436 It Audit Jobs - Page 17

Skill required: Risk & Compliance - Operational Audit & Compliance Designation: Risk and Compliance Senior Analyst Qualifications: BCom/Master of Business Administration/CA Inter Years of Experience: 5 to 8 years What would you do? You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.The Operational Audit & Compliance team focuses on auditing and managing effective implementation and delivery of functional processes within operations to mitigate risks. The role may require for you to have a good understanding of anti-corruption, BCM and infosec policies, records management and contractor controls. The team is responsible for establishing processes to validate the effectiveness and drive improvements wherever required. What are we looking for? Risk and Compliance Experience Knowledge of Finance & Accounting processAuditing experience Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications BCom,Master of Business Administration,CA Inter

Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Senior Analyst Qualifications: Any Graduation Years of Experience: 5 to 8 years What would you do? Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model – powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints.Automated control testing is required. ITGC What are we looking for? Results orientation Strong analytical skills Written and verbal communication Collaboration and interpersonal skills Process-orientation Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications Any Graduation

The Cloud Security Advisor Join our team of Cloud Security professionals to re-imagine technology delivery, business models and revenue streams Practice: Technology Strategy & Advisory, Capability Network I Areas of Work: Cloud Security Advisor | Level: Manager | Location: Bangalore/Mumbai/Gurgaon/Pune | Years of Exp: 10 to 15 years Explore an Exciting Career at Accenture Are you passionate about Tech-driven transformation and problem solving? Do you want to design, build and implement strategies to enhance business architecture performance? Are you passionate about being part of an inclusive, diverse and collaborative culture? Then, this is the right place for you! Welcome to a host of exciting global opportunities in Accenture Technology Strategy & Advisory.. The Practice- A Brief Sketch: The team helps clients achieve growth and efficiency through innovative R&D transformation, aimed at redefining business models using agile methodologies. As part of this high performing team, you will work closely with an ecosystem of partners to help accelerate resilience in the public cloud for fast, frictionless, scalable, proactive and cost effective cloud security. You will work on the following key areas: Business Problem Analysis :Identify and assess current state security capabilities and risk mitigation posture for our clients Technology-driven journey intersection :Define target state security capabilities and design security roadmap that includes cutting edge trends within Applications, APIs, and data Security Transformation: Apply best in class solutions to mitigate known risks and pre-empt unknown threats to safeguard data, networks, people and assets. High Performance Growth and Innovation :Assisting our clients to build the required capabilities for growth and innovation to sustain high performance. Bring your best skills forward to excel at the role: Develop technology solutions and value adding propositions to drive C-suite/senior leadership level discussions Demonstrate good analytical skills coupled with knowledge in cloud security to conduct analysis of present and anticipated threats; define policies, processes, and technology to address gaps Capitalize on in-depth understanding of security guiding principles, design recommendations and architecture, identity, and access management concepts Lead proof of concept and/or pilot implementations and define the plan to scale implementations across multiple technology domains Maximize subject matter expertise on security-led projects and play a key role in pitches where data-based RFP responses are discussed Contribute in presenting security strategy to clients, develop client's maturity in the use of data within various domains Demonstrate ability to work creatively and analytically in a problem-solving environment. Use knowledge of key value drivers of a business , how they impact the scope and approach of the engagement. Read about us. Qualifications Your experience counts! MBA from a tier 1 institute Your prior experience in one or more of the following is important Experience in developing security guiding principles and logical security architecture for Applications, Data, and Infrastructure EA layers. Cloud Security principles and data protection regulations such as GDPR Security Frameworks:Working knowledge of frameworks and standards including ISO 27001, ISO 27002, PCI DSS, SOX, HIPAA Proficient access management concepts as well understanding of tools for PAM / IAM Practical industry expertise across Financial Services, Retail, Consumer Goods, Telecommunications, Life Sciences, Transportation, Hospitality, Automotive / Industrial, Mining and Resources. Certifications:TOGAF/CISSP/CISA/CISM certified preferred Whats in it for you? An opportunity to work on with key G2000 clients Potential to with leaders in strategy, industry experts, enterprise function practitioners and, business intelligence professionals to shape and recommend innovative solutions that leverage emerging technologies. Ability to embed into everythingfrom how you service your clients to how you operate as a responsible professional. Personalized training modules to develop your to grow your skills, industry knowledge and capabilities Opportunity to thrive in a that is committed to accelerate equality for all. Engage in boundaryless collaboration across the entire organization.

Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Servicenow Tools Administration Minimum 3 year(s) of experience is required Educational Qualification : Engineering with ServiceNow Certification Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. You will play a crucial role in ensuring the successful implementation of ServiceNow Governance, Risk, and Compliance (GRC) solutions. Your typical day will involve collaborating with cross-functional teams, analyzing business needs, and designing innovative solutions to enhance the overall efficiency and effectiveness of the organization's GRC processes. Roles & Responsibilities: Expected to perform independently and become an SME. Required active participation/contribution in team discussions. Contribute in providing solutions to work related problems. Collaborate with cross-functional teams to gather and analyze business requirements. Design and develop ServiceNow GRC applications to meet the organization's needs. Implement best practices and industry standards for ServiceNow GRC solutions. Provide technical guidance and support to the development team. Conduct regular code reviews and ensure adherence to coding standards. Stay updated with the latest ServiceNow GRC features and functionalities. Assist in troubleshooting and resolving technical issues. Create and maintain technical documentation for future reference. Train end-users on the usage of ServiceNow GRC applications. Professional & Technical Skills: Must To Have Skills:Proficiency in ServiceNow Governance, Risk, and Compliance (GRC). Good To Have Skills:Experience with Servicenow Tools Administration. Strong understanding of IT governance, risk management, and compliance principles. Experience in designing and implementing ServiceNow GRC solutions. Knowledge of ServiceNow platform and its various modules. Familiarity with ITIL processes and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Additional Information: The candidate should have a minimum of 3 years of experience in ServiceNow Governance, Risk, and Compliance (GRC). This position is based at our Noida office. An Engineering degree with ServiceNow Certification is required. Qualifications Engineering with ServiceNow Certification

IT General Controls testing for Internal Audits (IA) and Sarbanes-Oxley (SOX) 302, 404 audits, Logical access, Change management, Computer operations, Cloud Computing, Network Security, and SDLC, Third party reporting e.g. SOC1, SOC2 etc. Required Candidate profile Must have exp in ITGC, SOC 1, SOC 2, SOX, GRC, IT Audit. Must be CISA Certified. Interested candidates can share their updated CV on sakshi@yeslandmark.com

Performing work on SOX 404 engagement: conducting tests of control design and operating effectiveness, ensuring high-quality work through complete and accurate testing documentation. Required Candidate profile Must have exp in ITGC, SOC 1, SOC 2, SOX, GRC, IT Audit. Must be CISA Certified. Interested candidates can share their updated CV on sakshi@yeslandmark.com

IT Internal Audit Manager Organization:Corporate Functions/Finance Location: Bangalore, India Level:7 - Manager People in the Corporate Function career track contribute to the running of Accenture as a high- performance business through specialization within a specific functional area and grow into internally focused roles by deepening their skills and/or developing new skills within an internal functional area. Finance professionals prepare and interpret financial plans and reports, ensuring accuracy and compliance with applicable financial rules and regulations, including internal financial controls, to mitigate risk for the company. Finance professionals may also shape and execute client deals to maximize the use of Accenture's capital and resources, manage cash and/or liaise with the investor community. Job Description: The Internal Auditor performs audit projects in accordance with Accenture's audit methodology and The Institute of Internal Auditors' (IIA) International Standards for the Professional Practice of Internal Auditing. The Internal Auditor-Information Technology focuses on audit projects that involve cyber/data security, computer operations, and IT compliance. The Internal Auditor effectively executes a wide range of Internal Audit activities in a high quality and timely manner. In their role, they perform activities that include planning and developing work programs, identifying recommendations for continuous improvement in global processes and controls, communicating results, and following up on issues reported. They are also responsible for audit strategy development, organization risk assessment/planning, and completion of special requests for Accenture Management and the Audit Committee. Key Responsibilities Depending on the role/organization the Internal Auditor-Information Technology belongs to and their career level, some or all of the following key responsibilities will apply: Participates in the detailed execution and communication of the risk-based work plan, including Accenture Management and Audit Committee special project requests. Verifies the adequacy of information technology (IT) operating procedures of the company through a systemic program of audits. Assists in development of the Company's annual audit plan and schedule. Manages audit work, including audit work plan, work papers, findings, and associated reports. Prepares and oversees the preparation of audit reports and work papers to ensure adequate documentation exists to support the completed audit and conclusions. Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned. Manages cyber/data security, IT operations, IT service delivery, and compliance audits, as assigned on a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things Identifies, recommends, and reports improvement opportunities for global processes and controls. As appropriate, identifies opportunities for continuous improvement of technology, security, financial, and other processes and evaluation of organization-driven risk. Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner. Prepares well-written and timely audit reports and high quality presentations for leadership and board level reporting. Develops audit skills and establishes/maintains relationships related to the risk areas assigned. Contributes to appropriate skilling of the IA team (e.g., recruiting, training and development, coaching/mentoring, providing career growth opportunities). Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and changes in local, state, and federal laws. Qualification Basic Qualifications: Bachelors Degree (Undergraduate degree in Computer Science/ Electronics/ IT Engineering, Information Systems, Business Administration) Certifications on Auditing and Information Security Domains (i.e. CIA, CISA, CISSP, CCSK) Cloud Security Azure Security (AZ500), AWS Certified Solutions Architect Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Minimum of 12 years experience in information technology auditing, combined audit/IT audit, or relevant information security or information technology roles. Preferred Qualifications: Big 4 experience Experience working in a global Internal Audit function Cyber security experience Strong working knowledge of operational, compliance and IT auditing techniques Broad IT knowledge in infrastructure technologies (networking, data centers, servers, etc.), application development and support, and emerging technologies. Experience with Windows and UNIX operating systems and Microsoft Office 365 Sarbanes-Oxley project experience, familiarity with COSO/COBIT framework Professional Skills: Excellent verbal and written communication skills; interpersonal and presentation skills Proven management and organizational skills Ability to train, develop, and motivate team members Demonstrated leadership in professional setting; either military or civilian Demonstrated teamwork and collaboration in a professional setting; either military or civilian Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

