26 It Auditing Jobs

Conduct comprehensive audits of IT systems, networks, and infrastructure to assess compliance with regulatory requirements, industry standards, and internal policies. Evaluate the effectiveness, efficiency, and security of IT controls, procedures, and practices. Identify and assess risks related to information technology, including cybersecurity threats, data breaches, system vulnerabilities, and compliance issues. Review and analyze IT policies, procedures, and documentation to ensure alignment with best practices and regulatory requirements. Collaborate with IT and business stakeholders to understand system architectures, processes, and objectives. Develop audit plans, methodologies, and procedures tailored to specific IT environments and objectives. Perform design and operating effectiveness testing of IT controls and processes, including reviewing configurations, analyzing data, and conducting interviews with stakeholders. Identify potential risk areas and recommend control enhancements to mitigate those risks. Document clear and concise audit findings, including deficiencies, vulnerabilities, areas for improvement, remediation actions, and risk mitigation strategies, and communicate them effectively to management. Monitor the implementation of audit recommendations and verify that corrective actions are effective. Assist in the development and maintenance of SOX documentation, including process narratives, flowcharts, and control matrices. Stay informed about emerging IT trends, technologies, regulations, threats, and industry best practices to continuously improve audit methodologies and practices. Participate in special projects and initiatives related to process improvements or system implementations. Provide support during external audits and regulatory inspections as needed. Facilitate the use of technology-based tools or methodologies to perform control testing Support audit planning, managing idle time, and self-productivity Maintain independence and objectivity. Maintain an in-depth understanding of IT environment and supporting functions. Exercise professional skepticism and judgment and adhere to the code of ethics Who you are and What you bring: Bachelor s degree in Information Technology, Computer Science, or a related field Four or more years of experience auditing publicly traded companies or Big 4 consulting firms, specifically in SOX compliance Knowledge of IT systems, networks, databases, and cybersecurity principles. Familiarity with IT auditing standards, frameworks, and methodologies (e.g., COBIT, ISO/IEC 27001, NIST). Strong knowledge of ITGCs, application controls, cloud computing, and cybersecurity frameworks. Experience with audit tools, data analytics, and IT risk assessment methodologies. Knowledge of ERP systems, databases, and IT infrastructure reviews.Strong analytical skills, attention to detail, and the ability to identify and assess risks and controls effectively. Excellent communication skills, including the ability to convey technical information to non-technical stakeholders and to write clear and concise audit reports. Ability to work independently and collaboratively in a dynamic environment, managing multiple priorities and deadlines. Proficiency in audit tools and technologies, data analysis techniques, and Microsoft Office applications Excellent communication skills, including the ability to convey technical information to non-technical stakeholders and to write clear and concise audit reports. Proficiency in using computer software and applications for data management, analysis, and reporting purposes incredibly, PowerPoint and Excel efficiently Strong analytical skills, attention to detail, and the ability to identify and assess risks and controls effectively. Proficiency in audit tools and technologies, data analysis techniques, and Microsoft Office applications. Ability to work under pressure and deliver results in a fast-paced and deadline-oriented environment with the agility to respond effectively to changing priorities. Team player, who integrates with the team and adapts to the dynamic environment. Aptitude for problem-solving and root cause analysis, including the ability to conceptualize and analyze multiple scenarios in solving business problems. Ability to coordinate with cross-functional teams, outsourced consultants, and external auditors in executing the Internal Audit Program. Ability to work across time zones and manage diverse stakeholders and resources in multiple countries. Initiative-taker with a sense of urgency and working in a fast-changing environment with shifting priorities. Ability to work independently and collaboratively in a dynamic environment, managing multiple priorities and deadlines. Experience with AuditBoard Platform or experience with other automated SOX tools.Managing the SOX database, building ad-hoc reporting, and leveraging the tool to administer and optimize the SOX program. Continuous development of the SOX platform to enhance user-friendliness and expand the capabilities of the platform Strong analytical skills to evaluate root causes of control weaknesses and partner with business leaders to enhance control effectiveness and remediate control deficiencies, as needed.

You will work as a Manager of IT Internal Audit at UKG, where you will collaborate with the Director, Internal Audit, and the global management team to oversee a wide range of audit and consulting activities focused on IT and related areas. Your responsibilities will include leading a team of IT auditors, assigning tasks, facilitating team development, and assisting the Director IA with staff management duties. You may be involved in conducting assessments, evaluations, and supervising the implementation of IT audit procedures. Additionally, you will be expected to create IT audit programs, operationalize activities in the audit management platform, and review the work done by the team. At UKG, our core values and behaviors shape our culture and emphasize Our Purpose is People. To succeed in this role, you must possess strong technical skills, ethical standards, agility, and a dedication to continuous learning and improvement. Effective auditors are focused on asking targeted questions to gain a comprehensive understanding of the control environment from various perspectives. Key Responsibilities: - Collaborate in developing a risk-based audit plan in coordination with the global IA leadership team. - Ensure audits comply with relevant IT audit standards/frameworks. - Engage with teams in IT and non-IT areas, liaising with counterparts in the US for planned projects/ad hoc requests. - Lead IT audits to evaluate internal controls, information security, and policy compliance. - Identify IT risks and controls, make improvement recommendations, and design audit approaches. - Collaborate with cross-functional teams to assess IT-related risks and validate issues. - Communicate audit findings and recommendations to stakeholders and senior management. - Lead, mentor, and develop a team of IT and Non-IT auditors to drive continuous improvement. - Provide training to equip the team to address evolving IT risks and challenges. Qualifications: - Bachelor's degree in Information Technology, Computer Science, or a related field; professional certification (CISA, CISSP, CISM) preferred. - 7-9 years of experience in IT auditing, risk management, and compliance, including at least 2 years in a managerial role. - Proficiency in IT governance frameworks, information security principles, and best practices. - Hands-on experience in SOX testing and documentation. - Knowledge of relevant regulations and standards (e.g., GDPR, ISO 27001). - Excellent communication skills to convey technical concepts to non-technical stakeholders. - Strong leadership abilities to motivate and develop a high-performing team. This role provides flexibility with some in-person presence required at the Noida office, not fully remote. Limited travel may be required and will be planned in advance. Join us at UKG, where we are leading the way in workforce management and human capital management solutions, empowering millions of workers worldwide. We are committed to diversity and inclusion in our workplace and recruitment practices. If you need assistance during the application or interview process due to a disability, please contact UKGCareers@ukg.com.,

