10 It Risks Jobs

As a candidate for the role, you will be expected to have 4+ years of working experience and a strong understanding of IT risks, processes, and controls in various technology areas such as Mainframe, AWS, Azure, Google Cloud, Database (Oracle, MSSQL), UNIX, Windows, Teradata OS, Web Methods, Active Directory, and Tableau. Your responsibilities will include evaluating IT risks from a SOX perspective, performing Design and operating effectiveness tests of ITGCs and application controls, evaluating the design and performance of automated/configuration controls, liaising with clients and external auditors, finalizing issues noted, and documenting test work papers with precision. Your role will a...

As a Core TRA professional, your role involves managing assurance engagements focusing on IT risks, leading a team of IT assurance professionals, and evaluating ITGCs, business and IT processes, IT Application Controls tests, IPEs, and third party assurance (SOC1&2). You are expected to be a subject matter expert in specific technology platforms or industries. Your responsibilities include coaching the team, providing technical guidance, meeting tight deadlines, delivering high-quality results, staying updated on the latest technology trends, and promoting continuous learning within the team. You will engage with client senior management to communicate IT assurance findings effectively and i...

Role Overview: You will be responsible for designing, testing, and maintaining software programs for operating systems or applications to be deployed at client end, ensuring they meet 100% quality assurance parameters. Key Responsibilities: - Manage the Sarbanes-Oxley (SOX) IT compliance Testing for all programs across the organization - Ensure robust IT general controls (ITGCs), application controls, and interface controls are tested and remediated effectively - Act as a strategic partner to internal stakeholders including Finance, Internal Audit, IT, and external auditors - Maintain a strong control environment in line with regulatory requirements - Understand IT SOX program lifecycle, inc...

As a Risk Management Specialist, your role involves regularly auditing application and company procedures, practices, and documents to identify possible weaknesses or risks. You will be participating in planning and implementing tools and processes to enhance risk management. Your responsibilities will include: - Performing Risk Assessment support and facilitating the implementation of application controls to protect the client organization from compliance risks. - Proactively identifying control deficiencies and emerging IT risks for risk assessments. - Understanding laws and regulations related to information security standards such as PCI DSS, PA-DSS, and PCI SSF Framework. - Conducting p...

Responsibilities Team members will assist territory engagement teams in performing vendor assessment and managed services in accordance with territorial reporting guidelines. Team members would be expected to perform activities that will include: Preparation of vendor assessment reports which will include an analysis of the business profiling questionnaire and due diligence questionnaire of the vendor, review supporting documentation, performing a research on the operations and other relevant information about the vendor/supplier. Assessment of compliance of vendors against set standards/controls, SOC and PCI reports etc. Communicate with the clients and vendors and get clarification Assist ...

The Software Developer, DevSecOps team member is expected to have a thorough understanding of complex IT systems, embedded devices, applications, and cloud systems. You are required to stay up to date with the latest security standards, systems, authentication protocols, best practices, and emerging technologies. The ideal candidate will possess knowledge of industry security frameworks such as OWASP SAMM and have strong communication skills. Your responsibilities will include detecting product and application security threats, identifying areas of weakness for improvement, and supporting global and regional engineering groups. You will primarily work at Skyone Park, Pune, INDIA office, oper...

Expert in IAM (Identity & Access Management) SAP authorization (role and user management) and Governance Risk and compliance (both functional and technical) Broad and deep knowledge and experience with relevant technology platforms and multiple systems: CFIN (Fiori application authorization), BI, SRM, Treasury, ERPs, GRC Access Control and their specificities. SAP HANA and Cloud authorization knowledge a plus. Experience with CSI a plus. Ability to read and to resolve segregation of duties conflicts. Strong understanding of Business risks and IT risks related to authorization.

As a global leader in assurance, tax, transaction and advisory services, EY is dedicated to hiring and nurturing passionate individuals to contribute towards building a better working world. We prioritize establishing a culture that emphasizes on providing you with the necessary training, opportunities, and creative freedom to grow. At EY, we are not only interested in who you are at present but also in who you aspire to be. We firmly believe that your career is yours to shape, offering limitless potential, along with motivating and enriching experiences throughout your professional journey to support you in becoming the best version of yourself. The role of SAP GRC - Senior Manager / Manage...

The position you are applying for aims to ensure the continuity of the overall Advanced Metering Infrastructure (AMI) deployment and Operations & Maintenance (O&M) in accordance with the contract requirements. Your role will involve safeguarding all information assets and systems under the AMI project, identifying vulnerabilities that could impact availability, integrity, and confidentiality, and implementing necessary controls as per Utility / Apraava Energy Information Security Policies (based on ISO 27001 & CEA framework). Furthermore, you will be responsible for reviewing cyber security measures during the implementation of AMI projects and promoting end user engagement to enhance cyber ...

The Enterprise Security Engineer plays a critical role in ensuring the security of software products, collaborating with development teams, and implementing best practices to protect against threats. Designing and implementing tools to automate security processes is a key responsibility. The role necessitates excellent communication and organizational leadership abilities. Understanding network security architecture and its development is crucial. Knowledge of wireless security, including routers, switches, and VLAN security, is essential. Familiarity with DNS security principles such as routing, authentication, VPN, proxy services, and DDOS mitigation technology is also important. As an Ent...