425 It Risk Jobs

Role & responsibilities Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment Perform testing of IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkt...

Role Overview: We are seeking an experienced Audit and IT Control Compliance Professional to join our team in Chennai. In this role, you will be responsible for ensuring that the organization's financial operations and IT systems comply with internal and external audit standards and regulatory requirements. You will also manage compliance with IT controls, including security processes, vulnerability management, patching, and ensuring adherence to industry best practices.Key Responsibilities:- Perform audits and assessments of financial systems and IT operations, identifying compliance gaps and proposing effective solutions.- Coordinate internal and external audits related to IT controls, ens...

To Apply Submit Details via this form - https://docs.google.com/forms/d/e/1FAIpQLSdqJt9czkl334x6yCXAqaRBfB_xBa2Dnl4mHzyjZxV4hHJ4ng/viewform Job Title: Manager Cyber Incident Response Location - Bangalore Job Summary We are seeking an experienced professional to join our Cyber Defence & Resilience team, with extensive experience in Cyber Incident Response. In this role you will support our client engagements by defining, delivering and improving Cyber Incident Response programs to enhance our clients Readiness, Response and Recovery capabilities for cyber incidents, crises and high-impact events. You will also serve as an internal champion and integrator helping design, develop and deploy Cyb...

About The Role Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Analyst Qualifications: Any Graduation Years of Experience: 3 to 5 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reac...

Role Overview: Assist in planning, executing, and documenting IT audits, focusing on ITGC, SOC audits, ISO 27001 compliance, and data privacy reviews. Work under the guidance of senior auditors to assess internal controls, identify risks, and understand business processes from an audit perspective. Key Responsibilities: Assist in performing IT General Controls and application controls testing. Support SOC 1/SOC 2 audit engagements. Participate in ISO 27001 gap assessments and compliance reviews. Conduct preliminary assessments of data privacy controls. Prepare working papers and draft observations for review. Qualifications & Skills: Bachelors degree in Commerce, Accounting, Information Syst...

Role & responsibilities ITAC - Finance Sector A Bachelor's degree in engineering and approximately 5 years of related work experience; or a masters or MBA degree in business, computer science, information systems, engineering Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools Experience in carrying out OS/DB/Network reviews Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to multiple ERP systems will be added advanta...

Job Description SENIOR ASSOCIATE SOC (Technology Risk Consulting) Risk Consulting helps clients across various industries by addressing the increasingly complex strategic, operational, compliance, and governance challenges faced by those responsible for managing or overseeing dynamic businesses. Risk Consulting major offerings includes AML & Regulatory Compliance; ERP Advisory; Automation and Analytics; Enterprise Risk Management; Internal Audit; SOX Advisory; Contract Compliance; Credit Reviews; Information & Technology Audits; Cybersecurity risk management; Third-party risk management; IT due diligence; SOC1 / SOC2; Security and Privacy Risk; Governance Risk and Compliance; PCI; Cyber Tran...

Job Description SENIOR ASSOCIATE IT SOX(Technology Risk Consulting) Risk Consulting helps clients across various industries by addressing the increasingly complex strategic, operational, compliance, and governance challenges faced by those responsible for managing or overseeing dynamic businesses. Risk Consulting major offerings includes AML & Regulatory Compliance; ERP Advisory; Automation and Analytics; Enterprise Risk Management; Internal Audit; SOX Advisory; Contract Compliance; Credit Reviews; Information & Technology Audits; Cybersecurity risk management; Third-party risk management; IT due diligence; SOC1 / SOC2; Security and Privacy Risk; Governance Risk and Compliance; PCI; Cyber Tr...

Job purpose: The purpose of the Cyber Security Risk Analyst is to own the risk assessment lifecycle and lead detailed technical security audits across cloud and om-prem environments. This position will also be responsible for design and execution of IT controls testing, the evaluation of technical controls effectiveness, and for driving remediation with engineering and product teams. key accountabilities: Lead technology and cyber risk assessments, maintaining a risk register with clear impact/likelihood rationales and treatment plans. Map controls to frameworks (ISO/IEC 27001:2022/27002, NIST CSF 2.0, NIST 80053, CIS Controls, PCI DSS 4.0) and regulatory obligations (GovRAMP, EU AI Act, GDP...

