447 It Audit Jobs - Page 10

> Role Purpose The purpose of this role is to analyse, identify, rectify recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT

> Role Purpose The purpose of this role is to analyse, identify, rectify recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT

New requirement - JD for Cybersecurity risk manager: Key responsibilities As a Cyber Risk compliance Professional in our Group CISO office, you will be occupied in the following domains: a) Risk management b) Compliance. This role is responsible for planning, managing and coordinating various cybersecurity risk management activities focused on identifying, assessing, and mitigating risks for the enterprise from a business perspective. Skill requirement: Degree, or equivalent, in Information Security or Cyber Security or Computer science or similar course Self-motivation to continuously develop in the areas of cybersecurity Ability to prioritize and complete multiple complex projects under tight deadlines Ability to translate security issues into business risks Excellent interpersonal skills and ability to work effectively within a team at all hierarchical levels Willingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologies Experience, knowledge and strong interest in information and cyber security domains are essential for this role Experience Cyber / technology risk assessments management methodologies Hands on with assessment report preparation and presenting to senior technical and business stakeholders Articulative and confident in presentation to senior stakeholders Knowledge of use of and risks related to modern and emerging technologies Cybersecurity audit Advanced knowledge and understanding of ITGC, NIST 800-53, NIST CSF controls and Risk management frameworks Expertise in complex business processes and technological risks Deep understanding of security technologies including firewalls, proxies, SIEM, XDR, CSPM, IGA, PAM, Data protection Experience: 8 12 years.

> Role Purpose The purpose of this role is to analyse, identify, rectify recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: Privilege Password Management CyberArk. Experience: 5-8 Years.

Job Description: IT & Cyber Security Auditor Location- Andheri or any client Position: IT & Cyber Security Auditor Employment Type: Full-time Job Overview: We are seeking a highly skilled IT & Cyber Security Auditor to join our team. The ideal candidate will be responsible for conducting comprehensive audits of IT systems, applications, infrastructure, and cyber security protocols. This role involves assessing risks, evaluating security controls, and ensuring compliance with industry standards and regulatory requirements. The auditor will provide valuable insights and recommendations to enhance the organization's security posture. Key Responsibilities: Conduct IS, IT & Cyber Security Audits: Plan, execute, and report on audits of IT systems, applications, infrastructure, and cyber security protocols. Manage end-to-end audit engagements, including risk assessments, scope development, fieldwork, and reporting. Assess and test the effectiveness of information security controls and risk management practices. Ensure audits comply with relevant regulations, industry standards, and best practices (such as ISO 27001, NIST, PCI DSS, etc.). Identify gaps in processes, systems, and controls, providing actionable recommendations. Prepare audit reports highlighting key findings, risks, control weaknesses, and recommendations for remediation. Present findings to senior management, including executives, and provide support in remediation efforts. Qualifications: Bachelors/Masters degree in Information Technology, Cyber Security, or a related field. Relevant certifications such as CISA, CISSP, ISO 27001 Lead Auditor, or CEH are preferred. Strong knowledge of IT security frameworks, risk management, and compliance standards. Experience in conducting IT audits, vulnerability assessments, and security risk assessments. Experience with regulatory compliance in financial services (RBI, SEBI, IRDA) is highly preferred. Excellent analytical, problem-solving, and communication skills. Ability to work independently and collaboratively with cross-functional teams. How to Apply: Interested candidates are invited to submit their resume and cover letter to [Pallavi.kulkarni@anbglobal.com]. Please include "IT & Cyber Security" in the subject line. Equal Opportunity Employer: ANB is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. For more information about our company and culture, visit https://anbglobal.com/

