Role : System Audit || IT Audit || Senior Audit || Lead Auditor |\ Exp : 5- 12 Years Location: ,Mumbai, Chennai , Notice period: Immediate to 60 Days Experience in the field of information security operations, Information System Audits encompassing experience into any of the Banking Technologies Domains Application Security, Database management and administration, / Network security and SOC / Payment systems in addition to IT General controls (ITGC). Exposure to the Banking / Finance / Payment industry domains would be preferrable. Hands-on experience in the following areas: - Writing Information security policies, procedures, and processes - Conducting risk assessment covering Cyber Security domains as noted below: Application Security: Mobile application assessment, OWASP security practices for applications, VA/PT/AppSec, source-code review, black/grey/white box testing, application SDLC, Strong knowledge of programming languages for applications. Database Security: Database administration and management - Oracle, MS SQL etc., Database Activity Monitoring tools, data security and localization. Payments Systems Security: Understand payment systems and architecture such as SWIFT, UPI, IMPS, ATM, Internet Banking, Mobile Banking, Core Banking System, payment gateway, ATM switch and terminal. Experience in PCI DSS implementation/assessment and ATM end-point security and Cards data security and operations. Networks Security: Managing firewalls, routers, proxy, WAF, email filtering, DLP, DDoS protection, data encryption, IPS/IDS, Incident response and investigate security breaches, VA-PT for networks. Security Operations Centre- Implementation and review. IT General Controls: Familiarity with Technical Security controls of Identity & Access Management, Network, Server, Application, Change management, Backup and Restoration etc. and process controls reviews. Understand BCP and DR processes and architecture. Experience in conducting reviews based on ISO standards and regulatory guidelines in banking sector for a medium to large sized organization would be preferred. Experience in conducting Information System Audits Must have experience in preparing quality deliverables such as audit reports, presentations etc. Excellent written, oral communication and presentation skills Excellent organizational and interpersonal skills Ability to work independently or as part of a team Responsibilities: Candidate will have to travel extensively within Mumbai and across the country for performing audits, as per RBI requirements. Conducting audit of Information security policies, procedures, and processes to identify process/design gaps. Conduct audits of information security systems and infrastructure to verify systems are secure and support the related applications/business processes. Conducts audits in different banking technology domains such as Active Directory, WAF, Network access security, End-point security, Application VA/PT/AppSec, SDLC, Database management and security, PCI-DSS, ATM controls, Cards (Debit/Credit) security, Payment gateway and IT General Controls etc. Additional weightage will be given to candidates with experience in domains such as Cloud Security, API security. Developing project plans, work programs, evaluating system controls, identify risks and audit gaps, documenting results in proper audit report format, making recommendations, and communicating information to stakeholders. Support in maintaining audit checklist and documents, trend analysis, preparing presentations etc. Should be a self-learner and must keep updated with the latest security guidelines issued by regulators, international standards for information security, threats and vulnerabilities researched/discovered. Research public domain to keep up to date knowledge on latest banking applications / technologies and emerging technologies Cloud, Virtualisation, AI-ML, IOT etc. and ensure continuous learning in identified security competencies and new/emerging technologies

Role & responsibilities Perform testing of SOC controls including controls related to business processes, entity level, logical access, change management, and other IT technical areas. Attention to detail while executing work and mentoring/managing staff and interns. Manage project deadlines and ensure quality of work papers. Manage external and Internal stakeholders and client executives to manage escalations, resolve issues and deliver on project outcomes. Mentor and train junior staff on projects and review SOC work papers and reports. Manage assignments for multiple SOC projects Preferred candidate profile Bachelors degree or equivalent experience required; major in business, finance, accounting or information systems preferred. Minimum of 2 years of experience into IT Audit/SOC experience. CISA and/or CPA preferred.

