297 It Risk Jobs - Page 3

About the Role: Grade Level (for internal use): 11 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role reports to the Head of Technology Risk and Governance, in the Global Digital Technology Organization. The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact Lead efforts in defining and documenting a comprehensive Issue Management Process document/ methodology Lead efforts to centralize control gaps/ issues in GRC tool Lead efforts in logging, tracking, monitoring and remediation of control gaps/ issues Coordinate with key stakeholders to ensure the issues are clearly articulated, mapped to appropriate risk category, mitigating controls are identified through proper risk assessment Lead efforts in periodic reporting of issues to senior Management Conduct data analysis to demonstrate trends of progress made in issue remediation by various technology processes Conduct meetings to discuss issues and risk remediation plan Lead efforts in risk exception and risk acceptance process Monitor risk acceptance scenarios and bring it to appropriate committees for reporting Prepare PowerPoint presentations to provide comprehensive and holistic issue management process What Were Looking For Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5+ years of experience in a large global organization leading the technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.2 - Middle Professional Tier II (EEO Job Group)

IT Risk Acceptances Act as Service Owner for the IT and Product Security Risk Acceptance program by reviewing, identify mitigation and compensating controls. Present risk analysis to Agilent s CIO and CIO staff on a regular basis . IT Security Risk Assessments . Collaborate with the Agilent Enterprise IT team, the rest of the Cyber Security team as well as the Product Security team to perform hands-on risk assessments to identify and mitigate cyber security risks relating to new or existing IT solutions. Risk Program Improvement In collaboration with the rest of the risk management and cyber security team, continuously identify and implement process and program improvements to better identify and quantify risk. Information Security Consulting Participate in new technology discussions as a security liaison, recommending secure software, host and network designs that protect corporate information confidentiality, integrity and availability. Qualifications Bachelor or Master s Degree in Computer Science, Information Systems, or equivalent experience. At least 5 years of directly related experience in Information Security Risk Management Strong knowledge and experience in cloud solutions Demonstrated competency and experience in the areas of IT compliance (DS5 Ensure System Security process management) Experience in Security Vulnerability management, data protection and the ability in understanding and translating security policies into information security solutions. Excellent communication skills with the ability to translate technical requirements, problems and solutions to and from a non-technical audience. Strong analytical and problem-solving skills are required.

Not Applicable Specialism Risk Management Level Senior Associate & Summary In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisations security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats Responsibilities Experience in conducting IT risk assessments. Sound understanding of ISO 27001, NIST, PCI, Data Privacy, and Cloud Security. Knowledge on application infrastructure architecture. Knowledge on SaaS application architecture. Knowledge on database and middleware communication. Knowledge on API security. Good communication skills. Good team player. Good presentation skills and senior stakeholder management. Certifications CISA, CISSP, CCNP, CCSP, CISM, CRISC etc. Mandatory Skill Sets IT Risk, ISO 27001, NIST, PCI, Data Privacy, and Cloud Security. Preferred Skill Sets Stakeholder Management, Team Management Years of Experience Required 4+ Years Education Qualification BE, B.Tech, M.Tech, MCA, MBA graduates. Education Degrees/Field of Study required Bachelor of Technology, Master of Business Administration Degrees/Field of Study preferred Required Skills ISO Certification, NIST Standards Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Learning Agility, Malware Analysis, Malware Detection Tools {+ 16 more} No

As a Software Engineer III at JPMorgan Chase, you serve as a seasoned member of an agile team to design and deliver trusted market-leading technology products in a secure, stable, and scalable way. You are responsible for carrying out critical technology solutions across multiple technical areas within various business functions in support of the firm s business objectives. Job responsibilities The Alternatives Technology team is currently seeking an application developer to join and drive a team responsible for the design and delivery of strategic solutions to support Alternative Investment businesses. The successful candidate will be from a server side development background, have a proven track record in designing and delivering distributed, event driven services and be able to demonstrate a detailed knowledge of architecture principles and software development best practices Expertise working in an Agile project environment, with the ability to work with the Product Owner and SCRUM Team on all aspects of the project; from development of the product vision and business case, through to delivery of product increments. An understanding of code quality, code security and application quality KPIs; in order to provide project metrics and data to enable development teams to make intelligent decisions throughout the delivery lifecycle. The ability to facilitate development and architecture discussion, through a detailed understanding of current application development tools and techniques. A strong focus on engineering excellence and compliance with all corporate, regulatory, IT risk and architecture policies Results orientated Drives results through people, communication, influence and interaction Required qualifications, capabilities, and skills Formal training or certification on software engineering concepts and 5+ years applied experience Extensive Java development including areas such as Spring, Spring Boot and experience in React. Knowledge of web service technologies such as REST and JSON. Knowledge of application security areas authorization, authentication, encryption Multi-threaded application development experience. Automated testing techniques especially BDD, experience working with Sonar, SSAP, JIRA, GIT, Maven etc. Strong written and oral communication skills, strong team working skills and the ability to work on multiple parallel work items with other developers, analysts etc Preferred qualifications, capabilities, and skills Familiarity with modern front-end technologies Exposure to cloud technologies/AWS Same Posting Description for Internal and External Candidates

