228 It Governance Jobs - Page 8

10+ yrs exp IT & IT Security Certified in ISO 27001: 2013 Enterprise IT Governance including knowledge of IT risk management and controls Strong power point presentation creation and design Func as SPOC for IT GRC & Audits Team Leading Exp preferable Required Candidate profile Manage establishment of operate & tech decision-making process to ensure IT svc are align to organization priorities & risk appetite Prep sec dashboards with KPIs, sec metrics for CISO presentations Perks and benefits Mediclaim + additional 10% performance bonus

Job Summary: We are looking for an experienced IT Audit Specialist with a proven track record in Big 4 consulting firms (Deloitte, PwC, EY, or KPMG). The ideal candidate must hold a valid CISA or CISSP certification and demonstrate deep expertise in IT general controls (ITGC), risk management, cybersecurity, and compliance. This role is focused solely on IT audits and advisory, not statutory or financial audits. Key Responsibilities: Lead and perform IT audits, including ITGC testing, automated controls reviews, and application audits across various environments. Evaluate cybersecurity controls, risk mitigation practices, and IT governance processes. Conduct assessments for SOX IT compliance, SOC 1/SOC 2, GDPR, and other regulatory frameworks. Work closely with internal stakeholders and client teams to identify control weaknesses and recommend remediation strategies. Participate in risk assessments, control design evaluations, and implementation of industry best practices. Document findings, prepare reports, and present results to senior leadership or client executives. Stay updated on emerging IT risks, technologies, and industry regulations to enhance audit effectiveness. Required Qualifications: 6+ years of IT audit experience with exclusive background in Big 4 firms (Deloitte, PwC, EY, KPMG). Professional certification: CISA (required); CISSP or other security certifications are a plus. Strong knowledge of ITGCs, application controls, and security frameworks (COBIT, NIST, ISO 27001). Experience in ERP systems audits (e.g., SAP, Oracle) and cloud environment assessments (AWS, Azure, GCP). Strong analytical, documentation, and communication skills. Ability to manage multiple projects and meet tight deadlines in a client-facing environment. Preferred Skills: Experience with SOC 1/SOC 2 reporting, vulnerability assessments, or data privacy audits. Familiarity with tools like Archer, ServiceNow GRC, or audit analytics platforms. Exposure to IT risk advisory or cybersecurity transformation projects.

Drafting, Reviewing, Updating, and Enforcing Information Security Policies: Responsible for the formulation, periodic review, update, and organization-wide enforcement of information security policies and procedures in line with regulatory and industry standards. Implementing IS Related Controls as per Regulatory Requirements and Industry Best Practices: Ensures timely implementation and tracking of security controls as mandated by regulators and aligned with globally accepted standards such as ISO 27001, NIST, and PCI DSS. Coordinating Security Audits as per Regulatory Requirements: Acts as the central coordinator for internal, external, and regulatory audits, ensuring availability of evidence, responses, and closure of observations. Conducting Training and Awareness (Phishing and Quiz): Plans and executes regular security awareness programs, phishing simulations, and quizzes to build a security-conscious culture among employees. Performing IS Risk Assessment / GAP Assessment: Conducts periodic risk and gap assessments to identify, evaluate, and mitigate security weaknesses across systems, processes, and third parties. M aintenance of ISO 27001:2022 and PCI-DSS Certification: Manages and coordinates activities necessary to maintain ISO 27001:2022 and PCI DSS certification status, including audits, documentation, and corrective actions. Monitoring Ongoing IS Compliances through Compliance Calendar : Acts as a checker by maintaining a compliance calendar and tracking entity-wise and function-wise adherence to security compliance requirements. Policy, Process, and Other IS-Related Audits : Conducts independent assessments of IS policies, procedures, and control effectiveness to ensure compliance and identify opportunities for improvement. Participating in Regulatory Inspections: Supports regulatory inspections related to information security by providing necessary documentation, system access, and clarifications. Incident Management: Reviews information security incidents to find trends, causes, impact, and check how well responses worked; ensures incidents are reported to regulators on time as per rules; and regularly updates senior management or the board on security status, key risks, incidents, and compliance

