127 It Governance Jobs - Page 4

Dear Candidate, We are looking for a skilled IT Security Compliance Analyst to ensure security policies align with industry regulations. This role requires conducting risk assessments, policy development, and maintaining regulatory compliance frameworks. Key Responsibilities: Ensure security policies align with industry regulations (ISO 27001, NIST, GDPR, HIPAA, SOC 2). Conduct internal security audits and risk assessments to identify compliance gaps. Develop security policies, standards, and compliance documentation. Monitor and enforce regulatory compliance across all IT security operations. Coordinate with external auditors for security compliance certifications. Provide guidance and training to employees on compliance requirements. Investigate compliance violations and recommend corrective actions. Required Skills & Qualifications: Strong knowledge of risk management, security audits, and compliance frameworks. Experience with GRC (Governance, Risk, and Compliance) tools (RSA Archer, OneTrust). Ability to interpret and apply security regulations and industry best practices. Experience conducting security awareness training for compliance adherence. Familiarity with PCI DSS, SOX, and industry-specific security regulations. Soft Skills: Strong problem-solving and analytical skills. Excellent communication skills to work with cross-functional teams. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality solutions Note: If you are interested, please share your updated resume and suggest the best number & time to connect with you. If your resume is shortlisted, one of the HR from my team will contact you as soon as possible. Srinivasa Reddy Kandi Delivery Manager Integra Technologies

Experience: 10- 12 yrs Responsibilities : Establishing a strong Cloud Governance Framework is essential for any organisation that uses Public Cloud for hosting Services or using vendor Software As A Service (SaaS). The role will be responsible for working with IT teams across Nomura Group to ensure we have a Cloud Governance Process that incorporates responsibilities including the design, implementation, and ongoing compliance of the Nomura Public Cloud Policy. The CBO Lead will help: Determine the objectives for the process along with Nomura s GCGC. Design and implement the Cloud Governance framework. Establish and maintain the Governance structure, roles and processes for cloud services using industry best practices. Provide leadership and guidance to IT teams on aspects of compliance within Nomura Group. Monitor and evaluate the performance and conformance of cloud services and capabilities producing metrics to confirm adherence. Identify and manage the risks and issues related to cloud adoption and usage. Communicate and collaborate with stakeholders from business, IT, corporate functions across Nomura Group, as well as external partners and vendors on cloud governance matters. Skills and qualifications: A bachelor s degree in computer science, information systems, or a related field, or equivalent work experience. A strong knowledge and experience in IT Governance frameworks, principles and practices, as well as the related policies standards and guidelines. A good knowledge and experience in cloud computing concepts, technologies, platforms and regulatory requirements. A strong leadership and management skills, with the ability to lead motivate teams, manage projects and resolve conflicts. A strong communication and interpersonal skills, with the ability to communicate effectively with technical and non-technical audience, as well as influence and negotiate with stakeholders. A certification in cloud computing, such as AWS, Azure, or Google Cloud is desirable A certification in IT Governance such as CGEIT, CISA or RISC is desirable.

The Cloud Governance Manager - IT Risk role at IndusInd Bank involves overseeing key operations, ensuring compliance, and driving business growth. Responsibilities include managing customer interactions, improving service efficiency, and coordinating with various teams to achieve operational excellence. The ideal candidate should possess strong analytical skills, excellent communication, and a proactive approach to problem-solving. Prior experience in a similar role is preferred. Candidates must demonstrate leadership qualities and adaptability to dynamic banking environments. This position offers a great opportunity to grow within the banking sector.

