19 It Grc Jobs

Req ID: 327248 We are currently seeking a Archer IRM Developer to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Configure and develop solutions for customers on the Archer IRM platform Configure and develop integrated solutions for customers using the Archer IRM platform utilizing additional industry standard applications including SSO, web services integrations, import sets and table polling Design and configure complex configurations including advanced workflow, questionnaires, layouts, reports, data feeds and data imports, campaigns, dashboards, notifications, package installation and workflows, etc. Support and escalate issues and defects related to specific customer environments as required, provide incident support as required Perform system and unit testing, document results Develop documentation as required, per operational processes Follow the engagement model as determined by the engagement manager for projects, as needed Follow the standardized project implementation methodology

10+ yrs exp IT & IT Security Certified in ISO 27001: 2013 Enterprise IT Governance including knowledge of IT risk management and controls Strong power point presentation creation and design Func as SPOC for IT GRC & Audits Team Leading Exp preferable Required Candidate profile Manage establishment of operate & tech decision-making process to ensure IT svc are align to organization priorities & risk appetite Prep sec dashboards with KPIs, sec metrics for CISO presentations Perks and benefits Mediclaim + additional 10% performance bonus

BE, B.Tech, MSc (Information Technology), CISA, CISSP, CEH General Description: Candidates must possess hands-on audit experience in IT general controls. As Information Technology Auditor, you will examine, evaluate and verify policies, procedures and internal controls around information systems and networks. Exposure to ISO27001, SSAE16, Vulnerability Assessment and Penetration Testing, Security Technologies is an added advantage. Responsibilities: Timely completion of information technology and information security audits in a manner that is consistent with the professional standards set by Qadit. Adequately analyze and document all information systems and related controls, and develop an appropriate audit program to test the controls identified. Evaluate the adequacy of security and processing controls as they relate to each audit, and the effectiveness of general IT controls in effect in the IT environment. Review the means of safeguarding information assets and monitor ongoing performance metrics established by the IT and Security Departments of clients. Prepare audit work papers according to established corporate guidelines and industry standards, and as applicable create audit reports. Maintain and enhance audit work paper templates. Maintain active communication with clients to manage expectations, ensure satisfaction, make sure deadlines are met, and lead change efforts effectively. Team with partners and senior managers on proposals and business development calls. 1. Conducting vulnerability assessments & penetration testing analyzing related reports. 2. Running VA PT tools 4. IT general computer controls audits Position will be based in Chennai, but will need to travel extensively both within and outside India. Role Summary Support IT audits, risk assessments, and compliance tasks in the IT GRC domain. B.E./B.Tech (CS/IT/ECE), B.Sc/M.Sc (IT/CS), or B.Com/BBA with interest in IT GRC audit. Key Skills Basic understanding of ISO 27001 and other security frameworks including SOC 2, GDPR and HIPAA, audits, MS Office; good communication and analytical skills. Pursuing CISA, ISO 27001 Foundation, or DISA is a plus. Not mandatory; freshers are welcome. Hands-on exposure to cybersecurity, compliance, and IS audit under expert guidance. Lead and execute IS audits, risk assessments, and compliance reviews within the GRC framework. Graduate in B.E./B.Tech (CS/IT), B.Sc/M.Sc (IT/CS), or equivalent. Upto 2 years in information security, IT audit, or risk/compliance roles. Strong knowledge of ISO 27001 and other security frameworks including SOC 2, GDPR and HIPAA, ITGC, regulatory frameworks (RBI, SEBI), audit tools, and MS Office. CISA, DISA, ISO 27001 Lead Auditor (preferred). Opportunity to lead audits, enhance GRC maturity, and work with senior stakeholders in a dynamic environment.

Opportunity for a remote role. Experienced in GDPR, HIPAA, PCI-DSS, ISO 27001, SOC 2 compliance. Led implementation and maintenance of compliance programs including TPRA. Skilled in IT audit planning, ISO 27001 audits, and reporting.

Hiring GRC Consultant : MNC Client : Mumbai (Powai Location). Required Experience: 3+Years Notice Period: Immediate -1week Skills Required: Strong in GRC (Governance, Risk, and Compliance). Strong in ISO 27001, NIST, and Indian regulatory frameworks.