Information Security GxP Specialist What you will do Let’s do this. Let’s change the world. In this lead role you will support the GRC Governance / Policy & Audit team working closely with Technology teams to help ensure that GxP controls are in place, GxP deviations are managed and monitored, and security standards are met. The GxP Specialist will assist in owning and maintaining GxP deviation records, performing GxP assessments, managing controlled documents, and supporting regulatory compliance efforts. Roles & Responsibilities: GxP Governance Leadership: Support the GRC organization in leading a team of GxP and/or policy analysts performing tasks related to governance, GxP deviation management, document management, and policy exception processes. GxP Deviation and CAPA Management : Manage and own technology related GxP deviations, CAPA, and CAPA-EV records Manage GxP reporting and monitoring metrics for Technology/IT records Collaborate with record owners and QA to ensure timely record resolution Assist in the identification and evaluation of risks associated with GxP deviation records. Identify and support new record owners across IT/Technology (e.g. office hours, ad-hoc meetings, document management support). Attend enterprise network meetings as needed to represent the Technology / IT function. GxP Deviation Monitoring and Improvements: Recommend deviation management improvement strategies across Technology/IT. Collaborate with Quality, IT application, cybersecurity, and business teams to supervise and resolve identified risks and vulnerabilities associated with deviations and CAPA’s. Assist in conducting CAPA applicability assessments, time studies, and related initiatives to identify impacts and improvement opportunities in IT systems, processes, and policies. Supervise, monitor, and report on the efficiency of existing GxP records, trends, and recommend improvements as needed. Governance and Regulatory Support: Ensure compliance with relevant industry standards and regulatory requirements (e.g., GxP, GDPR, SOX, NIST). Assist in proactive measures to facilitate compliance, such as collaborating with stakeholders to initiate periodic reviews Assist in the preparation for audits and inspections by internal and external parties, providing documentation and evidence of IT GxP deviation management practices. Support the development and implementation of IT governance, risk, and compliance frameworks and continuous improvements. Support the development and implementation of IT governance, risk, and compliance policies as well as supporting documentation, and their continuous improvements. Track and monitor document reviews, and support document owners to ensure timely periodic review completion. What we expect of you We are all different, yet we all use our unique contributions to serve patients. The GxP security professional we seek is collaborative and action-oriented with these qualifications. Basic Qualifications: 5+ years of experience in IT GxP deviation management, IT quality management, IT auditing, or information security. Hands-on experience with deviation management tools and associated frameworks (e.g., ISO 27001, NIST, COBIT). Master’s degree and 4 to 6 years of information technology, Cybersecurity, Risk Management, or a related field experience OR Bachelor’s degree and 6 to 8 years of information technology, Cybersecurity, Risk Management, or a related field experience OR Diploma and 10 to 12 years of information technology, Cybersecurity, Risk Management, or a related field experience Preferred Qualifications: Good understanding of GxP deviation management, controlled document management, IT infrastructure & systems, and security standard methodologies. Ability to assess technical and business risk related to information systems. Excellent problem-solving, analytical, and communication skills. Ability to communicate complex GxP and risk concepts to non-technical collaborators. Familiarity with regulatory frameworks and compliance standards (e.g., GxP, GDPR, HIPAA, SOX). Technical Knowledge : Proficiency with GxP deviation management tools, GRC (Governance, Risk, and Compliance) software, controlled document management tools, enterprise change management tools, and security incident management tools. Experience with security controls related to networks, databases, and cloud environments. Soft Skills: Excellent analytical and troubleshooting skills Strong verbal and written communication skills Ability to work effectively with global, virtual teams High degree of initiative and self-motivation Ability to manage multiple priorities successfully Team oriented, with a focus on achieving team goals Strong presentation and public speaking skills What you can expect of us As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we’ll support your journey every step of the way. In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards. Apply now and make a lasting impact with the Amgen team. careers.amgen.com As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease. Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Job Information Job Opening ID ZR_1554_JOB Date Opened 19/11/2022 Industry Technology Job Type Work Experience 8-12 years Job Title Senior Automation Testing City Mumbai Province Maharashtra Country India Postal Code 400008 Number of Positions 4 LocationMumbai, Pune, Chennai, Hyderabad 1. Experience in Test Automation (Web Application) is mandatory. 2. Hand on experience on Selenium automation, Jmeter, Load Runner, Jest or Protractor or Cypress. 3. Strong understanding about DevOps and DevSecOps. 4. Review User Stories , data artifacts and provide feedback to ensure the proposed solution meets the end user requirements 5. Support development team in gathering test data and test scenarios and assist for POC 6. Ensure 100% of test artifacts are peer reviewed and ensures effective coverage thru approval from business stake holders 7. Independently manage testing activities, ensure timely closure of defects reported. 8. Must have good communication skills. 9. Conduct root cause analysis of reported incidents in operational systems and ensure changes to application code are tested before execution in compliance with IT governance processes. 10. Experience in cross browser testing, web & mobile based application testing. check(event) ; career-website-detail-template-2 => apply(record.id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#2B39C2;border-color:#2B39C2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered=""> I'm interested

