436 It Audit Jobs - Page 6

Skill required: Control Testing - Agile testing Designation: Delivery Lead Manager Qualifications: Any Graduation Years of Experience: 13 to 18 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints. What are we looking for Conduct testing tasks within Agile models and integration processes and manage development sprints.Conduct testing tasks within Agile models and integration processes and manage development sprints. Roles and Responsibilities: In this role you are required to identify and assess complex problems for area of responsibility The person would create solutions in situations in which analysis requires an in-depth evaluation of variable factors Requires adherence to strategic direction set by senior management when establishing near-term goals Interaction of the individual is with senior management at a client and/or within Accenture, involving matters that may require acceptance of an alternate approach Some latitude in decision-making in involved you will act independently to determine methods and procedures on new assignments Decisions individual at this role makes have a major day to day impact on area of responsibility The person manages large - medium sized teams and/or work efforts (if in an individual contributor role) at a client or within Accenture Please note that this role may require you to work in rotational shifts Qualification Any Graduation

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : OneTrust Privacy Management Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Lead, you will lead the effort to design, build, and configure applications, acting as the primary point of contact. You will be responsible for overseeing the application development process and ensuring successful project delivery. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the application development process- Ensure timely project delivery- Provide guidance and mentorship to team members Professional & Technical Skills: - Must To Have Skills: Proficiency in OneTrust Privacy Management- Strong understanding of data privacy regulations- Experience in implementing privacy management solutions- Knowledge of data protection laws and compliance requirements- Hands-on experience in configuring privacy management tools Additional Information:- The candidate should have a minimum of 5 years of experience in OneTrust Privacy Management- This position is based at our Bengaluru office- A 15 years full-time education is required Qualification 15 years full time education

Skills Required : Team Coordination, Leadership, sox, Itgc, IT Audit, IT Governance, Information Technology Education/Qualification : B.Tech, MBA, CA Desirable Skills : IT Risk Management, Cobit, Cisa, Cism, Cissp, team leading, Risk Compliance, Information Security, IT Risk

Dear Candidate, We are hiring an IT Risk Analyst to identify, assess, and mitigate risks to the organization's information systems and data. This role supports compliance initiatives and strengthens the IT risk management framework. Key Responsibilities: Conduct IT risk assessments, gap analysis, and control evaluations. Develop mitigation strategies for identified security and compliance risks. Monitor regulatory changes and ensure adherence to frameworks (e.g., NIST, ISO 27001). Prepare risk reports, scorecards, and presentations for stakeholders. Collaborate with audit, security, and IT teams on risk response plans. Required Skills & Qualifications: Experience in IT risk, governance, or audit. Familiarity with frameworks like NIST, COBIT, ISO 27001, and SOX. Analytical skills to evaluate threats, vulnerabilities, and control gaps. Excellent documentation and stakeholder communication abilities. Certifications such as CRISC, CISA, or CISSP are a plus. Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Reddy Delivery Manager Integra Technologies

Role & responsibilities Assist in planning activities, development of audit program, and execution of internal audits and IT control assessments in the following areas: IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard Company and industry-accepted internal audit methodologies Assist in kick-off, status, and closing meetings with engagement team and client and contribute to IT Audit knowledge base and internal practice development initiatives Helping AM and Managers to manage and upskill the team. Knowledge of security measures and auditing practices within various operating systems, databases and applications. Experience in assessing risks across a variety of business processes. Experience of working on Financial Services sector clients. Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Sr. Management and Clients. Hands on experience of working on IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, Third Party Risk Management. Knowledge of regulations impacting the privacy, integrity and availability of customer PII. Exposure of having led IT Audit engagements Exposure of working on Identity Access Management aspects like user management, authentication and authorization. Has team leading experience and has been a performance manager in current or last role Technical skills: Prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2 and SQL. Preferred candidate profile Good previous experience into IT General Controls/ITGC, SOC 1 & 2, IT Audit.

Your work profile Experience 4-12 Years( Relevant experience are Preferred) Location- Gurgaon , Bangalore(Local Candidates) Notice period- Upto 60 Days Official As a practitioner in our Cyber Team, you'll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - • Responsible for ISO 27001 based Information Security Management System implementation and sustenance • Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk • Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling • Responsible for conducting clients vendors risk assessment and providing a holistic view of clients risk exposure due to outsourcing • Responsible for advising and assisting clients to develop and implement Information classification framework • Conduct Information Systems audits covering IT infrastructure assets • Serves as technical lead or subject matter specialist on security and privacy implementation projects, responsible for design, build, testing and deployment of solutions • Demonstrates ability to work independently on projects with limited supervision • Demonstrates understanding of complex business and information technology management processes • Demonstrates working knowledge of firm tools and methodologies that may be suitable for the engagement • Manages day-to-day client relationships at mid and lower levels. • Participates in proposal development efforts to sell "add-on" work to clients • Identifies opportunities to improve engagement economics • Plays substantive role in designing and implementing business development plan for the service line • Plays substantive/lead role in retention of professionals and in building staff complement, mix, and recruiting • Undertakes initiatives in people and practice development Desired qualifications Cyber experience ranging from 1 year to 7yrs is mandatory. Levels being hired for: Analyst, Senior Analyst, Consultant, AM, DM • B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields • ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification • Strong communication skills (written & verbal) • Understanding of basic business and information technology management processes. • Basic knowledge in one or more security and privacy domains such as: security governance policies and procedures, risk management, compliance, identity management, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection Your role as a practitioner We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, practitioners across our organization must strive to be: • Inspiring - Leading with integrity to build inclusion and motivation • Committed to creating purpose - Creating a sense of vision and purpose • Agile - Achieving high-quality results through collaboration and Team unity • Skilled at building diverse capability - Developing diverse capabilities for the future • Persuasive / Influencing - Persuading and influencing stakeholders • Collaborating - Partnering to build new solutions • Delivering value - Showing commercial acumen • Committed to expanding business - Leveraging new business opportunities • Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization • Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities • Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) • Managing change - Responding to changing environment with resilience • Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision • Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems • Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte. • Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive.