This is where your work makes a difference. At Baxter, we believe every person-regardless of who they are or where they are from-deserves a chance to live a healthy life. It was our founding belief in 1931 and continues to be our guiding principle. We are redefining healthcare delivery to make a greater impact today, tomorrow, and beyond. Our Baxter colleagues are united by our Mission to Save and Sustain Lives. Together, our community is driven by a culture of courage, trust, and collaboration. Every individual is empowered to take ownership and make a meaningful impact. We strive for efficient and effective operations, and we hold each other accountable for delivering exceptional results. Here, you will find more than just a job-you will find purpose and pride. Your Role at Baxter: Under the supervision of the Senior Manager - Internal Audit, and using a risk-based approach, assist with audit planning, performing and documenting audit testing procedures for IT audits, integrated audits, some SOX testing, management consulting, and other projects, in accordance with the Institute of Internal Auditors (IIA) Global Internal Audit Standards. What you'll be doing: Execute IT, Privacy, Device Security, Operational and Integrated audits throughout Baxter's international and domestic organizations Maintain comprehensive historical audit work paper documentation that fully supports reported audit results, leveraging established department tools and standards. Work collaboratively with others on the Internal Audit team to proactively assess organizational IT risks and ensure effective audit coverage. Identify control gaps and other areas of heightened risk exposure related to governance, risk management, and internal controls within IT processes. Design and deliver achievable meaningful recommendations for management to mitigate the identified risks. What you'll bring: 4-5 years of IT experience with a Bachelor's Degree or 4-5 years of IT experience with an advanced degree Self-starter with strong analytical skills and decision-making capabilities Progressive experience in a Big 4 firm or reputed multi-national company in IT auditing and/or IT Risk & Compliance functions (experience in medical device industry is a plus, but not mandatory) Proven experience executing Information Systems audits and IT General Controls (ITGCs) in the following: Infrastructure Platform (Windows, Unix/Linux, AS400), Cloud Platforms (AWS or Azure or Google), Databases (Oracle/SQL) and large-scale ERP packages (JDE, SAP, Oracle or other similar systems) Knowledge and interest in all things related to data & technology, including the latest trends and developments with a specific focus on areas of technology included: cybersecurity, cloud, data governance, privacy (like GDPR, HIPPA), analytics, enterprise applications (e.g., SAP, Oracle, Workday, Salesforce), disaster recovery, artificial intelligence, systems development methodologies, and SecOps systems (e.g., CrowdStrike, Prisma Cloud, Qualys, Splunk). Progressive internal audit experience at a publicly traded company that includes experience in a risk-based audit environment Ability to multi-task across multiple projects/priorities Experience working audit efforts in a regulated environment especially IT audits Strong understanding of internal controls and business processes across functions, including manufacturing, information systems Sr. Audit Consultants are expected to travel 15-20%, including global travel Qualifications B.Tech. / MBA (IT) / Equivalent degree is must Professional certification (CISA, CISM, CRISC, CIPM, CIPP, CISSP, AWS Practitioner, CIA) are a plus What you may additionally bring: Solid understanding of the quality regulations and auditing techniques required for the medical device industry Ability to create and deliver presentations up to the Executive Committee level Excellent communication skills (oral, business writing, presentations and listening) Strong influencing and negotiation skills High energy and motivation with an ability to quickly adapt to change Front room / back room audit experience Frequent interaction with internal or external contacts at various organizational levels concerning ongoing operations or changes relating to quality and compliance processes or programs including leading sessions as the internal auditor Experience with COBIT and 2013 COSO Equal Employment Opportunity Baxter is an equal opportunity employer. Baxter evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic. Reasonable Accommodations Baxter is committed to working with and providing reasonable accommodations to individuals with disabilities globally. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application or interview process, please click on the here and let us know the nature of your request along with your contact information. Recruitment Fraud Notice Baxter has discovered incidents of employment scams, where fraudulent parties pose as Baxter employees, recruiters, or other agents, and engage with online job seekers in an attempt to steal personal and/or financial information. To learn how you can protect yourself, review our .

Job Description A process savvy individual with an eye for quality. Must have implementation experience of Quality frameworks and Delivery Excellence methodology used in Quality Management and IT industry. Sound Knowledge of delivery methods and frameworks (Project & Service Management, Agile, ITIL) Good understanding of industry best practices and its implementation Role & responsibilities: Extensive experience of process definition and implementation covering various life cycles - Development / Maintenance / Transformation / Improvement / Innovation Perform service contract, SOW, scope statement reviews to gather service, quality, risk and compliance management requirements Building Process awareness in Engagement - Provide necessary process training, walkthrough of the processes and templates , assisting in Tools Setup Perform periodic audits covering process, quality assurance, compliance, metrics and risk reviews aligned with customers expectations Identify and facilitate improvement initiatives with quantified benefits r e.g. Incident reduction , FMEA effectiveness , Six Sigma Initiatives, Early Alerts etc Monthly reviews and reporting of performance, findings, recommendations, alerts and inferential analysis to the management Ensure readiness of the account project for internal and external audits Thorough understanding of delivery life cycle and frameworks like Waterfall, Agile, ITIL, Agile Service Management Secondary Skills: Clear understanding of various IT industry best Standards, frameworks and models ISO 9001, ISO 20000, CMMi, Agile , Lean & Six Sigma , ITIL, ASM , DevOps, SAFe Participate / Conduct focus reviews and deep dive reviews of critical projects Knowledge sharing and guidance to team member

As a member of the Finance department, you will be responsible for conducting comprehensive audits of IT hardware, software, network infrastructure, and cybersecurity measures. Your role will involve evaluating the effectiveness of IT controls and processes to ensure compliance with FDA regulations and other relevant standards. You will also need to identify and assess potential risks in IT systems and recommend mitigation strategies. In this position, you will be expected to prepare detailed audit reports that include findings, recommendations, and action plans. Collaboration with IT and other departments to implement audit recommendations and enhance overall IT governance will be a key aspect of your role. Staying updated on the latest industry trends, technologies, and regulatory changes is essential for success in this position. To qualify for this role, you should have a Bachelor's degree in Information Technology, Computer Science, or a related field. Certifications such as CISA, CISSP, or similar are preferred. Additionally, you should possess 3-5 years of experience in IT auditing, focusing on hardware, software, network, and cybersecurity audits. Proficiency in using IT audit tools and software, excellent analytical and problem-solving skills, and knowledge of IT governance frameworks such as COBIT, ITIL, or ISO 27001 are required. Familiarity with cloud computing and virtualization technologies, as well as an understanding of data privacy laws and regulations, will be beneficial in this role. If you are looking for a challenging opportunity to apply your IT auditing skills and contribute to the improvement of IT governance within an organization, this position may be the right fit for you.,