Role Responsibilities: A day in the life of an Infoscion • As part of the Infosys consulting team, your primary role would be to actively aid the consulting team in different phases of the project including problem definition, effort estimation, diagnosis, solution generation and design and deployment • You will explore the alternatives to the recommended solutions based on research that includes literature surveys, information available in public domains, vendor evaluation information, etc. and build POCs • You will create requirement specifications from the business needs, define the to-be-processes and detailed functional designs based on requirements. • You will support configuring solution requirements on the products; understand if any issues, diagnose the root-cause of such issues, seek clarifications, and then identify and shortlist solution alternatives • You will also contribute to unit-level and organizational initiatives with an objective of providing high quality value adding solutions to customers. If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! Work Experience: 2 - 9 years of experience Educational Requirements: Master of Computer Science,MCA,Bachelor Of Computer Science,Bachelor of Engineering,BCA,BTech Additional Responsibilities: Ability to work with clients to identify business challenges and contribute to client deliverables by refining, analyzing, and structuring relevant data • Awareness of latest technologies and trends • Logical thinking and problem solving skills along with an ability to collaborate • Ability to assess the current processes, identify improvement areas and suggest the technology solutions • One or two industry domain knowledge Technical and Professional Requirements: Technical Requirements: • Primary skills:Domain->Network->Network Security Firewall & Policies,IDAM,IDAM->Cyberark,IDAM->Forgerock,IDAM->Microsoft Identity manager,IDAM->Okta,IDAM->Oracle Access Manager(OAM),IDAM->Oracle Identity Manager(OIM),IDAM->Ping/Federate,IDAM->Sailpoint,IDAM->Saviyant,Technology->Application Security->Application Security - ALL,Technology->Enterprise Mobility Solution->MS Azure AD, MS Azure RMS, MS Intune,Technology->Finacle-Core-Payments->Faster Payment Service->Advance,Technology->Infrastructure Security->Security Incident and Event Management (SIEM),Technology->Network->CISCO technologies,Technology->Network-Firewall_and_Media->Palo Alto Preferred Skills: IDAM,IDAM->Oracle Identity Manager(OIM),IDAM->Oracle Access Manager(OAM),IDAM->Sailpoint,IDAM->Cyberark,IDAM->Ping/Federate,IDAM->Forgerock,IDAM->Microsoft Identity manager,IDAM->Okta,IDAM->Saviyant,Domain->Network->Network Security Firewall & Policies,Technology->Application Security->Application Security - ALL,Technology->Infrastructure Security->Security Incident and Event Management (SIEM)->Splunk,Technology->Network->CISCO technologies,Technology->Enterprise Mobility Solution->MS Azure AD, MS Azure RMS, MS Intune,Technology->Network-Firewall_and_Media->Palo Alto,Technology->Cloud Security->AWS - GRC & responsibilities Preferred candidate profile for HUBLI

Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : Engineering with ServiceNow Certification Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. Your typical day will involve collaborating with stakeholders to understand their needs and translating them into functional application designs. Roles & Responsibilities: Expected to perform independently and become an SME. Required active participation/contribution in team discussions. Contribute in providing solutions to work related problems. Design and develop applications based on business requirements. Collaborate with stakeholders to gather and analyze requirements. Create technical documentation for developed applications. Conduct code reviews and provide feedback to team members. Stay updated on industry trends and best practices. Professional & Technical Skills: Must To Have Skills:Proficiency in ServiceNow Governance, Risk, and Compliance (GRC). Strong understanding of IT governance, risk, and compliance processes. Experience in designing and implementing GRC solutions. Knowledge of ServiceNow platform and its capabilities. Hands-on experience in configuring GRC modules. Good To Have Skills:ServiceNow Certification. Additional Information: The candidate should have a minimum of 3 years of experience in ServiceNow Governance, Risk, and Compliance (GRC). This position is based at our Hyderabad office. An Engineering degree with ServiceNow Certification is required. Qualifications Engineering with ServiceNow Certification

Responsible for Information Security, Governance and Compliance for the IT projects delivered to our customers. End to end project reviews, drive to ensure quality delivery and adherence to compliance. Analyze various data points and work at improvement plan for the project delivery. Ensure projects adhere to standards such as ISO 27001, 27701 and 22301. Effective reporting and follow-up on actions. Skills required: 6 to 8 years of experience in IT Governance, Risk and Compliance for large scale organizations. Strong conceptual knowledge / experience in Project Management and Information Security. Very good at written and oral communication, able to work independently with minimal support. Candidate should be well versed with legacy as well as cutting edge technologies. Experience in certifications such as ISO 27001, 27701 and 22301 is desirable. Experience in documentation of processes and policies. Preferred to have experience in Project Management, Solution Architecture.

About The Role We are now looking for a Specialist, Risk Control (RC) in our CoE to support RC with SOx testing of IT General Controls and Application controls. You will be directly working on testing internal controls to support SOX302 attestation. The RC IT SOx Specialist is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from SOx testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. B. responsible: key areas of responsibility will include, but are not limited to: Support testing end to end: Design and execute the day-to-day testing activities of IT and application controls, with a focus on regulatory/compliance (SOX) related risks Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation Identify gaps in design and execution, and communicate issues and recommendations to RC team and control owners Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required Collaborate and partner with RC by providing guidance and ensuring that critical SOx controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives Collaborate participate within RC to continuously improve the RCs capabilities and governance from SOX testing standpoint B. skilled: The ideal candidate will have a strong background in IT Risk Management, IT Frameworks, Governance and Controls, Segregation of Duties 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience leading teams in an international environment Strong experience with designing and/or testing IT General Controls and automated process controls Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT Strong working knowledge of SOX Ability to multitask and successfully manage multiple priorities and projects Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team Able to work independently autonomously, while still being a strong team player Fully comfortable working in English, both written and spoken Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage Relevant Bachelors degree required Preferential: Experience designing and/or testing controls around in-house built software Experience in technology-based product development / DevOps processes Experience in large e-commerce or tech companies Experience in auditing SAP or other ERPs Key Skills Strong working knowledge of SOx Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment Strong understanding of design assessment and operating effectiveness assessment ofIT controls, and interface controls.