Your Impact Youll be responsible for engaging with senior customer representatives including CISO and other C-suite stakeholders to engage on topics around CyberSecurity, adjacent technical areas, and application of technology and programs in the business. Provides trusted support, advice and guidance on the latest trends and developments in CyberSecurity and how these can be used to provide lasting business value and impact for our customers. Applying your wide and deep experience in solving these challenges elsewhere youll help our customers with their journey, articulating Ciscos unique value proposition and architecture for CyberSecurity and how Cisco can help our customers succeed with their CyberSecurity goals. By establishing yourself as a trusted advisor and building lasting relationships, youll help bridge the communications gap between customer needs and what Cisco can offer. Identifies opportunities for Cisco to provide additional products and services that are aligned to achieving the customers CyberSecurity goals. Results and Outcomes Youll proactively strengthen and expand Ciscos presence and technology leadership in the CyberSecurity domain through externally visible activities such as blog posts, social media posts, papers, external speaking engagements and serving on external forums and boards. Youll continually acquire the knowledge and expertise necessary to pioneer new thinking and approaches. Youll contribute new materials and innovative articles rather than solely parroting existing materials or campaigns. Youll have a strongly accretive impact on Ciscos CyberSecurity business as evidenced by pipeline generation and supporting sales of products. Youll actively contribute to talent development, ensuring the principals of improving inclusion and diversity are honoured and promoted. Minimum Qualifications: * Bachelor or Masters degree in a relevant area, an MBA is preferred * CertificationsCISSP, CRISC, CISA and CISMand advantage. * Telco expertise and hands on implementation * 15+ years relevant experience with at least five (5 )years as: a CISO, Head of Risk or equivalent in a major organization; Partner or Associate, Principal, or Managing Director in a big 4+1 company or other leading consulting organization; or a combination thereof. * Proven experience and recognized as a thought leader in CyberSecurity in one or more industry verticals such as Financial Services; Service Provider; Manufacturing, Mining, Transportation, Oil and Gas, or Utilities; or Technology. * A proven record of business leadership in a technical domain and experience in transformational or strategic programs, with evidence of where past contributions have a significant impact on business. * Proven track record of C-suite engagement with an extensive personal contact base. * Published author, conference speaker and social media presence. Preferred Skills * Proven experience and recognized as a thought leader in CyberSecurity in Service Provider is highly desired * Proven experience in delivering security solutions, knowing cisco security solution is a plus.

SUMMARY: This position is reporting to the Director or Sr Manager/Manager, IT Internal Audit and part of a strong, dynamic global internal audit function. This Senior position will be a member of the Internal Audit IT team focusing on global projects based in our offices. ESSENTIAL DUTIES AND RESPONSIBILITIES: Reporting to the Director or Sr Manager/Manager, IT Internal Audit, the Senior will assist leading and executing projects for the IT Audit & Data Analytics pillars, assisting in Internal Audit function improvement projects, and collaborating with the other internal audit pillars - Finance & Operations audit, Internal Controls, Channel audit, and Audit Operations. Execution of projects in the IT audit pillar including: Assisting in performance of annual risk assessment of the business, development of an overall audit plan, and periodic refreshes of the risk assessment and the audit plan Executing projects on the internal audit plan including IT, operational, compliance, site, and cross functional audits across the global business Assisting in executing project risk assessments, planning, and scoping decisions on individual audit and advisory projects Executing controls documentation, testing, and fieldwork for audit and advisory projects Assisting in drafting audit and advisory observations and reports Assisting in coordinating, planning, reviewing, and executing on Management s assessment of Internal Controls over Financial Reporting (SOX) Developing, cultivating, and growing relationships with key stakeholders across various business functional and operational areas Developing relationships with the external auditor Taking ownership of career and skill development, including coaching and mentoring opportunities and attending training Identifying opportunities and helping the maturation of the data analytics function, including working to audit robotic process automations, application controls, and other IT dependent controls in close coordination with the finance & operations audit and Data Analytics pillar teams Qualifications Required and preferred knowledge and job skills: Work experience: 3+ years of relevant work experience required. Strong preference for experience with public account

