297 It Risk Jobs - Page 5

About the Role: Grade Level (for internal use): 11 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role reports to the Head of Technology Risk and Governance, in the Global Digital Technology Organization. The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact Lead efforts in defining and documenting a comprehensive Issue Management Process document/ methodology Lead efforts to centralize control gaps/ issues in GRC tool Lead efforts in logging, tracking, monitoring and remediation of control gaps/ issues Coordinate with key stakeholders to ensure the issues are clearly articulated, mapped to appropriate risk category, mitigating controls are identified through proper risk assessment Lead efforts in periodic reporting of issues to senior Management Conduct data analysis to demonstrate trends of progress made in issue remediation by various technology processes Conduct meetings to discuss issues and risk remediation plan Lead efforts in risk exception and risk acceptance process Monitor risk acceptance scenarios and bring it to appropriate committees for reporting Prepare PowerPoint presentations to provide comprehensive and holistic issue management process What Were Looking For Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5+ years of experience in a large global organization leading the technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.2 - Middle Professional Tier II (EEO Job Group)

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Job description At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Technology Risk Senior Manager As an IT risk professional, you'll contribute technically to risk assurance client engagements and internal projects. An important part of your role will be to perform IT audits, document good quality assessment reports, and issue opinions. You'll anticipate and identify risks within engagements and share any issues with the audit stakeholders. You'll also identify potential business opportunities for EY within existing engagements and facilitate integration as appropriate. In line with EY's commitment to quality, as an influential member of the team - you'll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We're looking for experienced staffs with 10+ years of hands-on experience in IT Risk/Audit, Assurance, and Advisory to join our Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your key responsibilities Participate, lead, and execute the IT Risk and Assurance engagements. Develop and maintain productive working relationships with client and onshore stakeholders. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Build strong internal relationships within Ernst & Young Services and with other services across the organization. Stay current with and promote awareness of applicable regulatory standards, upstream risks, and industry best practices across the enterprise. Skills and attributes for success Work effectively as a team player - collaborate and share responsibility, coach, and support team members to succeed. To qualify for the role, you must have: B.E/B.Tech (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc., Chartered Accountant and/or MBA with Finance/IT with at least 10+ years of experience. 1-3 years of professional experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC1, SOC2, IT Financial Audit and Business Automated Controls, IT Risk consulting, or any other regulatory / compliance audits. Expertise in pre and post implementation reviews and auditing configuration of major ERPs like SAP, Oracle, JDE, WorkDay, Netsuite, Navision, etc. Expertise in performing infrastructure reviews pertaining to OS, DB, and Active Directory such as Windows, UNIX, SQL, Mainframe, Oracle, etc. Assist with the development of policies, procedures, and standards that meet existing and newly developed policy and regulatory requirements. Assist with facilitating IT security/risk training curriculum. Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. Stay current with and promote awareness of applicable regulatory standards, upstream risks, and industry best practices across the enterprise. Must have end-client facing experience. Ideally, you'll also have: CISA, CISM, CRISC, ISO27001, Cloud, and Data privacy certifications. IT audit knowledge for a financial audit - Control frameworks such as COSO, related regulations including SOX and J-SOX. Data analytics/automation tool SQL, Monarch, BluePrism, Alteryx, PowerBI. Familiarity with a typical IT systems development life cycle. What working at EY offers At EY, we're dedicated to helping our clients, from startups to Fortune 500 companies and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching, and feedback from some of the most engaging colleagues around. Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that's right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people, and society, and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Job Description At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Technology Risk Senior Manager As an IT risk professional, you'll contribute technically to risk assurance client engagements and internal projects. An important part of your role will be to perform IT audits, document good quality assessment reports and issue opinions. You'll anticipate and identify risks within engagements and share any issues with the audit stakeholders. You'll also identify potential business opportunities for EY within existing engagements and facilitate integration as appropriate. In line with EY's commitment to quality, as an influential member of the team - you'll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We're looking for experienced staff with 10+ years of hands-on experience in IT Risk/Audit, Assurance, and Advisory to join our Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your key responsibilities Participate, lead and execute the IT Risk and Assurance engagements Develop and maintain productive working relationships with client and onshore stakeholders Work effectively as a team member, sharing responsibility, providing support, maintaining communication and updating senior team members on progress Help prepare reports and schedules that will be delivered to clients and other parties Develop and maintain productive working relationships with client personnel Build strong internal relationships within Ernst & Young Services and with other services across the organization Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Skills and attributes for success Work effectively as a team player - collaborate and share responsibility, coach, and support team members to succeed To qualify for the role, you must have B.E/B.Tech (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc., Chartered Accountant and/or MBA with Finance/IT with at least 10+ years of experience 1-3 years of professional experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC1, SOC2, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits Expertise in pre and post implementation reviews and auditing configuration of major ERPs like SAP, Oracle, JDE, WorkDay, Netsuite, Navision etc. Expertise in performing infrastructure reviews pertaining to OS, DB and Active Directory such as Windows, UNIX, SQL, Mainframe, Oracle etc. Assist with the development of policies, procedures and standards that meet existing and newly developed policy and regulatory requirements Assist with facilitating IT security/risk training curriculum. Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. Stay current with and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise Must have end-client facing experience Ideally, you'll also have CISA, CISM, CRISC, ISO27001, Cloud and Data privacy certifications IT audit knowledge for a financial audit - Control frameworks such as COSO, related regulations including SOX and J-SOX Data analytics/automation tool SQL, Monarch, BluePrism, Alteryx, PowerBI Familiarity with a typical IT systems development life cycle What working at EY offers At EY, we're dedicated to helping our clients, from startups to Fortune 500 companies and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that's right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Join one of the worlds most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry. As a Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity & Tech Controls team, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications on modern cloud-based technologies. As a core technical contributor, you are responsible for carrying out critical cybersecurity architecture solutions by identifying, creating, and communicating risk, mitigation options, and solutions across multiple technical areas within various business functions in support of project goals . Job responsibilities Cultivate a security culture among product, technology, and business colleagues, prioritizing sustainable controls and real risk reduction outcomes. Embed security fundamentals like threat modeling, secure architecture design, and secure code review into agile product development to empower teams to ship secure products faster. Gain comprehensive knowledge of your products strategy, roadmap, and key investment programs, and be self-motivated to learn unfamiliar technology components and business concepts. Serve as a security thought leader, sharing best practices with product and cybersecurity teams, and be recognized as the subject matter expert for IT Risk and Cyber domains. Act with urgency in managing emerging issues by proactively monitoring Key Risk Indicators and ensuring timely identification, communication, and management of issues. Collaborate across the products supply chain, working with colleagues on audit and regulatory engagements, risk activities, and project initiatives, with a focus on effective technology risk management in Cloud computing and emerging technologies Leads communities of practice to drive awareness and use of new and leading-edge cybersecurity technologies Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Demonstrate experience in product technologies, including risk and application controls, public cloud computing, APIs, and micro-services architectures. Knowledge of cybersecurity architecture and technical processes, with expertise in areas like public cloud, AI, machine learning, and mobile. Evaluate current and emerging technologies to recommend optimal solutions for future state architecture. Proficient in secure designing or architecting Payment HSMs and PCI, with AWS cloud experience. Experience in building secure financial services consumer businesses, such as Mortgages, Cards, or Digital. Preferred qualifications, capabilities, and skills Independently tackle design and functionality problems with minimal oversight. Familiar with emerging technologies to recommend optimal solutions for future state architecture. Join one of the worlds most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry. As a Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity & Tech Controls team, you are an integral part of a team that works to develop high-quality cybersecurity solutions for various software applications on modern cloud-based technologies. As a core technical contributor, you are responsible for carrying out critical cybersecurity architecture solutions by identifying, creating, and communicating risk, mitigation options, and solutions across multiple technical areas within various business functions in support of project goals . Job responsibilities Cultivate a security culture among product, technology, and business colleagues, prioritizing sustainable controls and real risk reduction outcomes. Embed security fundamentals like threat modeling, secure architecture design, and secure code review into agile product development to empower teams to ship secure products faster. Gain comprehensive knowledge of your products strategy, roadmap, and key investment programs, and be self-motivated to learn unfamiliar technology components and business concepts. Serve as a security thought leader, sharing best practices with product and cybersecurity teams, and be recognized as the subject matter expert for IT Risk and Cyber domains. Act with urgency in managing emerging issues by proactively monitoring Key Risk Indicators and ensuring timely identification, communication, and management of issues. Collaborate across the products supply chain, working with colleagues on audit and regulatory engagements, risk activities, and project initiatives, with a focus on effective technology risk management in Cloud computing and emerging technologies Leads communities of practice to drive awareness and use of new and leading-edge cybersecurity technologies Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Demonstrate experience in product technologies, including risk and application controls, public cloud computing, APIs, and micro-services architectures. Knowledge of cybersecurity architecture and technical processes, with expertise in areas like public cloud, AI, machine learning, and mobile. Evaluate current and emerging technologies to recommend optimal solutions for future state architecture. Proficient in secure designing or architecting Payment HSMs and PCI, with AWS cloud experience. Experience in building secure financial services consumer businesses, such as Mortgages, Cards, or Digital. Preferred qualifications, capabilities, and skills Independently tackle design and functionality problems with minimal oversight. Familiar with emerging technologies to recommend optimal solutions for future state architecture.

