41 It Audits Jobs

As a Cybersecurity professional specializing in Third Party Risk Management (TPRM), you will utilize your expertise and skills to ensure the security of third-party relationships. With over 4 years of experience in TPRM and a strong background in IT Audits and Cloud security, you will play a crucial role in managing risks associated with external vendors and suppliers. Your responsibilities will include implementing and conducting audits based on ISO22301 standards, as well as assessing and mitigating risks related to third-party relationships. Preferred certifications such as CBCI, CBCP, ISO22301 LI or LA, Offensive Security Certified Professional, and CISA will be valuable assets in this role. Your understanding of vendor risk management considerations and knowledge of Data Protection & Privacy risks will be essential in developing and implementing relevant control frameworks. Excellent written and verbal communication skills, along with the ability to create comprehensive documentation and engaging presentations, will be key in effectively communicating risk-related information. Your motivation to work in both local and global environments, as well as your experience in Infrastructure/Application Security, IT Audit, and Information Risk Management, will contribute to the success of our cybersecurity initiatives. Moreover, possessing security certifications like CISSP, CISA, CISM, CEH, and ISO27001 will further enhance your qualifications for this role. Your ability to thrive in a cross-functional, cross-cultural matrix environment, coupled with your proactive approach to cybersecurity, will make you a valuable asset in our team dedicated to safeguarding our organization against cyber threats.,

Genpact is a global professional services and solutions firm, with over 125,000 employees in 30+ countries driven by curiosity, agility, and a desire to create value for clients. The company serves leading enterprises, including the Fortune Global 500, with expertise in digital operations, data, technology, and AI. Genpact is inviting applications for the position of Director - Insurance Technology Risk & Compliance Expert in Enterprise Risk Consulting. In this role, you will utilize your domain knowledge of the insurance industry, familiarity with technology platforms, and expertise in compliance and regulations in the US and Europe to enhance the ERC Insurance practice. Your responsibilities will include understanding industry trends, identifying areas for improvement in client business technologies, developing tailored solution offerings, ensuring regulatory compliance, managing audits, supporting governance frameworks, engaging in business development activities, and contributing to knowledge management sessions within the practice. Qualifications we seek in you include a minimum qualification of MBA/Post Graduate/CA, experience in the insurance industry or BIG 4 Insurance Practice, and preferred certifications such as CISA, CISSP, CISM, CRISC, CCSK, among others. Preferred qualifications encompass a range of skills including IT audits, IT general controls testing, IT application controls testing, IT compliance and regulatory reporting, knowledge of US and Europe insurance regulations, project management skills, excellent communication and presentational skills, and a solution-based approach to problem-solving techniques. Additionally, strong written and verbal communication skills, the ability to interact with senior management, and a self-starter attitude are essential for this role. The primary location for this position is in India-Gurugram, and the educational requirement is a Bachelor's degree or equivalent. The job posting date is April 17, 2025, and the job category is Full-Time.,

As an Internal Audit Manager, your primary responsibility will be to oversee and lead various audit programs focused on IT and IT Security. You will be tasked with developing and enhancing audit methodologies and checklists to align with industry best practices. Your role will involve spearheading audits related to Information Technology General Controls, Change Management, Application Development, Incident Management, Network Management, Vulnerability Assessment, and Cybersecurity. It will be essential to ensure that audits are conducted within the defined scope and completed on time. You will play a crucial role in overseeing and conducting a diverse range of audits, including operational, financial, IT, and compliance audits. Your strategic oversight and mentorship to audit teams will be vital in upholding and surpassing quality standards. Collaborating with process owners to design and implement effective controls to mitigate identified risks will be a key aspect of your role. Furthermore, meticulous documentation and continuous compliance with re-performance standards will be necessary by reviewing and updating work papers in the central repository. Tracking and reporting on the implementation of audit recommendations, engaging with stakeholders, and conducting thorough evaluations of processes, policies, SOPs, and applications to identify potential risks will be part of your responsibilities. You will be required to independently draft comprehensive audit reports, facilitate discussions with stakeholders, and build and maintain strong relationships with key stakeholders. Your role will encompass providing strategic support to the Chief Internal Auditor in various areas such as reporting, budgeting, project management, recruitment, and global reporting initiatives. Actively participating in key organizational initiatives, facilitating learning and development opportunities, driving risk awareness and control mindset, and supporting internal transformations for the IA function will also be essential aspects of your job. To excel in this position, you will need to possess essential qualifications such as CA, CIA, MBA, B.Tech, or B.E. from a recognized institution, along with professional credentials demonstrating expertise in IT audits. Additionally, technical proficiency, team management skills, analytical capabilities, independence, exceptional communication skills, strong leadership qualities, business acumen, and motivation are desired skills for this role. Experience or familiarity with AI, machine learning, cybersecurity principles, and practices will be advantageous. Your ability to leverage emerging technologies to enhance audit processes and risk assessments will be beneficial in driving the tech transformation within the Internal Audit function.,