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by diversity and inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health equity on a global scale. Join us to start Caring. Connecting. Growing together. Cloud Senior Information Security Engineer (Subject Matter Expert) - GL28 Position Overview The Cloud Senior Information Security Engineer (Subject Matter Expert) is responsible for architecting, building, supporting, and enhancing the organization's public cloud security strategy. This role serves as a critical partner between the Enterprise Security Risk Organization (ESRO) and the Enterprise Technology Infrastructure and Platform Services (ETIPS) to ensure robust and effective cloud security measures. Primary Responsibilities Security StrategyCollaborate with ESRO and ETIPS to develop and implement a comprehensive public cloud security strategy Security ArchitectureDesign and maintain secure cloud architectures, ensuring compliance with industry standards and best practices Risk ManagementIdentify, assess, and mitigate security risks associated with public cloud environments Incident ResponseLead incident response efforts for cloud security breaches, including investigation, containment, and remediation ComplianceEnsure compliance with relevant regulations and standards specific to public cloud environments Security MonitoringImplement and manage security monitoring tools to detect and respond to threats in real-time CollaborationPartner with ESRO and ETIPS teams to integrate security measures into cloud services and applications Policy DevelopmentDevelop and enforce security policies and procedures specific to public cloud environments Audit and AssessmentConduct regular security audits and assessments to ensure the effectiveness of security measures Vulnerability ManagementTest and identify network and system vulnerabilities, developing strategies to mitigate them DocumentationPrepare and document standard operating procedures and protocols for security operations Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications Experience in conducting security audits and assessments Public Cloud Security ExperienceDemonstrated experience with public cloud security in AWS, Azure, or both Proven experience in cloud security strategy and architecture Solid knowledge of risk management and incident response Familiarity with compliance regulations and security monitoring tools Proven excellent collaboration and communication skills, with experience partnering between security and IT organizations Demonstrated ability to conduct training and develop security policies Demonstrated ability to build and maintain relationships with business leaders and stakeholders

[{"Salary":null , "Remote_Job":false , "Posting_Title":"Internal Auditor - IT" , "Is_Locked":false , "City":"Pune City","Industry":"IT Services","Job_Description":" Job Title: Internal Auditor Job Code: Reports to: Internal Audit Senior Manager FLSA: Exempt Department: Internal Audit Revision Date: 05-2025 BASIC PURPOSE: The Internal Auditor is responsible for conducting audit testing for various functional departments in accordance with accepted professional standards. The Internal Auditor participates in the Accounting, Finance and IT audit work plan related to Sarbanes-Oxley Section 404. Work involves preparing documentation and executing test procedures. The Internal Auditor may also be required to perform work/assist the external audit team and conduct substantive tests in accordance with third party workpaper standards. ESSENTIAL FUNCTIONS: Perform audits in accordance with professional and Company standards. Perform audit work to assess the adequacy of the Accounting/Finance control environment and prepare supporting documentation in the form of test papers. Utilize data analysis tools (e.g. Microsoft Access, Excel) to support audit reviews. Continuously enhance personal development and understanding of the Companys strategy, business model, and business processes. Review the reliability and integrity of Accounting/Finance processes and related systems used in the reporting of financial information. Review data and various internal controls to ensure compliance with applicable policies, plans, procedures, laws and regulations. All other duties as assigned. REPORTING RELATIONSHIPS: Reports to the Internal Audit Senior Manager No direct reports QUALIFICATIONS: Bachelors degree (BA/BS) in accounting, finance, or business administration from a four (4) year accredited college or university. 3 to 5 years of experience in auditing internal control environments and activities (Operational and/or Financial Auditing). Professional designation (CIA or CA/CPA) or other certifications, such as, CMA, CFE, and CISA preferred. Working knowledge of financial applications utilized throughout the organization. Technical expertise, objectivity, and unquestioned integrity are essential elements of this position. Organizational and time management skills are a must. Experience with Microsoft Office Suite products (Word, Excel, Access, PowerPoint) and familiarity with Nitro Pro. CRITICAL COMPETENCIES FOR SUCCESS: Skills: Planning/Organization Skills \u2013 Prioritize and plan work activities effectively and efficiently; strong organization (including work papers skills) and communication. Interpersonal Skills \u2013 Work cooperatively and respectfully seeking to minimize bureaucratic behavior and achieve objectives. Problem Solving Skills \u2013 Demonstrate ability to solve problems in a timely manner, using research and reasoning to analyze a problem through to resolution. Ownership \u2013 Demonstrate attention to detail, accuracy and thoroughness of tasks assigned; monitor work and provide quality output. Adaptability \u2013 Manage competing demands and changing priorities. Demonstrates initiative and attention to detail along with strong analytical skills. Abilities: Ability to work independently with minimal guidance but also a team player sharing project responsibilities. Ability to multi-task, prioritize and show flexibility as needed. Ability to work under deadline pressures while maintaining a positive work environment. Behaviors: Demonstrate dependability, initiative, and accountability. Demonstrate company loyalty by supporting company goals and enforcement and modeling of company policies. Communicate and work in a respectful, supportive manner with all teammates Work Conditions: Employees must possess comfort in learning, training, and engaging with others virtually through Microsoft Teams and Zoom M ust be able to perform the essential functions of the job, with or without reasonable accommodation. Prepared by: PEP, VP IA & Compliance Date: 05-2025 Theabove declarations are not intended to be an \u201call inclusive\u201d list of the dutiesand responsibilities of the job described, nor are they intended to be such alisting of the skills and abilities required to perform the job. Rather, they are intended only to describethe general nature of the job and be a reasonable representation of itsactivities.