Roles and Responsibilities: Take end-to-end ownership over advisory and validation of residual risk issues Lead and execute formal risk reviews and assessments Review and challenge risk exception requests Collaborate with internal stakeholders to ensure remediation dependencies are captured and managed Identify and act upon opportunities to improve Risk Governance processes Participate in global and regional governance committees Act as a role model for Risk Excellence Interface Regulator Exams (RBI/IFTAS/SEBI/NPCI) Identify/Assess/Manage Risks against LRR and internal policies, and Track them to closure through Issue Management Experience Required: Bachelor's degree in Information Technology, Risk Management, Audit, or related field Experience in Technology Risk & Control, Risk Assurance, IT Security or Technology Operations Ability to break complex problems down into manageable action plans Ability to effectively balance multiple tasks through careful prioritization Ability to work independently while sharing expertise with others Strong communication and stakeholders management skills Preferred Qualifications: A minimum of 5 years of experience in IT Risk, IT Audit, IT Security, Project Management or Technology Operations. Consulting experience is a plus. Evolving expertise in several of the following areas: financial services, information technology, information security, systems development, change / release management, access security and physical access controls and procedures Proven experience in risk assessment and measurement Proven experience in IT security remediation, implementation of technical safeguards and validation of automated controls Risk / Security Certification (CRISC, CISA, CISM, CISSP) Practical knowledge of risk analysis methodologies, frameworks, standards, and best practices (NIST, COBIT) Work Location: Mumbai

Position Purpose The Manager, RISK ORM 2S ISPL will report hierarchically and functionally to the AVP/VP of RISK ORM 2S ISPL. The RISK ORM perimeter includes all operational risks for business processes, which are performed in Chennai/Mumbai. Located within the RISK Function of BNP Paribas, the role of the Assistant Manager, RISK ORM 2S ISPL, is to ensure that the components of the operational risk management framework are implemented and is operating effectively in 2S ISPL Chennai and Mumbai. Responsibilities Direct Responsibilities The RISK ORM 2S ISPL mandate is to independently challenge and supervise the operational risk management framework of BP2S activities as described in the level 2 procedure Organizational Framework and Governance for Operational Risk Management and Permanent Control Framework. Contributing Responsibilities As the 2nd line of defense, the Manager, RISK ORM 2S ISPL, has the following general responsibilities for the operational risk processes and themes within the scope of RISK ORM including fraud, third-party, and Information and Communication Technology (ICT) risk management. Define and consistently apply the 2S RISK ORM methodologies and procedures (normative framework), and adapt locally as required Independently challenge the identification and assessment of the operational risk profile (actual, potential and emerging) and the risk mitigation framework implemented in the operating entities, through opinions, and sign offs where required Ensuring effective implementation of the risk mitigation strategies, framework and actions with the 1st line of defense, through follow up of action plans and independent challenge of controls, either through execution of 2nd level controls, or where applicable, through other kinds of controls Independently assess and potentially alert key stakeholders on the level of risk and on the risk mitigation framework status Contribute to operational risk awareness and training on the risk mitigation framework. Main Accountabilities of the Role Qualitative Check & Challenge of 1st line of defense mainly by the execution of level 2 controls and RCSA to provide an opinion on the effectiveness of the control framework as per Group guidelines. Independently challenge significant incidents in Risk tool and related remediation plan. Proactively propose and conduct thematic reviews promptly with recommendations. Ensure the correct implementation and application of Group and 2S governance (e.g. in terms of Internal Control Committee (ICC) and operational risk management related committees, etc.) Promote Risk awareness and Risk culture of operational risk management across ISPL teams Ensure management reporting and Dashboard either to local management or to the Group are reported on time. Proactive risk anticipation and raise alert on key risk topics thereby bringing in significant management attention and propose remediation. People Responsibilities. Provide conducive work environment for a healthy working atmosphere in a competitive environment. Upskilling team members basis the skill matrix and PDP follow through. Promote training awareness, recognize team members, value their contribution and provide opportunities for growth and mobility. Fair dealing with staff members on day to day business deliverables and ensure administrative aspects including attendance, training and continuous feedback are totally intact. Technical & Behavioral Competencies Key Behavioral aspects Integrity, Ethics and values Collaboration and partnering Innovation and catalyst Building capability leading by example, influence and impact Others Individual - confidence and self-motivation. Interpersonal - high energy levels, communication skills, teamwork and persuasiveness. Managerial - Leadership skills, decisive decision-making, and managing teams and individuals. Analytical - The ability to review data and scenarios and make good decisions in a timely fashion Technical aspects Identification and assessment of risk and controls Verification and controls assurance Independent challenge, quality review and provide recommendations Governance, reporting and risk awareness. Specific Qualifications (if required) Tertiary-level qualification essential with CA/CWA/CPA qualifications desirable or its equivalent Skills Referential Behavioural Skills : Decision Making Ability to deliver / Results driven Creativity & Innovation / Problem solving Critical thinking Transversal Skills: Ability to understand, explain and support change Ability to develop and adapt a process Ability to set up relevant performance indicators Ability to manage / facilitate a meeting, seminar, committee, training Analytical Ability Education Level: Master Degree or equivalent Other/Specific Qualifications (if required). Audit background will be an added advantage. CA/CWA inter / is an added advantage.