Professional certification such as ISO 27001:2022 Lead Auditor and Implementer. Minimum of 2 years of experience in ISMS, ITGC, and GITC audits. In-depth knowledge of ISO 27001, Cybersecurity Framework, and other relevant standards. Strong understanding of IT infrastructure, network security, and information security best practices. Excellent analytical and problem-solving skills with attention to detail. Effective communication skills to present findings and interact with stakeholders at all levels. Ability to work independently and manage multiple priorities in a dynamic environment. ISO 27001:2022 Lead Auditor / Implementer certified

Responsibilities: Design network architecture aligned with business objectives. Ensure compliance with regulatory requirements (GRC). Manage network security risks through ISO implementation and IT risk management. As discussed, please share the quote for below scope and require the experience 3 years Internal Audit Management – Conducting, supporting, and tracking internal audits for ISO 27001 and related compliance frameworks. Policy & Documentation Maintenance – Maintaining ISO 27001 documentation, ensuring policies are updated, communicated, and implemented across functions. Security Project Management – Supporting delivery and tracking of ongoing and upcoming information security projec...

Roles & Responsibilities of IT Auditor includes as below: Conduct internal and external IT/system audits, including regulatory (SEBI, CERT-In), statutory, stock exchange, and information security audits. Develop, maintain, and review information security policies, procedures, and compliance frameworks (ISMS, QMS, BCMS). Facilitate risk assessments, identify gaps, and coordinate mitigation plans within set timelines. Review and assess IT operations, processes, incident management, business continuity, and disaster recovery readiness. Ensure closure of audit gaps, document reviews, and timely reporting to management, system committees, and the board. Coordinate with departments to ensure regul...

Role & responsibilities This individual contributor role executes and/or assists in the planning and execution of ITRM compliance assessment and consulting projects, as well as driving and coordinating the design and implementation of appropriate controls. Additionally, this role manages medium-size ITRM service delivery and engagements, and components of larger initiatives. This role also develops ITRM processes and/or methodology for designated ITRM initiatives by documenting process and/or methodology requirements and acceptance criteria from process owners and key stakeholders and collects and reports performance metrics using company software/reporting tools. Preferred candidate profile...

Role & responsibilities : Qualification and Minimum Entry Requirements B.Tech/MCA/MBA with 3 5 Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CIA, CISA, CMA, ISO, CRISC, CISSP) Strong Data Analytical skills includi...

Day-to-day responsibilities include but not limited to: Working on Insurance Linked Securities (ILS) Support for individual deal analysis and catastrophe event response Designing and maintaining data systems and databases Optimization and portfolio management Deal pricing and claims reserving Mining data from primary and secondary sources, then reorganizing data Using Statistical tools to interpret data sets Preparing reports Statistics: 1. Basic Probability pdf, cdf, mean, mode, median, standard deviation 2. Monte Carlo simulations 3. Extreme Value theory 4. Statistical concepts central limit theorem, VAR, TVAR (Expected shortfall) Who can Apply ? Candidates with Actuarial science (3+ actua...

Day-to-day responsibilities include but not limited to: Support monthly portfolio analysis in vendor models Designing and maintaining data systems and databases Optimization and portfolio management D evelop and manage catastrophe event response Develop a process for reinsurance calculations and net retentions Mining data from primary and secondary sources, then reorganizing data Using Statistical tools to interpret data sets Preparing and automate monthly reports Statistics : Basic Probability pdf, cdf , mean, mode, median, standard deviation Monte Carlo simulations Extreme Value theory Statistical concepts central limit theorem, VAR, TVAR (Expected shortfall) Who can Apply ? Candidates wit...

The Risk Analyst II investigates and analyzes potential areas of risk to Technology (and Herbalife Nutrition), highlighting and quantifying the risks to help drive business decisions. This role must proactively escalate potential risks to leadership and be outspoken in seeking mitigation actions. As this role progresses, the Risk Analyst will gain responsibility in designing and defining the risk analysis, and serve as an advisor in GTS/DO/Cybersecurity. HOW YOU WOULD CONTRIBUTE: Conduct statistical analyses to determine potential risk and advise leadership Track and maintain operational risk register Provide vulnerability analysis and produce reports for management. Maintain knowledge of th...