About the role We are now looking for a Senior Manager in the Internal Control Assurance team, who will be responsible for the governance, monitoring and continuous improvement processes that will enable the further strengthening and expansion of the Control Assurance Function into a value creating capability aligned to Bookings vision and strategy. The Senior Manager Control Assurance is a strong people manager who will be responsible for managing a team of three to four managers, as well as the assurance team of 20-30 individuals. who have been positioned to set Risk Function up for success for the future by driving operational excellence, establishing the gold standard for risk governance and providing data and insights that inform our overall risk profile. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. Furthermore, he / she should be able to collaborate with multiple stakeholders, believe in the importance of data-driven decision making and strive for continuous improvement to drive beneficial business outcomes. B.Responsible: key areas of responsibility will include, but are not limited to Lead growing Control Assurance team in our Center of Excellence, this team provides: Control assurance of the SOX controls for the Booking.com across Business and IT domains, Project Management support of the audit cycle, including scheduling the walkthroughs, audit coordination and issue management reporting, Control assurance for other regulations coming into the scope, Develop a robust roadmap to ensure the Control Assurance function is equipped with the knowledge, tools and expertise to deliver leading class assurance services and support onboarding of additional regulations. Establish KPIs and metrics for the Control Assurance function to measure performance, identify trends and drive continuous improvement. Manage the team performance, ensuring engagement, career development and strive for excellence. Maintain audit planning and manage internal and external audit stakeholders. Provide input and insights into various Risk reporting capabilities, including Business Unit reporting, Audit Committee reporting and Risk Committee updates. Stay abreast of industry leading practices and tools / technologies and determine their applicability to the organisation in order to bring efficiency through automation. Help raise the profile of the Control Assurance function throughout the business by championing our values and strategy. Drive a culture of continuous improvement by critically assessing the current processing and driving process improvement initiatives to optimize the program. B.Skilled 10+ years of experience in Risk Management / Control Assurance with a relevant degree Bachelor degree or higher in a relevant field (f.e. Accounting, Finance, Computer Science, Security, Business, Audit) (Master Degree is preferable). Alternatively compensating years of experience (3 to 5 years in addition to above) Expert (technical) understanding of and significant operational experience with Risk Management, Compliance, Audit Cycles Mandatory deep understanding of the SOx methodologies, frameworks and developments Advanced project management skills Advanced stakeholder management skills Experience with large e-commerce, tech companies or financial institutions is advantageous CPA, ACCA, CIA, CISA, or similar advantageous Line manager experience Fluent in English, both written and spoken Advanced understanding of and experience with risk management relevant fields, for example but not limited to: Business analysis Auditing Corporate governance Finance concepts and processes SOX, COSO IT Risk management and IT Governance Basic to intermediate understanding of below fields: AML/ CFT framework, GDPR, PCI IT Security concepts and processes (IT) Frameworks like ITGC, NIST Intermediate understanding of above Business expertise fields. Enthusiastic, self-starting and flexible and agile work attitude Ability to effectively prioritize and manage workload, work under pressure and deliver on timelines Handle multiple tasks, of varying and often complex content, generally at the same/similar time Have the ability to split large tasks into logical, manageable and decoupled actions which are managed effectively and delivered on time Strongly process, problem solving and action oriented Curious and proactive in the assessment and challenge of risks Independent & autonomous, while still a strong team player Advanced communication and persuasion skills and ability to actively listen and manage conflicts Ability to communicate complex technical concepts in a simple manner Strong relationship building skills directed at senior stakeholders across the organisation High level of integrity, confidentiality & professionalism

Role Summary & Key Responsibilities Lead the design and architecture of GRC solutions that integrate risk assessments, DR planning, privacy controls, and regulatory compliance measures. Oversee technical teams to develop standardized processes and deliver high quality compliance outputs. Ensure that technical solutions align with Boeings regulatory and operational requirements. Key Skills & Qualifications Over 10 16 years experience in cybersecurity architecture and governance. Strong technical expertise in compliance frameworks (e.g., NIST, SOX, DFARS) and familiarity with ITSM and risk management tools. Demonstrated leadership and project management skills; relevant certifications such as CISSP, CISM, or CRISC are highly preferred

The IS Auditor role at IndusInd Bank involves overseeing key operations, ensuring compliance, and driving business growth. Responsibilities include managing customer interactions, improving service efficiency, and coordinating with various teams to achieve operational excellence. The ideal candidate should possess strong analytical skills, excellent communication, and a proactive approach to problem-solving. Prior experience in a similar role is preferred. Candidates must demonstrate leadership qualities and adaptability to dynamic banking environments. This position offers a great opportunity to grow within the banking sector.

Skill required: Risk & Compliance - Sarbanes-Oxley Act (SOX) Designation: Risk and Compliance Senior Analyst Qualifications: BE/BTech Years of Experience: 5 to 8 years What would you do? You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.United States federal law that set new or expanded requirements for all U.S. public company boards, management and public accounting firms. Assist in implementation of client-designed Sarbanes-Oxley controls into client s financial processes, enterprise resource planning system or supporting technology. What are we looking for? In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications BE,BTech

The IT Compliance Manager role at IndusInd Bank involves overseeing key operations, ensuring compliance, and driving business growth. Responsibilities include managing customer interactions, improving service efficiency, and coordinating with various teams to achieve operational excellence. The ideal candidate should possess strong analytical skills, excellent communication, and a proactive approach to problem-solving. Prior experience in a similar role is preferred. Candidates must demonstrate leadership qualities and adaptability to dynamic banking environments. This position offers a great opportunity to grow within the banking sector.