Dear Candidate, We are hiring an IT Security Consultant to help assess, design, and implement robust cybersecurity strategies for clients. Ideal for professionals with deep knowledge of security standards and hands-on defense experience. Key Responsibilities: Conduct security assessments and risk analysis Design and implement security controls, policies, and frameworks Guide clients on compliance with ISO 27001, NIST, SOC2, etc. Lead incident response and security awareness initiatives Required Skills & Qualifications: Experience in network, application, and cloud security Knowledge of IAM, SIEM, firewalls, and encryption Strong consulting, communication, and client-facing skills Bonus: Security certifications (CISSP, CISM, CEH) Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Dear Candidate, We are hiring an IT Compliance Analyst to ensure adherence to regulatory standards and internal security policies. Perfect for detail-oriented professionals with a risk and governance mindset. Key Responsibilities: Monitor IT processes for compliance with SOX, GDPR, HIPAA, etc. Conduct audits, risk assessments, and gap analyses Collaborate with security, legal, and IT teams Maintain documentation and support policy enforcement Required Skills & Qualifications: Knowledge of IT compliance frameworks (ISO 27001, NIST, COBIT) Experience with audit processes and risk management Strong communication and analytical skills Bonus: Certification (CISA, CRISC, or similar) Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Job Description: IT GRC Analyst I Department: Information Technology Reports To: Senior IT GRC Analyst Location: 100% Remote Experience: 10+ Years Job Summary: We are seeking a dedicated IT GRC (Governance, Risk, and Compliance) Analyst I to join our dynamic IT team. The primary responsibility of this entry-level role is to assist in ensuring that IT operations are in compliance with regulatory requirements and internal policies, with a particular emphasis on supporting Sarbanes-Oxley (SOX) audits. The IT GRC Analyst I will support risk assessments, policy development, compliance monitoring activities, and SOX audit preparations. Key Responsibilities:* Assist in the development, implementation, and maintenance of IT policies and procedures. Conduct regular risk assessments and audits to ensure compliance with regulatory standards and internal policies, with a focus on SOX controls. Support the IT team in identifying, evaluating, and mitigating IT risks. Monitor compliance with security policies and procedures to ensure a secure environment. Collaborate with different departments to ensure integrated risk management practices. Assist in preparing and executing SOX IT control reviews, documenting compliance efforts, and maintaining records of SOX controls. Provide support in responding to internal and external SOX audits and regulatory assessments. Recommend improvements to SOX controls and processes to enhance the overall security posture. Maintain up-to-date documentation of IT GRC activities, compliance reports, and SOX audit evidence. Qualifications: Bachelor's degree in Information Technology, Computer Science, or a related field. Basic understanding of IT GRC principles, regulatory requirements, risk management frameworks, and SOX compliance. Strong analytical and problem-solving skills. Excellent written and verbal communication skills. Ability to work collaboratively in a team environment. Basic knowledge of security standards (e.g., ISO 27001, NIST, GDPR, HIPAA) and SOX compliance requirements is a plus. Relevant certifications (e.g., CISA, CRISC, CISSP) are desirable but not required for entry-level applicants. Experience: Entry level; 0-2 years of experience in IT risk management, compliance, or a related field, preferably with exposure to SOX compliance activities.

Role & responsibilities 1. Conducting and managing IS Audits - Conduct risk assessments, identify control weaknesses, and provide recommendations to strengthen internal controls. 2. Identify and assess risks related to IT operations, cybersecurity, and data management. 3. Monitor the adherence with relevant laws, regulations and best practices with respect to IT systems. 4. Excellent communication and interpersonal abilities. 5. Analytical mindset with attention to detail. 6. Advanced knowledge of audit methodologies and practices. 7. Ability to navigate complex regulatory environments. 8. Collaborate with other departments to ensure a coordinated and integrated approach to risk management and compliance. 9. Stay abreast of industry trends, regulatory changes, and best practices to enhance the internal audit function. 10. Prepare and present detailed audit reports to senior management highlighting key findings and recommendations. Work closely with assurance function (risk and compliance) and other stakeholders to facilitate audits and examinations. Preferred candidate profile Bachelors degree in information technology, Computer Science, or related field. Minimum of 5-7 years of experience in auditing information systems, preferably with BFSI. In-depth knowledge of RBI master direction on IT GRC & IT outsourcing. Strong understanding of IT governance, risk management, and compliance. Excellent analytical and problem-solving skills. Ability to work independently and manage multiple audits simultaneously. Strong communication and interpersonal skills. Proficiency in MS Office is a MUST Experience (5+ years) in IT audit within the Banking / Non-Banking Financial Company (NBFC) sector. Experience with auditing ITGC & ITAC controls for BFSI Infrastructure setup & applications