The Quality & Compliance Transformation Specialist will play a pivotal role in elevating our Quality & Compliance function at Nokia. You will lead transformative initiatives focused on IT SOX Compliance and risk mitigation, utilizing automation and data analytics to drive operational excellence. Reporting directly to the Head of Quality & Compliance, you will collaborate with cross-functional teams like Digital Office and Internal Audit, ensuring alignment and seamless solution adoption. You will be empowered to explore AI-driven solutions, enhancing compliance and security measures while continuously improving processes. You have: Bachelors or masters degree in computer science, Information Systems, Engineering, or a related field with 810 years of relevant experience in process improvement, automation, and data analytics. Strong hands-on experience with Microsoft Power Platform toolsPower Automate, Power Apps, Power BI, and SharePoint. Proven expertise in developing and implementing AI-driven automation solutions. Good understanding of security tools, monitoring alerts, and incident management. It would be nice if you also had: Familiarity with SAP ERP, SecurityBridge, or SAP GRC systems. Basic knowledge of IT General Controls audit and compliance procedures. Microsoft CertifiedPower Platform Developer Associate or similar certifications. Certified Information Systems Auditor (CISA) or relevant IT audit/security certifications. Drive automation initiatives using Microsoft Power Platform tools to streamline quality and compliance processes. Develop comprehensive documentation and provide impactful training for end-user adoption of automation solutions. Lead process optimization projects to enhance operational efficiency and mitigate risks across the organization. Monitor application security tools, analyze alerts, and document incidents for effective compliance management. Explore and integrate AI-driven tools to elevate efficiency, accuracy, and proactive risk management in compliance operations. Create data models and dashboards with Power BI to deliver insights on compliance posture and audit trends. Collaborate with cross-functional teams to align automation and compliance strategies with broader organizational goals. Manage project timelines, track deliverables, and proactively address potential risks to ensure successful implementation.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA??s (90-95%), response time and resolution time TAT Mandatory Skills: Archer. Experience: 5-8 Years.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: Azure B2X Security. Experience: 3-5 Years.

Role Overview: We are seeking an experienced Data Protection and Privacy Manager, who will be responsible for overseeing the organization's data protection strategy and ensuring compliance with Indian laws such as the Information Technology Act, 2000, and the Personal Data Protection Bill.The DPPM will work closely with DPO and regulatory authorities to ensure that sensitive data is processed securely and ethically. This role is crucial in safeguarding our digital assets and maintaining compliance with industry standards and law. Key Responsibilities: Legal ComplianceEnsure adherence to data protection laws, including local DPDPA, IT Act and international regulations like GDPR. Policy DevelopmentFormulate and implement data protection policies and guidelines across the organization. Data Breach ManagementInvestigate and report data breaches to relevant authorities within the stipulated timeframe. Training & AwarenessConduct training sessions for employees on data protection practices and raise awareness about privacy policies. Impact AssessmentsPerform Data Protection Impact Assessments (DPIA) to identify risks and recommend mitigation strategies. Grievance RedressalAct as the point of contact for data principals (individuals) for grievances related to data handling or privacy violations. RecordkeepingMaintain records of all data processing activities and policies for audit and regulatory purposes. Liaison:With regulatory agencies and stakeholders regarding data protection matters. Qualifications and Experience: 1. Bachelor's degree in Information Security, Computer Science, and Law. 2. Certification in Data Protection or Privacy Management is mandatory, like - CIPM, CDPSE, DCPLA, DCPP and DCDPO 3. 8-10 years of experience in security management. 4. Strong understanding of IT infrastructure , data security best practices, and frameworks. 5. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI). 6. Excellent communication, interpersonal, analytical and leadership skills. 7. Knowledge of emerging technologies, their impact on data protection and ability to handle sensitive information discreetly.