At Moss Adams, we champion authenticity. For us, that means fostering a culture of talented people who care about you, about our clients, and about our communities. Here, you ll work towards our mission of empowering others to embrace opportunity, growing as a leader along the way. Our firm s size, middle-market clients, customized career paths, and supportive culture make this a reality. Join a values-driven firm where you ll have fun while solving complex and interesting business challenges. The Financial Services group provides regulatory compliance, internal audit, information systems and related consulting services for financial institutions, including banks, credit unions and other types of financial services companies throughout the United States. The Financial Services Information Technology team provides technology assessments, strategic technology planning, system selection consulting, system penetration testing, disaster recover planning and process engineering. Individuals who thrive at Moss Adams exhibit the following success skills Collaboration, Critical Thinking, Emotional Intelligence, Executive Presence, Growth Mindset, Intellectual Curiosity, and Results Focus. Responsibilities: Perform and document testing on consulting, compliance and internal audit engagements focused on IT risk, strategy and governance within financial institutions Provide training and supervision for engagement Staff Identify findings and document opportunities for process improvement Research technical issues that arise during the engagement Assist Managers and/or Senior Managers in developing strategic solutions to meet client needs Work closely with Managers and/or Senior Managers on engagement planning, executing, and issuing a final report meeting client deadline Set the foundation for developing relationships with clients, including involvement in networking and business development activities Motivated to meet client deadlines and provide excellent client service Qualifications: Bachelor s degree required CISA CISM, CISSP preferred. If not certified, must meet educational requirements to obtain license upon hire in state of employment CPA, CIA, CRCM, CAMS, CFIRS, CFE, and/or CFF a plus Minimum of 3 years of experience in information systems, internal audit, regulatory compliance, consulting services Network engineering/administration experience with a security emphasis preferred Knowledge of IT control and/or services management standards such as CObIT, ITIL, ISO preferred. SOX IT audit experience preferred. Previous experience in banking or credit unions preferred Ability to work effectively as part of a team and independently Creative problem solving and research skills. Excellent verbal and written communications Strong analytical and report writing skills. Proficient with Microsoft Office (Word, Excel, PowerPoint, Outlook). Ability to handle multiple priorities, tasks, and simultaneous projects Moss Adams is an Equal Opportunity Employer as to all protected groups, including protected veterans and individuals with disabilities. Certain jurisdictions in the United States require employers to disclose the pay range in job postings. This is the typical range of pay for the position. Actual compensation may depend on factors such as qualifications, work experience, skills, and geographic location. This position may be eligible for an annual discretionary bonus. For more information about our benefit offerings and other total rewards, visit our careers page.

Support Risk Management and Supervision team [RMS] in charge of assessing the risk profile and the effectiveness of the information security risk systems of the Groups Business and Service Units. Review IT risk self-assessments and follow -up the implementation of agreed risk remediation plan. Proactively understanding existing/upcoming regulations. Facilitating local compliance with information security policy as well as appropriate regulations/laws Assisting in the development / changes to the ICT risk frameworks, a strong risk management culture and to be recognized for providing expert operational risk advice. Partner with sr. stakeholders to proactively identify ICT risks and assess the adequacy of controls to manage such risks, including recommending enhanced or additional controls. Proactive in identifying and following up on ICT anomalies / areas of concern. Independently review, challenge and support information security activities. - Review the analyses conducted by the LOD1 (ORMs/CISO/BU-SU Program Managers etc.) on their information security risk profile and the related remediation actions In response to material information security incidents, whether internal or external, conduct independent deep dive review of the preliminary, interim, and final incident investigation report and act as a challenge function to such reports. Support information security reporting and monitoring of metrics and Key Risk Indicators (KRI) at the product line and divisional levels; continuously review existing body of KRI and related reporting. Consult with internal groups such as CISO, Infrastructure, Compliance, Legal, and other Operations teams on matters related to information risk controls, self-assessments, security incidents and infrastructure projects security aspects. Participate in the validation of the information security standards and standards applied by the BUs/SUs and the requested exceptions. Profile required Support Risk Management and Supervision team [RMS] in charge of assessing the risk profile and the effectiveness of the information security risk systems of the Groups Business and Service Units. Review IT risk self-assessments and follow -up the implementation of agreed risk remediation plan. Proactively understanding existing/upcoming regulations. Facilitating local compliance with information security policy as well as appropriate regulations/laws Assisting in the development / changes to the ICT risk frameworks, a strong risk management culture and to be recognized for providing expert operational risk advice. Partner with sr. stakeholders to proactively identify ICT risks and assess the adequacy of controls to manage such risks, including recommending enhanced or additional controls. Proactive in identifying and following up on ICT anomalies / areas of concern. Independently review, challenge and support information security activities. - Review the analyses conducted by the LOD1 (ORMs/CISO/BU-SU Program Managers etc.) on their information security risk profile and the related remediation actions In response to material information security incidents, whether internal or external, conduct independent deep dive review of the preliminary, interim, and final incident investigation report and act as a challenge function to such reports. Support information security reporting and monitoring of metrics and Key Risk Indicators (KRI) at the product line and divisional levels; continuously review existing body of KRI and related reporting. Consult with internal groups such as CISO, Infrastructure, Compliance, Legal, and other Operations teams on matters related to information risk controls, self-assessments, security incidents and infrastructure projects security aspects. Participate in the validation of the information security standards and standards applied by the BUs/SUs and the requested exceptions\

