively with cross-functional teams and build strong relationships with stakeholders. Professional Development: Commit to continuous learning and professional development to stay current with the latest audit practices and standards. Travel: Potential for up to 10% domestic and international travel. Full Time / Part Time Full time Worker Type Employee Job Exempt (Yes / No) Yes Workplace Model At Invesco, our workplace model supports our culture and meets the needs of our clients while providing flexibility our employees value. As a full-time employee, compliance with the workplace policy means working with your direct manager to create a schedule where you will work in your designated office at least three days a week, with two days working outside an Invesco office. Why Invesco In Invesco, we act with integrity and do meaningful work to create impact for our stakeholders. We believe our culture is stronger when we all feel we belong, and we respect each other s identities, lives, health, and well-being. We come together to create better solutions for our clients, our business and each other by building on different voices and perspectives. We nurture and encourage each other to ensure our meaningful growth, both personally and professionally. We believe in diverse, inclusive, and supportive workplace where everyone feels equally valued, and this starts at the top with our senior leaders having diversity and inclusion goals. Our global focus on diversity and inclusion has grown exponentially and we encourage connection and community through our many employee-led Business Resource Groups (BRGs). What s in it for you As an organization we support personal needs, diverse backgrounds and provide internal networks, as well as opportunities to get involved in the community and in the world. Our benefit policy includes but not limited to: Competitive Compensation Flexible, Hybrid Work 30 days Annual Leave + Public Holidays Life Insurance Retirement Planning Group Personal Accident Insurance Medical Insurance for Employee and Family Annual Health Check-up 26 weeks Maternity Leave Paternal Leave Adoption Leave Near site Childcare Facility Employee Assistance Program Study Support Employee Stock Purchase Plan ESG Commitments and Goals Business Resource Groups Career Development Programs Mentoring Programs Invesco Cares Dress for your Day In Invesco, we offer development opportunities that help you thrive as a lifelong learner in a constantly evolving business environment and ensure your constant growth. Our AI enabled learning platform delivers curated content based on your role and interest. We ensure our manager and leaders also have many opportunities to advance their skills and competencies that becomes pivotal in their continuous pursuit of performance excellence. To know more about us About Invesco: https: / / www.invesco.com / corporate / en / home.html About our Culture: https: / / www.invesco.com / corporate / en / about-us / our-culture.html About our D&I policy: https: / / www.invesco.com / corporate / en / our-commitments / diversity-and-inclusion.html About our CR program: https: / / www.invesco.com / corporate / en / our-commitments / corporate-responsibility.html Apply for the role @ Invesco Careers : https: / / careers.invesco.com / india /

Thomson Reuters is seeking a dynamic and strategic leader to manage the Customer Trust Operations Team. This role is pivotal in ensuring our team delivers high-quality responses and fosters strong relationships with both internal stakeholders and customers. The Manager will drive innovation, leveraging technology to streamline processes and enhance customer satisfaction. About the Role: Key Responsibilities: Lead and inspire the Customer Trust Operations Team, encouraging strategic thinking and excellence in delivering responses to customer inquiries. Develop and maintain strong relationships with internal stakeholders, ensuring alignment and collaboration across the organization. Support customer meetings and audit calls, presenting Thomson Reuters' security posture and addressing inquiries with confidence and expertise. Identify and implement new ways of working, utilizing technology to automate and improve processes within the team. Oversee the development and maintenance of standardized responses and security collateral, ensuring accuracy and completeness. Collaborate with domain experts, peers, and business or technology leaders to enhance the customer compliance program. Act as a point of escalation for complex customer security