About Us: Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology. About the role: As a Vendor Risk Operations team member, you will play a critical role in safeguarding Paytm from potential risks associated with our vendor ecosystem. You will be responsible for conducting comprehensive vendor risk assessments, ensuring compliance with internal policies and regulatory requirements, and actively contributing to the continuous improvement of our vendor risk management framework. This role requires a keen eye for detail, strong analytical skills, and the ability to collaborate effectively with various stakeholders. Conduct end-to-end vendor risk assessments across various risk domains (e.g., Vendor deduplication, information security, financial stability, business continuity, regulatory compliance, data privacy). Collaborate with business units to understand their vendor requirements and associated risks. Review vendor-provided documentation, certifications, and audit reports to identify potential vulnerabilities. Conduct Mystery-shopping wherever required Track and monitor vendor remediation efforts to ensure timely closure of identified risks. Maintain accurate and up-to-date vendor risk profiles and assessment records. Assist in the development and enhancement of vendor risk assessment methodologies, tools, and processes. Contribute to the ongoing development and implementation of Paytm's vendor risk management framework. Generate regular reports on vendor risk posture and assessment progress for internal stakeholders. Participate in ad-hoc projects and initiatives related to vendor risk management as required. Expectations/: Educational QualificationBachelor's degree in Business Administration, Finance, IT, Risk Management, or a related field. Experience2-5 years of experience in vendor risk management, third-party risk management, internal audit, compliance, or a similar risk-focused role. Domain KnowledgeStrong understanding of various risk domains, including information security, data privacy (e.g., GDPR, local data protection laws), financial risk, operational risk, and regulatory compliance. Understanding of Technology and User ExperienceAn appreciation for how technology solutions are built and how they impact user experience will be valuable in assessing vendor capabilities and potential risks. Analytical & Problem-Solving Skills: Excellent analytical and problem-solving skills with the ability to conduct deep dives, identify, assess, and mitigate risks effectively. Advanced Knowledge of Excel is required for data analysis and reporting. Basic knowledge of MySQL would be an added advantage for data retrieval and manipulation. Communication & Interpersonal Skills: Good communication and interpersonal skills, with the ability to present complex information clearly and concisely to diverse audiences. Strong written communication for documentation and reporting. High level of drive, initiative, and self-motivation. Ability to work independently, prioritize tasks, and manage multiple assessments simultaneously in a fast-paced environment. A willingness to experiment, learn quickly, and continuously improve processes and personal skills. Certifications (Preferred but not mandatory)CISA, CRISC, CISM, or other relevant certifications in risk management or information security. Why join us: A collaborative output driven program that brings cohesiveness across businesses through technology Improve the average revenue per use by increasing the cross-sell opportunities A solid 360 feedbacks from your peer teams on your support of their goals Respect, that is earned, not demanded from your peers and manager CompensationIf you are the right fit, we believe in creating wealth for you with enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it

What you will do Lets do this. Lets change the world. In this vital role you will be part of the Governance, Risk and Compliance (GRC) team within Cybersecurity and Digital Trust (CDT). This team is part of Amgen's technology team. In this position you are responsible for enabling Information Technology Sarbanes-Oxley (SOX) Compliance. You are required to collaborate with the IT SOX Compliance Manager, service owners, engineers, and other Amgen internal partners such as Finance, Compliance, Corporate Audit and Law department to develop, maintain, and improve Amgens Information Compliance. Roles & Responsibilities: You will bring forth out of the box thinking, an agile approach and domain expertise and highly developed understanding of IS controls to empower IS process and product owners to build and maintain IT controls and solutions with compliance, by design. You will perform the following activities, and any additional tasks required to attest that our systems, applications and infrastructures subjected to different aspects of compliance are able to verify adherence efficiently and effectively. Own and run the ITGC SOX Controls Management and Compliance function Deep understanding of industry standard regulatory compliance frameworks Exceptional interpersonal skills, soft skills and presentation skills Prior experience in working with and presenting to external auditors Experience working with regulatory tools and applications Coordinate, collaborate, and communicate with IT personnel across the organization, audit committee and regulatory compliance teams to ensure that our IS SOX process is followed as required by our organization Ability to demonstrate solid sense of ownership, detail orientation, keen focus on quality and setting clear expectations In charge of working with process owners, internal, and external auditors in support of our quarterly certification process Collaborate and support any SOX evidence request efforts made by Internal and External Audit teams Develop and promote educational mentorship resources that will help facilitate new owners understanding of the Sarbanes-Oxley Act and their responsibilities Review documentation to identify control gaps Create and author documentation and training materials Participate in walkthroughs with system, service, and process owners Review and analyze SOX systems and applications showing in Configuration Management Database (CMDB) for SOX applicability and ensure all components are collected and accounted for Deep understanding of IT infrastructure and hands on experience in Information Technology Infrastructure Library (ITIL) and System Development Life Cycle (SDLC) Assess the risks of IT audit findings, identify mitigating controls and incorporate in IT process framework continual improvement Map regulatory requirements across functions to identify compliance and audit response efficiencies while liaising with internal auditors and IT service owners to ensure information assurance processes are mature, and outcomes are effective by appropriately addressing and raising relevant risks to policy and regulatory compliance Maintain awareness of changing technology environments, implementation methodologies and frameworks used to support responsible functions (e.g., AI, machine learning, Dev Ops, etc.) Ensure quality of work and timeliness across different functional deliverables and take ownership of issues and coordinate through to completion What we expect of you We are all different, yet we all use our unique contributions to serve patients. Basic Qualifications: Masters degree with 4 to 6 years in Information Technology or Cybersecurity OR Bachelors degree with 6to 8 years experience in regulatory compliance and auditing Functional Skills: Must-Have Skills: 4+ years of IT audit, Information Technology / Security control assurance or enterprise IT compliance experience Working knowledge of Information Governance principles and Information Security principles: confidentiality, integrity, and availability Knowledge of international standards for Information Technology and Information Governance Experience working with various technologies, IT frameworks and methodologies Proven ability to understand the concepts of new cloud technologies and other paradigms such as emerging Big Data technologies, lean methodologies to propose appropriate controls and compliance mentorship Strong written and verbal communication, including the ability to explain technical matters to a non-technical audience Possess strong organizational and collaboration skills Strong written and verbal communication, including the ability to explain technical matters to a non-technical audience Possess strong organizational and collaboration skills Working in large / global corporate environments involving multiple businesses Good-to-Have Skills: 3+ years of experience within health, biotechnology/pharma or other regulated industries Experience working in Agile and/or DevOps teams (SCRUM) Working experience with Governance, Risk and Compliance (GRC) tools. Exceptional teamwork encompassing multi-functional teams, peer relationships, informing, understanding and appreciating differences Strong ability to convey and influence complex information compliance, risk and security issues in a manner that is easily understood and actionable Ability to effectively facilitate and inspire change within the organization. Developing / delivering presentations to large audiences and at all levels within the organization Professional Certifications: Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) Certified Information Systems Security Professional (CISSP) SANS Global Information Assurance Certifications (GIAC) Soft Skills: Good communication and collaboration skills, particularly when working with global teams. Ability to manage and prioritize tasks effectively in a high-pressure environment. Critical thinking and problem-solving abilities, especially in incident response situations. A commitment to continuous learning and knowledge sharing.