Manage audits - plan to finish Background 3 yrs in Telecom software/Protocol, Embedded systems, Mobile Device & Mobile Applications, IOT Blockchain, Artificial Intelligence, UAS software systems, applications /IT system /Software product test Required Candidate profile UG : B.Tech/B.E in degree in Electronics, Computer Science, IT Experience in Developing software or firmware related to UAS or automotive or IoT products.

As a core member of our Governance IT team, you will work with dedicated professionals to ensure our clients maintain access to their critical information assets while keeping Citco ahead of industry trends. The focus of this position will be the analysis and improvement of Citco IT Compliance. The candidate will interface with a wide range of internal Citco groups fostering stability and improvements to the IT control environment, the state of IT risk, IT regulatory compliance, IT internal audit response, and the currency of IT policies and standards. The IT Compliance Analyst will identify and implement improvement measures, track quality, risk, and compliance deliverables in an effort to foster an atmosphere of continual improvements and functional maturity. You have a college degree or relevant experience with a minimum of 3-5 years of technical IT roles. Ideal candidates should have a working knowledge of one or more of the Compliance and Controls standards (i. e. COBIT, ITIL, ISO27001, MOF, CSA, COSO, CMMI) Excellent oral and written communication skills and business acumen. Experience with various SDLC frameworks such as Waterfall, AGILE, RUP etc. Experience as a Project Manager and proficiency in using Project Management tools such as JIRA and Confluence is preferred An understanding or practical experience of Risk and Control disciplines is preferred. Demonstrated ability to engage and collaborate with colleagues across the organization to drive results Intellectually curious, with the ability to ask the "right questions" without having extensive knowledge in a particular technical area Must be able to meet deadlines and changing priorities Coordinate operational controls effectiveness testing across the IT division and with teams outside of the IT division as required. Assist OCM project managers in the development and implementation of control improvement projects and regulatory impact remediation Represent IT as advocates during Internal and external audits Support an orderly cycle of policy and procedure reviews to ensure process currency Ensure that IT quality and risk metrics are collected and compiled Support the development and execution of an annual schedule of application, control objective, and IT risk theme assessments Work with IT stakeholders to continually break down IT organizational silos and promote collaboration Responsible for communication, including status reporting, risk management, escalation of issues that cannot be resolved and missed due dates

We are seeking a proactive and knowledgeable Information Security Officer to support the business across all aspects of information security. This role is essential in maintaining and strengthening our security posture, ensuring compliance with our regulatory and legal requirements, including maintaining our ISO/IEC 27001 certification. Reporting to the Head of Information Security, you will play a key role in advising teams on security best practices, assisting with the implementation and continuous improvement of our Information Security Management System (ISMS), and supporting, audits, risk assessments, and incident response activities. You will collaborate with stakeholders across IT, risk, legal, and operations to ensure security is embedded in business processes and projects from the outset. The ideal candidate will have strong working knowledge of ISO 27001, an understanding of risk-based approaches to security, and experience in supporting security governance, awareness, and compliance efforts. A practical, solution-oriented mindset and the ability to communicate technical risks in a business context are essential. This is a hands-on, business-facing role suited to someone passionate about helping teams operate securely while enabling the business to move with agility and confidence.