You should have 2 to 5 years of experience in information security, IT auditing, and IT/Third Party risk management processes. This position is based in Chennai. Your main responsibilities will include reviewing and establishing secure processes and systems at Third Party's end, conducting Third Party risk assessments using ISO27001 or COBIT framework, classifying Third Parties from an information security risk perspective, preparing risk-based questionnaires and reports, evaluating Third Parties from an information security perspective, and providing recommendations to mitigate risks and include risk-based clauses in agreements with Third Parties. Preferred certifications for this role include ISO27001 LA, CISSP, CISA, CTPRA, or CTPRA. To excel in this role, you should possess excellent written and verbal communication skills, be an independent self-starter, have knowledge in various information security technologies, exposure to Third Party Risk questionnaires and tools like Standard Information Gathering (SIG), experience in securing information for technical solutions, knowledge of IT risk management, common assessment control techniques, analytic techniques, Excel, security controls, system security, network security, information security, ISMS Management, COBIT, Technology risk and compliance, BCP & DR planning, IT and IS audits, BCP audits, Security operations assessment, Cloud security, and ability to work with senior stakeholders. Additionally, you should have experience in PCI DSS, PA DSS, ISO27001, and COBIT, as well as a strong ability to devise, drive, and implement standard processes and best practices for all suppliers, from both security and risk perspectives.,

As an Accounts Manager, you will utilize your expertise in accounting, GST, Tally, and Microsoft Office to efficiently manage the financial aspects of the organization. With a minimum of 5 years of experience in the accounts field, you will play a crucial role in maintaining accurate financial records and ensuring compliance with regulations. This full-time, permanent position offers benefits such as cell phone reimbursement and Provident Fund. Your work schedule will involve fixed shifts from Monday to Friday with weekend availability, providing you with a stable work-life balance. In addition to your base salary, you will have the opportunity to earn performance bonuses and yearly bonuses based on your contributions to the company's financial success. Preferred qualifications for this role include 4 years of experience in Tally, 5 years in accounting, 4 years in GST, and 2 years in IT auditing. The work location for this position is in person, allowing you to collaborate effectively with team members and stakeholders. If you are a dedicated and experienced professional in the field of accounting, this role offers a rewarding opportunity to showcase your skills and contribute to the financial health of the organization.,

Core Responsibilities: Plan, execute, and report on internal IT audits. Evaluate the effectiveness of IT controls, identify risks, and provide recommendations for improvement. Conduct regular access reviews to ensure that users have appropriate access levels based on their roles. Evaluate the effectiveness of access controls in safeguarding sensitive information. Recommend improvements for identity and access management (IAM) processes. Perform internal risk assessments to identify vulnerabilities and ensure timely mitigation strategies. Work closely with IT, legal, and business teams to address audit findings and track remediation efforts. Preference and Experience: The candidate must have experience in IT auditing, IT risk management, or related fields. Proficiency in compliance with frameworks like ISO 27001, SOC 2, PCI DSS, ITGC, or other relevant standards. Hands-on experience conducting on-site and remote assessments of third-party vendors to evaluate their security posture and related controls. Proficiency in MS Office Suite with experience creating and presenting dashboards and reports. Must be CISA certified. Must have the capability to represent the audit reports to Management. Stay updated on the latest developments in IT audit and compliance practices. Comfortable traveling for on-site visits to the client side for audit purposes.

Key Responsibilities Plan, coordinate, and perform internal and external PCI DSS assessments. Conduct risk assessments and gap analyses against PCI DSS requirements. Work with stakeholders across departments to gather evidence and validate compliance. Identify areas of non-compliance and develop recommendations for remediation. Prepare formal audit reports and present findings to management. Liaise with Qualified Security Assessors (QSAs) and support formal PCI DSS validation efforts. Maintain documentation of security policies, procedures, and controls as they relate to PCI DSS. Monitor changes to PCI DSS and related regulations to ensure ongoing compliance. Provide training and guidance to internal teams on PCI DSS requirements and best practices. Assist in the remediation of audit findings and track progress until closure. Required Qualifications Bachelors degree in Information Security, Computer Science, Information Systems, or related field. Minimum of 35 years of experience in IT auditing, security assessment, or compliance. In-depth knowledge of PCI DSS v4.0 and prior experience conducting PCI audits. Familiarity with information security frameworks (e.g., NIST, ISO 27001). Strong understanding of network security, encryption, access control, and vulnerability management. Show more Show less

As the VP, Audit Project Leader (Quality Assurance) at BNY, you will play a crucial role in ensuring the quality and effectiveness of internal audit processes. Situated in Chennai, Tamil Nadu, your responsibilities will revolve around reviewing audit testing and reporting for various processes, including financial, operational, and compliance areas. You will also be involved in evaluating IT audit engagements related to IT general controls, information security, and systems change management. Utilizing the QA team's audit technology and methodology, you will be tasked with delivering consistent and reliable results to the audit teams. Your role will require you to identify significant concerns, monitor fieldwork, and address emerging issues promptly. Taking ownership of assigned projects, you will ensure that QA audits are completed accurately and efficiently within the designated budget. Effective communication with Internal Audit Management and senior managers will be essential. Collaboration with other QA team members, understanding new methodologies and guidance, and providing valuable analysis to Internal Audit Management will be key aspects of your responsibilities. To excel in this position, you should possess a Bachelor's Degree (or equivalent) with a preference for a major in Accounting/Information Technology or a related field. A background of 6-10 years in Auditing, IT Auditing, and/or Quality Assurance is required, with 10+ years of relevant experience, including Internal Audit proficiency being preferred. Additionally, having an MBA, CPA, CFA, CIA, CISA, or CISSP certification would be advantageous. BNY's inclusive culture has been recognized through various awards, including being named America's Most Innovative Companies and World's Most Admired Companies by Fortune. As a company committed to diversity and equality, BNY offers a supportive work environment where all employees have the opportunity to thrive. BNY is an Equal Employment Opportunity/Affirmative Action Employer, valuing diversity and inclusion. Join us in making a positive impact on the world of finance and beyond.,

A senior Backup Admin (Commvault) with L2 skill who can support a critical client having more than 1000+ servers. The individual should be highly flexible, willing to support 24x5 on a rotational shift basis and weekend on call support. Years of experience needed - Somebody with 3 to 5 years of RHEL admin experience with B. Tech or Diploma qualification. Technical Skills: Perform daily monitoring and management of Commvault/AWS/Azure backup systems. Ensure successful completion of scheduled backup jobs and address any failures promptly. Perform data restores as requested by users and other IT teams. Test and validate backup and recovery processes to ensure data integrity. Maintain accurate documentation of backup configurations, procedures, and policies. Generate regular reports on backup status, performance, and issues for management review. Develop and maintain disaster recovery plans and conduct periodic tests. Participate in the Audit activity. ITIL - Process on Incident and Change Management Problem Management Critical Incident Handling Effective collaboration and team player logical thinking to come up with RCA Ready to support 24/7 support Strong Oral and Written communication Certifications Needed: Certification- Commvault/AWS/Azure Backup