concerns, providing guidance and solutions. Report on customer feedback and the current state of information security, identifying control gaps and driving remediation efforts. Contribute to and achieve business and departmental goals and objectives, fostering a culture of continuous improvement. Promote risk awareness and compliance as a subject matter expert, building and maintaining relationships with key stakeholders. Encourage the team to leverage automation tools and explore new technologies to enhance research and data population processes. About You: Youre a fit for the role if your background includes: Proven experience in a managerial role within information security, compliance, or a related field. Strong expertise in cybersecurity, IT audits, and risk management. Industry-related certifications such as CISSP or CISA are highly desirable. Excellent communication skills, with the ability to articulate security topics to both technical and non-technical audiences. Experience in leading teams and driving operational excellence in a fast-paced environment. Strong critical thinking and problem-solving skills, with a proactive approach to identifying process improvements. Ability to interact effectively with both technical and business stakeholders, influencing decisions and driving consensus. Working knowledge of frameworks such as NIST, SOC2, ISO 27000, and risk assessment methodologies. A passion for customer satisfaction and a commitment to delivering high-quality results. Join our team and lead the way in building trust and ensuring security for our valued customers! #LI-SS5 Whats in it For You Hybrid Work Model Weve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, empowering employees to achieve a better work-life balance. Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrows challenges and deliver real-world solutions. Our Grow My Way programming and skills-first approach ensures you have the tools and knowledge to grow, lead, and thrive in an AI-enabled future. Industry Competitive Benefits We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing. Culture: Globally recognized, award-winning reputation for inclusion and belonging, flexibility, work-life balance, and more. We live by our valuesObsess over our Customers, Compete to Win, Challenge (Y)our Thinking, Act Fast / Learn Fast, and Stronger Together. Social Impact Make an impact in your community with our Social Impact Institute. We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives. Making a Real-World Impact: We are one of the few companies globally that helps its customers pursue justice, truth, and transparency. Together, with the professionals and institutions we serve, we help uphold the rule of law, turn the wheels of commerce, catch bad actors, report the facts, and provide trusted, unbiased information to people all over the world. Thomson Reuters informs the way forward by bringing together the trusted content and technology that people and organizations need to make the right decisions. We serve professionals across legal, tax, accounting, compliance, government, and media. Our products combine highly specialized software and insights to empower professionals with the data, intelligence, and solutions needed to make informed decisions, and to help institutions in their pursuit of justice, truth, and transparency. Reuters, part of Thomson Reuters, is a world leading provider of trusted journalism and news. We are powered by the talents of 26,000 employees across more than 70 countries, where everyone has a chance to contribute and grow professionally in flexible work environments. At a time when objectivity, accuracy, fairness, and transparency are under attack, we consider it our duty to pursue them. Sound excitingJoin us and help shape the industries that move society forward. As a global business, we rely on the unique backgrounds, perspectives, and experiences of all employees to deliver on our business goals. To ensure we can do that, we seek talented, qualified employees in all our operations around the world regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under applicable law. Thomson Reuters is proud to be an Equal Employment Opportunity Employer providing a drug-free workplace. We also make reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs in accordance with applicable law. More information on requesting an accommodation here. Learn more on how to protect yourself from fraudulent job postings here. More information about Thomson Reuters can be found on thomsonreuters.com.