Job Title: Assistant Manager Governance and Assurance Location: Pune, Maharashtra Purpose of the Role: Ensure effective governance and compliance with group-level policies and standards related to risk and compliance. Engage and liaise with key stakeholders and operational leads. Assist management in identifying strategic, tactical, and operational business risks. Provide objective assessments of IT controls over identified risks. Share industry best practices in support of business objectives. Key Responsibilities: Oversee all risk and compliance activities for IT operations. Manage internal and external audits from a risk and compliance perspective. Conduct IT control testing and assurance. Ensure IT controls over key risks operate as required. Support business units with risk and compliance perspectives in offshore operations. Identify, manage, and escalate issues and risks appropriately. Maintain and update risk profiles owned by the business. Deliver high-quality reports and ensure audit action points are closed on time. Desired Skills & Experience: 2-3 years of experience in IT audit, governance, and assurance. Experience working with IT security frameworks (ISO 27001, SOC 2, GDPR) and cloud security best practices. Strong knowledge of IT governance frameworks and regulatory requirements. Technical expertise in risk management and audit techniques. Ability to evaluate scenarios critically and make objective decisions. Strong communication, relationship-building, and negotiation skills. Proficiency in IT and report writing. Preferred Qualifications: Bachelors degree in Engineering (CS/IT/EC) with IT audit experience. Chartered Accountant certification preferred. Prior experience with Big 4 consulting firms is a plus. If interested, please send your resume to minal_mohurle@persolkelly.com . CONFIDENTIAL NOTE: By submitting your resume or personal data, you acknowledge reading and agreeing to our Privacy Policy . You hereby provide voluntary consent to the collection, use, processing, and disclosure of your data by us and our affiliates, in line with the Privacy Policy . and applicable laws. If you wish to withdraw your consent or have any concerns, you may submit a request to our designated consent manager, as outlined in our Privacy Policy . We prioritize your privacy. SECURITY NOTE: We at PERSOLKELLY India or our representatives, do not ask job seekers for fees, personal banking information, or payments through unofficial channels. Official communications will only come from @persolkelly.com. Report any suspicious activity to [Contactus_in@persolkelly.com]Contactus_in@persolkelly.com . Click here to find out how you can safeguard yourself from job scams..

Role Details: The IT Compliance Manager is responsible for ensuring that the bank's IT systems and processes adhere to regulatory requirements and industry standards. This role involves developing and implementing IT compliance strategies, managing audits, and collaborating with various departments to maintain a robust compliance framework. Key Responsibilities: Develop and oversee the bank's IT compliance strategy, policies, and procedures. Ensure compliance with all relevant regulatory requirements, including RBI guidelines and international standards. Conduct regular assessments of IT systems and processes to identify compliance gaps. Collaborate with IT teams to implement corrective actions and improvements as necessary. Stay up-to-date with changes in IT regulations and industry best practices. Prepare and submit compliance reports to regulatory authorities. Manage a team of compliance professionals and provide guidance and training. Foster a culture of compliance awareness and ethical behaviour within the IT department. Education and Work Experience: Bachelor's degree in Computer Science, Information Technology, or a related field. Relevant certifications (e.g., CISA, CISM, CISSP) is a plus. Minimum of 5 years of experience in IT compliance, governance, or related roles within the banking or financial services industry. Strong understanding of Indian banking regulations and IT security standards. Experience in leading compliance audits and assessments. Excellent communication and leadership skills. Ability to work collaboratively with cross-functional teams.

As an ISO 27001, you will be responsible for ensuring the effectiveness and compliance of the organization. Conduct ISO 27001 Audits Audit Reporting and Documentation Provide Recommendations and Guidance Continuous Improvement Client Interaction Required Candidate profile Bachelor’s degree in Information Security, IT, CSE, or a related field. Relevant certifications such as ISO 27001 Lead Auditor, CISA/CISM are desirable. B-Tech/BE/ME/BCA/MCA/BBA/MBA/Diploma(CS/IT). Perks and benefits Hybrid Model of Working, Client interaction, TA/DA