Roles & Responsibilities: Delivering Assessments/Audits: Conduct SAP Risk & Controls Assessments/Audits. Perform Compliance Security Assessments around IT and Business processes. Work as an individual contributor or lead a team of 2-4 professionals. Mentoring and Coaching: Lead junior team members. Mentor, coach, and train them on IT audit and SAP technology concepts. Provide timely and continuous feedback. Practice Development: Actively participate in practice development initiatives. Project Delivery: Collaborate with BIG 4 onshore counterparts for project/engagement delivery. Support client service delivery by meeting quality standards within the established turnaround time and budget. Compliance: Ensure personal and team compliance with BIG 4 Risk Management policies and proprietary tools. Mandatory Technical & Functional Skills: Experience: 3-6 years in any of the following domains: SAP Control Assurance and Risk Management IT Internal/External Audit engagements Control testing of IT Application Controls (ITAC), IT General Controls (ITGC), and Business Process Controls SAP Expertise: In-depth knowledge and expertise in at least one SAP functional module (e.g., SAP MM, SD, FICO) SAP HANA dB, SAP S/4 Hana ERP SAP Functional certification is an added advantage SAP Processes: Strong knowledge of Master Data, Configuration, and Transactional aspects in SAP processes Business Process Understanding: Ability to identify risks, control weaknesses, and gaps Testing and Analysis: Experience in Functional Testing, Control Gap Analysis, and SDLC reviews Security and Auditing: Knowledge of security measures and auditing practices within various operating systems, applications, and databases Communication and Teamwork: Excellent written and verbal communication skills Team player Work Ethic and Adaptability: Personal drive and positive work ethic to deliver results within defined timelines Flexibility to adapt to various engagement types, working hours, work environments, and locations

Prior experience in IT Audit (ITGC/GITC/SOC report, testing) from a client-facing ROLE Having experience in leading a small team or managing a portfolio. Ensure compliance with engagement plans and internal quality & risk management procedures. Required Candidate profile Must have experience in ITGC & SOC & IT Audit. Interested candidates can share their updated CV on sakshi@yeslandmark.com