Department- Technology Controls Assurance Reports To - Associate Director - Technology Risk & Assurance Level - Grade 3 About your team The Technology Controls Assurance (TCA) team is part of the Enterprise Resilience function which is a centralized global team responsible for supporting assurance activities across Technology and Enterprise services function, working closely with our internal and external auditors. The scope of the TCA team includes maintaining a central Technology and Information Security policies and controls library; Facilitation of External Audit and Certifications to Industry Standards (such as ISO); facilitating Client led technology audit, responding to client questio...

At EY, youll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you And were counting on your unique voice and perspective to help EY become even better, too Join us and build an exceptional experience for yourself, and a better working world for all, Risk Consulting Protect Tech Staff (ITGC) Key Responsibilities Consistently deliver quality client services Drive high-quality work products within expected timeframes and on budget Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes, Foster relationships with client personnel to analyse...

At EY, youll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you And were counting on your unique voice and perspective to help EY become even better, too Join us and build an exceptional experience for yourself, and a better working world for all, Risk Consulting Protect Tech Staff (ITGC) Key Responsibilities Consistently deliver quality client services Drive high-quality work products within expected timeframes and on budget Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes, Foster relationships with client personnel to analyse...

Job Title: IT Compliance Manager (Mid-Level) Department: Compliance / Information Technology Location: Mumbai Reporting To: Chief Compliance Officer Job Purpose: To ensure the banks IT systems, processes, and infrastructure comply with applicable regulatory requirements, internal policies, and industry standards. The role involves managing IT compliance programs, conducting audits, and supporting risk mitigation efforts across technology platforms. Key Responsibilities: Compliance Program Management: Develop and implement IT compliance frameworks aligned with RBI, SEBI, and global standards (e.g., ISO 27001, NIST). Monitor adherence to internal IT policies, data protection laws, and cybersec...

Requirements: Master's or bachelor's degree in information Technology / Information Security / Computer Science, or a related field. 10 years of proven experience in Information Security, specifically in vendor risk assessments, cloud security, compliance and business continuity. Experience with security auditing, policy development and emergency response protocols. Hands-on experience in cloud security management (e.g., AWS, Azure). Familiarity with Business Continuity and Disaster Recovery planning. Strong problem-solving skills and attention to detail. Excellent communication skills and the ability to collaborate with stakeholders at all levels. Preferred Qualifications: Certifications su...

Professional should be able to work in hybrid model from office/client office. Basic knowledge of IT audits- ITGC, ITAC and SOC report understanding Desired qualifications Graduation / B.E/ B. Tech in Any Specialization. Work experience: 1-2 years. Role Summary: Entry-level role focused on execution under guidance. Responsibilities: Assist in execution of ITGC and ITAC testing under supervision. Perform IT audits including walkthroughs and sample-based testing. Document control testing results, observations, and evidence clearly and accurately. Participate actively in internal training sessions and team discussions to build domain knowledge. Support in data collection and client coordination...

Join one of the worlds most influential companies and leverage your skills in cybersecurity to have a real impact on the ficial industry. As a Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity & Tech Controls team, you play a crucial role in developing top-tier cybersecurity solutions for diverse software applications utilizing modern cloud-based technologies. As a key technical contributor, your responsibilities include implementing essential cybersecurity architecture solutions by identifying risks, creating mitigation strategies, and communicating solutions across various technical domains within different business functions to support project objectives. Job respons...

1. Responsible for Information Security (IS) Governance, risk management and compliance in the organization. 2. Develop and maintain documentation related to Information Security governance, risks, and audits in alignment with regulatory and compliance requirements. 3. Create, review, and update policies and standards to adapt to evolving organizational needs. 4. Assist in interpreting policies, standards, and guidelines to ensure consistency and regulatory compliance. 5. Monitor and enforce adherence to policies and Standard Operating Procedures (SOPs) across various internal functions. 6. Collaborate closely with the CISO, CRO, and key stakeholders in Risk, IT, and Inspection functions 1. ...