17 It Controls Jobs

Key Responsibilities: 1. IT Control Testing and Evaluation: Plan and execute control testing of ITGCs and automated application controls. Evaluate design and operating effectiveness of controls related to: User access management (IAM) Change management System development lifecycle (SDLC) Backup & recovery IT operations and infrastructure security Document testing procedures, results, and exceptions in line with ERM standards. 2. Risk and Control Self-Assessments (RCSA): Support IT RCSA activities across technology platforms and infrastructure. Identify and assess IT risks, including cybersecurity threats and third-party/vendor risks. Collaborate with IT stakeholders to remediate identified control gaps and improve IT control posture. 3. Regulatory and Framework Compliance: Ensure alignment with regulatory requirements and industry frameworks such as: SOX (Sarbanes-Oxley) FFIEC, OCC, NIST, COBIT, ISO 27001 Monitor compliance with internal IT policies, procedures, and enterprise risk tolerance. 4. Stakeholder Engagement & Collaboration: Work closely with IT, Information Security, Compliance, and Internal Audit teams. Serve as the subject matter expert (SME) on IT control testing and risk identification. Communicate findings, risks, and recommendations clearly to technical and non-technical stakeholders. 5. Reporting and Documentation: Develop testing scripts, risk-control matrices, and evidence documentation. Prepare executive-level reports highlighting key findings, trends, and remediation status. Track control testing progress and report deviations from expected timelines or outcomes. 6. Continuous Improvement: Stay current with technology risk trends, emerging threats, and evolving compliance standards. Recommend enhancements to IT control testing methodologies, tooling, and governance processes. Key Qualifications: Education: Bachelors degree in Information Technology, Computer Science, Cybersecurity, Risk Management, or related fields. Advanced certifications are a plus. Certifications (preferred): CISA (Certified Information Systems Auditor) CRISC (Certified in Risk and Information Systems Control) CISSP, CGEIT, or ITIL certifications Experience: 810 years in IT risk management, internal audit, or control testing within financial services or technology-driven environments. Technical Skills: Strong knowledge of ITGCs, application controls, and system security principles Hands-on experience with GRC platforms (e.g., Archer, MetricStream, ServiceNow GRC) Familiarity with scripting or automation tools for testing/reporting is a plus Proficient in Excel, Power BI, or Tableau for data analysis and reporting Please share your cv at surbhi.malhotra@nlbtech.com

Role & responsibilities Conduct audits of IT systems, applications, and infrastructure. Evaluate IT policies, procedures, and controls for effectiveness and compliance. Identify security vulnerabilities and risks in IT systems. Prepare audit reports and recommend improvements. Support compliance efforts (e.g., SOX, GDPR, ISO 27001). Collaborate with IT, security, and business teams to remediate findings.

Work Location:- Bangalore / Hyderabad / Pune / Gurgaon Experience:- 4 - 10 yrs Leavel- AM/Manager JD Job Requirements Design and execute the day-to-day activities of Information Technology (IT) audit engagements, with a focus on strategic, operational and regulatory/compliance related risks Plan activities related to development of audit program, and execution of internal audits and IT control assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, General Information Technology Controls (GITCs) and application controls, and regulatory/compliance requirements Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management Contribute to IT Audit knowledge base and internal practice development initiatives Supervise and provide performance management for IT audit staff working on assigned engagements Write and present clear and concise reports and presentations containing meaningful observations and recommendations to clients, and document procedures performed and conclusions reached related to projects Support proposal and business development activities by assisting in the identification of new target clients, building business relationships with key executives, and developing/presenting proposals Provide oversight and leadership to team members regarding deliverables, project plans, and performance management while contributing to industry and regulatory publications, writing professional and thought leadership articles, and speaking at related conferences and seminars Mandatory technical & functional skills Bachelor's degree in an appropriate field from an accredited college/university; Master's degree from an accredited college/university is preferred Prior knowledge leading and executing risk-based IT-related internal audits and/or risk and control assessments, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs Experience with IT Risk Management and three lines of defense frameworks CISA, PMP, CISSP or CRISC certification is preferred