Job Summary The Deputy Manager - IT GRC (Governance, Risk, and Compliance) role at ENGIE India is crucial in ensuring the organization's Digital & IT landscape is secure, compliant, and aligned with business objectives. This role involves developing, implementing, and managing IT GRC, risk management, and ensuring compliance with regulations and internal controls. This is an individual contributor role based in Pune, India, with occasional onsite travel to support Digital & IT audits. Main Objectives The primary objective is to ensure the IT landscape is secure, compliant, and aligned with business goals. This involves: Implementing comprehensive IT GRC strategies. Implementing INCOME framework for D&IT function Implement and Manage - Risk management processes. Ensuring adherence to regulations and standards. Maintain Digital &IT internal control requirements Lead the Digital & IT Internal Control and Compliance Key Responsibilities Audit Preparation and Management: Prepare processes, teams, and documents for internal and external audits. Track and remediate audit observations with corrective and preventive actions. Risk Management: Manage and track all technology-related risks for timely closure. Oversee formal risk analysis and self-assessment programs for various systems and processes. Compliance : Ensure compliance with privilege access management processes and relevant IT regulations and standards, such as ISO 27001 and NIST CSF. Documentation and Communication: Maintain strong documentation and communication skills. Ensure clear communication with stakeholders and effective conflict resolution. Implementing Initiatives: Coordinate with various departments to ensure smooth execution and monitor progress. Continuous Improvement: Foster a culture of continuous improvement within the IT GRC team. Stakeholder Engagement: Engage with key stakeholders, including management and department heads, to ensure IT GRC strategies are well-supported and integrated. Conducting Risk Assessments: Oversee comprehensive risk assessments to identify potential risks. Developing Mitigation Strategies: Implement controls and safeguards to reduce the likelihood and impact of risks. Monitoring and Reporting: Establish effective monitoring mechanisms and regularly report on risk status to management. Collaboration with Departments: Work closely with various departments to ensure effective implementation of risk management strategies. Adhering to Regulations: Ensure compliance with all relevant IT regulations and standards. Implementing Best Practices: Promote the adoption of industry best practices within the organization. Internal and External Audits: Conduct regular internal audits and manage relationships with external auditors and regulatory bodies. Policy Development: Develop and maintain comprehensive IT GRC policies. Coordination and Collaboration Cross-Departmental Collaboration: Collaborate with various departments to ensure effective implementation of GRC initiatives. Stakeholder Communication: Ensure stakeholders are informed about the progress and impact of GRC activities. Conflict Resolution: Resolve conflicts that arise during the implementation of GRC initiatives. Internal Audits: Conduct internal audits to assess the effectiveness of IT GRC controls and processes. Managing External Audits: Ensure the organization is well-prepared for external audits and address any findings promptly. Audit Preparation: lead the preparation for audits to ensure a smooth process. Addressing Audit Findings: Develop and implement action plans to resolve audit findings and prevent recurrence. Continuous Improvement: Use audit insights to drive continuous improvement in GRC practices. Regular Reporting: Provide regular reports on IT GRC activities to management and the board. Clear Communication: Ensure GRC-related information is communicated clearly and consistently. Training and Awareness: Promote awareness of GRC policies and practices within the organization through training sessions and resources. Technical Knowledge and Skills Understanding IT Systems: Strong understanding of IT systems, including Cloud services, IT-OT convergence, hardware, software, networks, and data management practices. Security Principles: Deep understanding of security principles, including encryption and access control. Risk Management Frameworks: Familiarity with frameworks such as ISO 31000 and NIST RMF. Emerging Technologies: Stay updated on emerging technologies and their impact on IT GRC practices. Technical Certifications: Relevant certifications such as CRISC are valuable. Compliance Knowledge Regulatory Requirements: Deep knowledge of relevant regulatory requirements, such as CEA guidelines, Internal Controls (ITGC), IT Act, Indian and global Energy sector compliance, GDPR, HIPAA, and SOX. Industry Standards: Familiarity with industry standards like ISO 27001 and NIST CSF. Compliance Assessment: Conduct regular compliance assessments and develop comprehensive compliance policies. Training and Awareness: Promote awareness of compliance requirements within the organization. Analytical and Problem-Solving Risk Analysis: Conduct formal risk analysis to identify potential vulnerabilities. Problem-Solving : Develop and implement effective solutions to mitigate risks. Data Analysis: Analyze data to identify trends, assess risks, and make informed decisions. Decision-Making: Make informed decisions based on risk and compliance analysis. Continuous Improvement: Promote a culture of continuous improvement in GRC practices. Qualifications and Experience Strong background in Information Technology, Cybersecurity, or a related discipline. Knowledge of frameworks like ISO 27001, NIST, GDPR, and HIPAA. 5-8 years in IT GRC, preferably in the Energy sector. Hands-On Experience: Identifying, assessing, and mitigating risks.