Privacy Analyst , Enabling Functions General Counsel We are looking for a Privacy Analyst to join our growing team of privacy experts, who will be a key component in ensuring our global privacy program is improved and implemented across the organization. In this role, you will focus on ensuring that our data privacy practices meet regulatory requirements and reflect best practices, with a primary emphasis on managing data subject rights requests and improving the associated processes. If you are a detail-oriented and organized individual with a passion for data privacy and a strong understanding of regulatory requirements, we encourage you to apply for this exciting opportunity. About the Role In this opportunity as Privacy Analyst , you will Managing and responding to data subject rights requests, such as access, correction, and deletion requests Improving and streamlining the data subject rights request process to ensure efficiency and compliance with regulatory requirements Supporting the development and implementation of global privacy policies and procedures Assisting with day-to-day matters of the privacy office, including: Conducting privacy risk assessments and impact assessments Monitoring and informing about the latest developments in privacy laws and regulations Coordinating with internal stakeholders to ensure compliance with privacy regulations and policies Maintaining records and documentation related to data subject rights requests and other privacy-related activities About You You're a fit for the role of Privacy Analyst if your background includes Bachelors degree in Law, Information Technology, Business, or a related field. 2-5 years of experience in data privacy, data protection, or a related role. Excellent analytical and problem-solving skills. Effective communication and interpersonal skills. Relevant certifications are a plus. #LI-HS1 Whats in it For You Hybrid Work Model Weve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, empowering employees to achieve a better work-life balance. Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrows challenges and deliver real-world solutions. Our Grow My Way programming and skills-first approach ensures you have the tools and knowledge to grow, lead, and thrive in an AI-enabled future. Industry Competitive Benefits We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing. Culture: Globally recognized, award-winning reputation for inclusion and belonging, flexibility, work-life balance, and more. We live by our valuesObsess over our Customers, Compete to Win, Challenge (Y)our Thinking, Act Fast / Learn Fast, and Stronger Together. Social Impact Make an impact in your community with our Social Impact Institute. We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives. Making a Real-World Impact: We are one of the few companies globally that helps its customers pursue justice, truth, and transparency. Together, with the professionals and institutions we serve, we help uphold the rule of law, turn the wheels of commerce, catch bad actors, report the facts, and provide trusted, unbiased information to people all over the world. Thomson Reuters informs the way forward by bringing together the trusted content and technology that people and organizations need to make the right decisions. We serve professionals across legal, tax, accounting, compliance, government, and media. Our products combine highly specialized software and insights to empower professionals with the data, intelligence, and solutions needed to make informed decisions, and to help institutions in their pursuit of justice, truth, and transparency. Reuters, part of Thomson Reuters, is a world leading provider of trusted journalism and news. We are powered by the talents of 26,000 employees across more than 70 countries, where everyone has a chance to contribute and grow professionally in flexible work environments. At a time when objectivity, accuracy, fairness, and transparency are under attack, we consider it our duty to pursue them. Sound excitingJoin us and help shape the industries that move society forward. As a global business, we rely on the unique backgrounds, perspectives, and experiences of all employees to deliver on our business goals. To ensure we can do that, we seek talented, qualified employees in all our operations around the world regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under applicable law. Thomson Reuters is proud to be an Equal Employment Opportunity Employer providing a drug-free workplace. We also make reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs in accordance with applicable law. More information on requesting an accommodation here. Learn more on how to protect yourself from fraudulent job postings here. More information about Thomson Reuters can be found on thomsonreuters.com.

We are looking for a Privacy Analyst to join our growing team of privacy experts, who will be a key component in ensuring our global privacy program is improved and implemented in the Asian region. In this role, you will play a critical part in ensuring that our data privacy practices meet regulatory requirements and reflect best practices. You will be a part of the global privacy team, but work with local business to support privacy initiatives, conduct risk assessments, assess local legislation and implement privacy compliance programs. To succeed, we think you have a good balance between being a team player who can support and improve the roadmap and program set by the global team, while still be able to work autonomously to implement and maintain the privacy program locally. About the Role In this opportunity as Analyst, Privacy & Cybersecurity Law , you will Monitor and inform about the latest developments in privacy laws and technologies. Help develop and strengthen the global privacy program by providing input and feedback related to local privacy laws. Implement and maintain global privacy policies and procedures locally. Collaborate with legal, IT, and business teams to integrate privacy controls into systems and processes. Monitor and respond to privacy-related inquiries and requests. Provide training and guidance to employees on data privacy best practices. About You You're a fit for the role of Analyst, Privacy & Cybersecurity Law if your background includes Bachelors degree in Information Technology, Law, Business, or a related field. 