433 It Risk Jobs - Page 17

About the Role: The Analyst would be a part of Vendor Risk Continuous Monitoring Team within Vendor Risk Management (VRM) program. The primary responsibilities include Continuous monitoring of vendors via monitoring tools, reviews the alerts and work with Vendor, Business and SMEs to validate the impact and recommend the corrective actions. These monitoring would be across financial, compliance, reputational cyber security, and privacy domains. This role requires a strong understanding of vendor risk management processes, compliance frameworks, and industry regulations. This role would also require to conduct period assessments on the Third parties as well as on the Affiliates to support the...

Job Description Job Title IT Application Owner Lead, Risk & Control Specialist - VP Location Pune, India Role Description The ITAO Lead is a critical IT role with overall accountability and ownership of the applications and infrastructure instances. The roles key responsibility is to ensure application s IT Governance is in line with the bank s policies, procedures and standards. The ITAO Lead must manage and maintain the applications, ensuring compliance with applicable IT policies & procedures with specific consideration to Information Security guidelines/policies. The Risk and Control Specialist supports all aspects of the Audit lifecycle. This includes Ensuring all identified risks (Audi...

& Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive Network Security, Cloud Security, ITGC Reviews, Compliance Reviews, ISO 27001 Reviews, Purpose of the Job /Role Lead/Manage/Perform Security Reviews which includes Cloud Security and Data Security, Threat and Vulnerability Management, Identity and access management, Technology controls, process controls, and governance, risk and compliance elements, IT General Controls. Responsibilities Should manage/ oversee/execute engagements around Cyber Risk and Maturity Assess...

Add to favorites Favorited View favorites Section 1: Position Summary As a key member of the Procurement Vendor Strategy Department, this role provides meaningful contributions to, and oversight of, the efforts of the team to proactively identify, assess, monitor, and mitigate third-party risk throughout the organization. The Junior Vendor Analyst plays a key role in the first line of defense for vendor risk management, ensuring that third-party vendors meet security, compliance, and operational standards before escalations to onshore teams. This role will focus on vendor risk profiling, due diligence, tracking assessments, and following up with vendors and internal stakeholders to ensure ti...

Client interface for understanding the IT Governance, IT Risk & Compliance Management Controls as applicable to Infrastructure operations. Responsible and accountable for driving and maintaining the Compliance Program Which Includes: I. Defining and implementing controls as per Customer defined Security and Privacy policies II. Ensuring measurement and compliance to the policies. III. Drives Internal and External Audits IV. Participate and advise on Security Incident Investigation V. Training and awareness of Employees on Security Policies Well versed and hands-on experience for establishing processes, controls and audits of compliances like ISO 27001, ISO 15408. SOX ITGCs, SSAE 18 SOC 1 & S...

Qualification and Minimum Entry Requirements B.Tech (IT/CSE) with 8+ Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's...

The Impact you will have in this role: The IT Risk & Security Engineerfor the Global Security & Identity Management team is responsible for monitoring, analyzing, provisioning access across multiple platforms globally for DTCC. The successful candidate will work in conjunction with other team members grant access in Active Directory, Mainframe, ISAM and several distributed platforms in accordance with DTCC Policy and Procedures, will also identify risks in user profiles; convey those risks to appropriate support teams;. Support Disaster Recovery tests. . Establishing strong collaborative relationships with business and technology owners for technology projects central to success. Qualificati...

Role & responsibilities As Identity Audit and Control Analyst, you will be responsible for facilitating control gap identification, risk remediation, and proactive control monitoring. Responsibilities include, but are not limited to, the following: Deliver and present control evidence to internal and external auditors. Contribute to the planning and exertion of Audit findings remediation. Control evidence quality analysis. Preferred candidate profile Experience as an Internal Auditor is preferred Proficiency in scripting and programming languages (e.g., Python, Java, PowerShell, SQL, etc.) is preferred Hands-on experience with Identity Governance tools such as Saviynt, Aveksa, or Active Dire...