Role & responsibilities Strong understanding of ITGC, ITAC, SOC reports, and working knowledge of Audit tools & ServiceNow (SNOW) • Exposure to SOX, NIST 800-53, ISO 27000 series standards. Ability to support and document audit findings including action plans, remediation timelines, and closure tracking. Comfortable working from office/client location and in shift-based schedules Strong communication, stakeholder management, and project management skills Candidates holding CISA, CISM, ISO 27001 certifications will have an added advantage Preferred candidate profile Educational Background: Graduation / B.E. / B. Tech in any specialization Required Experience: 1-7 years in IT Audits, including ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC. Experience with IT Financial Audit, Business Automated Controls, and IT Risk Consulting or other compliance/regulatory audits. Perks and benefits How you'll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their careers Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you

Hi, Greeting for the Day!!! We found your profile suitable for the below opening, kindly go through the JD and reach out to us if you are interested. About Us Incorporated in 2006, We are an 18 year old recruitment and staffing company, we are a provider of manpower for some of the fortune 500 companies for junior/ Middle/ Executive talent. About Client Hiring for One of the Most Prestigious Multinational Corporations! Job Description Job Title : ITGC Trainer/Manger Qualification : Any Graduate or Above Relevant Experience : 10-15yrs Essential Duties and Responsibilities : Serve as an IT General Controls (ITGC), IT Application Controls (ITAC), Interfaces and Key Reports trainer, providing high-quality training sessions to users. Must have experience in conducting IT Audits and fundamentals training covering Domains such as Access Management, Change Management, SDLC, IT Operations, Interfaces, and Application Controls (Configurable, Non-configurable), Interfaces, IPEs, Data Migration and Platform. Must have experience in conducting Advanced Technology based IT Audit trainings (SAP, Oracle, Cloud and Dev-Ops). Must have experience in SOC1/ SOC2. Must have hands on experience working on at least ITGC, ITAC, IPE and experience in the following modules will be an added advantage: IT Service Management, IT Asset Management, Physical Security. Design, create, edit, and publish engaging learning content in various formats. Develop and maintain knowledge content within the team for easy consumption by end users. Ensure training aligns with the best practices in the industry and PCAOB guidelines. Ability to create visually appealing slides with clear, concise, and relevant information, using appropriate graphics and animations. Use interactive elements such as Q&A, polls, or discussions to maintain audience interest and participation. Location : Kolkata/Bangalore/Hyderabad CTC Range : 25 to 35LPA (Lakhs Per Annum) Notice period : Immediate/serving Notice period/60 days Mode of Interview : VIRTUAL Mode of Work : Hybrid Prerna IT Staffing Analyst Black and White Business solutions PVT Ltd Bangalore, Karnataka, INDIA 8067432409 I prerna@blackwhite.in I www.blackwhite.in

KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993 Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara KPMG in India offers services to national and international clients in India across sectors We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature IT Audit + SAP experience with knowledge of IT governance practicesPrior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 AuditsGood to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e g NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc )Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodologyExposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantageStrong project management, communication (written and verbal) and presentation skillsKnowledge of security measures and auditing practices within various applications, operating systems, and databases Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalismPreferred Certifications - CISA/CISSP//CISMExposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantageProficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal employment opportunity information: Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster RecoveryPerform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix Perform business process walkthrough and controls testing for IT Audits Performing planning and executing audits, including - SOX, Internal Audits, External AuditsConducting controls assessment in manual/ automated environmentPrepare/Review of Policies, Procedures, SOPsMaintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables Demonstrate a thorough understanding of complex information systems and apply it to client situations Use extensive knowledge of the clients business/industry to identify technological developments and evaluate impacts on the work to be performed Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project s progress Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status