Sr. Cyber Security Analyst POSITION PURPOSE: This role is responsible for assessing, managing, and enhancing the security measures of Bayer s systems, networks, and data. Especially using data analytics for monitoring of Bayers security systems and applications. YOUR TASKS AND RESPONSIBILITIES: Oversee security alerts and incidents, executing timely responses to mitigate potential risks and minimize operational impact. Collaborate with IT and security personnel to implement and verify the effectiveness of comprehensive security protocols. Remain updated on current cybersecurity developments, threats, and industry best practices to enhance the organizations security framework. Monitor and evaluate operational logs, event console activities, intelligence feeds, and pertinent data to detect security-related occurrences and trends, ensuring compliance with established industry standards and regulations such as ISO 27001, NIST, and GDPR. Develop and refine cybersecurity processes and protocols, ensuring adherence to relevant industry standards and regulatory requirements. Perform analysis and testing to identify vulnerabilities, misconfigurations, or other security exposures Conduct root cause analyses and investigations to recommend prevention strategies and configuration modifications. Execute penetration testing to identify vulnerabilities within infrastructure, web applications, and other systems, differentiating between vulnerability assessments and penetration testing methodologies. Investigate incidents and respond to events in real time. WHO YOU ARE: BS or MA in computer science, information security, cybersecurity, or a related field, though relevant working experience may be considered an equivalent with 8+years of experience Experience in IT audit, network operations, enterprise risk management, penetration testing, red team/incident response, or as a junior security operations analyst Experience with regulatory compliance and information security management frameworks, such as ISO 27000, COBIT, and NIST 800. Professional certifications such as CCP-SIRA (Senior), CISSP, and ISACA certifications, along with familiarity with standards like BSI ISO 27001 and PCI DSS Further certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), CompTIA, EC-Council (CSA) SOC Experience monitoring SIEM systems and tools Experience with network and security technologies, such as firewalls, IDS/IPS Experience configuring and utilizing vulnerability assessment technologies Experience with monitoring networks, detecting threats, and responding to incidents Proficiency in report writing, investigational techniques, and communicating to large audiences Ever feel burnt out by bureaucracy? Us too. Thats why were changing the way we work- for higher productivity, faster innovation, and better results. We call it Dynamic Shared Ownership (DSO). Learn more about what DSO will mean for you in your new role here https: / / www.bayer.com / enfstrategyfstrategy Bayer does not charge any fees whatsoever for recruitment process. Please do not entertain such demand for payment by any individuals / entities in connection with recruitment with any Bayer Group entity(ies) worldwide under any pretext. Please don t rely upon any unsolicited email from email addresses not ending with domain name bayer.com or job advertisements referring you to an email address that does not end with bayer.com . For checking the authenticity of such emails or advertisement you may approach us at HROP_INDIA@BAYER.COM. Division: Enabling Functions Reference Code: 847153

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions. We are currently seeking an experienced professional to join our team in the role of Sr. Associate Director, Data and Analytics Key Responsibilities: SME and Advisory Role: Serve as the primary control advisory for the CTO Data Technology organization, ensuring alignment with enterprise control expectations. Represent CTO Data Technology in all Control Owner forums to understand evolving control requirements and ensure consistent communication with ITSOs. Control Implementation Support: Educate and guide ITSOs in implementing relevant technology controls. Partner with control owners and technology teams to ensure consistent interpretation and application of control standards. Drive the implementation of assigned Technology Risk and Control Bow (TRCB) activities across CTO Data Tech aligned services and platforms. Audit & Assurance: Support ITSOs in internal, external, and regulatory audits by ensuring accurate, complete, and timely submission of evidence and responses. Coordinate with CCO, auditors and compliance teams to facilitate smooth audit walkthroughs and findings validation. Remediation Planning & Execution: Assist ITSOs in building actionable remediation plans for audit findings, KCIs, and control gaps. Monitor progress and ensure on-time delivery of all remediation commitments. Risk & Control Visibility: Provide regular visibility to CTO Data Technology sub-verticals on their control and risk posture. Publish dashboards, heat maps, and risk summaries highlighting gaps, timelines, and ownership. Tracking & Reporting: Maintain comprehensive tracking of all open audit issues, control gaps, and Key Control Indicators (KCIs). Drive regular reporting to senior stakeholders on risk metrics, remediation status, and emerging control themes. Solutioning & Risk Mitigation: Collaborate with central technology and control design teams to recommend or build control solutions where standard tools or processes are lacking. Contribute to the continuous improvement of control frameworks and tooling. Requirements Qualifications External To be successful in this role you should meet the following requirements: Bachelor s degree in computer science engineering or related field. 15+ years of experience in technology risk management, control assurance, IT audit, or compliance functions within a global enterprise. Deep understanding of IT controls, risk frameworks (e.g., COBIT, NIST, ISO 27001), and regulatory expectations. Proven experience in audit management and control remediation within complex technology environments. Strong stakeholder management and influencing skills across technology, risk, and compliance domains. Excellent communication, analytical, and problem-solving capabilities. Experience working with service owners, infrastructure, and application teams in large-scale IT organizations. Familiarity with control tools, risk dashboards, GRC systems, and reporting platforms is a plus. Preferred Certifications: CISA, CRISC, CISSP, or equivalent risk/control-related certifications. You ll achieve more when you join HSBC. HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working, and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Greetings of the day, We are looking for Technology Risk ( ITGC ) Exp: 1 to 6 Years Location: Bangalore, Chennai, Hyderabad, Pune, Gurugram Mandatory skills required: ITGC, SAP, HANA/ECC, IT audit, IT Risk, Change & Access Management If you are interested to work with one of the leading BIG4 Company Send your updated resume with Project details (Including skills used in the project, project date timeline & bullet points briefing the use of specified skills in the project) to sgshetty@allegisglobalsolutions.com.