About the Role: We are seeking a qualified and experienced IT professional to join our growing team in Chandigarh. As a member of our team, you will be tasked with conducting IT audits, performing risk assessments, and ensuring robust IT governance across different engagements. This position will involve collaborating with enterprise clients and may entail occasional travel. Key Responsibilities: - Lead and support IT audits across various business functions. - Conduct detailed risk assessments and devise appropriate mitigation strategies. - Implement and oversee IT governance frameworks that adhere to regulatory standards. - Collaborate closely with business and technical teams to guarantee compliance and uphold security best practices. - Document audit findings, prepare comprehensive reports, and present recommendations to stakeholders. - Stay abreast of the latest developments in cybersecurity, risk management, and compliance landscapes. Required Skills & Qualifications: - Bachelor's or Master's degree in Information Systems, Technology, or related fields. - Possession of at least one of the following certifications: DISA (ISA-qualified for CAs), CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), CGEIT (Certified in the Governance of Enterprise IT). - Strong familiarity with ITGC, SOX, ISO 27001, and other regulatory frameworks. - Proficiency in risk evaluation methodologies, IT control testing, and audit documentation. - Excellent communication skills and the ability to effectively present findings to leadership. - Readiness to travel as needed. Why Join Us: - Opportunity to contribute to impactful projects spanning diverse industries. - Engage in a collaborative and dynamic professional environment. - Competitive compensation commensurate with experience and certification levels. - Gain exposure to enterprise-level audit and risk ecosystems.,

Job Description Job Description Role: Audit & Complaince Location: Bangalore Full/ Part time: Full time Build a career with confidence Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we&aposve led in inventing new technologies and entirely new industries. Today, we continue to lead because we have a world-class, diverse workforce that puts the customer at the center of everything we do About The Role We are seeking a highly skilled and experienced DT Compliance Lead to join our team, within Cyber Security function in Carrier, the ideal candidate will have a strong background in IT audits, compliance, and risk management. This is an individual contributor role that requires a proactive and detail-oriented professional to manage and support various compliance and audit activities. The individual will be responsible for governance and oversight of enterprise-wide SOX IT control program to mitigate the risk of material omissions, errors or weaknesses in our technology and security controls. The position requires a combination of strong program management and leadership skills, along with broad technical knowledge and subject-matter expertise in IT audits and compliance. This individual will be responsible for managing SOX compliance expectations with our key stakeholders including control owners, senior/executive management, and internal/external auditors. Key Responsibilities Oversee program management for all activities including planning, scoping, audit fieldwork, issue identification, reporting, and remediation of issues. Develop an intimate understanding of Carriers business processes and the role of technology in meeting business objectives including key IT processes, automations, reports, data flows, and interfaces. Maintain SOX IT documentation, liaise with internal and external auditors, and provide guidance and support to technology control owners on control design, audit requirements, and issue remediation. Conduct internal audits to assess the effectiveness of internal controls and compliance with policies and regulations. Coordinate and support external audits, including providing necessary documentation and information. Evaluate IT control deficiencies for impact and perform root cause analysis to determine appropriate management actions. Monitor managements remediation efforts to closure, including review of supporting evidence. Serve as subject matter expert and advise on the SOX compliance implications of technology related changes to the business such as new product lines, new system implementations etc. Develop a continuous monitoring program with an emphasis IT controls automation. Develop metrics, reporting and dashboards to track SOX IT control effectiveness and ensure process efficiency, and that risks are being appropriately tracked, communicated and managed. Continually identify opportunities to benchmark controls, automate control testing and streamline manual efforts to increase efficiency and reduce cycle times. Stay current on new technical literature applicable to the internal control process (e. g., PCAOB guidance, SEC, COSO, COBIT, etc.) and maintain awareness of emerging trends and best practices around technology and security controls. Successfully partner with and manage executive level stakeholders, PMOs & Working Groups with Domestic & International cross-functional teams. Create and deliver DT SOX Compliance training materials to key stakeholders. Provide guidance and support to other teams on compliance-related matters. Prepare and present reports on compliance activities and findings to senior management. Requirment Minimum 8-10 years of experience in IT audits, compliance, and risk management. Full-time Bachelors degree in IT, Computer Science or equivalent. Certifications such as CISA, CISM, or CISSP or similar professional certifications are highly desirable. Demonstrated success and understanding of accepted frameworks such as, ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework. Advanced knowledge of SOX IT requirements, COSO/CoBIT framework and PCAOB standards, and in-depth experience with testing general IT and application controls, segregation of duties (SoD) rules, reports and interfaces. ServiceNow GRC preferred. Excellent analytical and problem-solving skills. Excellent written and verbal communication skills, strong interpersonal skills and the ability to communicate technical concepts effectively across functions and all levels of management. Highly motivated self-starter with a meticulous attention to detail and bias to action, who is eager to put his/her stamp on our rapidly increasing compliance footprint. Ability to work independently and manage multiple priorities. Detail-oriented with a high level of accuracy., or accounting. Key Attributes Forward-thinking mindset with strong digital acumen. Ability to collaborate across business, legal, and engineering functions. Strong sense of ethics, accountability, and customer trust. Excellent communication and stakeholder influence capabilities. Benefits We are committed to offering competitive benefits programs for all of our employees, and enhancing our programs when necessary. Make yourself a priority with flexible schedules, parental leave Drive forward your career through professional development opportunities Achieve your personal goals with our Employee Assistance Programme Our commitment to you Our greatest assets are the expertise, creativity and passion of our employees. We strive to provide a great place to work that attracts, develops and retains the best talent, promotes employee engagement, fosters teamwork and ultimately drives innovation for the benefit of our customers. We strive to create an environment where you feel that you belong, with diversity and inclusion as the engine to growth and innovation. We develop and deploy best-in-class programs and practices, providing enriching career opportunities, listening to employee feedback and always challenging ourselves to do better. This is The Carrier Way. Join us and make a difference. Apply Now! Carrier is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class. Job Applicant&aposs Privacy Notice Click on this link to read the Job Applicant&aposs Privacy Notice Show more Show less