Support the Technology Risk Management (TRM) division of an APAC based Asset Manager Implement TRM Framework: Implementation of the Local Business Unit (LBU) Technology Risk Management (TRM) framework, ensuring alignment with local and regional requirements. Provide Expertise and Guidance: Offer technical and best practice guidance on information and technology risk, taking into account platform-specific and regional complexities. IT Risk Indicators: Manage and review standardised IT key risk indicators/metrics submission from all various IT Functions for analysis and early identification of risk trends. Risk Appetite and Key Metrics: Establish and roll out the information and technology risk appetite and key risk metrics for effective management oversight. Risk Register Monitoring: Proactively monitor the LBU risk register and escalate any potential risk areas for Group-level reporting, ensuring risks are appropriately rated and mitigated. Collaborate with various stakeholders: Maintain a trusted, collaborative relationship with stakeholders to promote engagement in TRM activities and reporting requirements, including the preparation and collation of the Group Risk Committee’s Risk Pack. Risk Culture: Promote a strong risk management culture across LBU stakeholders, focusing on managing information and technology risks effectively. Support Periodic Risk Reporting: Assist the LBUs 2nd line ORM/ERM in ensuring timely and accurate reporting of information and technology risk matters to the LBU risk committee. Experience / Qualification 1. Relevant experience, with compulsory experience in Technology or Risk Management/Audit. 2. Candidates should demonstrate experience in identifying, managing, and reporting risks and controls in at least three or more of the following areas: IT Infrastructure Management: Networks, platforms (e.g., IBM, Unix, Windows), middleware, and databases. IT Operations: Data center management, backup, batch processing, incident and problem management. Application and Interface Security: Ensuring secure development practices. Application Development and Change Management (SDLC): Experience with the full software development lifecycle. IT Project Management/Delivery: Overseeing projects from initiation to completion in any specific risk / technology capacity. Third-Party Risk Management: Managing vendor risks effectively. IT Service Management: Familiarity with frameworks such as ITIL. Identity and Access Management (IAM): Experience with tools like SailPoint, CyberArk. Cybersecurity: Familiarity with frameworks like NIST, and experience with security tools and operations. 3. Candidates with the relevant certifications in areas such as Technology Risk Management, Technology Audit, IT Management, Cybersecurity, Cloud, Software Engineering, or Project Management will have additional advantage. Examples include: Risk Management: CRISC (Certified in Risk and Information Systems Control) Audit: CISA (Certified Information Systems Auditor) IT Service Management: ITIL Foundation, PRINCE2, PMP Cloud/Network: Microsoft Certified Azure Solutions Architect Expert, (ISC) CCSK, CompTIA Cloud Essentials IT/Information Security: CISSP, CISM, CompTIA Security+ Software Development: DevOps Engineer Professional, Google DevOps Engineer, Microsoft Certified Solutions Developer 4. Skillsets in coding e.g. Python, and intelligence dashboards like PowerBI would be advantageous.

Ensure all IT policies are reviewed, updated, and approved annually Execute annual BCP Tests and store evidence of results Execute annual DR Tests and store evidence of results Maintain Risk and Control Matrix for IT controls relative to SOX Required Candidate profile 7 years in GRC, Information Security audits Understanding of security classification, change controls, SDLC, security controls Experience with ISO standards, GDPR, NIST, PCI DSS. CIA/CISA/CISSP

Role & responsibilities 1. Risk Management and Compliance: Conduct comprehensive IT risk assessments and vendor audits. Develop and implement strategies for risk mitigation and compliance. Stay updated with IT and data privacy regulations (DPDPA, GDPR, etc.) 2. Data Privacy and Protection: Develop, maintain, and enforce data privacy policies. Ensure organizational adherence to data privacy laws. Perform Data Protection Impact Assessments and manage risk remediation. 3. Policy Development and Implementation: Create and revise IT GRC policies and procedures. Collaborate across departments for policy implementation. Train and guide staff on compliance and data privacy practices. 4. End User awareness: Develop content/flyers for regular communication to employees. Conduct quarterly InfoSec quiz. Conduct online user awareness sessions on Information Security & Data privacy 5. Stakeholder Communication: Communicate IT GRC and data privacy standards to stakeholders. Prepare compliance reports for management and regulatory entities. Liaise with external auditors and regulatory bodie.

"- Understanding of regulatory norms and understanding of IT Policies like IT & IS Audit Policies. - Experience of implement IT security policies and practices for mid-sized HFC/NBFC organizations."