2-5 years of experience in data privacy, data protection, or a related role. Strong understanding of asian privacy laws and regulations, such as for example PIPL, DPDPA, PDPA and others. Excellent analytical and problem-solving skills. Effective communication and interpersonal skills. Relevant certifications are a plus. #LI-HS1 Whats in it For You Hybrid Work Model Weve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, empowering employees to achieve a better work-life balance. Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrows challenges and deliver real-world solutions. Our Grow My Way programming and skills-first approach ensures you have the tools and knowledge to grow, lead, and thrive in an AI-enabled future. Industry Competitive Benefits We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing. Culture: Globally recognized, award-winning reputation for inclusion and belonging, flexibility, work-life balance, and more. We live by our valuesObsess over our Customers, Compete to Win, Challenge (Y)our Thinking, Act Fast / Learn Fast, and Stronger Together. Social Impact Make an impact in your community with our Social Impact Institute. We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives. Making a Real-World Impact: We are one of the few companies globally that helps its customers pursue justice, truth, and transparency. Together, with the professionals and institutions we serve, we help uphold the rule of law, turn the wheels of commerce, catch bad actors, report the facts, and provide trusted, unbiased information to people all over the world. Thomson Reuters informs the way forward by bringing together the trusted content and technology that people and organizations need to make the right decisions. We serve professionals across legal, tax, accounting, compliance, government, and media. Our products combine highly specialized software and insights to empower professionals with the data, intelligence, and solutions needed to make informed decisions, and to help institutions in their pursuit of justice, truth, and transparency. Reuters, part of Thomson Reuters, is a world leading provider of trusted journalism and news. We are powered by the talents of 26,000 employees across more than 70 countries, where everyone has a chance to contribute and grow professionally in flexible work environments. At a time when objectivity, accuracy, fairness, and transparency are under attack, we consider it our duty to pursue them. Sound excitingJoin us and help shape the industries that move society forward. As a global business, we rely on the unique backgrounds, perspectives, and experiences of all employees to deliver on our business goals. To ensure we can do that, we seek talented, qualified employees in all our operations around the world regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under applicable law. Thomson Reuters is proud to be an Equal Employment Opportunity Employer providing a drug-free workplace. We also make reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs in accordance with applicable law. More information on requesting an accommodation here. Learn more on how to protect yourself from fraudulent job postings here. More information about Thomson Reuters can be found on thomsonreuters.com.

Job Role-IT/IS Governance & Compliance Manager Job Summary 1. Responsible for Information Technology (IT)/Information Security (IS) Governance, IT risk management and compliance in the organization. 2. Create and maintain the documentation for Information System governance and audits in accordance with regulatory & compliance requirements. 3. Develop, review and update policies and standards as appropriate to align to the changing needs. 4. Support in the interpretation of policies, standards, and guidelines to ensure consistency and compliance. 5. Monitoring and ensuring the policy / Standard Operating Procedures adherence across different IT functions. 6. The person needs to work closely with the CISO, CTO and other stakeholders in Risk, IT and Audit functions.Role & responsibilities

Key ResponsibilitiesCoordinate with business and IT process owners to initiate, scope, plan, and conduct periodic controls assessments to identify areas of risk by evaluating the design and operating effectiveness of Information Technology General Controls (ITGC) over applications, operating systems, and databases as well as the network infrastructure including cybersecurity controlsPlanning, testing, documentation and reportingCommunicate issues to process owners, ensuring their understanding of associated risks and the actions needed to remediate those risksPrepare reports based on the adequacy and effectiveness of controls evaluated/testedTrack and Monitors open issues and conducts follow-up to evaluate the adequacy of remediation effortsCommunicate with external auditors and support their initiatives effectively from an IT audit standpoint.Lead ISO, SOX and ICoFR audit planning, fieldwork (testing and documentation), and reportingInteract with the IT application owner and provide assistance as needed during the SOX control testing processes, including attending walkthrough meetings and performing testing on their behalfAware about IT Controls and related compliancesEvaluate compliance with Company policies and procedures and regulatory standardsBuild collaborative working relationships with internal stakeholders (appropriate levels of management)Education QualificationBE / B.Tech Computer Science / MBA SystemCompetencies (Knowledge & Skills) Knowledge of SDLC (SoftwareDevelopment Life Cycle)Certification of CA, CPA orCIA (or actively working towards) or other similar certifications would be anadded advantage.Demonstrated in-depthknowledge of concepts, best practices and controls in a breadth of InformationSecurity areas/domains. These include governance & risk management, accesscontrol, cybersecurity, physical security, security architecture and design,business continuity/disaster recovery, network security, application &operations security and compliance/incident management.Demonstrated ability tounderstand complex technologies, business processes, regulations and emergingrisks.Strong understanding of ISO,SOX and IT frameworks including COSO and COBIT.