About this role: Wells Fargo is seeking a Independent Testing Specialist In this role, you will: Participate in less complex development and design of methodologies and standards for review activities companywide in alignment with the risk management framework Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs, risks, and controls according to standards and other applicable policies within Independent Testing Support and implement less complex initiatives with low to moderate risk and exercise independent judgment to guide risk reporting, escalation, and resolution Present recommendations for resolving more complex situations and exercise independent judgment while developing expertise in risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners and management Required Qualifications: 2+ years of Independent Testing experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: Good experience in IT Risk, IT Control Testing, IT Audit Certified Information Security Auditor (CISA) Certified Information Security Manager (CISM Job Expectations: Shift Timing: 1.30 PM - 10.30 PM

Integrating robust security principles into corporate networks, systems, endpoints across both cloud & on-premises environments. Technical knowledge of IT infra with a strong security mindset to ensure systems are secure, high-performing, resilient. Required Candidate profile Security Design & Implementation, Monitoring & Incident Response, Strategic Planning & Roadmap, Automation & Operational Efficiency, Project Collaboration & Support, Collaboration, Communication

Role & responsibilities Understanding engagement objectives and assisting the engagement manager in preparing the plan and testing procedures to meet the audit objectives. Gaining detailed understanding of relevant IT processes, systems and controls and performing controls evaluations. Support risk assessments, IT process walkthroughs, and control testing Ensuring work papers documentation to ensure the retained documentation supports the audit work performed. Assisting in the assessment of identified gaps and areas for improvement and evaluating their significance and potential business impact. Propose remediation steps that are practical and reasonable. Preferred candidate profile Bachelors/master’s degree in information technology, Computer Science, or related field. 3–5 years of experience in IT Audit, IT Risk, or Information Security roles. Strong understanding of ITGCs, application controls, cybersecurity, data privacy frameworks as such - NIST CSF, ISO/IEC 27001, COBIT, ITIL, PCI-DSS, GDPR/DPDPA Familiarity with cloud platforms (AWS, Azure, GCP) and is a plus. Excellent written and verbal communication skills. Strong analytical and documentation abilities. Certifications – CISA, ISO 27001/27701 Lead Auditor

Skill required: Risk & Compliance - Risk Management Designation: Risk and Compliance Associate Manager Qualifications: Any Graduation Years of Experience: 10 to 14 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.Anticipate, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. Follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. What are we looking for Anticipate, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. Follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. Anticipate, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. Follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. Roles and Responsibilities: In this role you are required to do analysis and solving of moderately complex problems Typically creates new solutions, leveraging and, where needed, adapting existing methods and procedures The person requires understanding of the strategic direction set by senior management as it relates to team goals Primary upward interaction is with direct supervisor or team leads Generally interacts with peers and/or management levels at a client and/or within Accenture The person should require minimal guidance when determining methods and procedures on new assignments Decisions often impact the team in which they reside and occasionally impact other teams Individual would manage medium-small sized teams and/or work efforts (if in an individual contributor role) at a client or within Accenture Please note that this role may require you to work in rotational shifts Qualification Any Graduation

Conduct third-party/vendor risk assessments Monitor &vmanage third-party risk throughout the vendor lifecycle Implement & maintain the ISO 27001aligned ISMS Experience in TPRM, vendor risk, information security Experience of ISO 27001, NIST, SOC2

As an IT Application Owner (ITAO) at Home Loan Savings, you will be a crucial part of the team in India, collaborating closely with the existing team in Germany. Your role will involve leveraging virtual collaboration techniques and the diversity within the team to achieve continuous delivery, process improvement, and internalization of technical expertise. Your responsibilities will include working closely with business and operational units, as well as the development team, to ensure the structural stability of applications and compliance with technical, risk, and policy-related processes. You will also be responsible for managing the technical roadmap of applications in alignment with Deutsche Bank's digitalization journey. In this role, you will be responsible for setting up various environments for development, testing, and production, as well as implementing and upgrading system hardware and application software. Additionally, you will lead discussions with the business and vendors for new requirements, product implementation, customization, and enhancements. You will oversee the delivery of application releases, defect fixes, and provide support to more junior team members. Key responsibilities also include ensuring application compliance with Deutsche Bank IT policies and procedures, onboarding applications onto IT risk and control related tools, interfacing with auditors, identifying IT risk and control related gaps, and managing technical projects to deliver required business services. To be successful in this role, you should have a minimum of 8 years of experience in a similar role, basic experience in databases, mid-range technical stack, and open-source skills. Knowledge of ITIL, experience with software development lifecycle tools, application governance, and Agile/SCRUM methodologies is essential. Proficiency in English is required, and German language skills are a plus. Experience in Home Loan Savings and Mortgage Lending is desirable, along with familiarity with GCP or other cloud technologies. You should possess strong analytical skills, problem-solving abilities, and excellent interpersonal skills. Being proactive, detail-oriented, and able to think outside the box are also essential qualities for this role. Furthermore, certifications such as COBIT, ITIL, PMP, CRISC, CSSLP, CISSP, or equivalent are preferred. As part of our team, you will receive training and development opportunities, coaching from experts, and a culture of continuous learning to support your career progression. We value a positive, fair, and inclusive work environment, where everyone is encouraged to excel together and celebrate successes. For more information about our company and culture, please visit our website at https://www.db.com/company/company.htm. Join us at Deutsche Bank Group, where we strive to empower our employees to excel together every day.,