Job Description Job Description Role: Audit & Complaince Location: Bangalore Full/ Part time: Full time Build a career with confidence Carrier Global Corporation, global leader in intelligent climate and energy solutions is committed to creating solutions that matter for people and our planet for generations to come. From the beginning, we&aposve led in inventing new technologies and entirely new industries. Today, we continue to lead because we have a world-class, diverse workforce that puts the customer at the center of everything we do About The Role We are seeking a highly skilled and experienced DT Compliance Lead to join our team, within Cyber Security function in Carrier, the ideal candidate will have a strong background in IT audits, compliance, and risk management. This is an individual contributor role that requires a proactive and detail-oriented professional to manage and support various compliance and audit activities. The individual will be responsible for governance and oversight of enterprise-wide SOX IT control program to mitigate the risk of material omissions, errors or weaknesses in our technology and security controls. The position requires a combination of strong program management and leadership skills, along with broad technical knowledge and subject-matter expertise in IT audits and compliance. This individual will be responsible for managing SOX compliance expectations with our key stakeholders including control owners, senior/executive management, and internal/external auditors. Key Responsibilities Oversee program management for all activities including planning, scoping, audit fieldwork, issue identification, reporting, and remediation of issues. Develop an intimate understanding of Carriers business processes and the role of technology in meeting business objectives including key IT processes, automations, reports, data flows, and interfaces. Maintain SOX IT documentation, liaise with internal and external auditors, and provide guidance and support to technology control owners on control design, audit requirements, and issue remediation. Conduct internal audits to assess the effectiveness of internal controls and compliance with policies and regulations. Coordinate and support external audits, including providing necessary documentation and information. Evaluate IT control deficiencies for impact and perform root cause analysis to determine appropriate management actions. Monitor managements remediation efforts to closure, including review of supporting evidence. Serve as subject matter expert and advise on the SOX compliance implications of technology related changes to the business such as new product lines, new system implementations etc. Develop a continuous monitoring program with an emphasis IT controls automation. Develop metrics, reporting and dashboards to track SOX IT control effectiveness and ensure process efficiency, and that risks are being appropriately tracked, communicated and managed. Continually identify opportunities to benchmark controls, automate control testing and streamline manual efforts to increase efficiency and reduce cycle times. Stay current on new technical literature applicable to the internal control process (e. g., PCAOB guidance, SEC, COSO, COBIT, etc.) and maintain awareness of emerging trends and best practices around technology and security controls. Successfully partner with and manage executive level stakeholders, PMOs & Working Groups with Domestic & International cross-functional teams. Create and deliver DT SOX Compliance training materials to key stakeholders. Provide guidance and support to other teams on compliance-related matters. Prepare and present reports on compliance activities and findings to senior management. Requirment Minimum 8-10 years of experience in IT audits, compliance, and risk management. Full-time Bachelors degree in IT, Computer Science or equivalent. Certifications such as CISA, CISM, or CISSP or similar professional certifications are highly desirable. Demonstrated success and understanding of accepted frameworks such as, ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework. Advanced knowledge of SOX IT requirements, COSO/CoBIT framework and PCAOB standards, and in-depth experience with testing general IT and application controls, segregation of duties (SoD) rules, reports and interfaces. ServiceNow GRC preferred. Excellent analytical and problem-solving skills. Excellent written and verbal communication skills, strong interpersonal skills and the ability to communicate technical concepts effectively across functions and all levels of management. Highly motivated self-starter with a meticulous attention to detail and bias to action, who is eager to put his/her stamp on our rapidly increasing compliance footprint. Ability to work independently and manage multiple priorities. Detail-oriented with a high level of accuracy., or accounting. Key Attributes Forward-thinking mindset with strong digital acumen. Ability to collaborate across business, legal, and engineering functions. Strong sense of ethics, accountability, and customer trust. Excellent communication and stakeholder influence capabilities. Benefits We are committed to offering competitive benefits programs for all of our employees, and enhancing our programs when necessary. Make yourself a priority with flexible schedules, parental leave Drive forward your career through professional development opportunities Achieve your personal goals with our Employee Assistance Programme Our commitment to you Our greatest assets are the expertise, creativity and passion of our employees. We strive to provide a great place to work that attracts, develops and retains the best talent, promotes employee engagement, fosters teamwork and ultimately drives innovation for the benefit of our customers. We strive to create an environment where you feel that you belong, with diversity and inclusion as the engine to growth and innovation. We develop and deploy best-in-class programs and practices, providing enriching career opportunities, listening to employee feedback and always challenging ourselves to do better. This is The Carrier Way. Join us and make a difference. Apply Now! Carrier is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class. Job Applicant&aposs Privacy Notice Click on this link to read the Job Applicant&aposs Privacy Notice Show more Show less