Key Responsibilities: Conduct cybersecurity assessments, including ISO Audit, CPM, IRDAI, RBI Regulatory audits, ITGC, TPRM etc., Develop cybersecurity frameworks, policies, and procedures tailored to clients' specific needs and requirements, in alignment with industry best practices and regulatory standards. Assist clients in designing and implementing robust cybersecurity controls and technologies, such as firewalls, intrusion detection/prevention systems, encryption, and endpoint security solutions. Provide guidance and support to clients in incident response planning and management, including the investigation, containment, and remediation of cybersecurity incidents and breaches. Collaborate with cross-functional teams, including IT, legal , and compliance , to integrate cybersecurity into clients' overall business strategies and operations. Deliver cybersecurity awareness training and education programs to clients' employees and stakeholders to promote a culture of cybersecurity awareness and compliance. Stay abreast of the latest cybersecurity threats, trends, and technologies, and provide proactive recommendations and insights to clients to enhance their cybersecurity posture. Engage with clients to understand their business objectives, challenges, and risk appetite, and develop customized cybersecurity solutions to address their specific needs. Assist in business development activities, including preparing proposals, conducting client presentations, and participating in client meetings to identify new opportunities and expand our cybersecurity advisory services. Qualifications: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree or relevant certifications (e.g., ISO, CISSP, CISM, CISA, CEH ) preferred. 2-3 years of experience in cybersecurity consulting, advisory , or related roles, preferably in a professional services environment or consulting firm. Deep understanding of cybersecurity principles, frameworks, standards, and regulations (e.g., NIST, ISO 27001, GDPR, PCI DSS ) and their application in diverse business environments. Strong analytical and problem-solving skills, with the ability to assess complex cybersecurity issues, evaluate risks, and develop practical solutions and recommendations. Excellent communication and interpersonal skills, with the ability to effectively interact with clients, stakeholders, and team members at all levels of the organization. Proven track record of successfully managing and delivering cybersecurity projects and initiatives on time and within budget. Ability to work independently and collaboratively in a fast-paced and dynamic environment, while demonstrating a commitment to excellence and client satisfaction. Flexibility to travel to client sites and work on-site as needed.

Roles : Finance System SME Experience : 7-8 Yrs(Relevant) Location - Pune /Remote Role & responsibilities Key Responsibility Areas (KRAs) 1. Finance Systems Transformation & Implementation Lead functional part of finance system transformation initiatives across SAP ERP, OneStream, Blackline, and Co-Star. Act as the primary Subject Matter Expert (SME) for finance systems, supporting GPO for providing guidance to global and regional finance teams. Drive system enhancements to streamline processes, improve efficiency, and ensure alignment with business objectives. Ensure seamless integration of finance systems with other enterprise applications. 2. SAP Finance System Management & Governance Manage SAP ERP Finance modules, ensuring system integrity and optimal performance. Oversee role design, role assignments, and governance as part of SOX and ITGC compliance requirements. Implement and monitor finance-related IT General Controls (ITGCs) in SAP and other financial systems. Conduct system testing and validation for SAP role updates post-redefinition. 3. Finance System Compliance & SOX Readiness Ensure compliance with SOX, ITGC, and other regulatory requirements for all finance systems. Act as the liaison with internal and external auditors, providing required system and access documentation. Implement risk controls for user access management, segregation of duties (SoD), and data security. Regularly review and update finance system controls to mitigate risks and improve compliance. 4. Financial Reconciliations & Consolidation System Support Provide technical and functional support for Blackline (reconciliations) and OneStream (financial consolidation). Manage license allocation and effective use of licenses for Blackline and OneStream. Troubleshoot and resolve issues related to data accuracy, mapping errors, and system integrations. 5. Lease Accounting System (Co-Star) Oversight Ensure proper data integration between Co-Star and SAP for financial reporting. Support lease accounting teams with troubleshooting and process optimization. 6. Handover & Knowledge Transfer from Existing SME (Kristin Johnson) Take over system responsibilities from Kristin, ensuring a smooth transition. Document key system configurations, processes, and best practices for future reference. Serve as the primary point of contact for finance system-related inquiries. 7. End-User Training & Support Develop and maintain training materials and provide hands-on training for finance system users. Support 800+ SAP users and 150+ OneStream users, being first POC for resolving issues and providing system best practices. Facilitate workshops and knowledge-sharing sessions to improve user proficiency and adoption. 8. Continuous Improvement & Best Practices Implementation Stay updated with latest developments in SAP, OneStream, Blackline, and Co-Star to drive improvements. Identify and implement automation opportunities to enhance efficiency and reduce manual efforts. Collaborate with GPOs, finance leaders, and IT teams to ensure continuous optimization of financial systems.