The incumbent would be responsible to support the SOX, IT Risk, IT Project and associated Compliance process They will be involved in standardizing and improving process, evaluate their impacts and implement the relevant measure The role will involve managing the IT SOX program Liaise with various IT verticals leads to remediate new and outstanding issues, track IT and project risk-related issues in GRC system This is a global role engaging stakeholders across geographies like India, Philippines and US Incumbent should be a good effective communicator and have the required skillset to understand risk management concepts JOB FUNCTION AND RESPONSIBILITIES: Perform extensive IT SOX control testing . Identify issues and remediate with appropriate controls Identifying and assessing risks in the across organization IT verticals Identifying and assessing risks in the organization s Security Operations tools and processes Conduct assessment/review of IT processes and recommend action for improving IT governance maturity using reference framework like COBIT, ITIL and ISO 20000 Work closely with the Enterprise Risk Management team and ensure risks are reduced or maintained at minimum levels Collaborate with Enterprise Project Management team and have oversight on IT Self led process and ensure compliance Assist in development and monitor of IT Risk policies, standards and procedures QUALIFICATION: Bachelors / masters in computer science or equivalent 5-10 years of experience in IT Risk Management WORK SCHEDULE OR TRAVEL REQUIREMENTS: Mid Shift: 12.00PM - 9.00PM No Travel Requirements

We are looking for Information Security Professional in our Corporate office. Experience: 7-10 years of experience in security and privacy roles. Monitor, investigate, and respond to security incidents using DLP, EDR, and MDR solutions. Conduct Vulnerability Assessment and Penetration Testing (VAPT) to identify and mitigate risks. Implement and manage Data Loss Prevention (DLP) strategies to safeguard sensitive information. Ensure compliance with ISO 27001/27002 controls and support audit requirements. Analyze security events, perform root cause analysis, and recommend remediation measures. Collaborate with internal stakeholders to enhance the overall security posture Partner with internal departments, such as IT, Compliance, and Risk Management, to identify security gaps, implement best practices, and enhance overall cybersecurity measures. Conduct regular assessments of the organization's systems, networks, and processes to identify and mitigate potential security and privacy risks. Develop and enforce security and privacy policies, ensuring alignment with industry standards and regulatory requirements. Lead and participate in incident response activities, including investigation, analysis, and resolution of security incidents. Develop and deliver security awareness training programs to educate employees on security best practices and privacy guidelines. Implement and manage vulnerability assessment programs to identify and remediate security vulnerabilities in a timely manner. Ensure the protection of sensitive data through encryption, access controls, and other relevant measures. Work closely with cross-functional teams to integrate security and privacy considerations into the development lifecycle of applications and systems. Stay current with relevant security and privacy regulations, ensuring the organization's compliance with applicable laws. Work Experience & Educational/Professional Certifications 7-10 Years of experience in cybersecurity. Proficiency in EDR, MDR, VAPT, and ISO 27001/27002. Strong analytical and problem-solving skills. Bachelor's degree in Computer Science, Information Security, or a related field. Industry-recognized certifications such as ISO 27001 LA,/LI, CEH, Security+ are a plus. Strong knowledge of security frameworks, standards, and best practices. Experience with risk management, policy and process documentation, and security assessments. Excellent communication skills and the ability to collaborate with diverse teams.

Hiring GRC Consultant : MNC Client : Mumbai (Powai Location). Required Experience: 3+Years Notice Period: Immediate -1week Skills Required: Strong in GRC (Governance, Risk, and Compliance). Strong in ISO 27001, NIST, and Indian regulatory frameworks.

We are seeking a visionary and experienced Senior IT Manager to lead our corporate IT department with a focus on Digital Workplace services. This role will oversee the organizations IT infrastructure, systems, and digital workplace solutions, including data loss prevention (DLP), collaboration tools, and secure access management. The Senior IT Manager will be responsible for driving strategic initiatives that enhance user experience, collaboration, and security while ensuring the delivery of high-quality technology services and support. Key Responsibilities: Strategic Leadership for Digital Workplace: Develop and execute IT strategies and roadmaps specifically for Digital Workplace services, including collaboration platforms (such as Microsoft Teams, SharePoint, etc.), endpoint management, and DLP solutions, ensuring alignment with business objectives. Drive innovation in digital collaboration tools, mobility solutions, and remote access technologies to enhance employee productivity and engagement. IT Governance and Compliance: Establish governance frameworks, policies, and procedures to ensure compliance with regulatory requirements, industry standards, and security best practices, especially around DLP and collaboration tools. Implement governance for digital tools to ensure secure and compliant usage of collaboration platforms and file-sharing services. Infrastructure and Digital Workplace Management: Oversee the design, implementation, and management of the IT infrastructure and Digital Workplace solutions, ensuring scalability, reliability, security, and user satisfaction. Lead efforts to improve and maintain collaboration platforms, ensuring seamless integration and secure usage across teams. Systems Administration and Operations: Manage enterprise-wide systems and applications, including collaboration tools and endpoint security, ensuring optimal configuration and availability to meet business needs. Oversee the deployment and management of digital workplace tools, with a focus on driving adoption and maximizing ROI. IT Security and Risk Management (DLP Focus): Develop and implement IT security strategies, particularly in Data Loss Prevention (DLP), to protect digital assets and sensitive information from breaches and vulnerabilities. Ensure real-time monitoring, incident response, and reporting of potential DLP violations while balancing operational needs with security requirements. Digital Workplace Tools & Collaboration Services: Oversee the implementation, management, and optimization of collaboration services, such as Microsoft Teams, SharePoint, OneDrive, and other tools, to enhance team communication and productivity. Drive initiatives to streamline workflows using automation and integration of collaboration tools with other enterprise systems. Budgeting and Resource Allocation: Develop and manage the IT budget, including costs related to digital workplace solutions and security tools (e.g., DLP, collaboration software). Optimize spending on collaboration services, endpoint management tools, and cloud-based solutions to deliver maximum value. Vendor and Contract Management: Manage relationships with vendors and service providers for digital workplace solutions, collaboration tools, and security software, negotiating contracts and ensuring adherence to SLAs. Team Leadership and Development: Lead and mentor a team of IT professionals focused on Digital Workplace services, DLP, and collaboration technologies. Foster a culture of collaboration, continuous learning, and innovation. Project and Program Management: Oversee IT projects related to the implementation and upgrade of digital workplace technologies, ensuring alignment with strategic objectives and successful delivery within scope and timelines. Stakeholder Engagement and Communication: Collaborate with executive leadership, department heads, and stakeholders to understand their IT and digital workplace needs, communicating strategies, initiatives, and accomplishments effectively. Education & Experience Bachelors degree in Computer Science, Information Technology, or a related field (Masters preferred). 10+ years of progressive IT leadership experience, with expertise in managing digital workplace solutions, collaboration tools, and security initiatives (especially DLP). Strong technical expertise in IT infrastructure, systems administration, networking, security, and cloud-based collaboration technologies. Proven experience with Digital Workplace transformation, driving adoption of collaboration tools, and implementing security measures, including DLP. Excellent leadership skills with a proven ability to inspire and mentor teams in a dynamic environment. Strong problem-solving skills and strategic thinking, with a focus on innovation, security, and enhancing digital collaboration. Certifications ITSM, ITIL, or CISM certifications preferred. Project management certification (e.g., PMP) is highly desirable. Certification or experience in Digital Workplace platforms (Microsoft 365, Google Workspace) and security solutions (DLP, endpoint protection) is a plus.