The role of an Audit professional within the Group Audit team at DBS involves supporting the Board and Executive Management in achieving the strategic and operational objectives of the organization. As part of the team, you will conduct independent assessments to ensure the adequacy and effectiveness of the Group's risk and control processes. Your expertise will be crucial in serving as a trusted advisor to clients, particularly in matters related to internal controls. Your responsibilities will include executing audit planning and fieldwork for the Corporate Bank (CB) business/function area, adhering to the Audit methodology. This involves tasks such as conducting walkthroughs, identifying key risks, testing key controls, and documenting activities according to the bank's defined standards. You will collaborate with other audit teams to assess internal controls comprehensively across various areas, including compliance and financial crime risks. In this role, you will be expected to draft high-quality audit findings for review by Audit Leads, Team Lead, and Country Head of Audit. Building strong relationships with audit stakeholders through regular communication and monitoring meetings will be essential. Your ability to present complex messages, such as audit findings, concisely and professionally is crucial. Additionally, you will be responsible for conducting end-to-end audits of Credit processes, KYC/AML, and Global Transactions Services like Trade Finance. Planning and coordinating audits within established timelines, evaluating the effectiveness of processes and controls, and developing appropriate tests will be part of your day-to-day tasks. To excel in this role, you should possess a strong understanding of Credit Processes, Trade Finance, FEMA, and KYC/AML Controls in the Banking industry. Knowledge of Corporate Banking application controls and IT savviness, including familiarity with APIs and data analytics, will be advantageous. Excellent written and verbal communication skills in English, the ability to multitask, prioritize workload, and work well under pressure are essential. Personal integrity, ethics, and the ability to escalate issues promptly and clearly are highly valued qualities in this role. Keeping yourself updated on regulatory, industry, and product developments through continuous monitoring and auditing is necessary. Professional certifications such as CIA, ACAMS, CFE, or CDCS would be beneficial, along with experience in auditing within the banking sector and knowledge of Credit and Trade processes. The primary location for this role is in Maharashtra, Mumbai, and it is a full-time position with a regular schedule. If you are looking to join a dynamic team and contribute to the audit function of a leading organization, this role offers an exciting opportunity to grow and make a meaningful impact.,

Position Purpose Key role to develop Indian platform, ensuring core Cybersecurity, IT Risk and Operational Resilience activities are performed with the required efficiency and quality to protect BNP Paribas. The Cybersecurity Framework team develops and maintains the cybersecurity policies and requirements at BNP Paribas Group level, covering all cybersecurity topics (Artificial Intelligence, Application security, Data security, cloud security, IAM, asset management, SWIFT etc..), that will must be enforced by the Group entities. Responsibilities - Contribute to the definition of new cyber security requirements (or review of existing) regarding 28 cyber topics (Artificial Intelligence, Application security, Data security, cloud security, IAM, asset management, SWIFT etc..) that will be applicable to all group entities. - Defining procedure based on the requirements defined. - Ensure projects are delivered on defined timeline and meet high-quality standards (both technical precision and grammatical accuracy) - Hosting and animation of workshops to share, discuss, and consult on these new cyber security requirements and procedure with worldwide group experts. - Regularly report on the status of projects including challenges. - Contribute to the definition/review of patterns (grouping) of these cyber security requirements, applicable to all group entities according to level of risk exposure, all within the group cyber security program to assess the maturity of the entities through Cyber Maturity Assessment (CMA). - Contribute to the evolution of these patterns (inclusion of new cyber security requirements) as notable group programs progress (such as Zero trust, DLP, etc...) - Contribute to the definition of evidence to provide in front of each cyber security requirement to be validated through CMA. - Regularly discuss, share, and challenge BNP PARIBAS entities on applicable patterns. - Contribute to the evolution of the group security program (cyber security requirements, evidence, and their assessment) within Group GRC IT tool. - Perform the gap assessment with different regulations (EU GDPR, DORA etc.,) and propose new requirements to achieve compliance. - Advance knowledge by completing necessary certifications at least one certification yearly (CISSP, CCSP, CCSK, CCNA etc.,). Technical & Behavioral Competencies - Minimum 7 years work experience - Proven experience with cross-cultural & international working environment and collaborating with large and geographically dispersed teams. - Advanced communication skills (Strong writing, editing, presenting) - Ability to articulate technical concepts to non-technical stakeholders. - In-depth understanding of cyber security and continuity frameworks and standards such as NIST, ISO27001, ISO ISO22301etc. - Demonstrate a positive motivated attitude. Rigorous and an eye for detail. - Ability to prioritize and multi-task with flexibility and adaptability. - Ability to manage conflicting priorities and multiple tasks. - Strong knowledge and understanding of current trends of cyber security. - Industry certifications are preferred : CISSP, CISM, CRISC, CISA, ISO27001 LA, etc. Skills Referential Behavioural Skills : Ability to synthetize / simplify Active listening Ability to share / pass on knowledge Communication skills - oral & written Transversal Skills: Ability to anticipate business / strategic evolution Ability to set up relevant performance indicators Ability to understand, explain and support change Education Level: Bachelor Degree or equivalent Other/Specific Qualifications - MICROSOFT WORD (Proficient) - MICROSOFT EXCEL (Proficient)

