5 It Frameworks Jobs

As a Specialist - Cyber Security at Accelya in Mumbai, you will play a critical role in implementing and managing the company's information security strategy. Your responsibilities will include focusing on security architecture and engineering, compliance, risk management, and serving as a business security liaison when necessary. You will work closely with various departments to ensure the security of the company's information assets and compliance with relevant regulations and standards. In terms of Security Architecture and Engineering, you will be responsible for maintaining and implementing the security architecture framework to ensure the integrity, confidentiality, and availability of information assets. This will involve overseeing the implementation of security solutions such as network security, endpoint security, and cloud security. You will collaborate with IT and engineering teams to integrate security best practices into system and application development. Additionally, you will perform regular scans for PCI compliance and share periodical reports related to vulnerabilities with other teams for necessary follow-up. Regarding Compliance and Risk Management, you will ensure compliance with relevant regulations, standards, and frameworks like PCI DSS, GDPR, ISO 27001, and NIST. You will participate in and conduct regular security assessments and audits to identify vulnerabilities and recommend remediation actions. Moreover, you will develop and maintain incident response plans and coordinate responses to security incidents. To qualify for this role, you should possess a Bachelor's degree in Information Technology, Computer Science, Information Security, or a related field. A Master's degree is preferred. Professional certifications such as CC, CEH, CompTIA Network+, CCNA, CISSP, CISM, CRISC, or similar are highly desirable. You should have a minimum of 6 years of experience with at least 1 year in information security and at least 3 years in a network engineer or software developer role. Additionally, you should have experience managing vulnerability platforms for internal and external scanning, overseeing deployment of relevant scanning appliances, and a strong understanding of engineering, IT frameworks, standards, and regulations. Accelya offers an open culture, challenging opportunities, flexible working hours, a smart working environment with hybrid remote/office arrangements, work-life balance, and an excellent, dynamic, multicultural atmosphere. It is an Equal Opportunity employer. Accelya is a leading global software provider to the airline industry, supporting over 200 airlines with an open, modular software platform that enables innovative airlines to drive growth, delight customers, and take control of their retailing. With over 2,000 employees across 10 global offices and owned by Vista Equity Partners, Accelya partners with industry leaders to deliver leading-edge technologies and enable innovation-led growth for the airline industry. For more information, please visit www.accelya.com. Join us at Accelya and be a part of shaping the future of the air transport industry!,

As an Analyst, Risk & Control in the Center of Excellence at Booking Holdings India, your role will involve supporting the Risk & Control team with SOx testing of IT General Controls and Application controls. Your primary responsibility will be to conduct internal control testing to facilitate SOX302 attestation. You will serve as a subject matter expert, providing guidance to the Risk team on controls design, evaluation of deficiencies, and enhancements across various processes from a SOx testing perspective. It is essential for you to possess a dynamic personality and the ability to adapt to a rapidly changing environment. Key responsibilities will include: - Designing and executing day-to-day testing activities of IT and application controls, focusing on regulatory/compliance (SOX) risks - Analyzing information to assess and conclude on each assigned testing area with clear documentation - Identifying gaps in design and execution, and communicating issues and recommendations to the R&C team and control owners - Developing and maintaining comprehensive documentation including process walkthrough documentation and control testing documentation - Collaborating with the R&C team to ensure critical SOx controls are well-designed and documented to strengthen the control environment and support business objectives - Participating in efforts to continuously improve R&C capabilities and governance related to SOx testing The ideal candidate for this role should have: - Strong background in IT Risk Management, IT Frameworks, Governance, and Controls, with at least 4 years of experience in IT compliance, internal controls, or internal/external audit - Experience in designing and/or testing IT General Controls and automated process controls - Familiarity with risk management fields and frameworks such as SOx, COSO, NIST, and COBIT - Proficiency in English (both written and spoken) and the ability to work independently while being a team player - Relevant professional certification (e.g., CPA/ACCA/CISA/CRISC) would be advantageous - A Bachelor's degree in a related field is required Preferred qualifications include experience in designing or testing controls for in-house built software, technology-based product development/DevOps processes, or working in large e-commerce or tech companies. Booking Holdings is a global leader in online travel services, offering seamless technology across brands like Booking.com, KAYAK, Priceline, Agoda, Rentalcars.com, and OpenTable. By joining our diverse team, you will contribute to our mission of making travel more accessible and enjoyable for customers worldwide. We value inclusivity and strive to create an environment that fosters innovation, creativity, and collaboration. Booking Holdings is an Equal Employment Opportunity employer that welcomes all job seekers, including individuals with disabilities and veterans. If you require reasonable accommodation during the application process, please contact reasonableaccommodation@bookingholdings.com. Please note that if your application is successful, pre-employment screening checks may be conducted by a third party in accordance with applicable laws to verify your qualifications and suitability for the position.,