Proven working experience in project management in the IT sector on various banking systems. Minimum 6+ years of hands-on experience in Project implementation of SME / NRI Line of business Functional expertis on SME, NRI & WBG. Required Candidate profile Strong technical background and experience in consulting roles Hands on knowledge of API & exposure to DB Good knowledge of Project Managment Tools like Jira, MS office Strong documentation skills.

Job Title: Senior Analyst IT Risk and Compliance Location: Chennai Department: IT Risk & Compliance Reports To: Manager, IT Risk and Compliance Job Type: Full-Time Job Summary We are seeking a highly motivated and detail-oriented IT Compliance Analyst to join our Risk & Compliance team. The ideal candidate will be responsible for performing comprehensive IT compliance assessments, testing IT general controls and IT Automated controls and ensuring the organization adheres to internal policies and external regulatory requirements, including Sarbanes-Oxley (SOX). This role plays a critical part in maintaining a strong internal control environment and driving process improvement across the organization. Key Responsibilities Assist in planning and scoping IT compliance and internal control assessments. Identify risk areas and develop internal control testing programs. Perform end-to-end IT compliance assessments, including evaluating effectiveness of risk and control frameworks. Test IT General Controls (ITGCs) across domains like change management, logical access, SDLC and IT operations. Assess IT Automated Controls across business functions such as payroll, inventory, and revenue. Document control walkthroughs using narratives and flowcharts. Develop, maintain, and present compliance workpapers and reports highlighting control deficiencies and recommendations. Collaborate with management to communicate findings and ensure timely remediation of audit issues. Support external audit activities by coordinating information requests and walkthroughs. Stay up to date with regulatory and industry developments in IT compliance and risk management. Engage in continuous improvement efforts to enhance the efficiency and effectiveness of compliance processes. Qualifications Bachelor's degree in Information Technology, Computer Science etc. Professional certification (or working towards) such as CISA, CRISC, CISSP, or CISM preferred. 7–10 years of experience in IT audit, compliance, or risk management; minimum 3-5 years in a Big 4 or similar professional services firm preferred . Strong understanding of IT infrastructure, applications, and enterprise systems. Knowledge of Sarbanes-Oxley (SOX), ITGCs, automated controls, and internal control principles. Experience with audit and compliance tools (e.g., eAudit, Auditboard, or equivalent). Ability to understand cross-functional business processes and their integration with IT systems. Strong interpersonal, communication, and report-writing skills. Able to work independently and collaboratively under tight deadlines. Demonstrated sound judgment, critical thinking, and attention to detail. Preferred Skills Hands-on experience in documenting business processes and identifying control gaps. Ability to present findings to senior stakeholders and recommend practical remediation steps. Familiarity with GRC platforms and data analytics tools. Understanding of global business practices and regulatory environments.