The purpose of IT Audit role is understanding and evaluating the organizations IT processes, infrastructure and applications to ensure they are in-line with the compliance standards. Planning, coordinating and executing IT audits to assess the effectiveness of IT Controls, Policies and Procedures. Developing detailed audit programs and identifying key risks associated IT Systems and process. Reviewing change management process, disaster recovery plans and backup procedures. Ensuring compliance with industry standards, legal regulations (Ex: SOX, HIPAA) and internal policies. Preparing detailed audit reports with findings, risks and actionable recommendations for improvement. Troubleshooting security network problems. Willingness to travel PAN India.

Server Engineer- Should be proficient in Server Hardware Any OEM experience will work out(HP/IBM/Dell etc) Should be having good experience in RAID/ILO . should be having good experience in hardware parts replacement. Qual- Any grad Exp-1+yrs

Role & responsibilities Conduct audits of IT systems, applications, and infrastructure. Evaluate IT policies, procedures, and controls for effectiveness and compliance. Identify security vulnerabilities and risks in IT systems. Prepare audit reports and recommend improvements. Support compliance efforts (e.g., SOX, GDPR, ISO 27001). Collaborate with IT, security, and business teams to remediate findings.

Position: System Internal Auditor Location: East Africa Experience: +5 Years of experience in IT auditing, risk management, cybersecurity, or internal controls. Qualification: Bachelors degree in information technology, Computer Science, or relevant field. Key Responsibilities: Assess IT Systems : Review and evaluate the organization's IT infrastructure to ensure systems operate correctly and securely. Review Policies and Procedures : Examine IT-related policies, procedures, and standards to ensure they are up-to-date and effective. Ensure Compliance : Verify that IT operations comply with legal regulations and internal policies. Conduct Risk-Based Audits : Plan and perform audits focusing on areas with higher risks, such as cybersecurity threats. Report Findings : Document audit results, highlighting issues found, their implications, and recommendations for improvement. Collaborate with Teams : Work with IT, compliance, and risk management teams to strengthen IT controls and governance frameworks. Provide Training : Educate staff on IT security best practices and risk management. Monitor Third-Party Risks : Assess and manage risks associated with third-party vendors and cloud services. Promote Continuous Improvement : Implement tools and practices that allow for ongoing monitoring and improvement of IT systems. **If interested, kindly send your CV to chhavi@achyutam.co.in** Note: Apply only if interested to relocate to Africa and meet the above criteria.

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Security Data Privacy Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will be involved in designing, building, and configuring applications to meet business process and application requirements. Your typical day will revolve around creating innovative solutions to address various business needs and ensuring seamless application functionality. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the team in implementing cutting-edge security and data privacy measures- Conduct regular security audits and assessments to identify vulnerabilities- Develop and implement data protection strategies to safeguard sensitive information Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Data Privacy- Strong understanding of data encryption techniques- Experience in implementing access control mechanisms- Knowledge of regulatory compliance standards such as GDPR and HIPAA- Familiarity with security assessment tools and methodologies Additional Information:- The candidate should have a minimum of 5 years of experience in Security Data Privacy- This position is based at our Bengaluru office- A 15 years full time education is required Qualification 15 years full time education