Maintain an accurate inventory of all devices. Use asset management software to track the number of devices. Perform asset tagging and verification for all IT equipment, ensuring accurate records in the asset management system. Conduct regular audits of IT assets to verify inventory accuracy and compliance. Setup new IT infrastructure and upgrade existing system as required. Maintain records of device assignments and track changes. Ensure all asset information is up-to-date and accurately recorded in the asset management system. Generate reports on asset status, usage, and lifecycle for management review. Ensure all devices comply with organizational policies and industry standards. Manage warranties and service agreements for devices. Report any issues or discrepancies to the IT Asset SR Manager in a timely manner. Install and configure hardware and software, including desktops, laptops, servers, printers, and network devices. Address issues related to device performance and availability. Manage the lifecycle of IT assets from procurement to disposal Efficient and accurate installation and configuration of IT systems. High levels of client satisfaction through effective communication and timely issue resolution. Accurate asset tagging, verification, and inventory management. Minimal downtime and optimal performance of IT systems and networks. Timely completion of scheduled maintenance and updates. Successful resolution of technical issues within defined service level agreements (SLAs). Effective training and support provided to clients, enhancing their IT proficiency. Compliance with company policies, procedures, and industry standards. Effective collaboration with other IT team members and departments. Continuous improvement of IT processes and procedures based on feedback and best practices. Effective management of IT projects from planning to execution and post-implementation review. High accuracy in maintaining and updating IT asset management records. Proactive identification and mitigation of potential IT risks and vulnerabilities. Successful execution of IT audits and compliance checks. Positive feedback from clients and colleagues on performance and professionalism. Achievement of key performance indicators (KPIs) related to service delivery and client satisfaction. Efficient use of resources and cost-effective management of IT assets. Successful implementation of new IT solutions and technologies. Contribution to the development of IT strategies and initiatives. Maintenance of a secure and compliant IT environment. Bachelors degree in information technology, Computer Science, or a related field. Overall, 5 7 Years of IT experience. Proven experience in IT support, field engineering, or a similar role. Experience in asset tagging and verification is highly desirable. The leading financial institution in MENA While more than half a century old, we proudly think like a challenger, startup, and innovator in banking and finance, powered by a diverse and dynamic team who put customers first. Together, we pioneer key innovations and developments in banking and financial services. Our mandate To help customers find their way to Rise Every Day, partnering with them through the highs and lows to help them reach their goals and unlock their unique vision of success. Delivering superior service to clients by leading with innovation, treating colleagues with dignity and fairness while pursuing opportunities that grow shareholders value. We actively contribute to the community through responsible banking in our mission to inspire more people to Rise. Show more Show less

Job Responsibilities : Candidate with 5+ years of experience into Global IT Security & Governance. Relevant experience 5+ years in Information Security Officer, ISO 27001 Implementation or Auditor, Information Security Office (ISO), IT Policies, IT Audits, IT process, IT reporting, technology risk assessment, Controls Implementation, Risk Assessment, Control Review, Control Testing, Governance, GRC, 2nd Line of Defence and Corporate IT Security, Controls Implementation. Develop, implement and maintain IT governance strategies, policies and framework to ensure the effective management of IT system and processes. Planning and managing IT expense and IT investment budget. Monitoring all IT related processes to ensure compliance with laid down local and global IT policies. Provide advisory to other verticals of IT on any IT policy compliance related matters. Acting as SPOC for all captive IT project approvals, reporting requirement and other consultations with Head Office. Conducting internal technical audits to measure compliance for security process and standards. Drive continuous improvement initiatives to enhance the effectiveness and efficiency of IT governance processes and controls. Handling security governances including Contract review, Security Control Identification, Risk Assessment, Monitoring compliance etc Contact Person - Hemalatha Email id- hemalatha@gojobs.biz

As a System Engineer with 3+ years of experience in Bangalore, you will be responsible for managing IT hardware assets, maintaining policies and processes, leading a team, planning and implementing asset lifecycle strategies, optimizing hardware usage and costs, and handling acquisition, deployment, tracking, and disposal of IT assets. You will also be required to conduct IT audits, manage compliance, interpret KPIs and SLAs, and work collaboratively in a team as well as independently. Your role will require a BE/BTECH degree with a minimum of 3 years of experience in IT Asset Lifecycle & Invoice Management. You should possess a strong knowledge in Hardware Asset Management (HAM) and Expense Management, excellent communication skills, experience with IT audits (ISO20K, 27K), compliance management, expertise in MS Excel, and knowledge of ServiceNow. Personal attributes that will contribute to your success in this role include being detail-oriented, able to multitask and prioritize, having strong English skills, and being willing to work extra during crises. If you meet the mandatory skills and qualifications for this position and are interested in applying, please share your CV along with the required details to daina.r@infosys.com. To apply, kindly provide the following details: - Name - Contact Number - Email I'd - DOB - Total Years of Exp - Relevant Years of Exp - Current/ Previous Company Name - Notice Period - Current Location - Preferred Location - Current CTC - Expected CTC - Flexible for shifts - Graduation - Post-Graduation (If applicable) Your interest and reference will be highly appreciated.,

Minimum 3+yrs experience in Information Technology Infrastructure, Information Security, IT Audits etc Experience in managing Information Security Management, GRC, Cyber, System & ISO Audits. Good knowledge of SEBI Cyber Security & NCIIPC guidelines. Required Candidate profile Exposure on ISO 27001, ISO 22301, ISO 9001, NIST framework. Good interpersonal,communication, documentation & presentation skills. Track compliance /regulatory requirements & ensure on time reporting. Perks and benefits To be disclosed post interview