Job Description Role Profile: The Cyber and IT Audit Manager will oversee IT and cybersecurity audits, managing a team of auditors to assess IT processes and Operational Technology (OT) environments. The manager will ensure audits are aligned with the companys strategic objectives and regulatory requirements, with a focus on delivering value and identifying critical risks in IT and cybersecurity. This role includes responsibility for overseeing security assessments and implementing audit methodologies that support continuous improvement. Responsibilities ' Manage and execute a portfolio of IT and cybersecurity audits, focusing on complex audits related to IT general controls, cybersecurity frameworks, and OT environments. Oversee medium complexity security assessments for IT and OT systems, ensuring comprehensive audit coverage. Collaborate with the CAE, IT audit Director and IT stakeholders to build an audit pipeline, addressing emerging risks and identifying areas for process improvement. Lead the development of audit programs and methodologies, ensuring alignment with industry best practices and regulatory frameworks (e.g., NIST, COBIT, IEC 62443). Manage audit staff, providing guidance and ensuring adherence to professional standards (IIA, ITGC). Present audit findings to senior management, communicating risks, recommendations, and opportunities for improvement. Qualifications ' 7+ years of experience in IT auditing, cybersecurity, and OT systems. Proven experience managing audits and teams, with a focus on IT governance, cybersecurity, and risk management. Expertise with security assessment tools (e.g., Nmap, Nessus, Kali Linux, Metasploit, Burp Suite) and audit methodologies for IT and OT systems. Strong understanding of industry frameworks (NIST, COBIT, ISO 27001, MITRE ATT&CK) and IEC 62443 for OT environments. OT knowledge and experience is highly desirable. Certifications such as CISSP, CISA, CISM, OSCP, OSWP, CRTP, CEH, HTB CPTS, HTB CBBH, HTB CWEE are preferred. Bachelors or Masters degree in Information Technology, Cybersecurity, or related disciplines. Strong leadership, project management, and communication skills, with the ability to influence stakeholders at all levels. At Nextracker, we are leading in the energy transition, providing the most comprehensive portfolio of intelligent solar tracker and software solutions for solar power plants, as well as strategic services to capture the full value of solar power plants for our customers. Our talented worldwide teams are transforming PV plant performance every day with smart technology, data monitoring and analysis services. For us at Nextracker, sustainability is not just a word. It&aposs a core part of our business, values and our operations. Our sustainability efforts are based on five cornerstones: People, Community, Environment, Innovation, and Integrity. We are creative, collaborative and passionate problem-solvers from diverse backgrounds, driven by our shared mission to provide smart solar and software solutions for our customers and to mitigate climate change for future generations. Culture is our Passion Show more Show less

Position: IT Auditor (SME BFSI Systems & Compliance) Location: India (Remote) Employment Type: Full-Time Schedule: Monday to Friday, Day Shift Experience: 3+ Years in IT Audit, BFSI or RegTech Sector Preferred Company Description Scry AI is a research-driven enterprise AI company delivering secure, intelligent automation platforms to Banking, Financial Services, and Insurance (BFSI) clients. Our solutions empower organizations to manage data, automate workflows, and ensure compliance across mission-critical financial operations. We maintain a strong commitment to security, regulatory alignment, and internal control integrity. We are looking for an IT Auditor with deep experience in IT controls, risk assessments, and security audits to help strengthen and align our platforms with client expectations and compliance frameworks. Role Overview As an IT Auditor at Scry AI, you will evaluate the integrity, confidentiality, and availability of systems powering our AI platforms and client engagements. Youll work closely with engineering, compliance, and operations teams to assess controls, identify gaps, and ensure we meet industry standards like ISO 27001, SOC 2, and regulatory frameworks including RBI and SEBI guidelines. Key Responsibilities 1. IT Risk & Control Assessments Conduct regular IT audits across infrastructure, applications, data workflows, and user access. Evaluate the effectiveness of internal controls, cybersecurity measures, and business continuity plans. Identify vulnerabilities and recommend actionable mitigation strategies. 2. Compliance & Standards Alignment Ensure ongoing compliance with industry frameworks (ISO 27001, NIST, SOC 2, RBI, SEBI, etc.). Work with engineering to embed audit-readiness and risk mitigation into system design. Support internal audits, external audits, and regulatory inspections. 3. Reporting & Documentation Prepare audit reports detailing findings, risks, and control effectiveness. Maintain logs of issues, resolutions, and audit evidence for internal records. Track and follow up on audit remediation plans and risk closures. 4. Collaboration & Advisory Partner with DevOps, security, and data teams to implement audit recommendations. Provide advisory support during product development and client onboarding. Contribute to IT policies, SOPs, and internal training on security and compliance. Required Qualifications & Skills 3+ years of experience in IT auditing, IT risk management, or information security. Strong understanding of audit frameworks (ISO, SOC, COBIT, NIST, RBI/SEBI norms). Familiarity with cloud infrastructure (AWS, Azure, GCP) and DevSecOps principles. Experience auditing SaaS platforms, databases, and user access control systems. Excellent documentation and analytical skills. CISA, CISM, or similar certifications preferred. Our Ideal Candidate Understands the unique risk and compliance landscape of BFSI and enterprise tech. Has hands-on experience conducting IT audits and collaborating across technical teams. Is detail-oriented, structured, and proactive in surfacing risks before they escalate. Thrives in an evolving, high-accountability environment where security is non-negotiable. Is eager to contribute to secure, compliant, and trusted AI adoption in financial services. Tip for candidates If this role interests you, then follow our page to stay updated on similar future job openings and insights. Show more Show less

The position in the Group Internal Audit Department at Intertek offers an exciting opportunity to be a part of a global team responsible for delivering finance and operational audits within the APAC and MENAP regions, and occasionally in other markets. Based in Delhi, India, you will be a key player in the assurance framework across all geographies and operations of the Group, covering Finance, HR, IT, and Operations. Your responsibilities will include contributing to audit assignment planning, leading finance and operational audits, testing core controls effectiveness, providing practical recommendations aligned with commercial priorities, preparing and issuing influential reports to management, ensuring implementation of recommendations, conducting special projects, and contributing to the development of a world-class audit function. To excel in this role, you must possess excellent communication and influencing skills, the ability to work independently, and a strong drive to create a positive impact at Intertek. The ideal candidate should be a high caliber graduate with a recognized Accountancy or Internal Auditing qualification, possess excellent project management skills, demonstrate credibility in building relationships, and have some exposure to IT auditing principles. Additionally, you should have 5-10 years of post-Chartered Accountancy experience in internal or external auditing, preferably from a Big 4 firm, with multinational exposure being advantageous. Fluency in spoken and written English is essential, and knowledge of other languages is a plus. Join us at Intertek and be a part of a dynamic team that values excellence, innovation, and continuous improvement in the field of internal auditing.,