Since our launch in 2015, we ve lent over 10bn to ambitious entrepreneurs up and down the UK. That s led to the creation of over 40,000 new jobs and over 29,000 new homes - and we re not about to stop there. We re dedicated to helping trailblazing businesses thrive and our Finance team are the drivers of our growth. As an IT and Cyber Security Auditor , you will be responsible for planning, executing, and reporting on a wide range of audits covering IT security, business automation, cloud infrastructure, and digital transformation across OakNorth Bank plc. You will provide independent assurance to senior management that the Bank s technology environment including its growing use of Generative AI is secure, resilient, and well-governed. This role also includes guiding the Bank s responsible adoption of Generative AI (GenAI) technologies while helping build capabilities within the Internal Audit team, including mentoring and developing junior staff members. This is a fantastic opportunity to join a fast-paced, growing bank with a reputation for doing things differently. We don t want another cog in the machine, we re looking for self-starters and bold thinkers who want to pave their own career paths. Are you ready to step up to the challenge? Key Responsibilities: Lead and Deliver Audits : Plan, execute, and report IT and cyber security audits covering ITGCs, cloud (AWS/Azure), networks, data protection, automation, and digital transformation initiatives. Manage audits independently or with co-sourced partners, ensuring end-to-end delivery. Support GenAI Risk Assurance : Assess risks and controls related to the Bank s adoption of Generative AI covering governance, data integrity, ethical usage, access controls, and operational safeguards. Leverage GenAI tools to enhance audit execution and insight generation. Evaluate Cybersecurity and Resilience : Review threat detection capabilities, cybersecurity controls (e.g., IAM, DLP, IDS/IPS), and response readiness. Challenge business continuity, disaster recovery, and incident response plans, including backup processes and RPO/RTO targets. Stakeholder Engagement and Reporting : Provide clear, actionable reporting to senior management and collaborate with Technology, Risk, and Operations teams to strengthen control environments and drive improvements. Team Development and Methodology Improvement : Guide, coach, and mentor junior auditors; contribute to the evolution of IT audit methodology to reflect emerging technologies, risks, and regulatory expectations. What We re Looking For: Must-Haves: Overall experience of 8 years with Minimum 3 years of experience in IT audit or cyber risk, ideally within banking, fintech, or a Big 4 advisory firm. Degree in Information Technology, Computer Science, or a related field with a strong academic record. At least one globally recognized IT audit/security certification (e.g., CISA, CISSP, ISO 27001 LA); Familiarity with GenAI use cases and associated risks in an enterprise setting. Strong understanding of frameworks like NIST, ISO 27001, COBIT, COSO, and ITIL. Experience using GRC tools and a passion for applying technology in audit work. Preferred Traits: High drive and bias for action brings energy and momentum to audit delivery. Clear and structured communicator who simplifies complexity and delivers insights. A collaborative leader who uplifts others coaches, mentors, and supports junior colleagues. Operates with integrity and directness say it as it is mindset. Trusted and respected by peers and stakeholders at all levels of the organization. Fast learner and problem-solver who thrives in a changing environment. 0 - 0 a year Benefits & Perks: Equity. We want people to have a stake in the business so that all our interests are aligned Health Insurance for employee and dependents Wellbeing and social events Support causes that matter to you - Volunteering time off

About this role: Wells Fargo is seeking a Independent Testing Specialist In this role, you will: Participate in less complex development and design of methodologies and standards for review activities companywide in alignment with the risk management framework Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs, risks, and controls according to standards and other applicable policies within Independent Testing Support and implement less complex initiatives with low to moderate risk and exercise independent judgment to guide risk reporting, escalation, and resolution Present recommendations for resolving more complex situations and exercise independent judgment while developing expertise in risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners and management Required Qualifications: 2+ years of Independent Testing experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: Good experience in IT Risk, IT Control Testing, IT Audit Certified Information Security Auditor (CISA) Certified Information Security Manager (CISM Job Expectations: Shift Timing: 1.30 PM - 10.30 PM

Overview Prodapt is looking for Assistant Managers to join the QA Audit team. We are looking for an experienced professional with 8 to 12 years of experience in IT Audit process. Responsibilities Ensure structured initiation of projects and identify risks at the outset. Ensure appropriate processes and plans are established to ensure first-time right delivery. Enable delivery teams on process understanding & awareness and conduct audits and reviews to assess delivery performance & process at regular intervals and to pre-empt risks. Analyze performance and quality metrics and facilitate remedial actions needed to meet program and company goals. Identify industrialization & process improvement opportunities to improve efficiency. Analyze the internal review outcomes and drive process improvements & training. Participate in the business unit & internal weekly and monthly review meetings and highlight key findings and risks/alerts. Sustain and ensure compliance to org certifications; support and facilitate external assessments like ISO 9001 ,27001, 20000, SSAE, GDPR and PCI Compliance. Deep knowledge on Agile SDLC Methodologies including agile ceremonies, metrics etc.. Basic Process Knowledge on DevOps is an added advantage. Bachelor’s degree (Mandatory) MSc/BE/Masters in IT/Computer Science (Desired) Good Communication Skills in English QA Process – SDLC / STLC Processes, Process Implementation, Auditing Skills, Facilitation Skills, ISO 9001, 27001, 45001 Knowledge. Experience working in multi-channel delivery projects Advanced level - Microsoft office, Analysis and Reporting tools