The Divisional Risk and Control Analyst for TDI Control Testing & Assurance in Pune, India, plays a crucial role in ensuring the effective operation of infrastructure functions within the Infrastructure Chief Operating Office (COO). The primary focus is on driving operational efficiency while supporting the delivery of infrastructure services in alignment with business objectives and control requirements. The role involves overseeing the Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). As part of the Infrastructure COO, the Infrastructure Divisional Control Office (IDCO) serves multiple functions within the infrastructure domain. It is a dedicated risk, control, and regulatory oversight function responsible for managing and proactively mitigating risks across the Technology and Infrastructure organization. The IDCO also provides a centralized view of non-financial risks, ensuring effective standards and policies are consistently implemented. The TDI Control Testing & Assurance team, a part of IDCO, is responsible for identifying, tracking, and reporting control testing and assurance activities. This team conducts independent controls testing on various risk types according to Control Testing Standards, with a focus on regulatory and risk-based assurance requirements. The Divisional Risk and Control Analyst will be part of this team. Key Responsibilities: - Conduct control testing in line with Control Testing methodology/minimum standards. - Identify control deficiencies, escalate potential issues to senior management, and prepare detailed workpapers documenting testing results. - Track and follow up on identified findings, ensuring compliance with regulatory and internal firm policy requirements. - Support controls assurance activities and monitor adherence to Control Testing methodology/minimum standards. - Build strong relationships with key stakeholders across different teams and divisions. Skills and Experience: - University degree in Computer Science, Mathematics, Engineering, or related fields. - Professional certifications such as CISA, CISSP, CISM, CRISC are beneficial. - Experience in Cloud Security audit/testing or related certifications like CCSP, CCSK would be advantageous. - Strong knowledge of IT application controls auditing, IT risk management, and financial regulations. - Excellent communication, organizational, and analytical skills with the ability to work under pressure and prioritize workload effectively. The role offers training, development, coaching, and support to help excel in the career. The culture promotes continuous learning, collaboration, and a range of flexible benefits tailored to individual needs. Deutsche Bank Group fosters a culture of empowerment, responsibility, commercial thinking, and collaboration. The company welcomes applications from diverse backgrounds, promoting a positive and inclusive work environment.,

As a Team Leader based in Bengaluru, you will play a crucial role in establishing and leading a dedicated team within our Center of Excellence (CoE) focused on testing IT general controls and IT automated application controls. Your primary responsibility will involve managing a team dedicated to testing internal controls to ensure controls assurance for our Financial Services entities in the UK and Ireland. You will be the subject matter expert advising the Risk team on controls design, deficiencies evaluation, and process improvements based on best practices and regulatory expectations. Your dynamic personality and ability to adapt to a fast-paced environment are essential for success in this role. Key responsibilities of the role include: - Managing and guiding a team of testers to facilitate their professional development - Taking ownership of team results and providing leadership to achieve targets and deadlines - Supporting the end-to-end testing cycle by designing and executing testing activities of IT general controls and IT automated application controls - Analyzing and interpreting information to assess testing areas and documenting findings clearly - Identifying gaps in design and execution, communicating issues, and making recommendations to the IC&A team and control owners - Developing and maintaining comprehensive documentation, including process walkthroughs and control testing documentation - Collaborating with IC&A to strengthen internal controls, mitigate risks, and support the business in achieving objectives - Building partnerships with various departments and constantly seeking improvements in processes and controls - Participating in recruitment and onboarding processes for new team members The ideal candidate for this role will possess: - 5-8 years of experience in IT compliance, internal controls, internal/external audit, with experience leading teams in an international setting - Strong background in regulatory compliance audits (including SOx) and internal control testing - Experience in designing and testing IT general controls and IT automated application controls - Knowledge of interface controls, Continuous Control Monitoring (CCM), and risk management frameworks like SOx, COSO, NIST, COBIT - Strong stakeholder management and project management skills - Ability to multitask, manage priorities effectively, and make decisions independently - Professional certification such as CISA/CRISC and a relevant Bachelor's degree - Experience in auditing SAP or other ERPs, IT controls in a cloud-native environment, and reviewing source code in languages like Python, Java, C++, SQL - Experience in technology-based product development, DevOps processes, and cloud audit would be advantageous If selected for this position, your personal data may be subject to pre-employment screening checks as permitted by applicable law, including employment history, education, and other necessary information to assess your qualifications and suitability for the role.,

As an IT Auditor, you will be responsible for conducting and overseeing IT audits to ensure efficiency and compliance within the organization. You will guide the team in reviewing deliverables and implementing best practices to maintain the integrity of the IT systems. Your role will involve analyzing IT processes, identifying risks, and providing recommendations for improvement. Additionally, you will be required to stay updated on industry trends and regulations to enhance the overall audit process. Overall, your contribution will play a vital role in safeguarding the organization's IT infrastructure and promoting a secure working environment.,