You will be responsible for executing IT controls testing for the assigned portfolio of controls/stakeholders to deliver to agreed time and quality standards. Your main tasks will involve performing ITGC testing activities in areas such as Access Management, Change and Release Management, Incident Management, and SOC Report Reviews. Additionally, you will be testing IT Application Controls (ITACs), IT Dependent Manual Controls (ITDM), and Key Reports. It will be your duty to assess the impact of deficiencies in ITGC and automated control testing on financial reporting and support the ICFR Technology manager in determining appropriate actions to remediate control deficiencies identified from testing. Furthermore, you will be required to learn Tesco's business processes to be more effective in assessing the impact of ineffective controls and designing remediation activities. To excel in this role, you should have experience with SOX/IT Internal Controls audit, implementation, and design improvement. A strong knowledge of IT auditing concepts and principles is essential, alongside an understanding of IT General Controls, IT Automated Controls, and IT-Dependent Controls. It is crucial that you possess a good understanding of business drivers and how they impact technology, as well as hands-on understanding of information security domains and assurance frameworks. Excellent written and verbal communication and presentation skills are also required, along with experience in hands-on delivery of IT audit and/or assurance work. In conclusion, your role will be pivotal in ensuring the effectiveness of IT controls testing within the organization, thereby contributing to the overall success of Tesco Bengaluru's IT infrastructure and operations.,

Role & responsibilities Take care of IT compliance & also conduct Information Systems Audit for the Bank. Experience in conducting Information Systems and Security audits, application control reviews and application functionality reviews Need to perform IT audits as per the agreed annual audit plan. Practical experience of audit methodology Assisting the team members in conducting compliance reviews. Assist in preparation of monthly / quarterly / annual submission to the Board / Audit & Compliance Committee. Essential competencies In depth knowledge of the regulatory environment for the banks in India particularly RBI & FEMA requirements. Good Co-ordination skills. Good research capabilities and intelligent interpretation of regulatory guidelines. Good knowledge of all the elements (commercial, operational) of banking areas like Trade, Remittances, Treasury e.t.c. Relevant experience: 1-2 years post qualification experience in Financial Services environment, preferably in handling RBI Inspection Impeccable integrity and compliance consciousness.

URGENT HIRING !!! location's : Canada , Australia , New Zealand , UK, Germany , Singapore ( Not In India ) Benefits : Medical Insurances , Travel allowances , Flight Tickets , Meals , etc For more information call or whatsapp +91 9220850077 Key Responsibilities: Team Supervision & Leadership Manage and mentor a team of technical support specialists or helpdesk agents. Assign tasks, monitor performance, and conduct regular performance reviews. Provide training and development opportunities for team members. Technical Issue Resolution Oversee the diagnosis, troubleshooting, and resolution of hardware, software, and network issues. Handle escalated or complex IT support tickets and customer complaints. Ensure support cases are resolved within defined SLAs (Service Level Agreements). Process & Quality Management Develop and enforce IT support procedures and best practices. Monitor ticketing systems to ensure proper documentation and timely resolution. Analyze support metrics and trends to improve service delivery. System & Tool Oversight Ensure the effective use of ITSM (IT Service Management) tools like ServiceNow, Jira, Zendesk, etc. Collaborate with system admins and IT teams to maintain support tools and systems. Support patch management, device imaging, and inventory control processes. Customer Service Focus Maintain a high standard of user satisfaction and communication. Conduct follow-ups with users to ensure issue resolution and satisfaction. Encourage a customer-centric mindset within the support team. Compliance & Security Enforce IT security policies and escalate potential breaches. Ensure compliance with internal controls, data privacy laws, and corporate standards.

As an experienced professional looking for a rewarding career opportunity, you have the chance to join HSBC's Country Internal Audit team. In this role, you will primarily focus on IT audits related to business applications, software development, and technical infrastructure. It is crucial that all audits are conducted in accordance with internal requirements and timelines to ensure the integrity of the audit process. Your responsibilities will include actively participating in annual audit planning, risk assessment, and continuous monitoring exercises. You will be expected to deliver high-quality work within specified timeframes, standards, methodology, budget, and best practices. Furthermore, you will analyze key drivers of change within your area of coverage and evaluate their potential impact on audits. Drawing on your expertise, you will verify the accuracy of audit results and prepare comprehensive audit findings that highlight key issues, risks, root causes, and action plans. Your ability to produce well-crafted audit reports for senior management review is essential. Effective communication and the maintenance of positive relationships with stakeholders, team members, and audit management are integral aspects of this role. As a proactive team player, you will collaborate with colleagues to achieve common objectives and leverage industry insights, knowledge, and current developments to identify areas of concern. The ideal candidate will hold a University degree or equivalent qualification and possess 6-8 years of experience in IT Auditing, IT security, software development, business analysis, quality assurance, internal control/operational risk, or IT operations within the Banking or Financial Services sector. Candidates with professional certifications such as CISA, CISSP, CISM, CGEIT, ITIL, ACA, or PMP are preferred. Strong written and verbal communication skills, along with analytical, problem-solving, and interpersonal abilities, are essential for success in this role. HSBC is dedicated to fostering a culture where every employee is valued, respected, and encouraged to share their opinions. The company prides itself on offering a workplace that promotes continuous professional development, flexible working arrangements, and opportunities for growth within an inclusive and diverse environment. Please note that any personal data provided during the application process will be handled in accordance with HSBC's Privacy Statement, which can be accessed on the company's website. Issued by The Hongkong and Shanghai Banking Corporation Limited, India.,

Company: Leading Health Insurance. Role: Internal Audit - Process & IT. Location: Jogeshwari, Mumbai. Experience - Minimum 8-10 years of relevant insurance / financial services experience including IT operations/ audit. Recognized accounting/auditing/information system certifications (e.g. CA, CISA, CIA, CISSP) Job Overview Concerned individuals will be responsible for Planning and execution of internal audits in accordance with the laid down process. Providing support to the Head-internal audit for other internal audit related activities including Board presentations and liaising with senior management. Responsibility- Executing internal audits (process-based as well as IT) in accordance with the approved audit plan. Compliance with the internal audit methodology. Using data analytics for a stratified sample. Working closely with management and recommending appropriate risk and control initiatives including best practice. Display independence in execution of audit and management of various stakeholders. Ensure upkeep with applicable rules and regulations. Ensure upkeep with Companys policies and procedures. Liaise/manage external firms deployed which provide support to the Internal Audit department. Follow up with process owners/ stakeholders on the progress for remediation initiatives, and validate adequacy of the remediation actions. Liaise with Regional Office including group auditors on audit progress, remediation status and other audit initiative. Provide support to additional projects and to identify and pursue on-going process improvements. Support continuous improvement of internal audit practices and tools. Interested candidates can share their resumes at bhumika@rightmatch.co.in / +918788674591