JD:- Application Security Lead Education Criteria (Must): B.Sc (IT/CS) / B.Tech in any Engineering background, BCA, MCA & M.Sc. Information Technology, or related field. CEH, CISSP, CISA, CISM, CRISC (If any security related certification) 11-15 years of experience in Application Security, Network Security, and IT Risk & Compliance, with hands-on expertise in security assessments, process audits, and application reviews. Experience in BFSI is preferred. Lead and manage the AppSec team consisting of L1 and L2 resources. Serve as the primary point of contact between the Client and the team for all project-related activities. Monitor daily operations, ensure resource optimization, and address any issues that arise during the engagement. Application & Security Review - Oversee the review of application security including web, mobile, API, and other banking applications. Perform comprehensive reviews of Network Architecture, Source Code, VAPT reports, and configuration audits. Review deliverables from L1 and L2 resources, ensuring completeness and quality. Compliance and Risk Management Reporting Stakeholder Management Skill-Vulnerability Assessment, Manual Penetration Testing using OWASP checklists, Penetration Testing, OWASP Top 10, OWASP ZAP, Ethical Hacking, Static/dynamic testing of mobile applications, Vulnerability Mitigation.

Education and Qualifications B.S./M.S. in Computer Science, Engineering, Statisctics and Mathematics, Information Systems and/or equivalent formal training or work experience. Work Experience 12+ years of industry experience including 3+ years in leadership roles. Budgeting, Planning and Forecasting. Technical / Professional Skills Please provide at least 3 Strong analytical, creative, problem-solving and critical thinking skills. Ability to analyze industry trends and developments both within and beyond telco industry. Champion and drive adoption of innovative and industry defining solutions Lead comprehensive analysis to understand underlying drivers and present a compelling business case for proposed IT solutions. Experience in managing complex products/solutions and capability development projects. Expertise in Google AI services including Dialogflow, AutoML, STT, TTS, Vision AI, Cloud Natural Language, Cloud Translation etc. Extensive knowledge of current and trending data/information technologies such as AI/ML, data lakes, cloud (AWS, Google and Azure), data governance, geospatial data etc. Experience in architecting solutions for optimal extraction, transformation and loading of data from a wide variety of traditional and non-traditional sources such as structured, unstructured, and semi-structured using SQL, NoSQL and data pipelines for real-time, streaming, batch and on-demand workloads. Strong understanding of IT risk, information security fundamentals, defence-in-depth practices, IT risk assessment fundamentals and risk management practices Competent in Agile methodologies

About the Role: Grade Level (for internal use): 10 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self- QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in p repar ing and deliver ing comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5 + years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5 + years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Role Location Gurgaon, Noida, Bangalore Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group)

Job Title:IT SOX-Risk Management-Audits & Business Continuity PlanningExperience5-10 YearsLocation:Bangalore : IT SOX, Risk Management, Audits, Business Continuity Planning

As a candidate for this position, you will be responsible for performing and documenting testing on consulting, compliance, and internal audit engagements with a focus on IT risk, strategy, and governance within financial institutions. You will also provide training and supervision for engagement staff, identify findings, and document opportunities for process improvement. Additionally, you will research technical issues that arise during engagements and assist Managers and/or Senior Managers in developing strategic solutions to meet client needs. Furthermore, you will work closely with Managers and/or Senior Managers on engagement planning, execution, and issuing a final report that meets client deadlines. You will also play a key role in setting the foundation for developing relationships with clients through networking and business development activities. Your motivation to meet client deadlines and provide excellent client service will be crucial to your success in this role. In terms of qualifications, a Bachelor's degree is required for this position. Preferred certifications include CISA, CISM, or CISSP. If not already certified, you must meet the educational requirements to obtain a license upon hire in the state of employment. Additional certifications such as CPA, CIA, CRCM, CAMS, CFIRS, CFE, and/or CFF are considered a plus. The ideal candidate will have a minimum of 3 years of experience in information systems, internal audit, regulatory compliance, or consulting services. Experience in network engineering/administration with a security emphasis is preferred. Knowledge of IT control and/or services management standards such as CObIT, ITIL, and ISO is also preferred. Previous experience in banking or credit unions would be advantageous. You should possess the ability to work effectively as part of a team as well as independently. Creative problem-solving and research skills are essential, along with excellent verbal and written communication abilities. Strong analytical and report writing skills are required, and proficiency with Microsoft Office applications such as Word, Excel, PowerPoint, and Outlook is expected. The ability to handle multiple priorities, tasks, and simultaneous projects is a key attribute for success in this role.,