Position Purpose RISK Operational Risk Management (RISK ORM), created early 2021 to oversee operational risks within the mandate of the RISK function, is organised, under the responsibility of the Group Chief Operational Risk Officer (Group CORO), around 3 Poles: RISK ORM Framework, RISK ORM Technology & Transversal Risks and RISK ORM Network. Under the authority of the Pole's Manager, RISK ORM Network is made up of all the Operational Risk Officers (OROs) acting as the second line of defence (LoD2) within the Group's operational entities (Poles, Business Lines, Functions, Transversal Activities). The below requirement is for Operational Risk Officer- ICT Controls Testing role which part of the Common ICT LoD2 Controls Execution Platform (CICEP) under Group RISK ORM Network team. The candidate will be part of The Bank's 2nd line of defense function, and they will be responsible for testing the deployment, and effectiveness of the IT and Cyber controls globally. The position is based in India Solutions Pvt. Ltd. (ISPL), Mumbai and reports to the Head of CICEP (India CoE), plus functionally to Group Head of ICT Controls Testing. Key success of the CICEP relies on building trusted partnerships with stakeholders and particularly with the ORM Network community and globally, with all entities of the Group. Responsibilities Direct Responsibilities Perform the independent testing of ICT controls (ITGC controls testing) to determine the design effectiveness, and operating effectiveness of IT and Cyber controls. Contribute to the industrialization and automation of RISK ORM ICT control testing services by development of methodologies / tools for the achievement of assignments. Draft high-quality reports containing the assessor's opinion on the ICT control gaps, and recommendations for improvement, post completion of an assignment. Review and assist with the evaluation of control deficiencies and provide practical recommendations for remediation. Identify areas of improvement for ICT control testing and assist with the enhancement of the methodologies / tools for carrying out the ICT controls testing assignments. Ensure completion of the testing and adherence to the internal timelines. Provide IT and cyber risk management consultancy (specific to ICT controls) to business and IT stakeholders. Work in collaboration with other stakeholders from business and RISK ORM teams to contribute towards influencing the ICT risk culture of The Bank. Improve the effectiveness of the Internal Controls programme by reviewing the control environment, risk assessment process, control activities, information and communication and monitoring activities Contributing Responsibilities Collaboration at the India CoE level with Head of India CoE, including but not limited to the CoE level reporting requirements Effectively contribute to the CoE, RISK India Hub and ISPL on Group mandates, Objectives and priorities Help and contribute to build the CoE as a positive place to work Technical & Behavioral Competencies SKILLS, EXPERIENCE AND COMPETENCIES Skills Required 3-6 years of experience in IT audit / ITGC controls testing / technical assessments, preferably in the areas of Cyber and Technology domains in a financial institution.Must be able to interface and coordinate work efficiently, and effectively with business partners.Excellent analytical skills being able to come to a thoughtful and business focused conclusion quickly.Good communication, listening and influencing skills, including ability to articulate complex issues and incorporate feedback.Ability to manage their workload independently to meet their targets, and priorities set in conjunction with management.Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate.Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done.Being rigorous and thorough especially when logging and tracking issues through to conclusion.Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business.Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate.Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no rework.Team player focus on the success of the whole team. Working well both with others, as well as individually.Ability to work under strict timelines and at pressure situations to manage the delivery.Open to work under global time zones as required for workshops or stakeholder discussions. Skills Preferred Has the proven ability to think outside of the box, challenge industry norms and adapt quickly to evolving requirements.Is self-aware, anticipates problems, adapts and meets them head on.Strong stakeholder management, relationship building, influencing, facilitating and presenting skills.Is solutions focused measures their output on whether issues, problems or challenges are resolved as a criteria for success. Competencies: University degree (technical), and/or certification such as ISO27001, CISA.Professional qualifications/trainings relevant to technology and/or cyber risk (e.g. change management, outsourcing, vulnerability management, cloud