Job Purpose Help team for IT GRC Knowledge of applicable Information Security management, Governance, and Compliance principles, practices, laws, rules, and regulations. Risk assessment and management methodology. Independent assessment/audit as per ISO Standards. Audit/assess IT General Controls. Professional experience in Audit Management Systems, Vendor Risk Management, User Access Management, Environmental Social and Governance solutions implementation. Exposure of working across internal audit departments of Banks, Small Finance companies and Insurance, Mobile Tower. Developed Business Requirements Documents, Technical Customization, Gap Documents and Functional Specifications. Previously worked end-to-end Banks Projects, Small Finance companies' projects. Rendered strategic advisory for prompt & effective resolution of critical development Functional issues; delivered projects at highest standards of quality by effective coordination with multiple team members. Proficient in managing service operations with key focus on defining SLAs, Contracts by ensuring optimal utilization of resources as well as handholding of business partners & key stakeholders. Leveraged skills in liaising with administration, account department for obtaining sanctions, approvals, and others clearance. Skilled in people management, maintaining healthy employee relations & resolving employee grievances Key Skills : Risk, Governance, Compliance, Regulatory audit. Candidate aware about Information security regulatory requirement. Good in soft skills and communication skill with internal stake holder. Looking for team player.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Senior Consultant Specialist In this role, you will: Provide 2nd and 3rd line Support to a portfolio of SaaS applications used by 220,000 employees across the group. Become a technical SME on these applications. Working with the Technical Product Manager of WEO to manage the relationship with the SaaS vendors. Complete IT Governance Activities such as IT Service Acceptance and External Hosting Committee. Manage Changes and Major Incidents Act as IT Service Owner or Delegate for a subset of the applications in the Corporate Services estate Work on new initiatives to enhance the portfolio of applications Providing consultancy and advise to aid in enhancing the Colleague Experience of Corporate Services Technology Complete IT Service management role and responsibilities for SaaS Applications Requirements To be successful in this role, you should meet the following requirements: Have Incident Support End User Support Experience Have Project Delivery / Project Management Experience Have experience supporting or delivering SaaS or Cloud Applications Have managed HSBC IT Governance processes. Have a broad range of technical skills such as desktop support, network, infrastructure, and cloud. Experience and technical understanding of applications that authenticate with SSO against Azure Active Directory. Experience of delivering or support end user colleague applications or externally facing customer applications Experience in IT Service onboarding process. Computer Science Degree or Similar

Position Title: Regional IT Governance Manager - Asia Region Experience : 7+Years Role : Fulltime / Permanent Location : Faridabad Work Mode: WFO Job Overview: The Regional IT Governance Manager will manage and coordinate IT governance, risk, and cost management initiatives across Yamahas Asian regional companies, ensuring alignment with Yamahas global policies and standards. Key Responsibilities: Governance and Compliance: Risk and Security Management: IT Cost Management: Project and Initiative Management: Stakeholder Communication and Regular Reporting Qualifications and Skills: Educational Background: Bachelors degree in Information Technology, Computer Science, Business, or a related field; a Masters degree or MBA is a plus. Experience: 8+ years of experience in IT governance, risk management, compliance, or IT project management, ideally within a multinational organization. Certifications: Relevant certifications such as CISA, CRISC, CGEIT, CISSP, or PMP are highly desirable. Technical Skills: Deep understanding of IT governance frameworks (COBIT, ITIL, ISO 27001), compliance standards, risk management, and IT cost management. Regional Expertise: Familiarity with regulatory environments in Asian countries and experience managing cross-country IT governance. Leadership and Communication: Excellent leadership, communication, and interpersonal skills, with demonstrated ability to engage and influence stakeholders at all levels. Analytical Skills: Strong analytical skills, capable of providing detailed, data-driven insights to HQ to support effective decision-making. Interested candidates can share their resume at divya@beanhr.com

Skill required: Risk & Compliance - Operational Audit & Compliance Designation: Risk and Compliance Senior Analyst Qualifications: Chartered Accountant Years of Experience: 5 to 8 years Language - Ability: English(Domestic) - Mastery What would you do? You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.The Operational Audit & Compliance team focuses on auditing and managing effective implementation and delivery of functional processes within operations to mitigate risks. The role may require for you to have a good understanding of anti-corruption, BCM and infosec policies, records management and contractor controls. The team is responsible for establishing processes to validate the effectiveness and drive improvements wherever required. What are we looking for? You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans. Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications Chartered Accountant