-Support for Tisax audit -Audits from customers (Quarterly audit tasks from customers) -Basic Security Guidelines - Corporate IT quartely review

Dear Candidate, We are hiring an IT Security Consultant to help assess, design, and implement robust cybersecurity strategies for clients. Ideal for professionals with deep knowledge of security standards and hands-on defense experience. Key Responsibilities: Conduct security assessments and risk analysis Design and implement security controls, policies, and frameworks Guide clients on compliance with ISO 27001, NIST, SOC2, etc. Lead incident response and security awareness initiatives Required Skills & Qualifications: Experience in network, application, and cloud security Knowledge of IAM, SIEM, firewalls, and encryption Strong consulting, communication, and client-facing skills Bonus: Security certifications (CISSP, CISM, CEH) Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Dear Candidate, We are hiring an IT Compliance Analyst to ensure adherence to regulatory standards and internal security policies. Perfect for detail-oriented professionals with a risk and governance mindset. Key Responsibilities: Monitor IT processes for compliance with SOX, GDPR, HIPAA, etc. Conduct audits, risk assessments, and gap analyses Collaborate with security, legal, and IT teams Maintain documentation and support policy enforcement Required Skills & Qualifications: Knowledge of IT compliance frameworks (ISO 27001, NIST, COBIT) Experience with audit processes and risk management Strong communication and analytical skills Bonus: Certification (CISA, CRISC, or similar) Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Integrated Security Risk Management Good to have skills : Security GovernanceMinimum 18 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will lead the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Roles & Responsibilities:- Expected to be a SME with deep knowledge and experience.- Should have influencing and Advisory skills.- Engage with multiple teams and responsible for team decisions.- Expected to provide solutions to problems that apply across multiple teams, and provide solutions to business area problems.- Lead the implementation and delivery of Security Services projects.- Utilize global delivery capability including methods, tools, training, and assets.- Provide expert advice and guidance on security governance.- Collaborate with various teams to ensure effective security solutions. Professional & Technical Skills: - Must To Have Skills: Proficiency in Integrated Security Risk Management.- Good To Have Skills: Experience with Security Governance.- Strong understanding of security risk management principles.- Knowledge of security governance frameworks and best practices.- Experience in leading security service delivery projects.- Excellent communication and leadership skills. Additional Information:- The candidate should have a minimum of 18 years of experience in Integrated Security Risk Management.- This position is based at our Gurugram office.- A 15 years full-time education is required. Qualification 15 years full time education

Role : Assistant Manager - IT Ops Experience : 7 -10 Years ( Relevant ) Salary : 12 LPA upto Location : Chennai Notice Period : 30 Days Max ( Immediate Joiners Preferred ) 1. IT Infrastructure and Operations Management Oversee the maintenance, optimization, and scaling of IT infrastructure, including servers, networks, storage, and data centers, ensuring high availability, scalability, and reliability. Implement IT operational best practices and continuous improvements to reduce downtime and optimize performance. Introduce cloud-based infrastructure solutions (AWS, Azure, GCP) for cost efficiency and scalability. Ensure timely maintenance, patching, and upgrades for all infrastructure components to avoid obsolescence. 2. Cybersecurity and Compliance Implement and monitor enterprise-level cybersecurity solutions, including AV/EDR, DLP, Data Classification, Encryption, MDM, and AAA frameworks, to protect critical systems and sensitive data. Conduct regular security assessments, audits (VA & PT, ISMS, ITGC, BPG), and risk mitigation activities. Ensure compliance with global and local IT standards (ISO 27001, GDPR,DPDPA, SOC 2 etc.) and regulatory requirements. Develop and enforce robust IT governance policies to address data security, access control, and incident management. 3. Digital Transformation and Automation Lead digital transformation projects, introducing advanced tools and platforms that enhance collaboration, productivity, and operational agility. Streamline IT processes by implementing automation frameworks for incident resolution, service requests, and change management. 4. Budget and Vendor Management Manage an annual IT budget, ensuring cost optimization while meeting business requirements. Evaluate, negotiate, and oversee vendor relationships, contracts, and service-level agreements to ensure value for investment. Identify opportunities for cost reduction through effective vendor management, licensing optimization, and process improvements 5. Business Continuity and Disaster Recovery Design, implement, and test Disaster recovery and Business continuity plans to minimize data loss and downtime. Establish robust backup strategies with automated failover mechanisms to ensure business continuity during disruptions. Conduct periodic disaster recovery drills to evaluate response effectiveness and train staff. 6. End-User Support and IT Service Delivery Enhance IT support services by implementing ticketing tools in house HRMS tool and adopting ITIL best practices. Improve incident resolution processes, reducing response times and enhancing user satisfaction. Implement self-service IT tools and knowledge bases to empower end users and reduce IT workload. Analyze IT service delivery metrics to identify areas of improvement and drive operational excellence. 7. Team Development and Leadership Build a culture of accountability, collaboration, and innovation within the IT department. Conduct skill-gap analysis and implement training programs to ensure the team stays updated with the latest technologies. 8. Innovation and Emerging Technology Adoption Research and integrate emerging technologies into the organization to gain a competitive edge. Drive POC initiatives to evaluate new tools and solutions that align with business objectives. Key Skills: IT Infrastructure Management Cybersecurity and Risk Management Budget and Cost Optimization Vendor and SLA Management Cloud Solutions and Digital Transformation Disaster Recovery and Business Continuity IT Governance and Compliance Team Leadership and Development Strong Problem-Solving and Decision-Making Handling all IT Infrastructure products.