security etc.). Conduct: Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure. Specific Qualifications (if required) University degree (technical), and/or certification on Risk Management Skills Referential BehaviouralSkills : (Please select up to 4 skills) Attention to detail / rigor Ability to deliver / Results driven Ability to synthetize / simplify Ability to collaborate / Teamwork Transversal Skills: (Please select up to 5 skills) Ability to anticipate business / strategic evolution Ability to develop and adapt a process Ability to set up relevant performance indicators Analytical Ability Ability to develop and leverage networks Education Level: Bachelor Degree or equivalent Experience Level At least 3 years Other/Specific Qualifications(if required) Professional qualifications/trainings relevant to Information Security, Risk Management (ISO 27001, ISO 3100, CISA) preferred

Job Summary: The Associate Manager Internal Audit will assist in planning, executing, and managing internal audit activities to evaluate the adequacy and effectiveness of internal controls, risk management, and governance processes. This role ensures compliance with internal policies, procedures, and applicable laws and regulations while identifying areas for process improvement. Key Responsibilities: Plan and execute risk-based internal audits, including operational, financial, and compliance audits. Assist in the development of the annual audit plan and audit programs. Conduct fieldwork, interviews, testing, and documentation in accordance with professional auditing standards (e.g., IIA Standards). Evaluate internal controls, identify control gaps, and provide practical recommendations for improvements. Prepare clear and concise audit reports summarizing findings, risks, and recommendations. Follow up on audit findings to ensure appropriate remediation of control deficiencies. Collaborate with business units and process owners to support internal control and risk mitigation efforts. Support special projects, investigations, or ad-hoc audits as assigned. Stay updated on industry trends, regulatory developments, and best practices in internal auditing. Assist in promoting a culture of compliance and risk awareness across the organization.

As a member of KPMG in India, you will have the opportunity to be part of a professional services firm that is affiliated with KPMG International and has been serving clients since September 1993. Leveraging our global network of firms, our professionals possess detailed knowledge of local laws, regulations, markets, and competition. With offices located across India in cities such as Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara, we offer a wide range of services to national and international clients spanning various sectors. At KPMG in India, we are committed to delivering rapid, performance-based, industry-focused, and technology-enabled services. Our approach reflects a deep understanding of both global and local industries, combined with our extensive experience in the Indian business environment. As part of the Advisory team, your role will involve providing valuable advice and assistance to companies, intermediaries, and public sector bodies to help them mitigate risk, improve performance, and create value. In the realm of IT Advisory projects, you will be tasked with assessing and evaluating IT systems, as well as mitigating IT-related business risks. This may involve engaging in activities such as IS audits, SOX reviews, internal audit engagements, IT infrastructure reviews, and risk advisory services. Your contributions will play a critical role in helping clients address immediate needs and develop long-term strategies to navigate the evolving IT landscape.,

You will be part of KPMG entities in India, a professional services firm affiliated with KPMG International Limited since its establishment in August 1993. Leveraging the global network of firms, you will work with professionals who are well-versed in local laws, regulations, markets, and competition. With offices spread across India in various cities such as Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara, and Vijayawada, you will have the opportunity to serve national and international clients across different sectors. As a Senior at KPMG entities in India, you will play a crucial role in providing rapid, performance-based, industry-focused, and technology-enabled services to clients. Your work will reflect a deep understanding of global and local industries, as well as your experience in navigating the Indian business environment. At KPMG, we are committed to providing equal employment opportunities and fostering a diverse and inclusive work environment.,