Skill required: Finance & Accounting - Risk Management Designation: Quality Auditing Associate Qualifications: BCom/Master of Business Administration Years of Experience: 1 to 3 years About Accenture Accenture is a global professional services company with leading capabilities in digital, cloud and security.Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities.Visit us at www.accenture.com What would you do You will be aligned with our Finance Operations vertical and will be helping us in determining financial outcomes by collecting operational data/reports, whilst conducting analysis and reconciling transactions.General Accounting practicesAnticipate, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. Follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. What are we looking for Candidate must have SOX control testing experience in finance & accounts. Candidate must have SOX control testing experience in finance & accounts. Roles and Responsibilities: In this role you are required to solve routine problems, largely through precedent and referral to general guidelines Your expected interactions are within your own team and direct supervisor You will be provided detailed to moderate level of instruction on daily work tasks and detailed instruction on new assignments The decisions that you make would impact your own work You will be an individual contributor as a part of a team, with a predetermined, focused scope of work Please note that this role may require you to work in rotational shifts Qualification BCom,Master of Business Administration

The opportunity: The professional should ideally have a good understanding of Business process and IT General controls (ITGCs). Intensive knowledge for all key business processes like Purchase to Pay, Inventory, Order to Cash (Revenue process), Record to Report, Human resources and Payroll, Tax and Legal compliances. Relevant experience and exposure to J SOX compliance or similar compliances on Internal Financial controls and assessment is recommended. The professional will be responsible for end to end evaluation of Risk and Internal Controls which involves performing Design Effectiveness assessment, operating effectiveness testing and evaluation of control gaps and draft remediation for implementation of the gaps identified as part of the Controls Assessment. How you ll make an impact: Responsible for Testing the Internal controls for a country or set of countries as allocated for a large Global Company. Conduct Walkthroughs of the business processes and ITGC s supporting creation of the process documentation and the flow chart of the same. Update of the process documentation basis the changes in the nature of the business and its operations. Perform independently the Design Assessment and Operating effectiveness Assessment of Internal controls covering business processes and IT general controls (ITGC) to ensure compliance with PCAOB requirements. Assess the design of the respective controls in relation to mitigating the financial risk considering the control description, its attributes, and test plan. Support in updating or drafting a Risk and Control Matrix on the business process as per the established global compliance framework. Documentation of SOX testing and testing results in line with internal controls methodology and pre-defined testing procedures Ensuring the Quality of Testing documentation to the SOX Compliance standards for both business process and ITGC Assist with the evaluation of control deficiencies and provide practical recommendations for remediations. Assist in coordinating audit efforts with business process owners, control owners and external audit team Adherence to the Global Internal Controls compliance methodology and instructions from time to time. Effective and proactive communication with Global Compliance team as required. Ensuring completion of the Testing and adherence to the J SOX Testing timelines. Effective and proactive communication with the Business and controls owners for the same. Ability to work under strict timelines and at pressure situations to manage the timelines of delivery. Open to work under global time zones as required. Living Hitachi Energy s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business. Your background: Ideally MBA in Finance/Accounting or CA/Bachelor s degree in Business or accounting Knowledge of SOX, Internal audit, Internal controls, IT audit and ITGC. Candidate with 3-4 years of professional experience in the areas of Risk Assessment and Internal Controls. Knowledge of ERP s like S4 Hana/ SAP / Oracle/ JDE / etc. and their native application controls will be preferred. Knowledge of flowcharts design and process improvements. Ability to exercise professional skepticism and judgement while evaluating risks and controls Ability to effectively interact with internal/external team and work well within a collaborative team. Excellent verbal and written communication skills. Proficiency in both spoken & written English language is required. Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing a general inquiry form on our website. Please include your contact information and specific details about your required accommodation to support you during the job application process. .