Job Title: IAUAuditor Job Code: 9219 Country: IN City: Mumbai Skill Category: Audit Description: Overview: Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its three business divisions: Wealth Management, Investment Management, and Wholesale (Global Markets and Investment Banking). Founded in 1925, the firm is built on a tradition of disciplined entrepreneurship, serving clients with creative solutions and considered thought leadership. For further information about Nomura, visit www.nomura.com The role of the VP is to support the Technology Portfolio Director (TPD), based in Powai who [QX(1] [LP(2] reports to the Regional Head of Internal Audit and the Global Portfolio Director based in the US, in the definition, execution and management of the Internal Audit efforts related to Compliance, Financial Crimes, Conduct and Culture and Legal (LCC) [QX(3] [LP(4] . The candidate will be responsible to support the audit of technology components covered in the above mentioned LCC areas. The LCC portfolio, oversees key control frameworks related to Market Abuse Surveillance, Conflicts Management, Compliance Advisory, AML/KYC, Sanctions, AntiBribery and Corruption (ABC), Conduct & Culture, and Legal, including the use of Master Agreements. In this role, the VP is expected to: Leading and executing the IT audit reviews (Application controls & ITGC) independently in global and regional LCC audits including audit scoping, execution and reporting. Work closely with business auditors on integrated audit reviews, and report directly to the Global LCC TPD. Take primary responsibility for audit planning, fieldwork, finalising report findings and agreeing action plans with auditees. Candidate should also be able to perform Data Analytics in audits using excel and python coding. Support Internal Audit s strategic initiative for Data Analytics by being an active supporter and contributor to this initiative. Advocate and develop audit colleagues to use data analysis to improve and enhance the audit approach. Maintain strong independent working relationships with LCC technology teams, identifying emerging risks, and raising important value adding control improvements to senior management.. Followup and validating audit findings raised in audit reports and tracked by Internal Audit. Perform risk assessments, at least annually, using the departmental risk assessment methodology. Carry out special projects, ad hoc investigations and advisory work where required. Skill and Experience Requirements Solid experience of executing IT application audits within an investment bank. Experience should include demonstrated track record in: integrated audits, auditing application controls, auditing data integrity to provide an audit opinion on the completeness, accuracy and timeliness of system based processing, and IT general controls. Solid experience of designing and executing sophisticated Data Analytics tests. Background and experience of auditing technology components of Compliance (including but not limited to Market Abuse Surveillance, Conflicts Management), Financial Crimes, and Conduct and Culture, in the Investment Banking business of a major financial institution. Experience in successfully managing complex regional and global audit projects, as well as managing multiple audits concurrently ensuring assurance activities are coordinated and resources optimized for productivity. Strong analytical skills with the ability to identify key risks and formulate audit plans, with sound judgement on the criticality and impact of issues raised Confident manner and excellent communication skills, both oral and written Strong time and project management skills, consistently delivering to deadlines (budget and time) At least 810 years of professional experience in audits of which 3 years of internal audit experience in the financial sector. Qualifications Preferred Qualifications: Engineering Degree or equivalent IT related degree CISA / CISSP or equivalent is a plus Knowledge of coding e.g. using Python and other languages for Data Analytics to provide more insights into risks and/or controls Compliance certifications such as CISI or regional equivalent

IT Internal Audit Associate Manager We Are: Accenture is helping transform leading organizations and communities around the world. Choose Accenture and make delivering innovative work part of your extraordinary career. Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. Accenture is consistently recognized on FORTUNE's 100 Best Companies to Work For and DiversityInc's Top 50 Companies for Diversity lists. The Internal Audit Department provides the Audit Committee of the Board of Directors with an independent and objective assessment of the reliability and integrity of financial and select operating information, the effectiveness and efficiency of Accenture plc and its consolidated subsidiaries' (the "Company") systems and internal controls, and compliance with the Company's policies and procedures. Internal Audit Services also provides advisory services designed to add value and improve the Company's operations through bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, controls, operations, and governance processes. You Are: An agile, highly-motivated, innovative thinker with a background in audit, risk, or compliance looking to join a fast-paced, global internal audit organization that has embraced transformative capabilities including advanced analytics, dynamic risk assessment processes, and automation to retain its role as a trusted advisor to the business. The Work: Participate in the execution of the risk-based audit plan, reporting results to Accenture Leadership and the Audit Committee of the Board of Directors Conduct a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things. Through advisory services, work with our business partners to help them proactively identify and manage risk in new technologies, new go-to-market offerings, and critical corporate initiatives. Shape the future of the Accenture Internal Audit through involvement in departmental initiatives that enable us to become more efficient and effective in everything we do. Ensure your technical skill set and business acumen stay current and relevant through participation in our robust training program. Support the departmental annual risk assessment and audit planning efforts Why Should I Join the Accenture Team? You are looking for an internal audit role that provides you with exposure to senior levels of leadership, enables you to work with emerging technologies, provides opportunities for international travel and flexible work arrangements (work from home), requires little to no SOX testing, and offers a competitive salary and benefits package. Qualification Desired Skills & Qualifications Undergraduate degree in Computer Science, Information Systems, Electronics, or Business Administration. Minimum of 6 years of experience in IT auditing, information security, or related technical role focusing on compliance activities. Experience conducting IT external and internal audits or assessments, preferably for a global organization. Strong IT knowledge in infrastructure technologies (networking, data centers and hosting, virtualization, cloud etc.), application development and support, and emerging technologies. Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Experience leveraging predictive models and custom analytics in audit planning and execution is preferred. Technical knowledge and familiarity with control requirements in areas including ERP applications, Windows and Unix operating systems, cyber security, cloud security and vendor management. Strong verbal and written communication skills and proficiency with the English language. Demonstrated leadership, teamwork, and collaboration skills. Possession of a relevant professional certification (CISA, CISSP, CIA, CPA, CCSK) is preferred. Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