This is regarding opening For IT Audit with leading Financial Industry!! Experience: 3+Years Location: Mumbai Job description: Role is to perform an audit of information systems. Responsibility: Creating succinct and understandable risk/control matrices and reporting Perform the audit in accordance with the audit strategy. When interacting with IT stakeholders, show professionalism, expertise, and clear communication. Exhibit a reasonable understanding of the sector or industry and be cognizant of any technical difficulties or audit concerns. Qualifications: Graduates with pertinent certifications, including CISA. Work Experience: Strong understanding of rules and circulars issued by regulatory bodies (RBI) 47 years of work experience with prior experience in Internal Audit, Risk Management, Regulatory, and Compliance roles in the banking and financial services (NBFC) industries Experience conducting information systems and security audits, application control reviews, and application functionality reviews Experience with audit approach in practice Strong logical and reasoning abilities; the capacity to collaborate well with others; and the technical skill set required of an information systems auditor include: A strong foundation in computer hardware and software expertise; familiarity with a range of operating system. Proficiency in databases Practical knowledge of network architecture; familiarity with other IT infrastructure; and familiarity with application controls and interfaces. Understanding of information security governance; familiarity with computer-assisted auditing techniques (CAATs); and familiarity with the framework for business continuity and disaster recovery. If you are interested kindly share your updated resume on aayushi@thepremierconsultants.com

We are hiring for ServiceNow IRM Developer role based in Hyderabad, with flexibility for remote work. As a ServiceNow IRM Developer, your responsibilities would include developing and implementing solutions within the ServiceNow platform, collaborating with cross-functional teams to understand business requirements, and ensuring the successful delivery of Information Risk Management (IRM) solutions. Qualifications Proficiency in ServiceNow development and Information Risk Management (IRM). Experience in integrating and configuring ServiceNow modules. Knowledge of GRC (Governance, Risk, and Compliance) processes. Strong understanding of IT security principles and risk management. Excellent problem-solving and analytical skills. Effective communication and collaboration abilities. ServiceNow Developer certification is a plus.

Corporate IT Security and Governance, exp. in Information Security, ISO 27001 Implementation , Documentation. risk assessment , 2nd Line of Defense , Control Review, Control Testing, ITGC controls. ,corporate policies and procedures, GAP Analysis,