Overview Prodapt is looking for Assistant Managers to join the QA Audit team. We are looking for an experienced professional with 8 to 12 years of experience in IT Audit process. Responsibilities Ensure structured initiation of projects and identify risks at the outset. Ensure appropriate processes and plans are established to ensure first-time right delivery. Enable delivery teams on process understanding & awareness and conduct audits and reviews to assess delivery performance & process at regular intervals and to pre-empt risks. Analyze performance and quality metrics and facilitate remedial actions needed to meet program and company goals. Identify industrialization & process improvement opportunities to improve efficiency. Analyze the internal review outcomes and drive process improvements & training. Participate in the business unit & internal weekly and monthly review meetings and highlight key findings and risks/alerts. Sustain and ensure compliance to org certifications; support and facilitate external assessments like ISO 9001 ,27001, 20000, SSAE, GDPR and PCI Compliance. Deep knowledge on Agile SDLC Methodologies including agile ceremonies, metrics etc.. Basic Process Knowledge on DevOps is an added advantage. Bachelor’s degree (Mandatory) MSc/BE/Masters in IT/Computer Science (Desired) Good Communication Skills in English QA Process – SDLC / STLC Processes, Process Implementation, Auditing Skills, Facilitation Skills, ISO 9001, 27001, 45001 Knowledge. Experience working in multi-channel delivery projects Advanced level - Microsoft office, Analysis and Reporting tools

Job Requirements Design and execute the day-to-day activities of Information Technology (IT) audit engagements, with a focus on strategic, operational and regulatory/compliance related risks Plan activities related to development of audit program, and execution of internal audits and IT control assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, General Information Technology Controls (GITCs) and application controls, and regulatory/compliance requirements Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management Contribute to IT Audit knowledge base and internal practice development initiatives Supervise and provide performance management for IT audit staff working on assigned engagements Write and present clear and concise reports and presentations containing meaningful observations and recommendations to clients, and document procedures performed and conclusions reached related to projects Support proposal and business development activities by assisting in the identification of new target clients, building business relationships with key executives, and developing/presenting proposals Provide oversight and leadership to team members regarding deliverables, project plans, and performance management while contributing to industry and regulatory publications, writing professional and thought leadership articles, and speaking at related conferences and seminars Mandatory technical & functional skills Bachelor's degree in an appropriate field from an accredited college/university; Master's degree from an accredited college/university is preferred Prior knowledge leading and executing risk-based IT-related internal audits and/or risk and control assessments, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs Experience with IT Risk Management and three lines of defense frameworks CISA, PMP, CISSP or CRISC certification is preferred Key behavioral attributes/requirements Ability to work well independently as well as part of a team Driven and enthusiastic with a can-do attitude and a strong sense of ownership to get the job done in a pragmatic fashion

Job Title Security Analyst Role and Responsibilities The security Analyst is a member of the CISO Regulatory & Compliance Team and will assist in ensuring the associated business units / accounts comply with applicable Conduent and NIS 2 security standards, regulations, and policies.The Security analyst will be professional, independent, impartial, and fair in all interactions. The security resource is accountable for procedures and processes that ensure the integrity, confidentiality, and availability of assigned Business units\u2019 information, applications, and infrastructure. Resource will perform routine risk assessments, security audits, and vulnerability scans to identify, evaluate, document, and remediate organization risk, control gaps and vulnerabilities. This position will be responsible for developing security reports, security recommendations, and security policies and procedures that are meaningful, defensible, and actionable for a variety of audiences as pertained to assigned business units. Perform log collection, correlation, reviews, archival, retention, and monitoring of automated alerts for items such as, and not limited to IPS/IDS alerts; change detection (FIM) alerts application firewall alerts; malware alerts rogue wireless network alerts security system health alerts; exploit attempt alerts Participate and be an integral component of audit, compliance, and regulatory functions, including and not limited to audits of system security to ensure compliance with Corporate security framework NIS 2, NIST 800-53, ISO 27001/2, PCI-DSS emerging country, state, and Federal privacy laws Primary POC in a vulnerability management program of the account that includes external and internal vulnerability scans of applications and systems external and internal penetration tests of applications and systems documentation and remediation of identified vulnerabilities and exploits routinely monitoring various communication avenues for security vulnerabilities and security patches taking a risk-based approach comparing those security vulnerabilities and security patches across the operating environments making recommendations to various IT teams on the mitigation process for those identified security vulnerabilities Coordinate with business units, operations, and technology teams for incident response, remediation, and improvement Acts as the initial point of contact to facilitate the handling of security audits and client requests Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies Maintain documentation that supports the annual Security compliance attestation as it is relevant to the assigned Business units Qualifications and Education CIPP, CRISC, CISA, CISSP, CISM, ISO or any security/IT audit certification is a plus. Minimum of Five (3 to 5) Years of experience in IT Security compliance, or Security Auditing is required. Knowledge and understanding of security controls across all security domains, such as access management, encryption, vulnerability management, authentication, authorization, network security, physical security, etc. Ability to identify security risks in application, system, and network architecture, data flow, and processes or procedures Ability to assess the organizational impact of identified security risks and recommend solutions or mitigating controls. Knowledge of security technologies, devices, and countermeasures, as well as the threats they are designed to counter. Experience with developing security reports, recommendations, policies, and procedures that are meaningful, defensible, and actionable for a variety of audiences. Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks). Experience in PowerPoint, Word, Excel; experience with Visio and MS Project. Communication skills (interpersonal, verbal, presentation written, email). Experience to write report segments and to participate in presentations. Familiarity with security, workflow, and collaboration tools such Nessus Tenable, Splunk, SharePoint and ServiceNow (Snow) is a plus Positive attitude, team player, self-starter; takes initiative, ability to work independently and effectively with all levels of staff and management both internally and externally Preferred Skills Creating and Maintaining NIST 800-53-rev5 based SSP and POAM Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks).