Key Responsibilities: IT Project Management: Plan, execute, and monitor IT projects across the organization, ensuring timely delivery within budget and scope. Collaborate with cross-functional teams, including IT, Business, Compliance, and Risk, to define project objectives and requirements. Identify potential project risks and develop mitigation strategies. Implement project management methodologies, tools, and best practices to ensure efficiency and effectiveness. Track project performance and generate reports for senior management and stakeholders. IT Compliance & Governance: Ensure all IT projects comply with RBI guidelines, regulatory frameworks, and internal policies. Conduct regular IT audits, risk assessments, and compliance checks to identify and mitigate regulatory risks. Liaise with regulatory authorities and internal compliance teams to ensure smooth audits and regulatory reporting. Maintain documentation and records related to IT compliance, ensuring they are updated and audit ready. IT Change Management: Develop and implement change management strategies to support IT project transitions. Work with stakeholders to ensure smooth adoption of new IT systems, processes, and regulatory requirements. Conduct impact assessments and create change management plans, including training and communication strategies. Establish governance frameworks for IT change requests, approvals, and implementation tracking. Strong experience working in RBI-regulated entities (Banks, NBFCs, or Financial Institutions). In-depth knowledge of RBI guidelines, IT compliance, and regulatory requirements. Strong analytical, problem-solving, and decision-making skills. Excellent stakeholder management and communication skills.

Should not apply : Applicants with AML experience and Banking compliance experience Can Apply: Applicants with Risk and compliance experience in IT industry, IT product, FinTech Position Summary : Governance, Risk & Compliance role is one of the critical function of Alacriti Technology Solutions Pvt. Ltd., which assists business areas in identifying and evaluating their key operational risks and controls and recommending enhancements to their controls - where appropriate. As an Risk and Compliance Analyst (or) Senior Risk & Compliance Analyst, you will assist Alacriti business areas in identifying and evaluating key operational risks and controls through risk-based control assessments. This includes documenting and testing key controls, analyzing exceptions, and providing recommendations for proposed control enhancements. Role & responsibilities Managing PCI DSS, HIPAA & SOC certification life cycle and client communication with this regard Managing the Notification process including Incidents Responding to clients security questionnaire Ensuring compliance across organization through JIRA ticketing system as one of the mode. Managing the compliance document repository including Certifications, Policies and Procedures Working experience in Risk Management Good Understanding of NIST frameworks including 800-53, 800-30 Managing the audits including Secure SDLC audits Perform risk assessments, related to both operational and compliance risk by Facilitating open/direct discussions with business areas to identify key risks within the control environment Capture information from the business area in order to create documentation of the business areas key operational and/or compliance processes, risks, and controls Evaluate the design and test the operating effectiveness of key controls identified and provide control enhancement recommendations as appropriate Prepare presentations for executive management, committees, and other stakeholders to discuss identified risks and opportunities for improvement to the control environment Contribute to other risk management activities, which may include exception monitoring and tracking, vendor viability assessments, and other special projects as needed Assist in Planning and executing timely Audits Maintain required documentation as per compliance. Conduct Security Trainings, Release security guidelines to different stake holders from time to time. Preferred candidate profile MBA-IT/Information Security as the educational requirement along with BE/B.Tech Experience in FinTech Product based company is added advantage Experience in PCI DSS, HIPAA & System and Organizational Controls [SOC] implementation Experience in internal audit function Perks and benefits On par with Industry starndards

Practice:Software and Platform, Industry Consulting, Global Network I Areas of Work:IT Security Governance | Level:Manager Position Overview: As an IT Security Analyst/Consultant specialized in the Software and Platforms industry, you will play a pivotal role in helping our clients enhance their business operations. Youll collaborate closely with clients, business stakeholders, and technical teams to help client organization s look deeper into the security of the ir native environment and improve and embed controls across the company , align ing with industry best practices. Key Responsibilities: 7-11 years of strong industry experience in Cybersecurity Strategy, Risk Regulatory Technology ( RiskTech , RegTech ). Should have experience in implementation and assessments of Cybersecurity frameworks (NIST CSF, COBIT) and regulatory guidelines ( e.g. OSFI Technology and Cyber Risk Management (B-13) / Third-Party Risk Management Guideline (B-10)). Must have experience in controls and gap assessments based on industry standards, such as, PCI, NIST 800-53, CIS - CSC and compliance standards/frameworks like ISO 27001/27002, NIST, COBIT, SOX, GLBA, SSAE16/SOC 2, etc. Must have experience and proficient in cyber risk management/control design and testing/ Cybersecurity maturity assessments/ Third Party Risk Management/Supplier or Vendor Risk assessments/ etc Demonstrates knowledge in developing cybersecurity strategies, roadmaps, target operating models, cybersecurity governance models, cybersecurity architecture, cyber policies/standards/ procedures and Board presentations/reports/material. Develop and tailor approaches, methods, and tools to support clients cyber risk programs and initiatives . Strategically drive the development and execution of risk assessments and mitigation plans to enhance the clients ability to identify , evaluate, prioritize, and mitigate risks . Qualifications Qualifications: Masters degree in business , Computer Science, Information Systems, or a related field. Hands on experience working with industry standards and frameworks (e.g., ISO 27001, NIST, HIPAA, FedRAMP, PCI) Demonstrated problem-solving capabilities, and ability to manage complex security requirements. Self-motivated, directed and well-organized, with the ability to see projects through to closure. Excellent communication skills, both verbal and written, for effective interaction with clients and clear communication of technical concepts to non-technical stakeholders. Collaborative team player with the ability to provide thought leadership on cybersecurity solutions. Experience in facilitating workshops, gathering requirements, and presenting to clients. Relevant certifications in cybersecurity/ IT governance/ ISO or related fields are advantageous . Good to have knowledge and experience with GRC tools such as Archer, OpenPages Explore an Exciting Career at Accenture Are you an outcome-oriented problem solverDo you enjoy working on transformation strategies for global clientsDoes working in an inclusive and collaborative environment spark your interest Then, Accenture Strategy and Consulting is the right place for you to explore limitless possibilities. Find endless opportunities to solve our clients toughest challenges, as you work with exceptional people, the latest tech and leading companies in Software and Platforms space.