A minimum of 3 years of experience with large scale cybersecurity-focused solutions providers. 3 years of industry experience as cyber architect, and/or cybersecurity manager, establishing security baselines, phishing simulation, etc. Understanding of key cybersecurity-focused technology and solution concepts (Risk Management Framework, security architecture and engineering, proactive defense, threat modeling, data protection management, network security management, identity and access management, asset management, etc.) Experience with advanced cybersecurity programs, tools and techniques such as Security Operations Centers; Managed Detection and Response; Security Orchestration, Automation and Response; Threat Hunting Modeling and Intelligence; Red Team, Penetration Testing, Attack Surface Management, Vulnerability Management) Experience with Cloud and various Platform-based cybersecurity management, including CSP Cloud Security (GCP, AWS, Azure), PaaS Security (Salesforce, Databricks, Snowflake). Candidate should have good understanding of: Infrastructure and Network security Cloud Security Identity and Access Management Privileged Management (CyberArk) Compliance with Banking Regularity compliance (BFSI), HIPAA, PCI and the NC Identity Theft law. Governance Framework such as NIST, ISO, SOC2, etc. Firewall security IDS/IPS placement SIEM tools Wireless Security End point security Data Loss Prevention Web Application Security Knowledge of ITIL incident and problem management. Knowledge of Security Incident Event Management (Qradar, Splunk SIEM) is a add on Hands on experience on Firewall (Palo Alto, CISCO), VPN (Zscaler), Proxy (forward, Reverse, Transparent and Web 2.0), SSL interception/MITM & Data leakage space, Security Analytics. Implementation, customization, coding, Support Candidate should be able to understand the current system security measures and implement security enhancements in line with organizations goals and objectives Conduct regular system tests and audits by validating and verifying technical controls in minimizing the risk Good understanding of business requirements, identify key security requirements and articulate it to business effectively and efficiently in terms of actual risk and safeguards, risk management An Analytical mindset with excellent communication skills & Problem-solving abilities. Key Responsibilities: Serves as the Cybersecurity Consultant/ Technical architect handling large implementation/ operation programs. Should handle team for 30+ people Supports defining, enhancing, evolving, and demonstrating point of view and delivery approach of cybersecurity-focused services. Supports Infosys strategic business opportunities through technical contribution to sales and business development pursuits Builds and maintains client relationships, developing a strategic vision for clients and internal teams. Interface with Operations Directors, Program Managers and technical staff to develop, architect, and deliver world-class solution. Works with customers IT, software development and enterprise architecture teams to ensure security is foundational and comprehensive throughout product and technology-related solutions. Brings an innovative approach to cybersecurity, bridging commercial best practices and new products/approaches to solving and evolving cybersecurity architectures and solutions for Temasek. Effectively communication risks and system issues to all the stakeholders ahead in time to avoid any program risks/escalation.

Role & responsibilities 1. Risk Management and Compliance: Conduct comprehensive IT risk assessments and vendor audits. Develop and implement strategies for risk mitigation and compliance. Stay updated with IT and data privacy regulations (DPDPA, GDPR, etc.) 2. Data Privacy and Protection: Develop, maintain, and enforce data privacy policies. Ensure organizational adherence to data privacy laws. Perform Data Protection Impact Assessments and manage risk remediation. 3. Policy Development and Implementation: Create and revise IT GRC policies and procedures. Collaborate across departments for policy implementation. Train and guide staff on compliance and data privacy practices. 4. End User awareness: Develop content/flyers for regular communication to employees. Conduct quarterly InfoSec quiz. Conduct online user awareness sessions on Information Security & Data privacy 5. Stakeholder Communication: Communicate IT GRC and data privacy standards to stakeholders. Prepare compliance reports for management and regulatory entities. Liaise with external auditors and regulatory bodie.

Job Job Title RSA Archer Developer Responsibilities Design, develop, and implement Archer applications using tools like Application Builder, Efficient Forms, Workflows, Data Feeds, and Reporting.Ensure data accuracy and integrity through data cleansing and validation techniques.Develop and maintain user-friendly dashboards and reports for enhanced decision-making.Stay up-to-date on the latest Archer features and functionalities.Collaborate with internal teams (IT, business) to ensure successful project execution.Document processes and solutions effectively. Technical and Professional Requirements: Experience with Agile development methodologiesExperience with data analytics and reporting tools (Power BI, etc.)Knowledge of compliance frameworks (SOX, HIPAA, GDPR)Programming experience (Perl, Python) Preferred Skills: Domain->Financial Risk Management->Credit Risk Management Technology->Analytics - Packages->Python - Big Data Technology->Business Intelligence - Visualization->MSBI (Power BI) Educational Requirements Master Of Comp. Applications,Master Of Engineering,Master Of Science,Master Of Technology,Bachelor Of Comp. Applications,Bachelor Of Science,Bachelor of Engineering,Bachelor Of Technology Service Line Application Development and Maintenance * Location of posting is subject to business requirements

Skill required: Risk & Compliance - Risk Management Designation: Risk and Compliance Associate Qualifications: Any Graduation Years of Experience: 1 to 3 years What would you do? You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.In Risk Management you will be responsible for anticipating, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. You will be expected to follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. What are we looking for? In Risk Management you will be responsible for anticipating, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. You will be expected to follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery.In Risk Management you will be responsible for anticipating, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. You will be expected to follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. Roles and Responsibilities: In this role you are required to solve routine problems, largely through precedent and referral to general guidelines Your expected interactions are within your own team and direct supervisor You will be provided detailed to moderate level of instruction on daily work tasks and detailed instruction on new assignments The decisions that you make would impact your own work You will be an individual contributor as a part of a team, with a predetermined, focused scope of work Please note that this role may require you to work in rotational shifts Qualifications Any Graduation