Role & responsibilities Job Description: You are Responsible for An IPE/ITAC Specialist focuses on ensuring the reliability of system-generated data and automated processes that are crucial for financial reporting and operational integrity. 1. Control Testing & Evaluation: Perform detailed design and operating effectiveness testing of IT Automated Controls (ITACs) and review the completeness and accuracy of Information Produced by the Entity (IPE) to support key financial controls. 2. IPE Validation: Execute procedures to validate the completeness and accuracy of key system-generated reports (IPE). This involves testing the underlying data, report logic, and parameters used for extraction. 3. ITAC Assessment: Analyze and assess the system configurations, workflows, and automated rules that constitute the ITACs, ensuring they are functioning as designed without manual intervention. 4. Documentation & Work Papers: Meticulously document all test procedures, evidence, results, and conclusions in formal audit work papers, ensuring they meet the standards required by both internal and external auditors. 5. Liaison with Business Owners: Collaborate directly with business process owners to understand how IPE is used in their manual control activities and to confirm the relevance of the data being tested. 6. Coordination with IT Teams: Serve as a key point of contact for IT departments to obtain source code, system configurations, and other evidence needed for testing and to discuss the technical aspects of control functionality. 7. Deficiency Identification & Reporting: Identify and document control deficiencies, assess their potential impact on financial reporting, and clearly communicate these findings to management and audit teams. 8. Remediation Management: Assist in developing practical remediation plans for identified control gaps. Track the status of remediation efforts and perform re-testing to validate that deficiencies have been resolved effectively. 9. Audit Support: Act as a subject matter expert during internal and external audits, providing clear explanations and walkthroughs of IPE and ITAC testing processes and results to auditors. 10. Inventory Maintenance: Maintain and regularly update the central inventory of all key IPE reports and ITACs across the organization's systems, ensuring the audit scope remains current with business process changes. To succeed in this role you should have the following Prior Experience in IPE, IT controls testing. Extensive knowledge of the internal control framework (specifically COSO) and a solid understanding of the concepts of control design and operational efficiency. Experience working in a dynamic IT environment similar to a high tech start-up. Experience of solving multiple and complex challenges. Exposure in audit planning and execution, controls operation, and handling audit queries with external/internal auditors. Strong governance, risk and assurance management background which encompass knowledge of corporate governance, control framework and risk. Aptitude for leading teams; influencing and galvanizing others to follow you toward a solution. Ability to guide and train team members. Strong interpersonal written and oral communication skills. Solid organizational skills along with an aptitude for information technology. Excellent analytical skills Understanding of business drivers and related risk and ability to interpret the relevant management information is appreciated. Good communication and Analytical skills Having risk and controls mindset Ability to challenge and open to different views and opinions. Self-starter and ability to manage diverse cultural/ethnic sensitivities. Ability to deal effectively with complexity and having focus to details. Ability to prioritize and ensure delivery of priorities. Quick learner and resilient Mandatory Skills : Team Coordination, Leadership, sox, ITGC, IT Audit, IT Governance, Information Technology, Communication Skills Desirable Skills : IT Risk Management, Cobit, Cisa, Cism, Cissp, team leading, Risk Compliance, Information Security, IT Risk.

IT Control Testing Specialist About the Role This role plays a vital role in ensuring the effectiveness of IT controls. As an IT Control Testing Specialist, you will design, execute, and document comprehensive test plans to evaluate ITGCs and ITACs. Key Responsibilities: Client Engagement: Serve as the primary point of contact for clients regarding OT SOC services. Conduct regular meetings with clients to discuss security posture, incidents, and recommendations. Develop and maintain strong client relationships to ensure satisfaction and trust in our services. Security Operations: Monitor and analyze security events from OT environments to identify potential threats and vulnerabilities. Perform real-time security monitoring and incident response for OT systems. Utilize security information and event management (SIEM) tools to detect and respond to security incidents. Incident Management: Lead and coordinate the response to OT security incidents, including investigation, containment, eradication, and recovery. Conduct root cause analysis and develop remediation plans to address security gaps. Prepare detailed incident reports and deliver findings to clients in a clear and professional manner. Threat Intelligence and Vulnerability Management: Gather and analyze threat intelligence relevant to OT environments. Conduct vulnerability assessments and penetration testing on OT systems. Develop and implement strategies to mitigate identified vulnerabilities and enhance security controls. Collaboration and Training: Work closely with internal teams, including IT SOC, engineering, and risk management, to ensure comprehensive security coverage. Provide training and guidance to clients and internal teams on OT security best practices. Stay updated with the latest trends, technologies, and threats in OT security. Develop and maintain a thorough understanding of IT controls frameworks and relevant regulations (e.g., SOX). Participate in risk assessments to identify IT control deficiencies and prioritize testing activities. Independently design and execute test plans for ITGCs and ITACs, utilizing a variety of testing methodologies. Working knowledge in one or more domains such as: Governance policies and procedures, Risk Management, Compliance, Access Control, Security Incident Response, Disaster Recovery, Business continuity management, Identity Access Review, Change Management Sound understanding of security technologies/techniques like Cryptography, Algorithms, Secure IT Authentication, Secure Development, Data Protection, Certificate Management Lifecycle Perform complex test procedures using automated tools and manual techniques, documenting the results comprehensively. Analyze test findings, identify control weaknesses, and recommend remediation actions. Collaborate with IT and business process owners to address control deficiencies and implement corrective actions. Experience in performing vendor security reviews covering cyber security domains Lead and mentor junior team members in control testing practices. Stay updated on emerging IT threats and control best practices. Qualifications Bachelors degree in information technology, Computer Science, or a related field (or equivalent experience). 1-7 years of experience in IT audit, IT security, or a similar role with a focus on IT control testing. Strong working knowledge of IT controls frameworks and IT control testing methodologies. Familiarity with tools like ServiceNow, Jira, or other GRC platforms. Experience with IT control testing tools is a must. Experience in assessing and providing recommendations on the feasibility of automating manual control testing processes. Adaptability to manage a dynamic control population and evolving client needs. Excellent analytical and problem-solving skills. Strong communication, collaboration, and leadership skills.

The Risk Analyst I, IT Risk Operations will work in a team environment to plan and execute dynamic cyber, privacy and third-party risk assessments and identify value-added recommendations to strengthen Company processes and controls. Work collaboratively with Business, IT and Cybersecurity teams to execute risk assessments covering technical, organizational, and privacy controls. Participate in planning activities to identify significant risks and design appropriate risk-based assessment procedures for processes, systems, infrastructure, and cloud environments based on regulations, business criticality and cyber threat landscape. Lead meetings involving various levels of management to effectively communicate assessment status and recommendations, manage relationships, and help build partnership. Prepare assessment documentation to ensure they are clear, concise, high quality, and include details to support the conclusion of effectiveness of the implemented controls. Prepare assessment summaries and clearly written, concise control attestations that effectively communicate any identified issues and their related value add corrective actions. Collaborate within the team or outside the team when working on broader or complex topics in understanding environment. Qualifications & Experience 1 to 2 years of prior Cybersecurity/ Risk management / IT audit and/or IT related experience (e. g. , Business Analysis, Project Management, Operations, Privacy and Compliance). Familiarity of the NIST Cyber Risk Management Framework and NIST 800-53 controls library. Familiarity with various data privacy regulations around the world. Experience in assessing system pre/post implementations, cybersecurity, data privacy, digital transformation, and other emerging technologies. Experience with a GRC tool. Identifies key influencers and builds a network of internal/external relationships. Persuades and negotiate effectively with peers and customers on own work outcomes. Identifies opportunities to improve and grow, balancing performance feedback and career development. Applies a continuous improvement mindset in enhancing efficiency, quality and effectiveness or their work outputs. Displays understanding of performance metrics for driving the teams goals and questions the external environment and its implication on the goals and strategies. Able to review multiple factors of data and can effectively organize information to compare and assess short and long-term implications. Can create a well-developed recommendation and sound actions.