Practice:Software and Platform, Industry Consulting, Global Network I Areas of Work:IT Security Governance | Level:Analyst/Consultant Position Overview: As an IT Security Analyst/Consultant specialized in the Software and Platforms industry, you will play a pivotal role in helping our clients enhance their business operations. Youll collaborate closely with clients, business stakeholders, and technical teams to help client organization s look deeper into the security of the ir native environment and improve and embed controls across the company , align ing with industry best practices. Key Responsibilities: 1 - 6 years of strong industry experience in Cybersecurity Strategy, Risk Regulatory Technology ( RiskTech , RegTech ). Should have experience in implementation and assessments of Cybersecurity frameworks (NIST CSF, COBIT) and regulatory guidelines ( e.g. OSFI Technology and Cyber Risk Management (B-13) / Third-Party Risk Management Guideline (B-10)). Must have experience in controls and gap assessments based on industry standards, such as, PCI, NIST 800-53, CIS - CSC and compliance standards/frameworks like ISO 27001/27002, NIST, COBIT, SOX, GLBA, SSAE16/SOC 2, etc. Must have experience and proficient in cyber risk management/control design and testing/ Cybersecurity maturity assessments/ Third Party Risk Management/Supplier or Vendor Risk assessments/ etc Demonstrates knowledge in developing cybersecurity strategies, roadmaps, target operating models, cybersecurity governance models, cybersecurity architecture, cyber policies/standards/ procedures and Board presentations/reports/material. Develop and tailor approaches, methods, and tools to support clients cyber risk programs and initiatives . Strategically drive the development and execution of risk assessments and mitigation plans to enhance the clients ability to identify , evaluate, prioritize, and mitigate risks . Qualifications Qualifications: Masters degree in business , Computer Science, Information Systems, or a related field. Hands on experience working with industry standards and frameworks (e.g., ISO 27001, NIST, HIPAA, FedRAMP, PCI) Demonstrated problem-solving capabilities, and ability to manage complex security requirements. Self-motivated, directed and well-organized, with the ability to see projects through to closure. Excellent communication skills, both verbal and written, for effective interaction with clients and clear communication of technical concepts to non-technical stakeholders. Collaborative team player with the ability to provide thought leadership on cybersecurity solutions. Experience in facilitating workshops, gathering requirements, and presenting to clients. Relevant certifications in cybersecurity/ IT governance/ ISO or related fields are advantageous . Good to have knowledge and experience with GRC tools such as Archer, OpenPages Explore an Exciting Career at Accenture Are you an outcome-oriented problem solverDo you enjoy working on transformation strategies for global clientsDoes working in an inclusive and collaborative environment spark your interest Then, Accenture Strategy and Consulting is the right place for you to explore limitless possibilities. Find endless opportunities to solve our clients toughest challenges, as you work with exceptional people, the latest tech and leading companies in Software and Platforms space.

Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : Engineering with ServiceNow Certification Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. Your typical day will involve collaborating with stakeholders to understand their needs and translating them into functional application designs. Roles & Responsibilities: Expected to perform independently and become an SME. Required active participation/contribution in team discussions. Contribute in providing solutions to work related problems. Design and develop applications based on business requirements. Collaborate with stakeholders to gather and analyze requirements. Create technical documentation for developed applications. Conduct code reviews and provide feedback to team members. Stay updated on industry trends and best practices. Professional & Technical Skills: Must To Have Skills:Proficiency in ServiceNow Governance, Risk, and Compliance (GRC). Strong understanding of IT governance, risk, and compliance processes. Experience in designing and implementing GRC solutions. Knowledge of ServiceNow platform and its capabilities. Hands-on experience in configuring GRC modules. Good To Have Skills:ServiceNow Certification. Additional Information: The candidate should have a minimum of 3 years of experience in ServiceNow Governance, Risk, and Compliance (GRC). This position is based at our Hyderabad office. An Engineering degree with ServiceNow Certification is required. Qualifications Engineering with ServiceNow Certification

We are looking for IT & IS Governance personal in our Information Security Team. Pivotal role in ensuring the effective governance, control testing framework, risk management and compliance of the organization's information security and technology infrastructure. Timely responses / compliance towards any advisories received from RBI and other applicable regulatory bodies. Sound knowledge of applicable RBI regulations/ circulars to NBFC business and its compliance adherence practices. Ensure efforts to establish and maintain robust IT governance frameworks, control testing, policies, and procedures, ensuring alignment with industry best practices, and regulatory requirements. Roles & Responsibilities: 1. Compliance Assurance: Ensure compliance with relevant laws, regulations, and industry standards, be updated with the new/ changes in compliance requirements. Ensure required compliance within IS & IT team. Ensure timely response/ compliance to advisories/ questionnaires received from RBI and other applicable regulatory bodies. Collaborate and work along with business, legal and compliance teams to address regulatory/ compliance requirements. 2. Governance Framework: Ensure adherence towards implementation of comprehensive IT & IS governance, testing control frameworks to guide decision-making processes. Help drive the Governance activities across the Technology estate of the organization. Key areas of focus would be timely response towards advisories/ compliance towards RBI, CERT-In advisories/ guidelines, Control Testing & Assessment framework, Change Management, Vulnerability & Patch Management, Obsolescence, Asset Management, BCP-DR, Training awareness, TPRA etc. Ensure alignment with organizational objectives, industry standards, and regulatory requirements. (Example: RBI, SEBI, CERT-IN, etc.) 3. Policy Enforcement: Enforcement and monitoring of adherence to IT policies and procedures - covering areas such as information security, cyber security, data privacy & security controls, data classification, BCP-DR and IT Risk Management etc. Regularly assess the implementation of policies/procedures to address emerging threats and technology trends. 4. Risk Management: Help identification and evaluation of IT/IS related risks. Assist the information security function in developing and maintaining the security and risk management program, including risk analysis and tracking process. Help in implementation of risk mitigation strategies and monitor the effectiveness of risk controls. Prepare dashboard for the management on periodic basis. Review and track IT & IS exceptions, risks and exceptions and prepare dashboard for the management. 5. Control Testing and Assessment: Design, plan and execute control testing activities to evaluate effectiveness of process/procedures as outlined by the organization. Coordinate with internal teams to perform walkthroughs and document control processes to understand the design and implementation of the organizations controls related to IS & IT requirements. Clearly communicate detailed test plans, testing methodology and report on the control performance. Validate remediation of identified control deficiencies and report gaps to the stakeholders and follow-up for closure. 6. Audit and Assurance: Coordinate with internal, external, RBI auditors related to IS & IT requirements. Ensure timely submission of the artefacts/ evidences basis requirements. Tracking, reporting and ensure compliance of observations/gaps raised by the auditors. 7. Training and Awareness: Develop and deliver training programs to enhance IT & IS governance awareness across the organization. Foster a culture of cybersecurity and compliance among staff. 8. Management Presentation: Liaising with various internal stakeholders for preparing decks for various Board level committees. Tracking of actionable items from various committees of the organisation and ensure compliance/ logical closure for the same. Qualification: Bachelor's degree in Information Technology, Computer Science, or a related field. Master's degree or relevant certifications (e.g., CISM, CRISC) is a plus. Must have knowledge of areas as outlined, but not limited to: Information Security (Confidentiality, Integrity, Availability and Privacy) Strong understanding of IT and operational controls Security Testing (White box, Black box and Code review) Application architecture, application security, network security In-depth knowledge of relevant laws, regulations, and industry standards. Applicable RBI regulations/ circulars to NBFC business and its compliance adherence practices. Should have good understanding of ISO 27001 ISMS, NIST Cybersecurity Framework, ISO 22301, GDPR, DPDP Act 2023 etc. Strong understanding of risk management principles and methodologies. Excellent interpersonal and communication skills. Ability to collaborate effectively with cross-functional teams.