Perform independent appraisals of the adequacy and effectiveness of Technology controls. Review controls in the areas such as Network Security, Cloud Technology, IT Infrastructure, IT Application controls, Cyber Security, Business continuity & Disaster recovery, IT Architecture, DevOps etc. Provide timely reports to the Head of Department on the results of audits, examinations and investigations of IT function. Role & Responsibilities: Internal Audit Plan Conduct technology focused audits independently. Ensure timely completion of audits based on annual audit Plan and perform adhoc reviews with adequate risk coverage. Understand systems and processes to identify risks. Control design adequacy and operating effectiveness assessment as per standard process Report audit findings to stakeholders and agree on action plans. Monitoring and tracking closure of open audit observations Help stakeholders with recommendations to mitigate risks / issues identified Maintain audit documentation as per established processes. Contribute to the continuous improvement of Internal Audit and control processes Stakeholder Management Collaborate with the teams / stakeholders for better understanding of the business and smooth execution of audit deliverables Coordination with Enterprise Risk Management team (2nd line of defense) Responsible for managing multiple priorities, deadlines and quality deliverables and participate in cross functional teams (CFTs) and make notable contribution for overall success of the Project. Team Management Provide technical assistance and subject-matter expertise to team members in designing risk universe and identifying new risk areas. Responsible for coaching, mentoring, and developing career paths for direct reports Preferred Candidate Profile: CISA/ CISSP / CEH - Preferred 10+ years of IT Internal Audit to review risks and assess controls in areas such as Cyber Security, Business Continuity & Disaster recovery, ITGC, IT infrastructure, Cloud Technology, ISO27001 etc

Role Description ISMS or Third-Party Risk Assessments Lead engagement team in delivering client engagements Support Managers/AD/D in assessment/ audit execution, reporting, quality review and tracking Support Managers/AD/D in responding to RFP, proposals, new opportunities Lead discussions with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations Flexible to step-in and perform work on ground such as conducting risk assessments and audits with respect to people, process and technology Act as subject matter expert (SME) for providing guidance and share knowledge with team members. Assist team members during engagements Should be able to work as independently on short term engagements Perform quality reviews of work performed by team members Desired qualifications 6+ Relevant years of experience in Third party risk management Relevant years of experience in IT Audits, Cloud security Experience with ISO22301 implementation and audits Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment Understanding of Third party/vendor/supplier risk management considerations Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management Excellent written/verbal communication Excellent documentation and presentation skills Highly motivated and willing to work in local and global environments Security certifications like CISSP, CISA, CISM, CEH, ISO27001 Work experience in Infrastructure / Application Security Work experience in IT Audit Work experience in Information Risk Management Location and way of working Base location: Bengaluru , KA This profile involves frequent / occasional travelling to client locations OR this profile does not involve extensive travel for work. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs.

Independently execute technology audit assignments including Cloud security, Cyber security, Data privacy, Business Continuity, IT Application controls, IT Planning, Implementation, Operations, Contract evaluations, Network Perimeter DMZ Security, Enterprise Architecture, etc. Financial and IT application experience (like CBS, Mob Banking app, SAP, etc.). Evaluation of control design and operating effectiveness, documentation of Standard Operating Procedures and flowcharts. Identify and evaluate risk areas covering processes related to Applications, Network and IT systems and provide comprehensive input to risk-based plan. Conduct process reviews through stakeholder interviews, data validations, and document analysis. Prepare detailed audit documentation including Audit report, working papers, process analysis, case study, and process benchmarking. Support in preparation of audit committee decks and reports. Desired Candidate Profile: A degree in information technology/computer information systems or related. 2 to 8 years of experience in IT audits / InfoSec audits. Excellent oral, written, and communication skills. Certifications like CISA, CISSP, CISM, ISO27001 LA (preferred).

Desired qualifications 3+ Relevant years of experience in Third party risk management Relevant years of experience in IT Audits, Cloud security Experience with ISO22301 implementation and audits Preferred certifications CBCI / CBCP / ISO22301 LI or LA Offensive Security Certified Professional, CISA to work in a cross-functional, cross-cultural matrix environment Understanding of Third party/vendor/supplier risk management considerations Knowledge of Data Protection & Privacy related risks associated with Third-Party and relevant control frameworks for Third party risk management Excellent written/verbal communication Excellent documentation and presentation skills Highly motivated and willing to work in local and global environments Security certifications like CISSP, CISA, CISM, CEH, ISO27001 Work experience in Infrastructure / Application Security Work experience in IT Audit Work experience in Information Risk Management We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. In addition to living our purpose, Senior Executive across our organization must strive to be: Inspiring - Leading with integrity to build inclusion and motivation Committed to creating purpose - Creating a sense of vision and purpose Agile - Achieving high-quality results through collaboration and Team unity Skilled at building diverse capability - Developing diverse capabilities for the future Persuasive / Influencing - Persuading and influencing stakeholders Collaborating - Partnering to build new solutions Delivering value - Showing commercial acumen Committed to expanding business - Leveraging new business opportunities Analytical Acumen - Leveraging data to recommend impactful approach and solutions through the power of analysis and visualization Effective communication Must be well abled to have well-structured and well-articulated conversations to achieve win-win possibilities Engagement Management / Delivery Excellence - Effectively managing engagement(s) to ensure timely and proactive execution as well as course correction for the success of engagement(s) Managing change - Responding to changing environment with resilience Managing Quality & Risk - Delivering high quality results and mitigating risks with utmost integrity and precision Strategic Thinking & Problem Solving - Applying strategic mindset to solve business issues and complex problems Tech Savvy - Leveraging ethical technology practices to deliver high impact for clients and for Deloitte Empathetic leadership and inclusivity - creating a safe and thriving environment where everyone's valued for who they are, use empathy to understand others to adapt our behaviours and attitudes to become more inclusive.