As an IT Auditor in our organization, you will be responsible for leading IT audits to ensure alignment with industry standards. You will oversee quality assurance and reviews for audit engagements, including conducting cybersecurity audits and risk assessments to ensure compliance with IT governance and regulatory requirements. Collaborating with cross-functional teams will be essential to address risks effectively. Your expertise will be crucial in providing expert recommendations for improving cybersecurity measures. Managing audit timelines and deliverables with consistent quality will be a key aspect of your role. Staying updated on emerging IT and cybersecurity trends will also be necessary to enhance our audit processes and practices. To excel in this role, you should hold certifications such as CISA, CISSP, CIA, CISL (or equivalent) and have expertise in IT audit, cybersecurity frameworks, and risk management. Previous experience in a Big 4 firm or relevant industry exposure will be advantageous. A strong knowledge of security standards like ISO, NIST, GDPR, and others is required. Your proven ability to lead teams, manage audit quality, and possess strong communication and stakeholder management skills will be essential for success in this position. Additionally, you should be willing to travel up to 20% to the Middle East to fulfill job requirements effectively.,

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. Renowned for technical excellence and leading innovations, NTT DATA makes a difference to clients and society. The workplace embraces diversity and inclusion, providing a space where you can grow, belong, and thrive. Your role as a Senior Team Lead, Information Security involves operationally managing organizational information security program(s). This critical position contributes to implementing company security and governance strategy, frameworks, policies, and practices to ensure risk-free and scalable business operations. Collaboration with cross-functional teams, management, and stakeholders is essential to maintain a robust information security posture and foster a collaborative and innovative team culture focused on operational excellence. Key Responsibilities: - Implement organization-wide information security strategy aligned with business objectives. - Maintain and implement information security policies, procedures, standards, and guidelines. - Coordinate the identification, assessment, and management of information security risks. - Promote a culture of security awareness among employees through training and education. - Execute incident response plans to address and mitigate security incidents effectively. - Ensure company compliance with relevant security regulations, laws, and industry standards. - Assess and select appropriate security technologies to protect digital assets. - Implement security monitoring tools to detect and respond to security threats. - Stay informed about emerging security threats and industry trends. - Evaluate security risks associated with third-party vendors and service providers. - Communicate security incidents, responses, and mitigation efforts to relevant stakeholders. - Coordinate internal and external security audits and assessments. - Provide guidance and management to the information security team. Knowledge and Attributes: - Solid knowledge of security frameworks and standards. - Understanding of security technologies, tools, and best practices. - Excellent communication and presentation skills. - Developing team management skills. - Strong problem-solving abilities. - Good business acumen. Academic Qualifications and Certifications: - Degree in business administration or a technology-related field. - Cybersecurity, risk management, and data privacy certifications preferred. Required Experience: - Solid experience in risk management, information security, and IT roles. - Experience with contract and vendor negotiations. - Experience in Agile software development and Cloud computing. - Experience in risk management, compliance, and regulatory requirements. - Working knowledge of technical expertise related to information security. Workplace Type: Hybrid Working NTT DATA is a trusted global innovator of business and technology services, serving Fortune Global 100 clients. Committed to helping clients innovate, optimize, and transform for long-term success, NTT DATA invests significantly in R&D to support the digital future confidently and sustainably. With experts in over 50 countries and a robust partner ecosystem, NTT DATA offers business and technology consulting, data and AI solutions, industry solutions, and digital infrastructure services. As part of NTT Group, NTT DATA is headquartered in Tokyo and is an Equal Opportunity Employer.,