SOX Auditor Chennai - Guindy, India Information Technology 17132 Overview The SOX ITGC Auditor is responsible for ensuring that the SOX processes support compliance of the internal controls for financial reporting. The SOX ITGC Auditor will perform assurance procedures to assess the design and effectiveness of ITGC, perform quality assurance over existing control, and help prepare reporting for business leadership. Responsibilities Duties and Responsibilities Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines. Education and Experience Bachelors degree or higher in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience. 4+ years large public company internal and external auditing, with emphasis on IT auditing in large public companies with complex IT hybrid environments and/or large accounting firms with experience auditing a complex IT client base. Strong IT audit program and practices experience. Big 4 IT Audit experience required. Strong understanding of the general computer control areas and IT governance frameworks (e.g., COBIT), Sarbanes Oxley, and COSO framework. Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database). Ability to work independently Strong analytical, interpersonal, and leadership skills with orientation toward process improvement Requirements Duties and Responsibilities Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines. Education and Experience Bachelors degree or higher in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience. 4+ years large public company internal and external auditing, with emphasis on IT auditing in large public companies with complex IT hybrid environments and/or large accounting firms with experience auditing a complex IT client base. Strong IT audit program and practices experience. Big 4 IT Audit experience required. Strong understanding of the general computer control areas and IT governance frameworks (e.g., COBIT), Sarbanes Oxley, and COSO framework. Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database). Ability to work independently Strong analytical, interpersonal, and leadership skills with orientation toward process improvement

: Job Title - Divisional Risk & Control Specialist VP Location - Pune, India Role Description The Divisional Risk and Control Specialist is responsible for delivering specific aspects of the risk and control strategy for a sub-division. This includes monitoring risk and control activities, risk based control reporting of key issues, performance and validation of cyclical activities such as annual control self-assessments. It would also include, control testing, incident research, remediation monitoring and other ad hoc control initiatives and projects. The Divisional Risk and Control Specialist will liaise with other risk and control functions, on a management level to assure the integration of risk initiatives and projects. One key function within R&C is the Audit Management and Advisory (AM&A) group. The groups specific objective is to work with all the Corporate Bank Technology (CB Tech), Non-Financial Risk Management (NFRM), Regulatory Management Group (RMG), Group Audit and all other stakeholders on comprehensive audit management across internal, external and regulatory audits. The functions primary stakeholders are the CB Technology CIOs and their teams. The group also provide service to the entire CB Tech ExCo. You will need to understand the risks associated with the Banks Technology Platforms, ongoing/existing risks & control related programs, and manage the resolution of these risks as appropriate. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Engage the highest levels of CB Technology Senior Management and risk and control leads regarding audit related matters Empower senior management on governance of all audit findings Influence audit related policies/standards Support the design and implementation of frameworks to proactively manage the entire audit lifecycle process Leverage existing platforms to reduce administrative efforts of coordinating a large number of findings Engage with CB Technology DCO (Divisional Control Officer) and group audit when necessary through the audit lifecycle Oversee the identification an overall management of self-identified findings within CB Technology. Provide education and training on risk and control culture, audit management processes and SII creation, to guide key stakeholders to appropriately assess risks in their areas, respond to audits, audit finding closures and provide updates. Support the creation of high quality, demonstrable management action plans that are SMART. Validate completeness of audit closure requests, via testing of design and Operating effectiveness of the controls. Perform meaningful analysis of audit and audit related information, correlating new data to identify important trends that demand senior management attention Engage with CB Technology teams to ensure accurate and timely delivery of service Your skills and experience Extensive prior experience within Corporate Bank technology audit function and/or risk and control role. Background knowledge regarding the business or having worked within Corporate Bank business unit. The ability to manage multi-tasks assignments and efficiently prioritise workload with limited supervision and resilient under pressure. Extensive experience in effective management for Corporate Bank technology audits including their validation. Ability to write detailed audit reports and prepare effective remediation plan. Experience of performing technology Controls Testing and Read Across. Prior experience of working directly with CIOs/CIO-1s. The ability to quickly build a network in the business and among subject matter experts. Strong analytical skills to evaluate risks and control processes. Excellent communication skills, both verbal and written. Advance knowledge of Excel The ability to deal with people at all levels in a global matrix organisation. Flexible, pro-active and able to use own initiative How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