Skill required: Risk & Compliance - Risk Management Designation: Risk and Compliance Senior Analyst Qualifications: Any Graduation Years of Experience: 5 to 8 years What would you do? We are seeking a highly skilled and motivated Risk & Compliance Specialist to join our dynamic team at Accenture. The ideal candidate will be responsible for executing risk-based audits, focusing on information technology global processes and controls. This role involves planning and developing audit work programs, executing audit test procedures, and identifying recommendations for continuous improvement of our Third-Party Risk Management (TPRM) program. The specialist will play a crucial role in third-party risk assessment, ensuring that our vendors and partners adhere to our stringent compliance standards. What are we looking for? Qualifications & Certifications: Bachelor's degree in information technology, computer science, or a related field. ISO 27001 LA/LI certificate is a must. Professional certifications such as CISSP, CISM, CISA, or CRISC certification preferred. Minimum of 4-7 years of experience in risk management, compliance, or a related field. Experience in conducting third-party risk assessments is essential. Experience in Big 4, global internal audit functions, or cybersecurity is a plus. Demonstrated experience in third-party risk management, operational risk, or other risk management roles with knowledge of third-party regulatory requirements.Technical Skill Requirements: Expertise in IT internal audit, information security/cybersecurity, third-party risk assessment reporting (e.g.,SOC1, SOC 2). Relevant expertise on CSA STAR requirements, ISO control, NIST standards, PCI DSS, and GDPR requirements. Experience in performing control testing, IT/infosec risk assessments, network security, and infrastructure assessments. Knowledge of technical domains such as cloud security and application security. Certification:CISA, CISSP, CEH, ISO, PCI DSS, NIST. Strong understanding of risk management and compliance principles. Roles and Responsibilities: Ensure third-party risk management policy and procedures, and third-party management software are implemented and completed according to Accenture requirements. Complete vetting on incoming third-party engagements and work with business partners to ensure data and due diligence is complete and accurate, and inherent risks are identified and mitigated in accordance with risk appetite. Coordinate the distribution of due diligence questionnaires to third parties, review submitted questionnaires for completeness, ensure risk stakeholders finalize reviews, and determine overall residual risk rating. Act as a strong liaison to ensure that risk stakeholder questions are answered by the business, or third party as required. Conduct certain aspects of third-party due diligence not covered by risk stakeholders. Store the artifacts of the third-party oversight process in the system of record. Contribute to the development of detailed procedural documents and ensure alignment of TPRM with regulatory requirements. Identify, prioritize, and pursue opportunities to enhance Accenture's third-party risk management processes and introduce innovative approaches and solutions to optimize efficiency and effectiveness. Support the company's commitment to protect the integrity and confidentiality of systems and data. Conduct comprehensive third-party risk assessments to evaluate the compliance and risk posture of vendors and partners. Execute risk-based audits and communicate specific elements of the risk-based work plan as per stakeholder requirements. Perform audit projects in accordance with Accenture s audit methodology, focusing on IT global processes and controls, and computerized information systems. Plan and develop audit work programs, execute audit test procedures, identify recommendations for continuous improvement, communicate results, and follow up on reported issues. Prepare audit reports and work papers to ensure adequate documentation exists to support the completed audit and conclusions. Verify the adequacy of IT operating procedures through systematic audits. Conduct IT integrated audits with operational, compliance, financial, and investigative audit teams. Support Information Security, Business Continuity, and GDPR initiatives. Contribute to internal business growth and development. Qualification Any Graduation

Plan, execute and report all IT Security and Business Automation related audit activities for OakNorth Bank plc. to provide independent assurance to senior management that the bank s IT infrastructure and digital transformation initiates (incl. non-IT) are fit for purpose to allow the bank to safely deliver best-in-class services to all its customers. Job Responsibilities: Plan, execute and report all IT and cyber security related audit activities for OakNorth Bank plc Provide independent assurance to senior management that the bank s IT infrastructure is fit for purpose to allow the bank to safely deliver best-in-class services to all its customers Ensure best practice and frameworks are followed to adhere to various audit guidelines and standards A Subject Matter Expert who can build a strong network for himself/herself and execute audit work autonomously all the way through to review whilst having a strong sense of customer service Manage IT related audit activities for the OakNorth Bank plc Delivers at least one audit per quarter: some audits to be delivered alone and others in partnership with the existing OakNorth audit team or empanelled co-sourced partner Document audit fieldwork, findings and prepare audit reports Review audit evidences and track closure of management actions Report on audit activity to senior management Continuously improve the IT audit methodology which suits the highly technical, disruptive, global, and fast-moving environment Supports IA team and colleagues on subject matter whilst keeping in mind team goals, not only individual targets Deliver internal and external certification audits Execute ITGC, network, cyber and cloud security audits Conduct internal audits to provide information whether the firm s Information Security Management System conforms to the Internationally recognised Standards Deliver audits to evaluate the evolving cybersecurity automation ecosystem( best-in-breed ) Perform cloud security assessments for AWS / Azure cloud platforms and other cloud-based solutions Carry out technical security reviews of firewall configurations, DLP, IAM, IPS /IDS and other critical applications Audit the continuously improving IT infrastructure model with newly emerging and flexible work solutions, post Covid-19 Continuously assess and report, how well the Bank assesses internal and external threats including email attacks and vulnerabilities, as well as the fitness for purpose and effectiveness of its strategic and tactical responses Challenge incident, disaster response and business continuity plans and review the test reports, outcomes to verify backup / restore set-ups and RPO / RTO levels Desired Skills: Hunger, fire (10x, momentum) Ability to work with others across teams, geographies, and legal entities (one team) Not a prima donna / ego issue (right ambition) Not highly political or spin doctor (say it as it is) Logical thinking, ability to get to the simplest answer as opposed to a convoluted one (challenge and simplify) An honest person who operates with a high degree of ethics and integrity through any situation (right ambition, say it as it is) Someone with a minimum of 3 years of banking / consulting experience in IT security audits Someone who holds a degree in information technology from a top institute with a consistently good academic record Holds at least one globally recognised IT certification, and working towards a second (IA / Risk or technical) Hands-on experience of working on some of the latest and best auditing / GRC tools A good understanding and knowledge of IT Security Compliance frameworks and industry control standards and, such as NIST, ISO 27001, COSO, COBIT, and ITIL A self-starter and fast learner; someone who can work and learn on his/her own Someone with gravitas and whose opinion matters; someone who is trusted by colleagues across the firm, from the most junior to the most senior A person who focuses on what matters most: outcomes; someone who relentlessly avoids hypothetical risks and verbose