Business Function Group Audit helps the Board and Executive Management meet the strategic and operational objectives of the DBS Group. We conduct independent checks to ensure that the Group s risk and control processes are adequate and effective. All our team members are highly sought-after professionals who work as trusted advisors to our clients, in all matters related to a company s internal controls. Responsibilities The purpose of this role is to execute audit work on the Corporate Bank (IBG) business/function area as assigned from time to time. These would primarily include Trade Finance, Credit Process , Remittances including digital payments , KYC/AML areas of risk: Executes audit planning and fieldwork on the Corporate Bank (CB) business/function area in line with the in accordance with the Audit methodology e.g., conducting walkthroughs, giving feedback on the in scope and out scope areas, documenting Activity Flows, identification of key risks, testing of key controls to determine whether they are properly designed and are operating effectively and documenting work as per standards defined by the bank. Partnering with other audit teams (business / infrastructure / country) during audit engagement for an integrated approach in assessing the front-to-back internal controls over compliance and financial crime risks. Drafting high quality audit findings for review by the Audit Leads, Team Lead and Country Head of Audit Build a respectable relationship with audit stakeholders through regular continuous monitoring meetings, communicating openly on potential findings and escalate problems/delays accordingly. Present complex and sensitive messages (such as audit findings) succinctly, comprehensively and in a professional manner. Conduct end-to-end audits of Credit processes, KYC/AML and Global Transactions Services i.e. Trade Finance Plan and coordinate end-to-end audits, including reporting within established timelines. Evaluate the design and operating effectiveness of processes and controls and develop appropriate tests to be conducted and ascertain the level of testing of controls required. Requirements Qualified CA/MBA (full time) Finance from accredited institute with atleast 10 -12 years of relevant auditing experience in Corporate lending, Trade & Commodity Finance)/ Digital Channels, Payments and Trade Finance and/or with relevant GTS (Trade & Cash) product and operations experience. Strong understanding of Credit Processes, Trade Finance, FEMA and KYC/AML Controls in the Banking industry. Reasonable knowledge in Corporate Banking application controls is required. Candidate that can demonstrate auditing knowledge in Corporate banking context will be an added advantage. Should be IT savvy - Knowledge of APIs and data analytics, experience of risk-based auditing and clearly understand the relationship between IT risk and underlying business risk would be beneficial. Candidate must have excellent written and verbal communication skills in English, can communicate with clarity, both orally and in writing, in a logical order and with a structured approach. Ability to multi-task assignments, prioritize workload with limited supervision and be resilient under pressure when faced with tight deadlines. Unquestionable personal integrity and ethics Escalate issues appropriately and timely. Ensure concise and clear audit findings and reports are presented on a timely basis. Keep abreast on the development of regulatory, industry and product development through continuous monitoring and auditing. CIA, ACAMS, CFE, CDCS anyone will be an added advantage Auditing in Banking, Knowledge of Credit and Trade processes Working knowledge of core banking (e.g. Finacle), SWIFT and Digital payment systems will be preferred

Chief Manager / Senior Manager Information Security GRC Location: Gurugram Shift: Day Workdays: 5 Days/Week Experience: Chief Manager: 8 to 14 years Senior Manager: 5 to 8 years Role Summary A strategic and execution-driven role focused on aligning enterprise security posture with Indian & Global standards, regulatory mandates, and operational risk frameworks. Youll lead audits, compliance assessments, vendor risk evaluations, and training programs while leveraging your technical and project management expertise. Key Responsibilities Governance, Risk & Compliance (GRC) Lead InfoSec audits and compliance assessments Conduct vendor risk evaluations and third-party assessments Prepare audit documentation and manage auditor interactions Global Standards & Control Testing Deep understanding of ISO 27001, ISO 22301, ITGC Assess control effectiveness and compliance maturity Regulatory Compliance Familiarity with RBI, CERT-IN, IRDAI, and global mandates Translate business needs into actionable InfoSec programs Training & Awareness Design and implement InfoSec training (Aadhar, banking protocols) Security Metrics & Reporting Define, track, and report KPIs/KRIs to measure program effectiveness Experience with dashboarding tools (Tableau, Power BI, GRC platforms) Security Technologies Working knowledge of Firewalls, IDS, DDoS mitigation, SIEM, etc. Project & Stakeholder Management Lead cross-functional security initiatives Present findings and strategies to senior leadership Soft Skills Strong articulation, confidence, and clarity in communication Qualifications & Certifications Education: B.Tech, B.E, MCA or equivalent Certification: CISA Preferred Experience: Proven track record in InfoSec audits, risk assessments, and dashboard/reporting creation If interested share your cv at aishwarya@beanhr.com