At Elanco (NYSE: ELAN) - it all starts with animals! As a global leader in animal health, we are dedicated to innovation and delivering products and services to prevent and treat disease in farm animals and pets. We re driven by our vision of Food and Companionship Enriching Life and our approach to sustainability - the Elanco Healthy Purpose - to advance the health of animals, people, the planet and our enterprise. At Elanco, we pride ourselves on fostering a diverse and inclusive work environment. We believe that diversity is the driving force behind innovation, creativity, and overall business success. Here, you ll be part of a company that values and champions new ways of thinking, work with dynamic individuals, and acquire new skills and experiences that will propel your career to new heights. Making animals lives better makes life better - join our team today! As Elanco grows, the SIAM Business Systems Analyst will play a key role in stabilizing and optimizing the IT Operating Model through data-driven process improvement, service integration, and reporting. This role is responsible for developing IT governance reports, managing dashboards in ServiceNow and Power BI, supporting vendor management reporting, and driving continuous improvement initiatives. By partnering across IT and vendor teams, the analyst ensures process alignment, monitors performance metrics, and contributes to the ongoing evolution of Elanco s IT governance, collaboration and processes. Key Role Responsibilities & Expectations: Generate, validate, and distribute monthly IT governance reports Develop and maintain ServiceNow Performance Analytics (PA) dashboards and Power BI (PBI) reports Support the cleanup, standardization, and enhancement of ServiceNow reporting data Collaborate with internal and external stakeholders to provide SIAM operational support and reporting insights Assist in the development and delivery of vendor management reports for the VMO Contribute to the creation and tracking of ServiceNow enhancement stories and platform upgrade initiatives Set up, monitor, and manage ServiceNow SLA definitions and reporting Provide reporting and metric support for IT VMOss (Vendor Management Office Support Services) initiatives Coordinate vendor satisfaction surveys and assist in analyzing results Work closely with cross-functional teams to ensure alignment with business and IT processes Update documentation and SOPs to support training and learning plans Coordinate, track, connect, and drive the adoption of the enterprise and IT processes within IT ecosystem Establish continuous improvement and serve as an advisor of best practices The role will be responsible for coordinating, leading, and supporting process improvement and cross-functional projects, initiatives, and collaborations across IT. Establishing control plans and monitoring appropriate metrics to validate project results are achieved and track improvements. Independently manage complex issues with minimal supervision Solicits feedback from stakeholders to determine the success of the IT Enterprise Processes and Operating model Strong data analytics skills to support root cause analysis and business justifications Elanco is an EEO/Affirmative Action Employer and does not discriminate on the basis of age, race, color, religion, gender, sexual orientation, gender identity, gender expression, national origin, protected veteran status, disability or any other legally protected status

Job Overview Are you a detail-oriented technology project enthusiast? iCIMS is seeking an IT Governance Specialist to join our Corporate Technology (CT) Governance team. In this position, you will have the opportunity to work with various business teams within iCIMS to define and manage IT projects from definition to launch. You will also make an impact to the organization by providing efficiencies impacting the bottom line by monitoring and managing the allocation and use of corporate system licenses. Lastly, you can apply your technical skills by creating trend reports that enable data driven decision making. If this sounds like an exciting opportunity, apply directly below! About Us When you join iCIMS, you join the team helping global companies transform business and the world through the power of talent. Our customers do amazing things: design rocket ships, create vaccines, deliver consumer goods globally, overnight, with a smile. As the Talent Cloud company, we empower these organizations to attract, engage, hire, and advance the right talent. We re passionate about helping companies build a diverse, winning workforce and about building our home team. Were dedicated to fostering an inclusive, purpose-driven, and innovative work environment where everyone belongs. Responsibilities Work with the various business teams within iCIMS to define and project manage implementation and upgrades of various business systems Team effectively across organizations to coordinate project activities and report on project status to leadership Optimize corporate system license management including: Monthly review of each application, validating and releasing unused licenses. Execution of license onboarding/offboarding (possibly automating parts of it with Okta, Productiv or Axonius) Produce report for quarterly application usage by location for tax purposes Support accounting allocation by producing a quarterly allocation report Create trend reports and usage-based data management reports (#apps, #users, %usage across systems, cost over time) Handle sensitive and/or confidential material and information with suitable discretion. Qualifications Excellent communications, interpersonal and written skills. Articulates thoughts and ideas clearly, and concisely Project Management skills Ability to consolidate and organize data into Dashboards and status reports easily digestible by managers Team player and positive attitude. Proficiency in Microsoft tools including Excel, and PowerPoint Ability to work effectively within a fast paced, changing environment. Ability to multi-task A self-starter with the demonstrated ability to take initiative. BA/BS/BE in related field highly preferred or relevant equivalent work experience. Preferred BA/BS in related field highly preferred or relevant equivalent work experience EEO Statement iCIMS is a place where everyone belongs. We celebrate diversity and are committed to creating an inclusive environment for all employees. Our approach helps us to build a winning team that represents a variety of backgrounds, perspectives, and abilities. So, regardless of how your diversity expresses itself, you can find a home here at iCIMS.

Role & responsibilities 1. Conducting and managing IS Audits - Conduct risk assessments, identify control weaknesses, and provide recommendations to strengthen internal controls. 2. Identify and assess risks related to IT operations, cybersecurity, and data management. 3. Monitor the adherence with relevant laws, regulations and best practices with respect to IT systems. 4. Excellent communication and interpersonal abilities. 5. Analytical mindset with attention to detail. 6. Advanced knowledge of audit methodologies and practices. 7. Ability to navigate complex regulatory environments. 8. Collaborate with other departments to ensure a coordinated and integrated approach to risk management and compliance. 9. Stay abreast of industry trends, regulatory changes, and best practices to enhance the internal audit function. 10. Prepare and present detailed audit reports to senior management highlighting key findings and recommendations. Work closely with assurance function (risk and compliance) and other stakeholders to facilitate audits and examinations. Preferred candidate profile Bachelors degree in information technology, Computer Science, or related field. Minimum of 5-7 years of experience in auditing information systems, preferably with BFSI. In-depth knowledge of RBI master direction on IT GRC & IT outsourcing. Strong understanding of IT governance, risk management, and compliance. Excellent analytical and problem-solving skills. Ability to work independently and manage multiple audits simultaneously. Strong communication and interpersonal skills. Proficiency in MS Office is a MUST Experience (5+ years) in IT audit within the Banking / Non-Banking Financial Company (NBFC) sector. Experience with auditing ITGC & ITAC controls for BFSI Infrastructure setup & applications