About Company BDO India LLP is the India member firm of BDO International. BDO India offers strategic, operational, accounting, tax & regulatory advisory and assistance for both domestic and international organisations across a range of industries. We are led by more than 300 Partners & Directors with a team of over 8500 professionals operating across 12 cities Ahmedabad, Bengaluru, Chandigarh, Coimbatore, Chennai, Hyderabad, Goa, Kochi, Kolkata, Mumbai, New Delhi-Gurugram and Pune. We take pride in our service portfolio on the backing of a rich blend of experience and expertise, bringing to fore a work culture that is both client-centric and knowledge driven. Our focus on delivering exceptional client service is backed by a partner driven approach to offer tailor-made solutions ensuring quality excellence & time efficiencies. About BDO ITRA Leveraging our global expertise and experience, our team of subject matter experts and industry professionals work across sectors and industries to help our clients respond to the changing business environment. With deep analytic skills and state-of-the art technologies, our professionals deliver customised and innovative solutions to clients across geographies. We at BDO, engage in transforming data into insights, our professionals guide clients through a crisis, fraud, regulatory investigations, etc. and advise them on strategies to prevent and mitigate the disruption arising from these complex matters. Details: Position Title Assistant & Senior Assistant Department BAS -IT Risk Assurance Experience At least 1 to 3year of relevant experience into IT Risk Audit, ITGC, etc Qualification CA / B.Tech / MBA (IT) / CISA / DISA Core ITRA Roles & Responsibilities: Responsible for executing client related engagements in the areas ITGC, process reviews, IT Application Controls, standard operating procedures review, SOCR (SOC 1, SOC 2), SOX 404 Audits. Determine that the work delivered is of high quality. Anticipate and identify engagement related risks and escalate issues as appropriate. Actively establish & strengthen client (functional heads & key influencers) and internal relationships. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coaches, counsels and develops junior team members. Identify & escalate potential business opportunities for the firm on existing client engagements. Should be a team player with a proactive and result oriented approach. Ability to prioritize, work on multiple assignments, and manage ambiguity. Should have good presentation & communication skills. Should also be well versed with MS office tools. Should be open and honest in communication with clients and colleagues. Fluency in written & verbal English High on personal integrity and work ethics and can be trusted without micro-level supervision from seniors Qualified CA, MBA, BTech/BE. (Preferred CISA or equivalent certifications) Competencies: Analytical Thinking Collaboration IT Skills (Excel, PPT, Word, Outlook) Communication Skills Interpersonal Relationship & Respect Innovation

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you passionate about security architecture and driven to protect against the latest threats? We are seeking a Security Lead who will join our team and take the lead on developing, implementing, and maintaining our security strategy within our Service Provider organization. As our Security Lead, you will work closely with our leadership team to design and implement effective security solutions that not only protect our business objectives and regulatory requirements, but also provide innovative solutions to stay ahead of emerging threats. You will conduct risk assessments and threat modeling to identify and prioritize risks to our business and IT assets, using your extensive experience in security architecture design and implementation within a Service Provider environment to create a cutting-edge security architecture framework. You will also work to maintain policies, standards, and guidelines related to information security within our organization, collaborating with cross-functional teams to implement security controls and technologies such as encryption, authentication, and authorization solutions. Your role will also involve conducting security reviews of vendors and third-party partners to ensure they meet our rigorous security standards, as well as performing regular security and risk reviews of our Service Provider environment to identify vulnerabilities and recommend remediation activities. At the forefront of security trends and technologies, you will advise our senior leadership team on the latest security best practices, and stay ahead of emerging security threats, always keeping our organization one step ahead. Join us on this exciting journey of securing our Service Provider organization and protecting our customer’s assets. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career, from a Junior Architect to Principal Architect – we have opportunities for that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others. Required Technical and Professional Expertise •Minimum of 8 years of experience in security architecture design and implementation within a Service Provider organization •Experience with security frameworks such as NIST CSF, ISO 27001, or CIS Controls. . Exp in Fortigate Firewall, WAF or Zscaler(Mandatory) •Deep understanding of security technologies, such as firewalls, intrusion detection and prevention systems, vulnerability scanners, and endpoint protection •Strong knowledge of cloud security concepts and technologies, such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP) Preferred Technical and Professional Experience •Relevant industry certifications such as CISSP, CISM, or CCSP •Bachelor's or Master's degree in Computer Science, Information Security, or a related field. Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Looking for an Information Security Consultant with experience in IT audits, SOX, ISO 27001, NIST, PCI DSS, risk assessments, and compliance. Must handle audits, GAP assessments, client meetings, and risk advisory. Required Candidate profile Candidate should have Min. 5 years of experience in IT audits, SOX, ISO 27001, NIST, PCI DSS, and risk assessments. Good communication, client handling, and report writing skills needed.