Job Area: Finance & Accounting Group, Finance & Accounting Group > Internal Audit General Summary: Auditor, IT Internal Audit- Hyderabad Qualcomm is a company of inventors that unlocked 5G - ushering in an age of rapid acceleration in connectivity and new possibilities that will transform industries, create jobs, and enrich lives. But this is just the beginning. It takes inventive minds with diverse skills, backgrounds, and cultures to transform 5Gs potential into world-changing technologies and products. This is the Invention Age - and this is where you come in. This is a unique opportunity to join Qualcomms finance and accounting organization based in Hyderabad in the Corporate Internal Audit & Advisory Services (IA & AS) team. The department focuses on assisting the Audit Committee and management teams in the improvement of processes that manage risks related to achieving Qualcomms business objectives. Using Qualcomms risk-based audit methodology, the IT auditor will assist in the execution of internal audits. Specifically, the responsibilities include: Providing U.S. based time zone coverage as needed (up to 50% of time) Supporting the creation of initial planning memos and process flowcharts Identifying and assessing initial risks and control activities Designing audit procedures to evaluate control effectiveness Performing audit testing, identifying deviations from expected control activities, and effectively communicating observations to the audit team Leveraging data analytics throughout the audit process where feasible Staying abreast of changes in the business and industry to assess impacts to the companys risk profile Contributing to the development of new concepts, techniques, and making continuous process improvements for the overall IA team All Qualcomm employees are expected to actively support diversity on their teams, and in the Company. One to three years of relevant experience in internal auditing, external auditing, or SOX compliance within a global public company (preferably in the high-tech industry), Big 4/mid-tier accounting firm or other fast-paced corporate setting Strong understanding of IT general controls, cybersecurity frameworks (e.g. NIST, COBIT), and ERP systems Fluent English; multi-lingual capability is a plus Successful candidate will possess the following characteristics: As feasible, ability to travel (infrequently) to Qualcomms domestic and international locations (e.g., U.S., Europe) Semiconductor business experience or familiarity Strong communication (oral and written) and presentation skills Fast learner with strong interpersonal, organization, analytical, critical thinking, and problem-solving skills Ability to work in a flexible and non-hierarchical team environment Willingness to get things done and take responsibility Ability to recognize and apply a sense of urgency, when necessary Comfortable with ambiguity Positive attitude, professional maturity, good work ethic Ability to work independently, handle multiple projects simultaneously and multi-task to meet deadlines with high-quality deliverables Controls, risk assessment, risks, internal audit, IT Bachelor's degree in Accounting, Finance, Computer Science, cyber security, or related field. CPA, CA, CIA, CISA, CFE, or other credentials, a plus. Minimum Qualifications: Bachelor's degree. 1+ year of Finance, Accounting, or related work experience. *Completed advanced degree in a relevant field may be substituted for up to one year (Masters = one year) of work experience.

What you will do In this vital role you will be responsible for identifying, analyzing, and mitigating IT-related risks to the organization. This role will involve working closely with various groups to ensure that risk controls are in place, policies are adhered to, and security standards are met. The IT Risk Analyst will assist in developing and maintaining risk management frameworks, performing assessments, and supporting regulatory compliance efforts. Roles & Responsibilities: Risk Identification and Assessment : Conduct risk assessments to identify vulnerabilities in IT systems, processes, and policies. Assist in the identification and evaluation of risks associated with third-party vendors and partners. Maintain the IT risk register, documenting risks, issues, and remediation actions. Risk Mitigation and Monitoring : Recommend risk mitigation strategies and implement risk management controls across IT infrastructure. Collaborate with IT, cybersecurity, and business teams to track and resolve identified risks and vulnerabilities. Monitor and report on the effectiveness of existing IT risk controls and recommend enhancements as needed. Compliance and Regulatory Support: Ensure compliance with relevant industry standards and regulatory requirements (e.g., GDPR, SOX, PCI-DSS, NIST). Assist in the preparation for audits by internal and external parties, providing documentation and evidence of IT risk management practices. Support the development and implementation of IT governance, risk, and compliance frameworks. Vendor Risk Management : Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies. Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary. Basic Qualifications Education: Bachelors degree in information technology, Cybersecurity, Risk Management, or a related field. Certifications such as CRISC (Certified in Risk and Information Systems Control), CISA (Certified Information Systems Auditor), or CISSP (Certified Information Systems Security Professional) are highly desirable. Experience: 2 - 4 years of experience in IT risk management, IT auditing, or information security. Hands-on experience with risk management tools and frameworks (e.g., ISO 27001, NIST, COBIT). Skills and Competencies: Solid understanding of IT infrastructure, systems, and security standard processes. Ability to assess technical and business risk related to information systems. Excellent problem-solving, analytical, and communication skills. Ability to communicate complex risk concepts to non-technical collaborators. Ability to assess and interpret security-related clauses in third-party contracts, such as Security Requirements Schedules (SRS). Familiarity with regulatory frameworks and compliance standards (e.g., GDPR, HIPAA, SOX, PCI-DSS). Technical Knowledge: Proficiency with risk management tools, GRC (Governance, Risk, and Compliance) software, and security incident management tools. Experience with security controls related to networks, databases, and cloud environments. Soft Skills: Excellent analytical and fixing skills. Strong verbal and written communication skills. Ability to work effectively with global, virtual teams . High degree of initiative and self-motivation. Ability to manage multiple priorities. Team oriented, with a focus on achieving team goals. Strong presentation and public speaking skills. Collaboration with distributed team.