The opportunity: The professional should ideally have a good understanding of Business process and IT General controls (ITGCs). Intensive knowledge for all key business processes like Purchase to Pay, Inventory, Order to Cash (Revenue process), Record to Report, Human resources and Payroll, Tax and Legal compliances. Relevant experience and exposure to J SOX compliance or similar compliances on Internal Financial controls and assessment is recommended. The professional will be responsible for end to end evaluation of Risk and Internal Controls which involves performing Design Effectiveness assessment, operating effectiveness testing and evaluation of control gaps and draft remediation for implementation of the gaps identified as part of the Controls Assessment. How you ll make an impact: Responsible for Testing the Internal controls for a country or set of countries as allocated for a large Global Company. Conduct Walkthroughs of the business processes and ITGC s supporting creation of the process documentation and the flow chart of the same. Update of the process documentation basis the changes in the nature of the business and its operations. Perform independently the Design Assessment and Operating effectiveness Assessment of Internal controls covering business processes and IT general controls (ITGC) to ensure compliance with PCAOB requirements. Assess the design of the respective controls in relation to mitigating the financial risk considering the control description, its attributes, and test plan. Support in updating or drafting a Risk and Control Matrix on the business process as per the established global compliance framework. Documentation of SOX testing and testing results in line with internal controls methodology and pre-defined testing procedures. Ensuring the Quality of Testing documentation to the SOX Compliance standards for both business process and ITGC Assist with the evaluation of control deficiencies and provide practical recommendations for remediations. Assist in coordinating audit efforts with business process owners, control owners and external audit team. Adherence to the Global Internal Controls compliance methodology and instructions from time to time. Effective and proactive communication with Global Compliance team as required. Ensuring completion of the Testing and adherence to the J SOX Testing timelines. Effective and proactive communication with the Business and controls owners for the same. Ability to work under strict timelines and at pressure situations to manage the timelines of delivery. Open to work under global time zones as required. Living Hitachi Energy s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business. Your background: Ideally MBA in Finance/Accounting or CA/Bachelor s degree in Business or accounting Looking for a suitable candidate with 4-7 years of professional experience in the areas of Risk Assessment and Internal Controls. Knowledge of SOX, Internal audit, Internal controls, IT audit and ITGC. Knowledge of ERP s like S4 Hana/ SAP / Oracle/ JDE / etc. and their native application controls will be preferred. Knowledge of flowcharts design and process improvements. Ability to exercise professional skepticism and judgement while evaluating risks and controls. Ability to effectively interact with internal/external team and work well within a collaborative team. Proficiency in both spoken & written English language is required. Qualified individuals with a disability may request a reasonable accommodation if you are unable or limited in your ability to use or access the Hitachi Energy career site as a result of your disability. You may request reasonable accommodations by completing a general inquiry form on our website. Please include your contact information and specific details about your required accommodation to support you during the job application process. .

Job Title: Senior Analyst IT Risk and Compliance Location: Chennai Department: IT Risk & Compliance Reports To: Manager, IT Risk and Compliance Job Type: Full-Time Job Summary We are seeking a highly motivated and detail-oriented IT Compliance Analyst to join our Risk & Compliance team. The ideal candidate will be responsible for performing comprehensive IT compliance assessments, testing IT general controls and IT Automated controls and ensuring the organization adheres to internal policies and external regulatory requirements, including Sarbanes-Oxley (SOX). This role plays a critical part in maintaining a strong internal control environment and driving process improvement across the organization. Key Responsibilities Assist in planning and scoping IT compliance and internal control assessments. Identify risk areas and develop internal control testing programs. Perform end-to-end IT compliance assessments, including evaluating effectiveness of risk and control frameworks. Test IT General Controls (ITGCs) across domains like change management, logical access, SDLC and IT operations. Assess IT Automated Controls across business functions such as payroll, inventory, and revenue. Document control walkthroughs using narratives and flowcharts. Develop, maintain, and present compliance workpapers and reports highlighting control deficiencies and recommendations. Collaborate with management to communicate findings and ensure timely remediation of audit issues. Support external audit activities by coordinating information requests and walkthroughs. Stay up to date with regulatory and industry developments in IT compliance and risk management. Engage in continuous improvement efforts to enhance the efficiency and effectiveness of compliance processes. Qualifications Bachelor's degree in Information Technology, Computer Science etc. Professional certification (or working towards) such as CISA, CRISC, CISSP, or CISM preferred. 7–10 years of experience in IT audit, compliance, or risk management; minimum 3-5 years in a Big 4 or similar professional services firm preferred . Strong understanding of IT infrastructure, applications, and enterprise systems. Knowledge of Sarbanes-Oxley (SOX), ITGCs, automated controls, and internal control principles. Experience with audit and compliance tools (e.g., eAudit, Auditboard, or equivalent). Ability to understand cross-functional business processes and their integration with IT systems. Strong interpersonal, communication, and report-writing skills. Able to work independently and collaboratively under tight deadlines. Demonstrated sound judgment, critical thinking, and attention to detail. Preferred Skills Hands-on experience in documenting business processes and identifying control gaps. Ability to present findings to senior stakeholders and recommend practical remediation steps. Familiarity with GRC platforms and data analytics tools. Understanding of global business practices and regulatory environments.