Client interface for understanding the SOX IT General Controls as applicable to Application &Infrastructure operations Conducting assessment of existing processes and align them to COBiT 2018 standard. Conducting TOE and TOD for ITGCs Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environment. Identify process exceptions and risk with respect to materiality defined by the SOX controller. Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports Create Process Summaries, Compliance runbooks and RCMs. Define RACI for Control owners, executioners etc. Work with Senior Management of the organization and business teams in getting assertions. Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined. Provide strategic guidance& consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation Conducting regular training for technical teams for SOX control implementation & audits Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory) CGEIT, COBiT Experience & COSO ERM execution (preferred) Excellent understand & experience in IT applications &infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc. Excellent understanding of IT Service Management processes. ITIL certified. Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps Should have experience in executing end-to-end SOX ITGC audit life cycle Exposure to other regulatory compliances such as Data Protection Act Candidate should have client facing experience B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: CISA/CGEIT/CISM/CISSP ISO 27001 Implementer, Lead Auditor ITIL V3.0

About The Role : Job Title Vendor Risk Manager AVP LocationPune, India Role Description Vendor Management is responsible for the service relationship with a vendor on a transactional level and for transactional vendor related support tasks. Work includes Managing or performing strategic sourcing work to manage risk and optimize the value/resilience of materials/services sourcing including Establishing supplier relationship management processes and continuous improvement goals/programs Negotiating contracts and coordinating supplier integration plans with internal clients Monitoring market dynamics that impact materials/services availability and/or pricing Partnering with internal clients to identify sourcing needs, develop buyer/market profiles, identify marketplace trends, and define acceptable service levels What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Y our key responsibilities Vendor Risk Management (VRM) is the framework/process for identifying and managing the risks arising from working with third-party vendors (internal and external). All vendor relationships and transactions are assessed and those carrying higher inherent risks are subject to a more granular assessment. SO (Service Owner) role is responsible for owning the service and providing comprehensive details, responding to tasks in the VRM process when necessary. Your role Taking end-to-end ownership of each assigned Vendor Risk Management (VRM) Engagement Requests for an engagement as SO. Follow-up with Vendors point(s) of contact for responding to all Control questions raised during VRM process for an engagement. Escalations to be triggered as required. Attending all trainings and workshops defined as mandatory by internal Third-Party Risk Management (TPRM) teams. Keeping yourself familiarized and updated on all latest Policies and Procedures published by the various Risk Management Functions within Deutsche Bank. Keeping yourself familiarized and updated on control requirements of the latest Security Control for Third Parties (SCTP 4.0) and explain the same to vendors to ensure that appropriate evidence is shared by the vendors, which satisfy the Control requirement. Ensuring appropriate due diligence before Third Party Management (TPM) review initiation and familiarity with Risk Type Controller (RTC) requirements in advance Providing comprehensive and transparent details about the owned Engagement Request in the TPM platform in a timely manner Ensuring that the data provided about the owned Engagement Request are kept up-to date, in line with the TPM Key Operating Documents Performing VRM Process tasks when prompted by TPM and/or RTCs Notifying the relevant RTCs whenever gaps are closed, deadlines cannot be met or full mitigation is not possible, Remediating gaps identified for the Engagement Request and implementing mitigation plans, Reporting gaps by raising Self-Identified Issues (SII) in an engagement and follow-up for closure/mitigation on a timely basis, in line with the remediation plans shared, Addressing unmitigated risks/gaps in accordance with the Operational Risk Management Policy, TPRM Policy, TPRM Procedure and TPM Key Operating Documents, Ensuring the service does not commence before the VRM review is completed, Ensuring that no contract is signed, or service is delivered to any Deutsche Bank Legal Entity for which Compliance deemed the service prohibited, Ensuring adherence to contractual obligations by Vendor Ensuring compliance to Regulatory guidelines Timely submission of accurate data to Regulators. Liaising with Divisional Vendor Management Office (DVMO) resources for closing any open points related to the engagement requests, Ensuring all strategies and plans eg. Termination Exit Plans, Termination Exit Strategies, etc. related to an engagement are documented, agreed between the relevant stakeholders, and reviewed / updated on defined intervals. Ensuring that Monthly, Quarterly Governance meetings with appropriate stakeholders are conducted and the details documented in line with the SDM requirements, Ensuring monthly feedback / review is completed for all engagements in scope and the details are documented in the designated portals in line with relevant policies. Ensuring annual audits are budgeted, planned, and conducted for the identified vendors and follow-up to ensure all open findings are remediated by vendor. Your skills and experience Excellent skills and experience / technical knowledge in handling data/information security audits in Banking / Financial environments Minimum 10 years Knowledge and experience with handling / responding to controls around IT Security audits, Financial Audits eg. SOX IT (SOC) audits, ISO 27001:2022, PCI-DSS, etc. Working with multiple teams to remediate open findings identified during internal / external audits including regulatory audits, IT Security audits, etc. Familiar with security requirements for Banking applications and environments, A great team player who is comfortable in working and coordinating with diverse people from both internal as well as vendor teams, Excellent communication and mentoring skills, Experience with distributed, multi-locations teams, Able to inspire and motivate people and multi-disciplinary, self-organized teams, Any Certifications in areas of Information Security or Vendor Management is a plus, Professional level of English is mandatory. How we'll support you Training and development to help you excel in your career. Coaching and support from experts in your team A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