Job Description: We are looking for a highly skilled and experienced Cybersecurity Manager to join our team. The successful candidate will play a crucial role in supporting PWC Cyber Security practice by proposing and delivering Cyber Security solutions to clients. Responsibilities include building a strong practice for Financial services industry and play a key delivery lead for conducting Information Security (IS) Audits, Risk Assessments, Cybersecurity Maturity Framework Assessments ( NIST Framework ) , Vendor Risk Assessments and Gap Assessments against various Reserve Bank of India (RBI) Master Directions for Cybersecurity, SEBI guidelines for Cybersecurity and IRDA cybersecurity guidelines Key Responsibilities: Conduct comprehensive IS audits to evaluate the effectiveness of cybersecurity controls and compliance with RBI Master Directions for Cybersecurity. Perform risk assessments to identify, evaluate, and mitigate cybersecurity risks across the organization. Assess the organization's cybersecurity maturity using established frameworks and provide actionable recommendations for improvement. Develop and implement cybersecurity policies, procedures, and guidelines in accordance with RBI regulations. Collaborate with internal and external stakeholders to ensure a robust and compliant cybersecurity posture. Provide expert advice and support on cybersecurity best practices and regulatory requirements. Prepare detailed audit reports, risk assessment reports, and maturity assessment reports for senior management. Stay up-to-date with the latest cybersecurity trends, threats, and regulatory changes to ensure continuous improvement of the organization's cybersecurity measures. Possess rounded cybersecurity experience with an understanding of all domains of Cybersecurity including IAM, VAPT, Strategy and consulting, SIEM, and SOC solutions. Qualifications: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Professional certifications such as CISA, CISM, CISSP, or equivalent are highly desirable. Skills / Work experience: The suitable candidate should demonstrate suitable work experience in the following areas. Proven experience in conducting IS audits, risk assessments, and cybersecurity maturity assessments. In-depth knowledge of RBI Master Directions, SEBI, and IRDA guidelines for Cybersecurity and other related regulations around IT GRC and IT Outsourcing. Strong understanding of cybersecurity frameworks, standards, and best practices. Excellent analytical, problem-solving, and communication skills. Understanding of AI Standards and Frameworks: Knowledge of AI standards and frameworks such as ISO/IEC 42001:2023, ISO/IEC 22989 (AI concepts and terminology), ISO/IEC 23053 (Framework for AI systems using machine learning), and NIST Risk Management Framework.

Greetings From Bahwan CyberTek (BCT), Job Title: Senior Associate \ Assistant Manager Location: Bangalore, Chennai, Coimbatore Position Summary: This position is primarily responsible for execution of various engagement objectives within assigned areas and assists where necessary to complete the overall engagement. The individual may be responsible for day-to-day execution of engagement objectives on smaller engagements. This role requires the ability to supervise teams of 1 3 Associate staff members to ensure they receive direction and resources in the event engagement issues arise. This requires a basic understanding of the clients industry (e.g. inventory / distribution, oil & gas, financial institutions) and pertinent regulations, and the ability to learn unfamiliar industries and regulations. The individual should have a solid understanding of the role that information technology plays in financial reporting and other critical business cycles. This position should have a solid understanding of IT general controls including security administration, program change management, program development and computer operations, and should develop a better than basic understanding of the interaction of systems and financial processes. Skills: Experience in ITGC, SOC 1, SOC 2 Audit and SOX 404 preferred. CISA or CISA candidate, CISSP or CISSP candidate, CIA or CIA candidate, and/or CPA or CPA candidate. 2- 3 + years or more equivalent experience (public accounting / external audit, internal audit, information technology and/or staff accountant responsibilities). Excellent written and oral communications skills. Team orientation and strong interpersonal skills. Basic familiarity with GAAP, GAAS and IIA standards. Proficient at Microsoft Office product suite. Knowledge of IT controls and how they affect the control environment. COBIT, COSO, and related standards preferred. Greater than basic understanding of Sarbanes Oxley Section 404, and the role that information technology plays in compliance. Greater than basic understanding of systems infrastructure and security, connectivity, remote access, and data mining. Greater than basic understanding of financial reporting, transaction cycles and business processes. Greater than basic understanding of fundamental layers of information systems including network infrastructure, computer operating systems, database management systems, and computer applications. Experience supervising 1 to 3 or more individuals.