As an IT Application Owner (ITAO) at Home Loan Savings, you will be responsible for collaborating with business and operation units, as well as the development team, to ensure structural stability of applications, compliance with technical/risk/policy processes, and managing the technical roadmap in alignment with Deutsche Bank's digitalization strategy. You will be part of a team in India working closely with a team in Germany, leveraging virtual collaboration techniques and diverse expertise to achieve continuous delivery and process improvement. Your key responsibilities will include maintaining application compliance with IT policies, setting up development and production environments, leading discussions with business and vendors for new requirements, delivering application releases and defect fixes, as well as assisting junior team members. You will also be involved in enterprise IT governance, information security, knowledge management, and various other aspects of application support and management. In terms of skills and experience, you should have a minimum of 8 years experience in a similar role, with basic knowledge of ITIL and experience in database, mid-range technical stack, and open-source skills. Familiarity with tools across the Software Development Lifecycle/DevOps, application governance, and Agile/SCRUM methodologies is essential. Knowledge of Home Loan Savings and Mortgage Lending is advantageous, along with experience in GCP or other Cloud technologies. Certifications such as COBIT, ITIL, PMP, CRISC, CSSLP, or CISSP are preferred. You should possess strong communication skills, the ability to manage unexpected events efficiently, and a proactive approach to problem-solving. Fluency in English is required for stakeholder interaction, and knowledge of German is a plus. People skills such as end-to-end ownership, performance orientation, analytical abilities, and a flexible working approach are crucial for success in this role. The benefits offered include a best-in-class leave policy, gender-neutral parental leaves, childcare assistance, industry-relevant certifications sponsorship, employee assistance program, comprehensive insurance coverage, and more. Training, coaching, and a culture of continuous learning are provided to support your career development. Deutsche Bank fosters a culture of empowerment, responsibility, commercial thinking, and collaboration, where employees are encouraged to excel together. Diversity and inclusivity are promoted, creating a positive and fair work environment for all.,

Responsibilities: Conduct IT risk assessments & audits. Ensure compliance with ISO standards. Develop & implement ISMS policies & procedures. Manage information security incidents & breaches.