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Job Description At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Technology Risk Senior Manager As an IT risk professional, you'll contribute technically to risk assurance client engagements and internal projects. An important part of your role will be to perform IT audits, document good quality assessment reports and issue opinions. You'll anticipate and identify risks within engagements and share any issues with the audit stakeholders. You'll also identify potential business opportunities for EY within existing engagements and facilitate integration as appropriate. In line with EY's commitment to quality, as an influential member of the team - you'll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We're looking for experienced staff with 10+ years of hands-on experience in IT Risk/Audit, Assurance, and Advisory to join our Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your key responsibilities Participate, lead and execute the IT Risk and Assurance engagements Develop and maintain productive working relationships with client and onshore stakeholders Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress Help prepare reports and schedules that will be delivered to clients and other parties Develop and maintain productive working relationships with client personnel Build strong internal relationships within Ernst & Young Services and with other services across the organization Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Skills and attributes for success Work effectively as a team player - collaborate and share responsibility, coach, and support team members to succeed To qualify for the role, you must have B.E/B.Tech (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc., Chartered Accountant and/or MBA with Finance/IT with at least 10+ years of experience 1-3 years of professional experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC1, SOC2, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits Expertise in pre and post implementation reviews and auditing configuration of major ERPs like SAP, Oracle, JDE, WorkDay, Netsuite, Navision etc. Expertise in performing infrastructure reviews pertaining to OS, DB and Active Directory such as Windows, UNIX, SQL, Mainframe, Oracle etc. Assist with the development of policies, procedures and standards that meet existing and newly developed policy and regulatory requirements Assist with facilitating IT security/risk training curriculum. Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Must have end-client facing experience Ideally, you'll also have CISA, CISM, CRISC, ISO27001, Cloud and Data privacy certifications IT audit knowledge for a financial audit - Control frameworks such as COSO, related regulations including SOX and J-SOX Data analytics/automation tool SQL, Monarch, BluePrism, Alteryx, PowerBI Familiarity with a typical IT systems development life cycle What working at EY offers At EY, we're dedicated to helping our clients, from startups to Fortune 500 companies and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that's right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Job description At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Technology Risk Senior As an IT risk professional, you'll contribute technically to risk assurance client engagements and internal projects. An important part of your role will be to perform IT audits, document good quality assessment reports and issue opinions. You'll anticipate and identify risks within engagements and share any issues with the audit stakeholders. You'll also identify potential business opportunities for EY within existing engagements and facilitate integration as appropriate. In line with EY's commitment to quality, as an influential member of the team - you'll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We're looking for experienced staffs with 1 to 3 years of hands-on experience in IT Risk/Audit, Assurance and Advisory to join our Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your key responsibilities Participate, lead and execute the IT Risk and Assurance engagements Develop and maintain productive working relationships with client and onshore stakeholders Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress Help prepare reports and schedules that will be delivered to clients and other parties Develop and maintain productive working relationships with client personnel Build strong internal relationships within Ernst & Young Services and with other services across the organization Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Skills and attributes for success Work effectively as a team player - collaborate and share responsibility, coach, and support team members to succeed To qualify for the role, you must have B.E/B.Tech (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc., Chartered Accountant and/or MBA with Finance/IT with at least 1-3 years of experience 1-3 years of professional experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC1, SOC2, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits Expertise in pre and post implementation reviews and auditing configuration of major ERPs like SAP, Oracle, JDE, WorkDay, Netsuite, Navision etc. Expertise in performing infrastructure reviews pertaining to OS, DB and Active Directory such as Windows, UNIX, SQL, Mainframe, Oracle etc. Assist with the development of policies, procedures and standards that meet existing and newly developed policy and regulatory requirements Assist with facilitating IT security/risk training curriculum. Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Must have end-client facing experience Ideally, you'll also have CISA, CISM, CRISC, ISO27001, Cloud and Data privacy certifications IT audit knowledge for a financial audit - Control frameworks such as COSO, related regulations including SOX and J-SOX Data analytics/automation tool SQL, Monarch, BluePrism, Alteryx, PowerBI Familiarity with a typical IT systems development life cycle

You will be part of the KPMG Resource Centre (KRC) team, which consists of over 3,000 colleagues dedicated to serving audit clients primarily from KPMG Europe and a few other countries. The services provided by KRC include end-to-end Audits, IT Audits, Data Analytics, Engagement Support Hub, Transaction Assurance, and ESG, among others. Our business supports multiple sectors and currently operates in Bengaluru, Gurugram, Noida, and Mumbai.,

You will be part of the KPMG Resource Centre (KRC), a team comprising of over 3,000 colleagues dedicated to serving audit clients primarily in KPMG Europe and select other countries. Within KRC, services offered encompass a wide range including end-to-end Audits, IT Audits, Data Analytics, Engagement Support Hub, Transaction Assurance, and ESG, among others. The business caters to various sectors and currently operates in Bengaluru, Gurugram, Noida, and Mumbai.,