What Your Responsibilities Will Be Support the build-out of technical SOX controls, working with Security, engineering, finance and IT to document and test controls across key systems. Assist in technology risk assessments to identify gaps against IPO-readiness benchmarks Help drive IT General Controls implementation, application controls and report testing, coordinating with internal teams and external auditors. Work with cross-functional teams to develop process flows, SOPs, and runbooks for key controls. Partner with all stakeholder teams to track control ownership, remediation efforts, and evidence collection. Coordinate the documentation and migration of control information into Avalara s GRC platform. Proactively engage on multiple simultaneous projects with internal and external stakeholders to support strategic security and compliance objectives. Assist with the performance of ad hoc risk and compliance assessments as needed. What Youll Need to be Successful Bachelor s degree in Information Technology, Computer Science, or equivalent experience. 5+ years of experience in IT Audit, IT Security, or IT Risk Management. Proven experience conducting systemic risk analysis in complex technical environments, including reviewing application design and architecture. Familiarity with standards and frameworks such as ISO 27001, SOC 1, SOC 2, SOX, NIST, etc. Strong understanding of application security principles, including the ability to assess risk through code and design review processes. Deep knowledge of technical controls, including their design, implementation, and effectiveness. Experience working with business continuity, disaster recovery, vendor risk management, data privacy, and regulatory compliance. Skilled in identifying business risks and evaluating trade-offs between technical and business objectives. Experience with risk management platforms (e.g., ServiceNow GRC) is a plus. Highly self-motivated, proactive, and capable of managing concurrent priorities with minimal supervision. Strong organizational, planning, verbal, and written communication skills.

What Your Responsibilities Will Be Support the build-out of technical SOX controls, working with Security, engineering, finance and IT to document and test controls across key systems. Assist in technology risk assessments to identify gaps against IPO-readiness benchmarks Help drive IT General Controls implementation, application controls and report testing, coordinating with internal teams and external auditors. Work with cross-functional teams to develop process flows, SOPs, and runbooks for key controls. Partner with all stakeholder teams to track control ownership, remediation efforts, and evidence collection. Coordinate the documentation and migration of control information into Avalara s GRC platform. Proactively engage on multiple simultaneous projects with internal and external stakeholders to support strategic security and compliance objectives. Assist with the performance of ad hoc risk and compliance assessments as needed. What Youll Need to be Successful Bachelor s degree in Information Technology, Computer Science, or equivalent experience. 5+ years of experience in IT Audit, IT Security, or IT Risk Management. Proven experience conducting systemic risk analysis in complex technical environments, including reviewing application design and architecture. Familiarity with standards and frameworks such as ISO 27001, SOC 1, SOC 2, SOX, NIST, etc. Strong understanding of application security principles, including the ability to assess risk through code and design review processes. Deep knowledge of technical controls, including their design, implementation, and effectiveness. Experience working with business continuity, disaster recovery, vendor risk management, data privacy, and regulatory compliance. Skilled in identifying business risks and evaluating trade-offs between technical and business objectives. Experience with risk management platforms (e.g., ServiceNow GRC) is a plus. Highly self-motivated, proactive, and capable of managing concurrent priorities with minimal supervision. Strong organizational, planning, verbal, and written communication skills.

What Your Responsibilities Will Be Support the build-out of technical SOX controls, working with Security, engineering, finance and IT to document and test controls across key systems. Assist in technology risk assessments to identify gaps against IPO-readiness benchmarks Help drive IT General Controls implementation, application controls and report testing, coordinating with internal teams and external auditors. Work with cross-functional teams to develop process flows, SOPs, and runbooks for key controls. Partner with all stakeholder teams to track control ownership, remediation efforts, and evidence collection. Coordinate the documentation and migration of control information into Avalara s GRC platform. Proactively engage on multiple simultaneous projects with internal and external stakeholders to support strategic security and compliance objectives. Assist with the performance of ad hoc risk and compliance assessments as needed. What Youll Need to be Successful Bachelor s degree in Information Technology, Computer Science, or equivalent experience. 5+ years of experience in IT Audit, IT Security, or IT Risk Management. Proven experience conducting systemic risk analysis in complex technical environments, including reviewing application design and architecture. Familiarity with standards and frameworks such as ISO 27001, SOC 1, SOC 2, SOX, NIST, etc. Strong understanding of application security principles, including the ability to assess risk through code and design review processes. Deep knowledge of technical controls, including their design, implementation, and effectiveness. Experience working with business continuity, disaster recovery, vendor risk management, data privacy, and regulatory compliance. Skilled in identifying business risks and evaluating trade-offs between technical and business objectives. Experience with risk management platforms (e.g., ServiceNow GRC) is a plus. Highly self-motivated, proactive, and capable of managing concurrent priorities with minimal supervision. Strong organizational, planning, verbal, and written communication skills.