At PwC, the focus in audit and assurance is on providing independent and objective assessments of financial statements, internal controls, and other assurable information to enhance credibility and reliability with various stakeholders. The evaluation includes compliance with regulations, such as governance and risk management processes, and related controls. In the digital assurance domain at PwC, your role will involve delivering assurance services over clients" digital environment, encompassing processes, controls, cyber security measures, data and AI systems, and associated governance. The objective is to aid organizations and stakeholders in building trust in their technology while adhering to relevant regulations. Your role emphasizes building meaningful client relationships, as well as learning to effectively manage and motivate others. As you navigate through increasingly complex situations, you are expected to establish your personal brand, enhance your technical expertise, and identify your strengths. Anticipating the needs of both your teams and clients, quality delivery is key. Embracing ambiguity, you thrive in situations where the path forward may not be clear, asking questions and leveraging such opportunities for personal growth. To excel in this role, you should possess a diverse skill set, including: - Responding effectively to diverse perspectives, needs, and emotions of others. - Utilizing a wide array of tools, methodologies, and techniques to generate innovative ideas and solve problems. - Employing critical thinking to dissect complex concepts. - Understanding the broader objectives of projects or roles, and how your work contributes to the overall strategy. - Developing a deeper comprehension of the evolving business context. - Using self-reflection to enhance self-awareness, strengthen your strengths, and address areas for improvement. - Analyzing data to derive insights and formulate recommendations. - Upholding professional and technical standards, including adherence to specific PwC tax and audit guidance, the firm's code of conduct, and independence requirements. Minimum qualifications for this role include being a Chartered Accountant/CPA, Certified Information Systems Auditor (CISA), or holding a Bachelor's degree in various fields such as accounting, finance, management information systems, economics, business administration, engineering, mathematics, statistics, or other relevant disciplines. A minimum of 4+ years of relevant experience is required. Preferred candidates will possess: - Knowledge and understanding of auditing methodology. - Experience in conducting IT Audits on SAP ERP, including familiarity with T-Code, tables used for data extraction, and ITGC and ITAC testing. - Proficiency in testing ITGCs related to systems development, change management, computer operations, and program/data access. - Experience in performing walkthroughs (Test of design and Operating Effectiveness) and testing key reports to address risks related to Information Produced by Entity (IPE's). - Understanding of SAP S4 Hana/SAP ECC user access security architecture (Roles, profiles, Authorization objects). - Strong communication skills. - Ability to operate independently based on the level, including managing both upwards and downwards, with project management skills. - Preference will be given to candidates with experience in Big 4 or equivalent firms.,

Position Purpose A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical & Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications(if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certificationin IT Audit - CISA (Certified Information System Audit) required other IT certificationCybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential BehaviouralSkills: Communication skills - oral & written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical AbilityAbility to manage a projectAbility to manage / facilitate a meeting, seminar, committee, trainingAbility to understand, explain and support changeAbility to anticipate business / strategic evolutionEducation Level:Master Degree or equivalentExperience LevelAt least 10 years

Position Purpose The role of the Third-Party Technology Risk Management Analyst / Consultant is to implement the set of operational activities to be carried out within BNP Paribas (Group entities) to manage ICT Cyber risks for the beneficiaries of sourcing (Outsourcing, purchasing shoring) initiatives supported by ICT service providers and third parties involved in ICT projects or business projects with ICT components. She/he can operate within TPTRM scope governance, providers, beneficiaries SMEs spread throughout global region. As part of his role, she/ he will have to work closely with German stakeholders. Especially, she / he will help clients assess the risks associated to their arrangement and provide recommendations for managing those risks.. Responsibilities Direct Responsibilities Perform third-party technology risk assessments to help beneficiaries/contract owners identify and evaluate business and technology risks related to their arrangements, and provide recommendations for managing those risks Define the contractual ICT security requirements applicable to the arrangement to protect confidentiality, integrity and availability of Beneficiary data and systems Provide periodic status updates (KPIs/KRIs) including potential risks and delays to the project delivery to beneficiary project manager, conduct workshops wherever necessary Review thoroughly asset classifications and pre-existing asset related risks control responses ensuring sync with TPTRM assessments responses Select the requirements to include in the specific ICT due diligence questionnaires to be sent to the shortlisted suppliers and analyze the providers feedback Support the Beneficiary answering ICT Security questions from the provider as part of the contract negotiation process List of the risks that should be formalized in a risk management plan given the third party's answers and report on the third party's ability to manage risks Support the Beneficiary recording the arrangement data in the various Group registers (ServiceNow, RISK360, etc.) Ensure periodic review of ICT arrangements and contracted ICT services Demonstrate knowledge in one or more of the following cyber risk domains, including: Security Governance and Management, Security Policies and Procedures, Application Security Controls, Access Controls, Incident Response, Risk Management, Privacy and Data Protection, Encryption. Contributing Responsibilities Direct Responsibilities Perform third-party technology risk assessments to help beneficiaries/contract owners identify and evaluate business and technology risks related to their arrangements, and provide recommendations for managing those risks Define the contractual ICT security requirements applicable to the arrangement to protect confidentiality, integrity and availability of Beneficiary data and systems Provide periodic status updates (KPIs/KRIs) including potential risks and delays to the project delivery to beneficiary project manager, conduct workshops wherever necessary Review thoroughly asset classifications and pre-existing asset related risks control responses ensuring sync with TPTRM assessments responses Select the requirements to include in the specific ICT due diligence questionnaires to be sent to the shortlisted suppliers and analyze the providers feedback Support the Beneficiary answering ICT Security questions from the provider as part of the contract negotiation process List of the risks that should be formalized in a risk management plan given the third party's answers and report on the third party's ability to manage risks Support the Beneficiary recording the arrangement data in the various Group registers (ServiceNow, RISK360, etc.) Ensure periodic review of ICT arrangements and contracted ICT services Demonstrate knowledge in one or more of the following cyber risk domains, including: Security Governance and Management, Security Policies and Procedures, Application Security Controls, Access Controls, Incident Response, Risk Management, Privacy and Data Protection, Encryption. Contributing Responsibilities Instruct the 5 European Bank Authority ICT risks categories and follow them throughout TPTRM assessments Participate in Initialization Committee/ Validation Committee Go-Live committee for Supporting specific arrangements and results Provide support to beneficiary / contract owner to implement residual actions Facilitate the business/sponsor/beneficiary/SME decision-making with deep analysis based on relevant flagged risk families Provide support to contract owners and coordinate/ assist to ensure proper assessments are done Manage TPTRM inventory with follow-up tracker management Contribute to process improvement, upkeep with new policies, regulations, standards guidelines Technical Behavioral Competencies Functional Skills Experience in IT Risk and Cyber Security domains in a financial institution demonstrating a high-level of commitment and self-motivation. Experience in the Finance IT industry with a strong exposure to IT Operations, Application Security, and/or network administration, IPS Demonstrate knowledge of Risk Compliance, cybersecurity, cyber risk, cyber threats, Third Party Technology Risk Management/ Vendor assessments Working knowledge of global regulations, frameworks and standards (ISO, NIST, COBIT, PCI-DSS, HIPAA) and conversant in the tactics, techniques and procedures used by Risk adversaries. Demonstrates a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate. Good IT knowledge Technical : - Good understanding of organizations and IT Businesses - Good technical understanding of infrastructures and IT Security Productions and Systems - IT risk /Third Party risk analysis and management methods and should have worked on Risk Management Tools like, ServiceNow etc. - Knowledge of Cyber Resilience, IT continuity and business continuity - GRC - Governance, Risk Management and Compliance Management. - Firewall and Internet technologies; Cloud Security, Banking Tools Technologies. - Secure access control mechanisms; Encryption and Key management technics Behavioral : - Strong Communication, Analytical and problem-solving skills. - Proven organizational skills with excellent multi-tasking, result oriented and prioritization skills - Good documentation and reporting skills - Ability to work independently - Strong communication and interpersonal skills, able to communicate and relate easily with IT, Finance and back-office users - Good communication, technical writing/diagramming skills - Attention to detail and accuracy Specific Qualifications (if required) - One or more Industry-recognized information Security certifications such as CISSP, CISA, GCCC, CISM, CEH, CRISC, OSCP or Security+. - IT Security tools like Firewalls, IPS, WAF, Endpoint protection, Network security, etc. - IT Auditing (ISO27001/2, NIST 800 Series, ISO27005, ISO42001) - Regulatory Compliance MBA in Finance/Systems/IT, Masters in Technology, Bachelor of Commerce, Masters in Commerce, Bachelor in Science, Bachelor in Technology Skills Referential Behavioural Skills : (Please select up to 4 skills) Communication skills - oral written Attention to detail / rigor Ability to deliver / Results driven Creativity Innovation / Problem solving Choose an item. Choose an item. Choose an item. Transversal Skills: (Please select up to 5 skills) Analytical Ability Ability to manage a project Ability to understand, explain and support change Ability to develop and adapt a process Ability to anticipate business / strategic evolution Other/Specific Qualifications (if required) CISA/CISSP/CISM/CRISC