Corporate IT Security and Governance, exp. in Information Security, ISO 27001 Implementation , Documentation. risk assessment , 2nd Line of Defense , Control Review, Control Testing, ITGC controls. ,corporate policies and procedures, GAP Analysis,

Minimum of 12 years of relevant compliance experience and cybersecurity knowledge 10+ years of security compliance audit experience would be important Ability to utilize working knowledge of information security best practices such asNIST 800 series, ISO 27000 series, GDPR, etc Experience with compliance programs such as SOC2, FFIEC or FedRAMP/ FISMA, HIPAA, GDPR, or PCI Experience in risk assessment processes, policy development, proposals, work statements, product evaluations, and delivery of technology Ability to understand enterprise business computing operations/requirements, and in particular, Cloud Ability to stand firm on issues yet be flexible and creative when working with customer...

IT Risk and Governance Selected candidate to support our client, APAC based Investment bank, in IT risk and governance profile. JOB SUMMARY: The client is seeking an experienced and proactive 1st line Risk and Governance candidate. The successful candidate will play a crucial role in Client’s Regional team in driving 1st line IT risk management, and Identity Access Management activities for all business units. KEY RESPONSIBILITIES Drive 1st line IT risk management activities regionally through annual RCSA review, user security awareness campaigns, key risk indicator (KRI) metric reporting, IT issue management, IT dispensation and support management in different steering committee or risk rep...

o Cyber security and/or Privacy, IT Audit, IT Risk/Compliance Management with focus on delivering projects in the government sector (working with ministries and departments of state/central government) o In-depth understanding of government sector is required previous experience of working with government sector (India/global) o Background in pre-sales activities such as responding to RFPs/RFIs are required. Should be conversant in working on DPR preparation including low level design, RFP / EOI preparation etc. o Ability to deliver on large and complex government sector projects and meet deadlines while working both independently and in a team environment. o Strong communication skills Expe...

Project Related Functional Knowledge: Significant Know How of various domains under Governance Management of Enterprise IT, Financial Statements - IT Audit Process Integrated Audits, Leading IT Risk Management Frameworks Standards ( such as COBIT, COSO, ITIL, ISO 27001, NIST etc.) Core Technical Skills: Hands on experience (At least 6-8 years) in executing and delivering audits/assurance engagements (At least in 2-3 areas) of IT General Controls around Applications, Database, Operating Systems, Middleware, Networks, IT Application Controls, IT Attestation (SOC1SOC 2 etc.), IT Regulatory Compliance, Third Party Risk Assurance etc. Additional Skills: Understanding of at Technology Risks Contro...

Project Related Functional Knowledge: Significant Know How of various domains under Governance Management of Enterprise IT, Financial Statements - IT Audit Process Integrated Audits, Leading IT Risk Management Frameworks Standards ( such as COBIT, COSO, ITIL, ISO 27001, NIST etc.) Core Technical Skills: Hands on experience (At least 6-8 years) in executing and delivering audits/assurance engagements (At least in 2-3 areas) of IT General Controls around Applications, Database, Operating Systems, Middleware, Networks, IT Application Controls, IT Attestation (SOC1SOC 2 etc.), IT Regulatory Compliance, Third Party Risk Assurance etc. Additional Skills: Understanding of at Technology Risks Contro...

Function : Digital Trust Location: Bangalore/Mumbai/Gurgaon/Noida/Kolkata/Pune/Hyderabad Experience: At least 7+ Years of relevant experience Project Related Functional Knowledge: Significant Know How of various domains under Governance Management of Enterprise IT, Financial Statements - IT Audit Process Integrated Audits, Leading IT Risk Management Frameworks Standards ( such as COBIT, COSO, ITIL, ISO 27001, NIST etc.) Core Technical Skills: Hands on experience (At least 6-8 years) in executing and delivering audits/assurance engagements (At least in 2-3 areas) of IT General Controls around Applications, Database, Operating Systems, Middleware, Networks, IT Application Controls, IT Attestat...

Notice period : Immediate to 30 days Educational Background: , MCA, BCA, or . in Computer Science. Notice Period: Immediate to a maximum of 30 days. Technical Skills: Must have coding experience or at least a basic understanding of programming languages. ITGC Experience ITAC Experience (Mandatory): Candidates should have hands-on experience in any of below controls: Interface controls Input/Process or output controls Positive-negative controls 3-way matching, 4-way matching Data reconciliation Data migration Skills Required: Perform testing of IT Application Controls(ITAC), IPE, and Interface Controls through code reviews, IT General Controls(ITGC) review covering areas such as Change Manage...