Your day at NTT DATA The Senior Infrastructure and Operations Engineer is an advanced subject matter expert, responsible for ensuring the availability of the infrastructure service platforms and/or software. This role responds to situations where standard procedures have failed to fix problems in non-functioning infrastructure service platforms and/or software. This role designs system configurations, documents and manages the installation of a new network, and maintains and upgrades existing systems as necessary and later support the operation of overall IT services offered by the company. What youll be doing Key Responsibilities: Performs operational tasks to resolve all incidents / requests in a timely manner and within agreed Service Level Agreement (SLA). Update tickets with resolution tasks performed. Maintains network and services availability by performing maintenance and health checks. Supports, assists or leads engineering, design and problem isolation. Provides third level support to all incidents, requests and identify the root cause of incidents and problems. Communicates with other teams and clients for extending support. Executes changes with clear identification of risks and mitigation plans to be captured into the change record. Escalates all tickets to seek right focus from other teams, if needed continue the escalations to management. Establishes monitoring for platform infrastructure. Leads and manages all initial client escalation for operational issues. Contributes to the change management process by logging all change requests with complete details for standard and non-standard including patching and any other changes to Configuration Items. Ensures all changes are carried out with proper change approvals. Plans and executes approved maintenance activities. Performs any other related task as required. Knowledge and Attributes: Advanced knowledge in Microsoft Solutions, i.e. design and implementation of Windows Server platforms, Office 365 migrations, Active Directory, Group Policy, System Centre Configuration. Advanced understanding of network switches, network routing, MPLS, network administration, network integration, network security and network advancement. Advanced knowledge in architecture, design, configuration, and deployment within the Microsoft Azure platform. Advanced understanding of server and desktop hardware/operating systems, networks, firewalls. Excellent oral, written and presentation communication skills. Advanced knowledge of IT infrastructure management processes, techniques, risks and best practices. Advanced knowledge of infrastructure technologies such as system management, system/network administration and development. Advanced knowledge of server administration, data center operations, project and change management principles and practices. Ability to facilitate discussions in order to address emerging problems and opportunities. Ability to handle multi-task, set priorities and meet deadlines. Advanced knowledge and understanding of information systems technology areas. Academic Qualifications and Certifications: Bachelors degree or equivalent in Information Technology or a related field. Relevant certifications such as CCIE/CCNP/ITIL/COBIT/PMP/CISA/CISM certifications. Required Experience: Advanced experience in similar IT roles, with a focus on IT infrastructure engineering and operations. Proven working experience in a large-scale organization. Advanced experience with IT frameworks ITIL, MoF, CoBIT, Run SAP. Advanced experience supporting IT infrastructure and service delivery. Advanced experience working with vendors and/or service providers. Advanced experience, judgment and drive to plan, make decisions and accomplish individual and team goals. Advanced experience working in a team-oriented, collaborative environment. Workplace type On-site Working

About The Role We are now looking for a Specialist, Risk Control (RC) in our CoE to support RC with SOx testing of IT General Controls and Application controls. You will be directly working on testing internal controls to support SOX302 attestation. The RC IT SOx Specialist is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from SOx testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. B. responsible: key areas of responsibility will include, but are not limited to: Support testing end to end: Design and execute the day-to-day testing activities of IT and application controls, with a focus on regulatory/compliance (SOX) related risks Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation Identify gaps in design and execution, and communicate issues and recommendations to RC team and control owners Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required Collaborate and partner with RC by providing guidance and ensuring that critical SOx controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives Collaborate participate within RC to continuously improve the RCs capabilities and governance from SOX testing standpoint B. skilled: The ideal candidate will have a strong background in IT Risk Management, IT Frameworks, Governance and Controls, Segregation of Duties 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience leading teams in an international environment Strong experience with designing and/or testing IT General Controls and automated process controls Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT Strong working knowledge of SOX Ability to multitask and successfully manage multiple priorities and projects Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team Able to work independently autonomously, while still being a strong team player Fully comfortable working in English, both written and spoken Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage Relevant Bachelors degree required Preferential: Experience designing and/or testing controls around in-house built software Experience in technology-based product development / DevOps processes Experience in large e-commerce or tech companies Experience in auditing SAP or other ERPs Key Skills Strong working knowledge of SOx Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment Strong understanding of design assessment and operating effectiveness assessment ofIT controls, and interface controls.

The R&C IT Analyst is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. B. responsible: key areas of responsibility will include, but are not limited to: Execute and lead testing end to end for the assigned areas: Design and execute the day-to-day testing activities of IT controls, with a focus on regulatory/compliance related risks Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation Identify gaps in design and execution, and communicate issues and recommendations to R&C team and control owners Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required Collaborate and partner with R&C by providing guidance and ensuring that critical IT controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives Collaborate & participate within R&C to continuously improve the R&Cs capabilities and governance from an IT testing standpoint B. skilled: The ideal candidate will have a strong background in IT risk management, IT frameworks, governance and controls, Segregation of Duties, and ERP audits. 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment Strong understanding of design assessment and operating effectiveness assessment of IT controls, and interface controls. Experience in technology-based product development / DevOps processes, cloud security and other modern day technologies Understanding of different architecture (SOA and micro services), and ability to review source codes is an added advantage. Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT working knowledge of SOx an advantage Ability to multitask and successfully manage multiple priorities and projects Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team Excellent communication skills to interact with audit teams, management and other stakeholders effectively Ability to work effectively in a virtual environment Fully comfortable working in English, both written and spoken Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage Relevant bachelors degree required Experience working with a Big4 is preferred Key Skills Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment Design and execute the day-to-day testing activities of IT controls, with a focus on regulatory/compliance related risks