: Job TitleNFRM Information Security & Technology Risk Specialist LocationMumbai, India Corporate Title Associate Role Description An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The team has a global footprint in Frankfurt, Singapore, London, Mumbai and USA. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities Provide data and analytics reporting to support the team in monitoring the Information Security and Technology Risk Appetite, breaches and remediation. Where required support the implementation of automated data and analytics reporting process. Support the team delivery of Non-Financial Risk Management (NFRM) priorities such as risk & control assessments, scenario analysis, risk appetite. Monitor and challenge 1LOD Risk and Control Assessments (including results of 1LOD control testing/assurance). Perform 2LOD control assurance through targeted reviews of areas of concern. Gain an understanding and be able to articulate key Information Security and Technology regulatory requirements across APAC/MEA and their impact and implementation into the Information Security and Technology Risk Framework. Your skills and experience University degree (Computer Science, Business Administration or equivalent). Majors in Information Security and / or Risk Management are a plus. Experience (5+ years) in Information Security or Information Technology with experience in the Finance industry and/or a major Technology or Consultancy company preferred. Experience in IT Risk Frameworks such COBIT 2019 is ideal 3+ yrs Understanding and experience of technology from either a support, development or business analysis perspective Some level of technical understanding and training either as a data analyst, developer, business analyst or project manager are a plus. Knowledge of Information Security and Technology industry regulatory standards and/or Risk Frameworks (e.g. EBA Guidelines ISO / 27000 Series, COBIT 2019, DORA) are a plus. Experience of technology coding e.g python, java is a plus Understanding of IT controlsSDLC, managing technology obsolescence, disaster recovery is a plus Knowledge of Digital transformation, Private and Public Cloud, AI tooling a plus Relevant professional certifications e.g. CISSP, CISA, CISM, CRISC, ITIL, ISO27001 Lead Auditor or similar are a plus. Experience of working in large global teams yet comfortable working independently without day-to-day oversight and steer. Strong communication skills (English required). How well support you

About The Role Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Analyst Qualifications: Any Graduation Years of Experience: 3 to 5 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints. Automated/IT control testing experience is required What are we looking for Commitment to qualityWritten and verbal communicationRisk managementAbility to work well in a teamAbility to meet deadlinesAutomated/IT control testing experience is must Roles and Responsibilities: In this role you are required to do analysis and solving of lower-complexity problems Your day to day interaction is with peers within Accenture before updating supervisors In this role you may have limited exposure with clients and/or Accenture management You will be given moderate level instruction on daily work tasks and detailed instructions on new assignments The decisions you make impact your own work and may impact the work of others You will be an individual contributor as a part of a team, with a focused scope of work Please note that this role may require you to work in rotational shifts Qualification Any Graduation

Your role and responsibilities In this role, you will be responsible to lead and perform assessments on the IS organizations compliance with internal and external regulations in an adequate, effective, and efficient manner as well as to provide good practice recommendation to the relevant IS roles and IS organizations. The work model for the role is #LI-hybrid This role is contributing to the IS Services in Bangalore. You will be mainly accountable for: Coordinating and supervising IS Management Testing key activities across businesses Performs process walkthroughs and testing of IT General Controls, IPE and Interface Controls reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, Project Management, Batch Job scheduling/monitoring and Business Continuity. Performs Risk Assessment, identification, and Evaluation of Controls, including preparation of process flow diagrams. Performs Testing and documentation of IT Automated controls Conducting controls assessment in manual/ automated environment. Qualifications for the role Masters or bachelors Degree. 8+ years of experience in IT audit, IT control operations, IT compliance, IT risk management; Ability to understand regulations and legislations and the impact on IT. Professional qualification equivalent to CISA/CISM/CGEIT/CRISC (Enterprise IT risk management certifications)preferred. Good Communication skills.

Title and Summary Senior Technology Risk AnalystOverview The Technology Risk & Control (TR&C) organization is a business enabler and industry leader of technology and security risk management practices, supported by a multi-disciplinary team of top security, technology, and risk professionals. Our mission is to drive enhanced awareness, visibility, and proactive management of technology risks to ensure a secure and sound operational environment. Role You will be responsible for engaging with internal and market facing programs on Technology Risk matters. Oversee the embedding and alignment to the requirements of Mastercard technology policies and standards. Transform the implementation of technology risk management principles and practices by focusing on the reusability of core components, quantitative assessment, and education of key stakeholders. This role will also support the following capabilities: identification, assessment, treatment, and monitoring of technology risks and controls across the environment; providing an aggregate view of controls, issues and exceptions, to inform strategic decision making. All about You/Experience: o Strong knowledge of the risk management lifecycle and processes (e.g., methods for identifying, assessing treating and monitoring risk) o Background in technology audit, risk management, technology operations, information systems management, information security management, regulatory engagement, etc. o Strong knowledge of baseline Technology and Security processes, risks, and controls o Familiarity with technology/security frameworks and mechanisms (e.g., SOC 1, SOC 2, PCI-DSS, ISO 27001, COBIT, CRI, PFMI, NIST) o Experience with regulatory technology and security risk management expectations; o Strong influence and collaboration skills cross-functionally and geographically to identify and drive implementation of best practice risk processes o Systematic problem-solving approach, coupled with strong communication skills and a sense of ownership and drive

Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment Business Systems Controls / IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc.

IT SOX Compliance Analyst - Docusign1 Job Title: IT SOX Compliance Analyst (Second Shift) : We are seeking a motivated and detail-oriented IT SOX Compliance Analyst to support our Sarbanes-Oxley (SOX) compliance initiatives, with a focus on IT General Controls (ITGCs) and IT application controls. This role requires collaboration with internal audit teams and IT control owners to ensure effective control design, implementation, and remediation. The position is aligned to support global teams, requiring availability during the 2 PM to 11 PM IST shift. Key Responsibilities: Support the assessment, design, and implementation of IT General Controls (ITGCs) and IT application controls across key systems. Collaborate with internal audit and IT control owners to evaluate risks, discuss control deficiencies, and support audit-related activities. Assist in the preparation of documentation, including control deficiency memos and remediation plans. Oversee and facilitate end-to-end IT control walkthroughs to ensure proper documentation and understanding of control processes. Skills & Qualifications: Solid understanding of the Sarbanes-Oxley (SOX) Act, specifically ITGC and IT application control requirements. Experience in internal audit, IT risk management, and control testing. Strong communication and documentation skills, with the ability to work cross-functionally. Must be available to work during the 2 PM to 11 PM IST shift to support global operations.