Job Title: Senior Analyst IT Risk and Compliance Location: Chennai Department: IT Risk & Compliance Reports To: Manager, IT Risk and Compliance Job Type: Full-Time Job Summary We are seeking a highly motivated and detail-oriented IT Compliance Analyst to join our Risk & Compliance team. The ideal candidate will be responsible for performing comprehensive IT compliance assessments, testing IT general controls and IT Automated controls and ensuring the organization adheres to internal policies and external regulatory requirements, including Sarbanes-Oxley (SOX). This role plays a critical part in maintaining a strong internal control environment and driving process improvement across the organization. Key Responsibilities Assist in planning and scoping IT compliance and internal control assessments. Identify risk areas and develop internal control testing programs. Perform end-to-end IT compliance assessments, including evaluating effectiveness of risk and control frameworks. Test IT General Controls (ITGCs) across domains like change management, logical access, SDLC and IT operations. Assess IT Automated Controls across business functions such as payroll, inventory, and revenue. Document control walkthroughs using narratives and flowcharts. Develop, maintain, and present compliance workpapers and reports highlighting control deficiencies and recommendations. Collaborate with management to communicate findings and ensure timely remediation of audit issues. Support external audit activities by coordinating information requests and walkthroughs. Stay up to date with regulatory and industry developments in IT compliance and risk management. Engage in continuous improvement efforts to enhance the efficiency and effectiveness of compliance processes. Qualifications Bachelor's degree in Information Technology, Computer Science etc. Professional certification (or working towards) such as CISA, CRISC, CISSP, or CISM preferred. 7–10 years of experience in IT audit, compliance, or risk management; minimum 3-5 years in a Big 4 or similar professional services firm preferred . Strong understanding of IT infrastructure, applications, and enterprise systems. Knowledge of Sarbanes-Oxley (SOX), ITGCs, automated controls, and internal control principles. Experience with audit and compliance tools (e.g., eAudit, Auditboard, or equivalent). Ability to understand cross-functional business processes and their integration with IT systems. Strong interpersonal, communication, and report-writing skills. Able to work independently and collaboratively under tight deadlines. Demonstrated sound judgment, critical thinking, and attention to detail. Preferred Skills Hands-on experience in documenting business processes and identifying control gaps. Ability to present findings to senior stakeholders and recommend practical remediation steps. Familiarity with GRC platforms and data analytics tools. Understanding of global business practices and regulatory environments.

Dear Candidate, We are hiring an IT Compliance Analyst to ensure adherence to regulatory standards and internal security policies. Perfect for detail-oriented professionals with a risk and governance mindset. Key Responsibilities: Monitor IT processes for compliance with SOX, GDPR, HIPAA, etc. Conduct audits, risk assessments, and gap analyses Collaborate with security, legal, and IT teams Maintain documentation and support policy enforcement Required Skills & Qualifications: Knowledge of IT compliance frameworks (ISO 27001, NIST, COBIT) Experience with audit processes and risk management Strong communication and analytical skills Bonus: Certification (CISA, CRISC, or similar) Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Work Location:- Bangalore / Hyderabad / Pune / Gurgaon Experience:- 1.5 - 4.5 years JD Roles & responsibilities Responsible for delivering IT Risk & Controls, Assessments/Audits, and Compliance Security Assessments around IT and Business processes. Working with the organization onshore counterparts as part of project/engagement delivery. Supporting client service delivery by consistently meeting quality standards within the established turnaround time and allotted budget for the project. Ensuring personal and the team's compliance with the applicable Organization Risk Management policies & Organization proprietary tools. Mandatory technical &functional skills Control assurance and Risk Management Compliance- Security Assessments IT Internal/External Audit engagements Experience on Control testing of IT Application Controls (ITAC), IT General Controls (ITGC), and Business process controls. - MANDATE Must have significant experience, in depth knowledge and expertise in at least one of the SAP functional modules (SAP PTP, RTR, MM, SD, FICO, etc.) , SAP HANA dB, SAP S/4 Hana ERP. Must have a strong Business process understanding and have the ability to identify risks and control weaknesses and gaps. Experience on Functional testing, Control gap analysis and SDLC reviews. Knowledge of security measures and auditing practices within various operating systems, Applications, and databases. Personal drive and positive work ethic to deliver results within tight deadlines and in demanding situations Flexibility to adapt to a variety of engagement types, working hours and work environments and locations

Greetings of the day ! Our reputed MNC Client is hiring for Senior IT Auditor role: Shift: Shift starts from 11:30 AM, however, due to nature of work and reporting to US , there might be some hours out of normal shift timings. Notice Period: Upto 60 days Roles and Responsibilities Assist the IT Audit manager in audit engagement planning activities for IT SOX Assessment. Lead a team of 2-3 IT auditors for executing tests of design and operating effectiveness. Monitor audit task assignments and drive completion. Lead conversations with stakeholders and auditees during process walkthroughs. Identify control gaps and accordingly provide recommendations in areas requiring improvement based on tests conducted. Conduct reviews of audit workpapers and provide constructive feedback to team members. Monitor status of audit documentation requests and perform timely escalations, as needed. Work closely with stakeholders to communicate audit status, follow-up requests and audit findings. Provide necessary support to external auditors. Qualifications: Bachelor's degree in accounting, Computer Science, Information Systems or related field. Skills Big 4 experience and IT Auditing experience is a must Team management of minimum 4-5 members. Strong communication & stakeholder management. Thanks & Regards, Gayatri Kumari Email id: gayatri@v3staffing.in V3 Staffing Solutions India P. Ltd.