Role & responsibilities: Lead planning, fieldwork, and reporting phases for assigned SOX ITGC audit engagements. Design and execute detailed testing for IT General Controls and Automated Controls. Validate Test of Design (ToD) and Test of Effectiveness (ToE) for key control areas including Logical Access, Change Management, Backup & Restoration, and Incident Management. Manage and mentor a team, taking full responsibility for performance reviews, appraisals, and goal setting. Ensure audit documentation meets professional standards and internal quality benchmarks. Preferred candidate profile: CISA certification is a must. Bachelors or advanced degree in Information Technology or a related field. Minimum 5 years of experience in SOX ITGC audits. At least 2 years of hands-on team management experience , including appraisal and performance management. Strong knowledge of IT General and Automated Controls. Proficiency in validating ToD/ToE documentation. Excellent interpersonal and stakeholder communication skills. If you feel this opportunity is well aligned with your career progression plans, please feel free to reach me with your updated profile at rimjhim.sharma@crescendogroup.in

Title Medpace is looking for a System Engineer to add to their growing Infrastructure Enterprise Applications Team! This team is responsible for administering systems that house enterprise applications utilized globally and implementation of applications / programs supporting the company infrastructure business processes and operations. Overview Medpace is a full-service clinical contract research organization (CRO). We provide Phase I-IV clinical development services to the biotechnology, pharmaceutical and medical device industries. Our mission is to accelerate the global development of safe and effective medical therapeutics through its scientific and disciplined approach. We leverage local regulatory and therapeutic expertise across all major areas including oncology, cardiology, metabolic disease, endocrinology, central nervous system, anti-viral and anti-infective. Headquartered in Cincinnati, Ohio, employing more than 5,000 people across 40+ countries. Responsibilities Traditional Windows Server administration Design/Implement system solutions for Vendors, Developers, and Users to help deliver enterprise applications. Ensure the highest level of system and infrastructure availability Evaluate existing systems and provide technical direction to IT support staff Coordinate effort with IT Security team to resolve security related vulnerabilities Manage and monitor systems and infrastructure for the organization to be in line with company requirements. Plans and implements system automation when available for better efficiency Utilize Load-balancers for both Web Servers and Applications PKI Certificate Management Manage a Citrix environment for Desktop/Application Delivery Use an IT Service Management System (ServiceNow) to manage and document day to day work and keep track of projects. Qualifications Bachelor's degree in Information Systems or a related field; 2+ years of experience in Windows Server Administration Windows Server OS Remote Desktop Services/Remote App Group Policy Active Directory File Server, Shares/NTFS Permissioning 1+ years of experience in Web Hosting Administration DNS Load Balancers IIS Apache SSL/TLS Certificate Management Desire to learn and grow, with a solid foundation of experience Problem-solving and analytical skills Aptitude to manage many different servers, applications, and priorities effectively; and Ability to communicate effectively with peers, end users, and management People. Purpose. Passion. Make a Difference Tomorrow. Join Us Today. The work we’ve done over the past 30+ years has positively impacted the lives of countless patients and families who face hundreds of diseases across all key therapeutic areas. The work we do today will improve the lives of people living with illness and disease in the future. Medpace Perks Flexible work environment Competitive compensation and benefits package Competitive PTO packages Structured career paths with opportunities for professional growth Company-sponsored employee appreciation events Employee health and wellness initiatives Awards Recognized by Forbes as one of America's Most Successful Midsize Companies in 2021, 2022, 2023 and 2024 Continually recognized with CRO Leadership Awards from Life Science Leader magazine based on expertise, quality, capabilities, reliability, and compatibility What to Expect Next A Medpace team member will review your qualifications and, if interested, you will be contacted with details for next steps.

Req ID: 327248 We are currently seeking a Archer IRM Developer to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Configure and develop solutions for customers on the Archer IRM platform Configure and develop integrated solutions for customers using the Archer IRM platform utilizing additional industry standard applications including SSO, web services integrations, import sets and table polling Design and configure complex configurations including advanced workflow, questionnaires, layouts, reports, data feeds and data imports, campaigns, dashboards, notifications, package installation and workflows, etc. Support and escalate issues and defects related to specific customer environments as required, provide incident support as required Perform system and unit testing, document results Develop documentation as required, per operational processes Follow the engagement model as determined by the engagement manager for projects, as needed Follow the standardized project implementation methodology

Hi, Greetings from Peoplefy Infosolutions !!! We are hiring for one of our reputed MNC client based in Bangalore . We are looking for candidates with 10+ years of experience in internal audit. Qualification: CA qualified OR having relevant certification (CISA/CIA/CISM/ISO/CISSP) Job Description: 10+ years of post-qualification experience in IT internal audit. Working in third line of defense. Should be comfortable with yearly international travel. Hands-on experience with global on-site audits. Interested candidates for above position kindly share your CVs on sneh.ne@peoplefy.com with below details - Experience : CTC : Expected CTC : Notice Period : Location :