Controls Design Analyst will be part of a global Centre of Expertise providing advisory and deep professional support on Financial Controls Design & Deploy. This global position will give the successful candidate opportunity to collaborate with Process Owners & Architects, Process and Business stakeholders who own fit-for-purpose, risk-value driven financial control framework. Working on the assigned projects, this position will contribute to ensuring that Shell maintains an effective financial control framework, including technical & digital elements of controls. It will also provide the opportunity for visibility across end-to-end processes, and the prospect to drive forward and influence changes of global control framework. This position will primarily focus on, but will not be limited to, projects related to end-to-end risk & control framework in the Reporting & Analysis workstream. Principle Accountabilities Working with the relevant Process Owner organization and various business stakeholders, the Financial Controls Design Advisor will support risk appetite conversations & deliver assigned projects related to control framework design changes driven e.g. by Finance Digital Strategy, process, business or system changes upgrades, digital transformation, remediations, migrations etc. The successful candidate will build a specialist end-to-end process and business knowledge across the assigned workstream to effectively business partner with Process & Business stakeholders in transformation of control framework in their respective area. Financial Controls Design Advisor will apply high quality standards of Control Design Change Management Process, risk-based mindset and end-to-end perspective to ensure that design effective Financial Control Framework is maintained, and controls are fit-for-purpose in line with the Future of Controls vision. Design & deploy of financial controls will involve good understanding of IT technical aspects of Application Embedded Controls and interdependencies with IT Controls Framework, including conducting Technical Validation for simple & medium complex projects. This role will also require continuous learning of emerging digital technologies used by the Process Business and will understand and apply principles of the Future of Controls vision, contribute to FOC roadmap with timely identification of potential opportunities for application of FoC technologies. Financial Control Design Advisor will deliver Finance Operations assurance activities related to the annual SOX lifecycle, including among others Risk & Controls Identification, SOX sign-offs, Process (LoD1) and Shell Internal Audit & External Audit (LoD3) queries, deficiency evaluations and ensuring high data quality in MetricStream. Disciplined project delivery ensuring timely delivery of key project outcomes within budget & deadlines, and for ad hoc initiatives such as query resolution resulting from controls testing and internal external audits within applicable audit timelines. End-to-end risk management - ability to articulate , assess and address risks in the end-to-end transaction flow, and support risk appetite discussions with Process/Business stakeholders. Digital Risk Management ability to continuously learn new digital technologies emerging across assigned process business areas and provide digital risk assurance advisory to the key stakeholders. Required Experience: A minimum of 5 years related work experience below will be required for this opportunity. Finance professional with previous experience within the Accountancy Audit Profession, Risk & Assurance, Internal Audit or someone who has built a broad process knowledge in IT risk, systems and digital tools would be a plus. Successful candidate would be expected to demonstrate strong stakeholder engagement, effective communication and influencing skills, a track record of managing change projects, delivering value add and learning new technologie Successful candidate would be expected to demonstrate strong stakeholder engagement, effective communication and influencing skills, a track record of managing change projects, delivering value add and learning new technologies The successful candidate will be a Chartered Accountant Auditor or studying towards their professional exams (e.g. CIMA ACCA Certified Internal Auditor Certified Information Systems Auditor or equivalent)

Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Associate Qualifications: Any Graduation Years of Experience: 1 to 3 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints. Automated/IT control testing skill is required What are we looking for Commitment to qualityWritten and verbal communicationRisk managementAbility to work well in a teamAbility to meet deadlinesAutomated / IT control testing experience is must Roles and Responsibilities: In this role you are required to solve routine problems, largely through precedent and referral to general guidelines Your expected interactions are within your own team and direct supervisor You will be provided detailed to moderate level of instruction on daily work tasks and detailed instruction on new assignments The decisions that you make would impact your own work You will be an individual contributor as a part of a team, with a predetermined, focused scope of work Please note that this role may require you to work in rotational shifts Qualification Any Graduation

As the IT Security Associate Director at Wolters Kluwer, you will play a key role in leading the execution of complex cybersecurity projects independently. Your expertise will be crucial in guiding strategic cybersecurity planning and policy-making processes, ensuring alignment with organizational goals, and providing valuable security insights to drive the company's mission forward. Your primary responsibility will be to drive the design, automation, and delivery of security and risk reporting across the enterprise. This includes leading the creation of dashboards and visualizations that provide insights into key domains such as cybersecurity awareness training, risk programs, control effectiveness, and risk indicators and triggers across all Global Information Security domains. The ideal candidate for this role will possess a strong background in cybersecurity, cloud, automation, Microsoft Systems and tools, general IT Risk, and control/governance knowledge. Additionally, hands-on experience with reporting tools like PowerBI and creating automations and integrations with ServiceNow will be essential. As a critical thinker and problem-solver, you will contribute to enhancing the company's security posture by delivering consistent, insightful, and action-oriented reporting. Key Responsibilities: - Design, build, and maintain dashboards and reports to measure cybersecurity performance and risk across key programs. - Automate recurring reporting processes using tools like Power BI, Excel Power Query, and Power Automate. - Define and manage cybersecurity KPIs/KRIs in collaboration with the security team and key partners. - Work closely with capability owners to source, structure, and govern data across diverse systems. - Create executive-level reporting packages and presentations to support security governance forums, audits, and regulatory reviews. - Translate complex technical security data into clear, business-relevant visuals and insights. - Identify reporting gaps, automation opportunities, and metric-driven trends to support continuous improvement of cybersecurity programs. - Serve as the technical reporting subject matter expert within the cybersecurity function. Skills and Qualifications: - 14+ years of experience in cybersecurity or Information Technology. - Strong reporting skills with attention to detail. - Expertise in reporting across various security programs including training and awareness, phishing, cloud security, IAM, vulnerability management, and overall IT risk and governance. - Knowledge of resource management practices, HR tools such as Workday, Clicktime, and deep understanding of ServiceNow. - Expert-level PowerBI/visualization skills. - Ability to collaborate with cross-functional teams, senior management, technologists, and external stakeholders. - Analytical mindset with excellent problem-solving skills and ability to interpret regulatory requirements. - Self-driven with the ability to identify actions/goals and drive them to completion with minimal oversight. Note: Applicants may be required to appear onsite at a Wolters Kluwer office as part of the recruitment process.,