Position Purpose The role of the Third-Party Technology Risk Management Analyst / Consultant is to implement the set of operational activities to be carried out within BNP Paribas (Group & entities) to manage ICT & Cyber risks for the beneficiaries of sourcing (Outsourcing, purchasing & shoring) initiatives supported by ICT service providers and third parties involved in ICT projects or business projects with ICT components. She/he can operate within TPTRM scope governance, providers, beneficiaries & SMEs spread throughout global region. As part of his role, she/ he will have to work closely with German stakeholders. Especially, she / he will help clients assess the risks associated to their arrangement and provide recommendations for managing those risks.. Responsibilities Direct Responsibilities Perform third-party technology risk assessments to help beneficiaries/contract owners identify and evaluate business and technology risks related to their arrangements, and provide recommendations for managing those risks Define the contractual ICT security requirements applicable to the arrangement to protect confidentiality, integrity and availability of Beneficiary data and systems Provide periodic status updates (KPIs/KRIs) including potential risks and delays to the project delivery to beneficiary project manager, conduct workshops wherever necessary Review thoroughly asset classifications and pre-existing asset related risks & control responses ensuring sync with TPTRM assessments responses Select the requirements to include in the specific ICT due diligence questionnaires to be sent to the shortlisted suppliers and analyze the providers feedback Support the Beneficiary answering ICT Security questions from the provider as part of the contract negotiation process List of the risks that should be formalized in a risk management plan given the third party's answers and report on the third party's ability to manage risks Support the Beneficiary recording the arrangement data in the various Group registers (ServiceNow, RISK360, etc.) Ensure periodic review of ICT arrangements and contracted ICT services Demonstrate knowledge in one or more of the following cyber risk domains, including: Security Governance and Management, Security Policies and Procedures, Application Security Controls, Access Controls, Incident Response, Risk Management, Privacy and Data Protection, Encryption. Contributing Responsibilities Direct Responsibilities Perform third-party technology risk assessments to help beneficiaries/contract owners identify and evaluate business and technology risks related to their arrangements, and provide recommendations for managing those risks Define the contractual ICT security requirements applicable to the arrangement to protect confidentiality, integrity and availability of Beneficiary data and systems Provide periodic status updates (KPIs/KRIs) including potential risks and delays to the project delivery to beneficiary project manager, conduct workshops wherever necessary Review thoroughly asset classifications and pre-existing asset related risks & control responses ensuring sync with TPTRM assessments responses Select the requirements to include in the specific ICT due diligence questionnaires to be sent to the shortlisted suppliers and analyze the providers feedback Support the Beneficiary answering ICT Security questions from the provider as part of the contract negotiation process List of the risks that should be formalized in a risk management plan given the third party's answers and report on the third party's ability to manage risks Support the Beneficiary recording the arrangement data in the various Group registers (ServiceNow, RISK360, etc.) Ensure periodic review of ICT arrangements and contracted ICT services Demonstrate knowledge in one or more of the following cyber risk domains, including: Security Governance and Management, Security Policies and Procedures, Application Security Controls, Access Controls, Incident Response, Risk Management, Privacy and Data Protection, Encryption. Contributing Responsibilities Instruct the 5 European Bank Authority ICT risks categories and follow them throughout TPTRM assessments Participate in Initialization Committee/ Validation Committee & Go-Live committee for Supporting specific arrangements and results Provide support to beneficiary / contract owner to implement residual actions Facilitate the business/sponsor/beneficiary/SME decision-making with deep analysis based on relevant flagged risk families Provide support to contract owners and coordinate/ assist to ensure proper assessments are done Manage TPTRM inventory with follow-up tracker management Contribute to process improvement, upkeep with new policies, regulations, standards & guidelines Technical & Behavioral Competencies Functional Skills Experience in IT Risk and Cyber Security domains in a financial institution demonstrating a high-level of commitment and self-motivation. Experience in the Finance & IT industry with a strong exposure to IT Operations, Application Security, and/or network administration, IPS Demonstrate knowledge of Risk & Compliance, cybersecurity, cyber risk, cyber threats, Third Party Technology Risk Management/ Vendor assessments Working knowledge of global regulations, frameworks and standards (ISO, NIST, COBIT, PCI-DSS, HIPAA) and conversant in the tactics, techniques and procedures used by Risk adversaries. Demonstrates a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate. Good IT knowledge Technical : - Good understanding of organizations and IT Businesses - Good technical understanding of infrastructures and IT Security Productions and Systems - IT risk /Third Party risk analysis and management methods and should have worked on Risk Management Tools like, ServiceNow etc. - Knowledge of Cyber Resilience, IT continuity and business continuity - GRC - Governance, Risk Management and Compliance Management. - Firewall and Internet technologies; Cloud Security, Banking Tools & Technologies. - Secure access control mechanisms; Encryption and Key management technics Behavioral : - Strong Communication, Analytical and problem-solving skills. - Proven organizational skills with excellent multi-tasking, result oriented and prioritization skills - Good documentation and reporting skills - Ability to work independently - Strong communication and interpersonal skills, able to communicate and relate easily with IT, Finance and back-office users - Good communication, technical writing/diagramming skills - Attention to detail and accuracy Specific Qualifications (if required) - One or more Industry-recognized information Security certifications such as CISSP, CISA, GCCC, CISM, CEH, CRISC, OSCP or Security+. - IT Security tools like Firewalls, IPS, WAF, Endpoint protection, Network security, etc. - IT Auditing (ISO27001/2, NIST 800 Series, ISO27005, ISO42001) - Regulatory Compliance MBA in Finance/Systems/IT, Masters in Technology, Bachelor of Commerce, Masters in Commerce, Bachelor in Science, Bachelor in Technology Skills Referential Behavioural Skills : (Please select up to 4 skills) Communication skills - oral & written Attention to detail / rigor Ability to deliver / Results driven Creativity & Innovation / Problem solving Choose an item. Choose an item. Choose an item. Transversal Skills: (Please select up to 5 skills) Analytical Ability Ability to manage a project Ability to understand, explain and support change Ability to develop and adapt a process Ability to anticipate business / strategic evolution Education Level: Bachelor Degree/ Master Degree or Equivalent Choose an item. Experience Level 5-7 years and 3-5 years Choose an item. Other/Specific Qualifications (if required) CISA/CISSP/CISM/CRISC