Qualification and Minimum Entry Requirements B.Tech (IT/CSE) with 8+ Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients. Position and Key Responsibilities As a Manager in RSMs growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization. Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating control’s design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions Review and complete status documents for client delivery Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education

Job Requirements Design and execute the day-to-day activities of Information Technology (IT) audit engagements, with a focus on strategic, operational and regulatory/compliance related risks Plan activities related to development of audit program, and execution of internal audits and IT control assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, General Information Technology Controls (GITCs) and application controls, and regulatory/compliance requirements Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management Contribute to IT Audit knowledge base and internal practice development initiatives Supervise and provide performance management for IT audit staff working on assigned engagements Write and present clear and concise reports and presentations containing meaningful observations and recommendations to clients, and document procedures performed and conclusions reached related to projects Support proposal and business development activities by assisting in the identification of new target clients, building business relationships with key executives, and developing/presenting proposals Provide oversight and leadership to team members regarding deliverables, project plans, and performance management while contributing to industry and regulatory publications, writing professional and thought leadership articles, and speaking at related conferences and seminars Mandatory technical & functional skills Bachelor's degree in an appropriate field from an accredited college/university; Master's degree from an accredited college/university is preferred Prior knowledge leading and executing risk-based IT-related internal audits and/or risk and control assessments, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs Experience with IT Risk Management and three lines of defense frameworks CISA, PMP, CISSP or CRISC certification is preferred Key behavioral attributes/requirements Ability to work well independently as well as part of a team Driven and enthusiastic with a can-do attitude and a strong sense of ownership to get the job done in a pragmatic fashion

Job Title: Associate Consultant / Consultant / Assistant Manager - IT Audit & ITAC (Code Review) Location: Bangalore, India Experience: 1 to 6 years Education: BE/B.Tech (Mandatory) About the Role KPMG India is hiring professionals for its IT Audit practice in Bangalore. This role involves delivering high-impact ITGC, ITAC, and code review assignments for clients across industries. We're looking for individuals who bring technical expertise, an understanding of IT controls, and familiarity with code and automation. Key Responsibilities - Conduct IT General Controls (ITGC) and IT Application Controls (ITAC) reviews as part of audit and advisory engagements. - Evaluate and test at least three key ITAC modules, such as: - Input Controls - Processing Controls - Output Controls - Interface Controls - Access and Authorization Controls - Review application logic and perform code review activities to validate system control implementations and assess secure coding practices. - Identify control gaps and risks, and provide practical, risk-based recommendations for improvement. - Collaborate with cross-functional teams to deliver quality outcomes on time. - Prepare documentation, working papers, reports, and presentations to share with clients and internal stakeholders. Required Skills & Experience - 1-3 years (Associate Consultant) / 3-5 years (Consultant) / 5-6 years (Assistant Manager) of experience in: - IT Audit - Hands-on ITGC and ITAC testing (Mandatory) - Minimum 3 ITAC module implementations or testing - Exposure to code logic and secure coding practices; code review experience preferred. - Technical knowledge or working experience with one or more of the following: - Java, Python, C, C++, C#, SQL - Strong documentation and analytical skills, and a detail-oriented approach. Preferred Certifications (Nice to Have) - CISA, ISO 27001 LA, or similar industry certifications

Manager-Internal Audit & Manager / AM - IT Audit - BIG4 Global - Bangalore

To qualify for the role, you must have A bachelors or master’s degree and approximately 3-8 years of related work experience At least 3+ years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML

As a part of RSM's growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization. Qualification and Minimum Entry Requirements Chartered Accountant with relevant 3 to 5 years' experience in SSAE 18, SOC reports, IT General Controls and IT Application Controls. Candidate should have basic to intermediate knowledge of financials, operations and technology and its related risks Candidate should have basic knowledge for SOC 1, SOC 2, IT General Controls, and IT Application Controls Qualified to pursue a job-relevant certification (CIA, CISA) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as the position requires frequent communications with RSM International clients Key Responsibilities Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the industry leading frameworks and methodologies for Sarbanes-Oxley, COSO, COBIT Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating control's design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB's and work as a team in providing an integrated service delivery Ensure professional development through ongoing education Open to work on other solution sets considering business requirements.