As an IT Application Owner (ITAO) at Home Loan Savings in Pune, India, you will be part of a team collaborating with the existing team in Germany to achieve continuous delivery, process improvement, and internalization of technical expertise through virtual collaboration techniques. Your role involves working closely with business and operation units as well as the development team to ensure structural stability of the applications, compliance with technical/risk/policy processes, and managing the technical roadmap in the context of Deutsche Bank's digitalization journey. In this position, you will be responsible for managing and maintaining the application to ensure compliance with IT policies and procedures, setting up various environments for development, testing, and production, implementing and upgrading system hardware and application software, leading discussions with business and vendors for new requirements and product enhancements, delivering application releases and defect fixes, and assisting junior team members. Additionally, you will be involved in enterprise IT governance, information security, knowledge management, business risk management, and various other IT-related tasks. Your key responsibilities include ensuring application compliance with Deutsche Bank IT policies, interfacing with auditors for IT audits, identifying IT risk and control related gaps, remediating audit findings, managing technical projects, providing expert services, and coordinating with vendors for application maintenance. Your skills and experience should include a minimum of 8 years in a similar role, ITIL knowledge, database experience, familiarity with software development lifecycle tools, application governance, and strong problem-solving abilities. Proficiency in English is required, with German language skills being a bonus. Experience with Agile/SCRUM teams, Home Loan Savings know-how, Mortgage Lending know-how, GCP or other Cloud technologies, and IT certifications are advantageous. You should possess people skills such as end-to-end ownership, performance orientation, analytical and problem-solving abilities, good communication, proactiveness, flexibility, and the ability to think creatively to resolve issues efficiently. Training, development, coaching, and support will be provided to help you excel in your career, with a culture of continuous learning and a range of flexible benefits available. At Deutsche Bank, we strive for a culture of empowerment, responsibility, commercial thinking, initiative, and collaboration. We celebrate the successes of our people and aim to create a positive, fair, and inclusive work environment. We welcome applications from all individuals and promote diversity and inclusivity in our teams.,

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firms growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats Responsibilities: Experience in conducting IT risk assessments. Sound understanding of ISO 27001, NIST, PCI, Data Privacy, and Cloud Security. Knowledge on application infrastructure architecture. Knowledge on SaaS application architecture. Knowledge on database and middleware communication. Knowledge on API security. Good communication skills. Good team player. Good presentation skills and senior stakeholder management. Certifications - CISA, CISSP, CCNP, CCSP, CISM, CRISC etc. Mandatory Skill Sets: IT Risk, ISO 27001, NIST, PCI, Data Privacy, and Cloud Security. Preferred Skill Sets: Stakeholder Management, Team Management Years Of Experience Required: 4+ Years Education Qualification: BE, B.Tech, M.Tech, MCA, MBA graduates Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology, MBA (Master of Business Administration) Degrees/Field Of Study Preferred: Certifications (if blank, certifications not specified) Required Skills Information Technology (IT) Risk Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Learning Agility, Malware Analysis, Malware Detection Tools + 16 more Desired Languages (If blank, desired languages not specified) Travel Requirements Available for Work Visa Sponsorship Government Clearance Required Job Posting End Date Show more Show less

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firms growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats Responsibilities: Experience in conducting IT risk assessments. Sound understanding of ISO 27001, NIST, PCI, Data Privacy, and Cloud Security. Knowledge on application infrastructure architecture. Knowledge on SaaS application architecture. Knowledge on database and middleware communication. Knowledge on API security. Good communication skills. Good team player. Good presentation skills and senior stakeholder management. Certifications - CISA, CISSP, CCNP, CCSP, CISM, CRISC etc. Mandatory Skill Sets: IT Risk, ISO 27001, NIST, PCI, Data Privacy, and Cloud Security. Preferred Skill Sets: Stakeholder Management, Team Management Years Of Experience Required: 4+ Years Education Qualification: BE, B.Tech, M.Tech, MCA, MBA graduates. Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: MBA (Master of Business Administration), Bachelor of Technology Degrees/Field Of Study Preferred: Certifications (if blank, certifications not specified) Required Skills Information Technology (IT) Risk Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Cloud Security, Communication, Conducting Research, Creativity, Cyber Defense, Cyber Threat Intelligence, Embracing Change, Emotional Regulation, Empathy, Encryption, Inclusion, Information Security, Intellectual Curiosity, Intelligence Analysis, Intelligence Report, Intrusion Detection, Intrusion Detection System (IDS), IT Operations, Learning Agility, Malware Analysis, Malware Detection Tools + 16 more Desired Languages (If blank, desired languages not specified) Travel Requirements Available for Work Visa Sponsorship Government Clearance Required Job Posting End Date Show more Show less