Key Responsibilities Performing control assessments on behalf of our clients Conduct process reviews through stakeholder interviews, data validations, and document analysis Apply IT-related and internal control knowledge to deliver high quality engagement Handling end to end risk assessment activities such as: scoping, planning, fieldwork execution, reporting, QA, and issue tracking Execution on client engagements - Ensure quality delivery as per client requirements. Review of working papers suggest ideas on improving engagement productivity and identify opportunities for improving client service. Identify and escalate potential business opportunities for the firm on existing client Plan, or...

Responsibilities include performing audit and consulting assignments related to information technology (IT), cyber security, information security (IS), network security , vulnerability assessment and penetration testing, specialized application controls, IT processes covering IT management, IT infrastructure, IT operations and related business processes. Job Profile: Experience in performing Information security audits, Cyber security audits, IT audits or IT risk consulting in a professional service firm or corporate audit department Experience in performing IT Risk Assessment and Business Impact Analysis (BIA) Preparing audit plans and work programs to perform risk-based audit Evaluating an...

Desired Profile : Experience into ITGC, ITAC, SOC, SOX is must Should have excellent communication skills and MS- Office skills Candidate with extensive experience in cyber security will not be fit for this role Candidate should be ok to travel to client places and work from office from Day 1. Roles Responsibilities- Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Conducting controls assessment in manual/ autom...

We are seeking a detail-oriented professional to support IT General Controls (ITGC) testing, IT audits, SOX compliance, and SOC reporting initiatives. The role involves evaluating IT processes, identifying control gaps, and ensuring regulatory compliance for clients and internal systems. Responsibilities: Perform ITGC testing across applications, infrastructure, and databases. Support SOX 404 compliance audits, including control design and operating effectiveness testing. Conduct IT audits as per defined frameworks and client requirements. Assist in SOC 1 and SOC 2 reporting processes evidence collection, control testing, and reporting. Identify control gaps and recommend remediation actions...

Full time position, 3-5 days per week in office (not shift) Department: ASPIRE Managed Services Practice: Services Reliability Group Vetting Requirements: N/A Role Summary: We are seeking an experienced and results-driven IT Audit and Compliance Analyst who will be responsible for ensuring that the ASPIRE Global Service Centres IT systems, processes, and controls comply with internal policies, regulatory requirements, and industry standards. This role supports risk management efforts by conducting and participating in audits, identifying control gaps, and recommending improvements to strengthen the controls within the environment. Key Responsibilities: Define concise and actionable audit fin...

About this role: Wells Fargo is seeking a Finance Analyst In this role, you will: Participate in functions related to financial research and reporting Forecast analysis of key metrics, as well as other financial consulting related to business performance, operating and strategic reviews Identify opportunities for process improvements within the scope of responsibilities Research moderate to complex financial data in support of management decision-making for a business Create and communicate various activities such as product pricing, product, and portfolio performance Exercise independent judgment to guide key metrics forecasting, closing data and validation Present recommendations for resol...

Experience Implementation of ISO 27001, GRC ITGC & IT Regulatory compliance Knowledge in ISMS, ITRS, Knowledge about regulators RBI, IRDA, SEBI Experience in PCI DSS, ISO 27001, SOC 2, GDPR, RBI guidelines Experience in audits & risk assessments.

Dear Candidate, We are Hiring for MNC!!! Role: Compliance Specialist-Internal Control Assurance Location: Bangalore Work Mode: Hybrid Contract: 12 Months Notice: Immediate-30 days only Required skills: 10+ years of work experience in IT assurance functions (internal / external auditing, control testing, risk management) and/or practical experience in the field of IT and Cyber Security Good understanding of IT risk and control frameworks and the underlying technologies, concepts, and processes Strong knowledge of SQL and relational databases and proficiency in programming languages such as Python or R . Knowledge of data analytics and visualization applications (e.g., Palantir Foundry, Tablea...

Role Description The TDI Engineering unit is responsible for all desktop, end user automation, engineering, and collaboration tools within the bank. The goal of this unit is to provide enterprise development tools as services for teams across Deutsche Bank, enabling them to reach higher levels of maturity in their process. These services consist of all necessary to support teams from initial Program/Project investment governance decisions and subsequently management through development, testing, deployment as well as compliance with the Banks software processes. Tools such as Bitbucket, JIRA, Confluence, TeamCity, Artifactory, MF ALM. The Developer Tools Project Portfolio has multiple Progra...