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As part of our EY- Technology Risk team, you'll contribute technically to IT Risk and Assurance client engagements and internal projects. An important part of your role will be to actively establish, maintain, and strengthen internal and external relationships. You'll also identify potential business opportunities for Ernst & Young within existing engagements and escalate these as appropriate. Similarly, you'll anticipate and identify risks within engagements and share any issues with members of the team. We're looking for a Manager to join the leadership group of our EY- Technology Risk Team. This is a fantastic opportunity to be part of a leading firm while being instrumental in the growth of a new service offering. Your key responsibilities are to: - Evaluate a portfolio of controls for design effectiveness, operating effectiveness, and/or risk management outcomes, raising issues as appropriate. - Ensure that assigned control assessments are accurate, effective, abide by policy, procedures, and templates, and meet quality control requirements and are delivered on time, in accordance with the assessment plan. - Test and supervise the delivery of assigned controls not limited to ITGC and ITAC but System Architecture, Operating Systems, Databases, Networks, Security Systems, Cloud Services, Asset Inventories, Incident Management, Recovery Management, ISO27001 & NIST assessment, Privacy Assessment, Cyber Maturity Assessment, IT Policies and Standards Assessment, and Software Development Lifecycle (SDLC); using experience and knowledge to intervene and redirect testing as required, resolving, or redirecting escalations as required. - Manage control owners and other stakeholders, ensuring the success of each assigned review, minimizing contention where possible and requesting support where deemed necessary. - Apply judgment and risk management concepts to identify, formulate findings, and provide valuable insights to the clients to improve processes and manage risks to achieving operational and strategic goals. - Review IT Policies and Standards and ensure that they are as per the different industry standard. - Work closely with cross-functional teams and develop strong relationships as project lead within IT security and GRC projects. - Stay current with and promote awareness of applicable regulatory standards, upstream risks, and industry best practices across the enterprise. - Control frameworks such as COSO, internal control principles, and related regulations including SOX and J-SOX. - Familiar with IT industry frameworks such as ISO27001, NIST, PCI-DSS, SOX, FDA, HIPAA: Privacy, HIPAA: Security, and HITECH Act. - Third-party reporting standards (particularly SSAE16), other reporting and industry-specific standards, and, if applicable, trust-based standards such as SysTrust and WebTrust. Skills and attributes for success: - Provide guidance and share knowledge with team members and participate in performing procedures especially focusing on complex, judgmental, and/or specialized issues. Work with the team and the client to create plans for accomplishing engagement objectives and a strategy that complies with professional standards and addresses the risks inherent in the engagement. - Experience in conducting information security assessments including business continuity plan audits, network security audits, and infrastructure audits. - Perform NIST assessments, ISO assessments, and privacy impact audits, Data Privacy and GDPR implementation, experience in developing Data inventory and Third-Party Risk Assessment. - Maintain relationships with client management to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. - Bring and utilize extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the client's business. Demonstrate excellent project management skills, inspire teamwork and responsibility with engagement team members, and use current technology/tools to enhance the effectiveness of deliverables and services. - Understand EY and its service lines and actively assess what the firm can deliver to serve clients. To qualify for the role, you must have a Graduate (CS/IT, Electronics, Electronics & Telecommunications)/MBA/M.Sc. with at least 6 years of experience. Bring your significant experience in applying relevant technical knowledge in at least one of the following engagements: (a) ISO assessments, (b) NIST assessments, (c) Data privacy audits, (d) Network and Infrastructure audits, (e) Cyber Maturity Assessment, (f) IT Policies and Standards Assessment, (g) IAM and IT Asset Management, (h) IT Health Check. Ideally, you'll also have a robust understanding of program and project management practices and familiarity with a typical IT systems development life cycle. What we look for: A team of people with commercial acumen, technical experience, and enthusiasm to learn new things in this fast-moving environment. Opportunities to work with EY technology risk practices globally with leading businesses across a range of industries. What working at EY offers: At EY, we're dedicated to helping our clients, from startups to Fortune 500 companies, and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer support, coaching, and feedback from some of the most engaging colleagues around, opportunities to develop new skills and progress your career, and the freedom and flexibility to handle your role in a way that's right for you. EY | Building a better working world: EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Summary Implements the information security, governance and strategy per the information management framework through business partnering. Perform ISRM compliance activities for a specific area or technology within TT. About the Role Major accountabilities: Deep understanding of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST, GDPR, NIS2. Hands-on experience in GRC tools such as ServiceNow to configure, build and automate controls / assessments logic for the compliance management. Provide input to GRC team on risk and control register business requirements. Aptitude for technology, open-mindedness towards picking up new skills and working in various trending areas such as AI, GenAI, OT, Mobile, Cloud technologies etc. Basic knowledge on industry regulations e. g. SOX, GxP etc. Deliver effective security training and awareness programs and coordinate delivery across functions and countries. Experience in designing and implementing controls and policy framework, laws and regulations and best in class industry standards. Work experience in risk, control, and governance disciplines (e. g. , Risk Management, Audit, Information Security, Regulatory Compliance). Establish close collaboration with stakeholders to facilitate alignment with policies, risks as well as internal and external audits. Strong communication to manage various levels of collaboration/working relationship with global teams. Desirable Skills: 8-10 years of experience in various industry framework and GRC tools. Strong presentation, analytical and communication skills. Ability to, influence, work collaboratively and contribute to high performing teams. CISA/CISM and Big 4 experience preferred.

You will be joining M&G Global Services Private Limited, a subsidiary of M&G plc group of companies, as a Manager Business Senior Auditor. In this role, you will report to the Assistant Vice President in M&G Global Services Private Limited, located in Mumbai. Your primary responsibility will be in the Internal Audit function, which is crucial for meeting business ambitions and protecting customer interests by ensuring internal control, risk, and governance frameworks are effective. As a Business Senior Auditor, you will work closely with stakeholders to identify risks and control improvements across various business functions. This role requires at least three to six years of experience in financial services and/or internal/external audit. You will need to understand operational processes, identify operational risks, plan and conduct audit tests, and effectively communicate findings to stakeholders. Your key responsibilities will include planning and risk assessment, audit performance, audit reporting, business partnering, and team management. You will collaborate with stakeholders, lead discussions on audit testing results, build relationships, and provide guidance to junior team members. Additionally, you will actively participate in the Audit Community, seek learning opportunities, and contribute to a positive team environment. To excel in this role, you must be eager to learn, build relationships, communicate effectively, and demonstrate strong organizational skills. Knowledge of the COSO framework, business risk and control frameworks, and financial services/products is essential. Ideally, you should have certifications such as CISA, FRM, or CIA, along with a degree or relevant professional qualification. In summary, as a Manager Business Senior Auditor at M&G Global Services, you will play a vital role in ensuring the effectiveness of internal controls and governance frameworks, contributing to the overall success of the organization while upholding high standards of professionalism and integrity.,