Location: Remote / Pan India- Delhi / NCR,Bangalore/Bengaluru,Hyderabad/Secunderabad,Chennai,Pune,Kolkata,Ahmedabad,Mumbai Timezone: IST (Overlapping US timezone for Stand-up calls) Duration: 3-6 month to start with (extendable) iSource Services is hiring for one of their client for the position of CPQ BA. About the Role - We are looking for a CPQ Business Analyst with strong knowledge of Quote to Cash, Service Contracts, and Entitlement processes using SFDC and NetSuite. The ideal candidate will have prior experience with CPQ Cloud, a good understanding of the Opportunity to Invoice process, and strong functional knowledge of SFDC. Have prior experience of CPQ cloud (mandatory for CPQ BAs). Good understanding in Opportunity to Invoice process Good functional knowledge about SFDC system Strong knowledge on Quote to Cash,Service contract,Entitlement using SFDC and NS. Translate the requirement to the technical team. Facilitate User Testing, Planning and execution. Good listener, Willing to learn new things and thrive in a fast paced team environment Work closely with global and regional stakeholders, development teams, and architects to solve business problems Writing user stories, acceptance criteria as per business needs Driving Agile modeling sessions and leading the sprint demos and backlog grooming sessions Manage customer relationships and day-to-day interactions & escalations. Develop business case documents, business processes diagrams, and use cases Analyze business requirements perform gap analysis and root cause analysis Work with cross-functional teams to identify dependencies Ensure compliance with SOX, business controls, and IT general controls

We are seeking a highly skilled Senior Audit Manager - IT to join our internal audit team. The role requires expertise in IT auditing within the financial services industry, overseeing audit engagements, evaluating IT risks, and ensuring compliance with industry standards. This is an excellent opportunity for professionals looking to lead audit initiatives in a dynamic and growing global organization. Key Responsibilities: - Support the Head of IT Audit in managing the IT Audit portfolio, risk universe sections, risk assessments, and audit planning. - Take ownership of an assigned sub-portfolio, including oversight and audit strategies. - Plan audit engagements, coordinate audit team activities, and identify key risks while ensuring the quality of audit documentation. - Evaluate principal IT risks and design effective strategies to test key controls. - Execute and document audit work, ensuring adherence to internal audit methodology and standards. - Escalate issues identified during audits and interact with stakeholders to develop solutions. - Maintain constructive relationships with stakeholders to facilitate smooth audit planning and execution. - Follow up on audit issues to ensure satisfactory closure of Management Action Plans, including testing of remediated controls. - Support the Audit Directors in preparing governance committee reports, including reports for the Audit Committee and Risk Committee. - Provide leadership to junior team members by mentoring, coaching, and fostering professional development. - Drive engagement, motivation, and career growth for staff within the team. Job Requirements: - Extensive IT internal audit experience in the financial services industry. - Strong expertise in IT audit disciplines, including: - IT General Control auditing within banking - Integrated business application control auditing - Use of Data Analytics in Internal Audit - Familiarity with Agile auditing principles - Experience in Cyber Security, IT Infrastructure, Financial Crimes Systems Audit, etc. - Mandatory experience in the Third Line of Defense (Internal Audit) function, ensuring independent risk assessment and control testing. - Proven ability to lead and mentor teams while ensuring high-quality audit execution. - Excellent communication and stakeholder management skills. - Ability to work in a dynamic and fast-paced environment. If you are an experienced IT audit professional looking to make a significant impact, we invite you to apply for this exciting opportunity.

EYGDS is actively seeking seasoned Transformation Risk professionals to join our team. Experience required - 3 to12 years Locations - Gurgaon, Bangalore, Pune, Chennai, Hyderabad, Noida, Pune, Kochi, Trivandrum & Kolkata Required Skills: Bachelor's or Master's degree in Information Technology, Computer Science, Risk Management, or a related field. Minimum of 5 years of experience in technology risk management, with a focus on transformation projects. Strong understanding of IT governance frameworks (e.g., COBIT, ITIL), cybersecurity principles, and data privacy regulations (e.g., GDPR, CCPA). Desired experience in Internal controls within SAP ECC/S4 Applications and their integrations and strong understanding of IT application controls, IT general controls and interface controls Professional certifications such as CRISC, CISM, CISSP, or equivalent are highly desirable. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.

EYGDS is actively seeking seasoned ITGC professionals to join our team. Experience required - 3 to12 years Locations - Gurgaon, Bangalore, Pune, Chennai, Hyderabad, Noida, Pune, Kochi, Trivandrum & Kolkata Required Skills: Experience in reviewing and controls testing of SAP S4 Hana / SAP ECC including IT general controls (ITGC) and IT Application Controls (ITAC) pre & post implementation reviews migration testing. Security & configurations such as debugging, client settings, etc. Understanding of the TCode, tables used to extract the data from SAP S4 Hana / SAP ECC with relation to ITGC and ITAC testing. Understanding of SAP S4 Hana / SAP ECC user access security architecture (Roles, profiles, Authorization objects). Good to have certifications on SAP S4Hana/ SAP ECC security or business modules, CISA, CISSP