Role & Responsibilities: Key highlights of the role are listed below (purely indicative and not limiting): This position would include the mentioned set of responsibilities but not limited to: 1. Audit Planning & Execution: Conduct risk assessments to identify key areas of risk exposure and develop annual audit plans based on identified risks and priorities. Plan and Co-ordinate for execution of internal audits across various functions and business units at different locations. Ensure completion of audit as per the Audit Plan and Schedule Conduct walkthroughs, process reviews, and control testing to assess design and operating effectiveness. Ensure adherence to RBI guidelines, PCI-DSS compliance, and other applicable regulations. 2. Risk Management & Control Evaluation: Assess the adequacy and effectiveness of internal controls, policies, and procedures. Recommend improvements to strengthen risk management, fraud detection, and loss prevention mechanisms. Evaluate credit risk models, underwriting policies, fraud management frameworks etc. Perform data analytics-driven risk assessments to identify anomalies and control gaps. 3. Reporting & Compliance: Prepare audit reports based on audit findings, and risk assessments Ensure timely follow-ups on audit recommendations and track corrective actions. Monitor compliance with regulatory frameworks (RBI, SEBI, PCI-DSS, AML/KYC, etc.). Collaborate with external auditors and regulatory bodies during inspections. 4. Stakeholder Engagement & Advisory: Act as a trusted advisor to business units on risk mitigation and process optimization. Partner with risk and compliance teams to enhance governance, risk, and compliance (GRC) frameworks. Work with IT / Information security and fraud management teams to enhance cyber risk resilience and digital payment security. Conduct stakeholder feedback surveys. 5. Continuous Improvement & Technology Integration: Leverage AI, machine learning, data analytics and automation tools for predictive risk analytics. Promote the use of data-driven audit techniques Keep up with industry trends, regulatory changes, and best practices in credit card risk management. Applicants should possess the following attributes: Strong understanding of credit card lifecycle operations, underwriting, collections, chargebacks, fraud controls, finance, risk management etc. Strong understanding of audit principles, methodology, tools, processes and standards Experience of conducting Risk Based Internal Audit Strong understanding of audit principles, methodology, tools, processes and standards (e.g., risk assessments, planning, testing, reporting and continuous monitoring; COSO, IIA standards) Knowledge of RBI regulations, AML/KYC guidelines, PCI-DSS compliance. Strong understanding of regulatory landscape in India along with hands on experience of working on regulatory matters as outlined by key regulators like RBI and SEBI Excellent analytical, problem-solving, and stakeholder management skills. Ability to present audit findings effectively to related stakeholders Ability to coach and mentor others and create an inclusive work environment for team In-depth understanding of financial instruments including equity, fixed income, derivatives, structure products and other financial products and services

Purpose of the position To conduct on-site assessments against the requirements of relevant standards or specifications To provide expertise, produce surveillance and initial assessment reports and make recommendations for certification decisions. To promote the BSI product offering and solutions to our clients with the view of improving their business performance, managing risk and Making excellence a habit Key responsibilities & accountabilities Undertake management system assessments in accordance with BSI requirements. Prepare assessment reports and deliver findings to clients to ensure client understanding of the assessment decision and clear direction to particular items of corrective action where appropriate. Recommend the issue, re-issue or withdrawal of certificates, and report recommendations in accordance with BSI policy, procedures and prescribed time frame. Lead assessment teams as required ensuring that team members are adequately briefed so that quality of service is maintained and that effective working relationships are sustained both with Clients and within the team Establish and develop an effective partnership, which secures the commercial relationship and encourages opportunities for business development and increased client satisfaction with clients in your portfolio. Provide accurate and prompt information to support services, working closely with them to ensure that client records are up to date and complete and that all other internal information requirements are met. Plan/schedule workloads to make best use of own time and maximise revenue-earning activity. Coach colleagues as appropriate especially where those members are inexperienced assessors or unfamiliar with clients' business/technology and assist in the induction and coaching of new colleagues as requested. Maintain and develop assessment skills and technical and management system standards knowledge. Provide technical support to clients through business development, sales and customer service staff Act as a brand Ambassador for BSI. This means acting ethically, following company rules and promoting BSI services to clients so they are able to optimize business performance and Make Excellence a Habit. Candidate specifications Bachelor degree or above in Engeneering . Must be a Lead Auditor certified in 27001 Added advantage to have experince and certified for BCMS, SOC, PCI-DSS Minimum 4 years working experience in IT, with 2 years work experience in IT. Commercial understanding of compliance industry, minimum 2 years quality system management Knowledge of business processes and application of quality management standards Good verbal and written communication skills and an eye for detail Be self-motivated, flexible, and have excellent time management/planning skills Can work under pressure Willing to travel on business intensively An enthusiastic and committed team player Good public speaking and business development skill will be considered advantageous