About The Role : Job TitleDivisional Risk and Control Analyst LocationJaipur India Role Description The Embedded Risk in India is a 10FTE team and part of a broader team of 30+ covering all aspects of the DB Risk Framework and Regulatory support for KYC Ops, Client Data Management (CDM) and Business Financial Crime Risk (BFCR). This role will report locally into an India based Embedded Risk Team (ERT) Lead and functionally to the Control Testing Lead in UK. The role will work closely with global peers to help provide a complete picture of the risk profile, ensuring that handoffs and dependencies across functions/regions are transparent and understood. Engages regularly with the first line processing teams and in collaboration with Regulatory Management Group, Anti Financial Crime (AFC), Divisional Control Regulatory Office (DCRO), Business & Other 2nd line functions to ensure full transparency and governance of risk. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Risk & Control Assessments - Review the design adequacy and performance effectiveness (at a high level/light touch) of controls and their corresponding documentation (Desk Top Procedures) Governance - Ensure that an effective, embedded and consistently applied governance structure is in place Key Risk Indicators - Ensure a complete set of KRI's is in place, has definitions, RAG's (where applicable), has reporting parameters and a subjective assessment of the CATR (complete, accurate, timely and relevance) of those KRI's has been reached. Review and challenge validity of commentary, spot check monitoring by, looking for trend anomalies (spikes/dips) that may risk profile shifts, reporting errors or other issues requiring investigation Audit SII & Incident processes - Ensure compliance to the firm audit policy, firm Self-Identified Issue Guidance and incident escalation process through training, support guidance and challenge. Facilitate management with adequate reporting and governance, to ensure zero overdue items and no last min extensions are required and perform pre-closure submission review and validation. Regulatory Compliance Transparency - Ensure there is a mechanism in place to monitor regulatory compliance and that the mechanism is performing effectively. Risk Culture - Design and deliver a risk culture improvement programme to promote transparency, awareness, engagement with the risk agenda. Work in collaboration with multiple first and second line functions (inc. Regulatory Management Group (RMG), Anti financial Crime (AFC), Divisional Control Regulatory Office (DCRO) and the Business Your skills and experience The successful individual will have diverse experience of the financial sector in any of the following areas; Operations, risk/controls, Control testing, Regulatory teams/processes, quality assurance, compliance or audit and have experience managing deliverables & maintaining effective relationships with global senior management. Substantial and relevant experience in a global banking environment Exposure to Client On boarding, KYC or similar regulatory projects is preferred Strong communication and interpersonal skills Strong analytical and problem solving skills Ability to work under pressure to tight deadlines Strong organisational and administrative skills Client focused approach and ability to react quickly to changing demands How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

Role & responsibilities: Perform testing of IT Application Controls(ITAC), IPE, and Interface Controls through code reviews, IT General Controls(ITGC) review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including: Information Security reviews Information Technology Infrastructure reviews Application reviews Preferred candidate profile : Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits Business Systems Controls / IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL)

Qualification and Minimum Entry Requirements B.Tech (IT/CSE) with 8+ Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients. Position and Key Responsibilities As a Manager in RSMs growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization. Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating control’s design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions Review and complete status documents for client delivery Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education

As a part of RSMs growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization.Qualification and Minimum Entry Requirements Job Description B.Tech(CSE/IT)/MCA/MBA/CA with 0-5 Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients. Position and Key Responsibilities Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating controls design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions Review and complete status documents for client delivery Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education Preferred candidate profile

IS audit of Banks’ Application systems and related IT operations such as IT Governance, Information Security Governance, Audit of IT General Controls, IT Infrastructure audits, Audit of Outsourced agency having impact on banks’ IS operations, etc. Required Candidate profile Experience - 15 to 25+ years Location - Mumbai -Andheri East

Position Assistant Manager Compliance & Technical Band B / Salary Upto Rs. 09 lakhs per annum Location: Ranchi RO Experience, Educational Qualification B.Tech/ MBA Experience Minimum 02 years Professional writing experience in policies, guidelines and product documents Experience in creating professionally sound and visually appealing communication Experience of working on a Government Project(s) will be an advantage Proficient written and spoken English skills Job Profile Ensuring compliance of the business and technical processes of UIDAI by stakeholders Responsible for communication and closure of matters related to AUA/KUA/ASA. Working in close coordination with audit, fraud & IT security team and monitoring and analysing the periodic reports received from these units. Liaise with Information Security Division & IT Security team for updating audit checklists related to IS audits, field audits, fraud & privacy controls, tracking risks & observation closures and publish compliance reports. Working with legal team to prepare the notice with regards to violation/ enforcement related matters. Conducting periodic workshops and trainings with the stakeholders.