Job Description: EY is seeking a seasoned Control & Risk Assessment Leader to join our global Information Security function. This role is a strategic leadership position within the Technology Assurance, Risk, and Policy (TARP) team, responsible for designing and managing control testing and risk assessment programs to enhance EYs cybersecurity posture. Key Responsibilities: Design, implement, and manage a global control testing and risk assessment program Develop frameworks for 1st and 2nd line control testing Build and lead a team of senior analysts and risk professionals Collaborate with internal stakeholders including Information Security, Risk Management, and Audit teams Identify risk exposure, control gaps, and suggest mitigation strategies Develop awareness and training around control frameworks across the organization Maintain alignment with global compliance standards (ISO 27001, NIST, COBIT, SOX, GDPR) Desired Skills & Experience: 12+ years of experience in Information Security, Risk Management, or IT Audit 5+ years of team leadership experience Strong understanding of GRC frameworks and IT risk assessment methodologies Hands-on experience with control testing, internal audits, or compliance assessments Knowledge of tools such as RSA Archer, PowerBI, PowerApps, Excel Excellent stakeholder management and communication skills Preferred certifications: CISSP, CISA, CISM, CRISC, CIA Qualifications: Bachelor's or Master’s degree in Computer Science, Information Security, or related field Industry certifications in risk, audit, or cybersecurity preferred Work Mode: Hybrid

Divisional Risk and Control Analyst - TDI Controls Testing & Assurance, AS Infrastructure Chief Operating Office (COO) is responsible for the effective operation of the infrastructure functions, driving operational efficiency whilst supporting the effective delivery of infrastructure services in line with business objectives and control requirements. It also includes oversight of Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). Infrastructure Divisional Control Office (IDCO) as part of Infrastructure COO, provides services to multiple functions in infrastructure. The IDCO function is a dedicated risk, control, and regulatory oversight function, with prime responsibility for managing and proactively mitigating risk across the full breadth of the Technology and Infrastructure organization. Function also provides a consolidated view and central coordination of (non-financial) risks, as well as effective, efficient, and consistent standards and policies. (Technology Data & Innovation) TDI Control Testing & Assurance team part of IDCO identifies, tracks and reports control testing & assurance activities, conducts independent controls testing (design and operating effectiveness) on different risk types in line with the Control Testing Standards. The team also focuses on regulatory and risk-based assurance requirements. This role is within TDI Control Testing & Assurance team. Your key responsibilities Perform Control Testing in line with Control Testing methodology/minimum standard Identify control deficiencies (findings), risks related to elements of controls, participate in findings agreement with stakeholders, escalate potential issues and exception items noted during the testing to senior management for discussion and further investigation, if deemed necessary Prepare Control Testing workpapers for senior management detailing testing results, document findings with highest quality Track Control Testing identified findings, perform required follow-up on open findings Consider regulatory and internal firm policy requirements as well as established best practices for control assurance. Support controls assurance activities Support in monitoring Control testing teams adherence to Control Testing methodology/minimum standards Support, contribute in managing Control Testing vendor resources, where applicable Track testing related effort/budget Plan Vs. Actuals throughout the testing lifecycle Build and maintain solid working relationships with key stakeholders such as within the DCO, IDCO, TSCO, GTI and other Testing Teams including Divisions/sub-divisions, 2 LoD and Group Audit (GA) Your skills and experience University degree preferably in Computer Science, Mathematics, Engineering or a related subject or equivalent qualification in the areas of information security. Professional/industry recognized qualifications e.g., CISA, CISSP, CISM, CRISC are beneficial. Experience in Cloud Security audit/testing, GCP (Google Cloud Platforms) or Professional/industry recognized qualifications e.g., CCSP, CCSK will be an advantage Good knowledge of auditing IT application controls, e.g., from IT audits or IT risk management. Understanding of the relationship between IT risk and underlying business process risk. Knowledge of regulations governing financial institutions is beneficial. Strong written and verbal communication skills and the ability to communicate effectively in conflict situations. Strong organizational skills and attention to detail. Ability to work under pressure, multi-task and prioritize workload. Strong analytical skills and structured thought process with the ability to clearly articulate control deficiencies and related risk Flexible, proactive, and innovative mind set with strong organizational skills to take ownership and responsibility for agreed targets and to meet them within budget to enable a timely and efficient completion of projects. This is an IC (individual contributor) role.