The IT Application Owner (ITAO) is responsible for the Application Management of a single or a portfolio of applications in Pune, India. The ITAO must ensure that the application(s) are enhanced and maintained in accordance with the Banks IT Security Risk and Compliance requirements of the client and other stakeholders as included in the application strategy and service levels. Additionally, the ITAO identifies and manages the risks and issues associated with the application(s) and escalates them appropriately. As part of the flexible scheme offered, benefits include a best in class leave policy, gender-neutral parental leaves, 100% reimbursement under childcare assistance benefit, sponsorship for industry-relevant certifications and education, Employee Assistance Program, comprehensive hospitalization insurance, accident and term life insurance, and complementary health screening for individuals above 35 years. The primary responsibilities of an IT Application Owner include managing disaster recovery activities, remediation of gaps in application lifecycle management activities, handling application-related risk and compliance evaluation tasks, managing IT security incidents, planning and managing application events and database events monitoring, managing application capacity forecasting and monitoring, planning and managing application user access related tasks, infrastructure activities, planning for application hardware/software/license upgrades or migration activities, coordinating with internal and external stakeholders and vendors, and interfacing with auditors for IT audits and self-identified issues. ITAO should have basic technical capabilities and infrastructure knowledge, onboard applications onto Deutsche Bank's IT risk and control related tools, interface with auditors for audits and risk reduction, identify gaps in IT risk and control based on application knowledge, and remediate IT-related audit findings and issues. Training, development, coaching, and support are provided to help employees excel in their careers within a culture of continuous learning. Deutsche Bank Group promotes a positive, fair, and inclusive work environment and welcomes applications from all individuals. Visit the company website for further information: https://www.db.com/company/company.htm.,

As a global leader in assurance, tax, transaction and advisory services, we hire and develop the most passionate people in their field to help build a better working world. This starts with a culture that believes in giving you the training, opportunities and creative freedom. At EY, we don't just focus on who you are now, but who you can become. We believe that its your career and It’s yours to build’ which means potential here is limitless and we'll provide you with motivating and fulfilling experiences throughout your career to help you on the path to becoming your best professional self. FS : Amid comprehensive regulatory change, today’s financial services institutions are focusing on digital transformation, convergence and disruption from an array of non traditional competitors — all while meeting greater demands for trust and transparency. To address this delicate balance of issues, our proficient team of business strategists, technologists and industry leaders bring fresh thinking and sector knowledge across banking and capital markets, insurance, and wealth and asset management. The results are seamless collaboration, innovative problem solving, breakthrough performance gains and sustainable value creation. We recruit, train and foster a diverse set of people who give their minds to building the future of financial services. Together, we explore new perspectives with innovative and innovative thinking to deliver exceptional client service and ensure that what we do today, counts for tomorrow. ASU - TR - Technology Risk : Assurance’s purpose is to inspire confidence and trust to enable a complex world to work. We do so by protecting and serving the public interest, promoting transparency, supporting investor confidence and economic growth and fostering talent to provide future business leaders. We help clients by: 1) Ensuring their accounts comply with the requisite audit standards 2) Providing a robust and clear perspective to audit committees and 3) Providing critical information for stakeholders. Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS & US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting & implementation support etc. Your key responsibilities Technical Excellence Experience of working on FS clients is preferred IT audits including statutory and internal audits IT General Controls (ITGC) testing IT Application Controls (ITAC) testing / IT Automated Business Controls testing IT Infrastructure risks and control assessments IT SOX 404 SOC1, SOC2 audits and reporting IT Compliance and regulatory reporting Risk and control assessments considering emerging technologies such as cloud, RPA, AI/ML, Blockchain etc Certifications preferred: CISA, CISSP, CISM, CRISC, CCSK and others (if relevant). Skills and attributes To qualify for the role you must have Qualification BE/ B.Tech,, or MSC in Computer Science/Statistics or M.C.A or MBA in Finance or IT What we look for People with the ability to work in a collaborative manner to provide services across multiple client departments while following the commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. We look for people who are agile, curious, mindful and able to sustain postivie energy, while being adaptable and creative in their approach. What we offer With more than 200,000 clients, 300,000 people globally and 33,000 people in India, EY has become the strongest brand and the most attractive employer in our field, with market-leading growth over compete. Our people work side-by-side with market-leading entrepreneurs, game- changers, disruptors and visionaries. As an organisation, we are investing more time, technology and money, than ever before in skills and learning for our people. At EY, you will have a personalized Career Journey and also the chance to tap into the resources of our career frameworks to better know about your roles, skills and opportunities. EY is equally committed to being an inclusive employer and we strive to achieve the right balance for our people - enabling us to deliver excellent client service whilst allowing our people to build their career as well as focus on their wellbeing. If you can confidently demonstrate that you meet the criteria above, please contact us as soon as possible.

You will be joining the KPMG Resource Centre (KRC), a team consisting of over 3,000 colleagues dedicated to serving audit clients primarily in KPMG Europe and a few other countries. The services provided by KRC include end-to-end Audits, IT Audits, Data Analytics, Engagement Support Hub, Transaction Assurance, and ESG, among others. The business caters to multiple sectors and currently operates in Bengaluru, Gurugram, Noida, and Mumbai.,

The KPMG Resource Centre (KRC) is a team of over 3,000 colleagues dedicated to serving audit clients primarily from KPMG Europe and a few other countries. KRC offers a wide range of services including end-to-end audits, IT audits, data analytics, engagement support hub, transaction assurance, and ESG, among others. The business caters to multiple sectors and currently operates in Bengaluru, Gurugram, Noida, and Mumbai. As a member of the team, you will have the opportunity to build a global network and explore new possibilities. You will have access to extensive support, resources, and an inclusive environment that fosters growth and enables you to achieve your full potential. Join us at KPMG Resource Centre and embark on a rewarding career journey.,