Essential Duties and Responsibilities: Manage the work streams related to IT SOX compliance covering ITGC and IT Dependencies (ITAC, Interfaces, IPEs). Thorough understanding around ITGC domains such as Logical Access, Change Management, SDLC and Computer Operations. Exposure of testing IT Application Controls (Configurable, Non-configurable), Interfaces, IPEs, Data Migration and Platform Reviews. Provide technical support in the assessment, design, and implementation of ITGC requirements. Review control evidence for adherence to accuracy, completeness, and precision of control execution for all ITGC. Develop, implement, and test controls for new acquisitions and in-scope entities Work with control owners and operators to ensure quality, consistency, and operability of new and existing controls. Collaborate and build long-term relationships with key stakeholders in a fast-paced and matrixed work environment. Review test findings, facilitate the remediation of ITGC control gaps, and escalate possible critical issues to senior management within IT. Mentors and develops peer and Associates, monitors their work, and takes corrective action when necessary Builds and maintains strong peer relationships within the team and across the organization Coordinates work with External Auditors. Minimum Qualifications: Bachelors degree in Information Systems, Computer Science Engineering, or Finance Preferred B.E., B. TECH, M. TECH, MCA, BCA, CA, MBA Experience in technology audit, risk management, compliance, consulting, or information security Excellent knowledge of IT General Controls, automated and security controls. Knowledge of security measures and auditing practices within various operating systems, databases, and applications Experience in auditing financial applications, cyber security practices, privacy, and various infrastructure platforms such as Unix, Linus, Windows, SQL Server, Oracle Databases Knowledge and concepts of auditing of cloud platforms (AWS, Azure and Google Cloud) Experience designing continuous auditing and monitoring tools and techniques is a plus. Good understanding of CoBIT 5 Domains of Access Management, SLDC & Change and Computer Operations and Control Design and Testing of SOX IT General Controls (ITGC) and/or IT Application Controls (ITAC) Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Management/Clients Knowledge of regulations impacting privacy, integrity, and availability of clients PII. Functional knowledge of major ERP suites (like SAP, Dynamics, Oracle EBS) Understanding of audit concepts and regulations Required overall experience in testing/reviewing and implementation of ITGC controls, CoBit 5 and developing COSO framework Candidates with 3-5 years of relevant experience in similar role, preferably with a “Big 4” or equivalent Chartered Accountant (would be added advantage) Certification(s) preferred: CA / CISA / CISM / CRISC / CISSP / ISO 27001 LA certifications

Location: PAN India Job Description: We are seeking a highly skilled SOX Compliance Specialist to join our team. The ideal candidate will have extensive experience in SOX compliance, specifically in testing ITGC controls. The role involves executing Tests of Design (TOD) and Tests of Effectiveness (TOE), ensuring compliance with regulatory requirements, and analyzing gaps in current processes to suggest improvements. The candidate will also face internal and external audits, providing expert insights to enhance our compliance framework. Key Responsibilities: Execute Tests of Design and Effectiveness for ITGC controls. Analyze current processes to identify gaps and propose improvements to Application Owners. Collaborate with internal teams to ensure seamless audit processes. Provide expert guidance during internal and external audits. Develop and implement compliance strategies aligned with SOX regulations. Must-Have Qualifications: 4+ years of relevant SOX experience in ITGC controls testing. Proven experience in executing Tests of Design (TOD) and Tests of Effectiveness (TOE). Strong background in facing internal and external audits. Ability to analyze gaps in current processes and suggest improvements. Good to Have: Experience in ITGC audits as an auditor. Demonstrated expertise in Incident Management and Change Management.

strong domain leadership managing team of audit professionals. Active Networking with Operations Managers, Delivery Managers and Practice Leads of accounting domains AP, AR and GL. Resolving influencing managers to adopt and manage key control risks

Roles and Responsibilities Manage IT general controls (ITGC) engagements, including SOX compliance assessments and remediation efforts. Lead teams to deliver high-quality services to clients, ensuring timely completion of projects within budget constraints. Develop strong relationships with clients through effective communication and issue resolution. Identify opportunities for process improvements and implement changes to enhance efficiency and effectiveness. Collaborate with other departments to ensure seamless delivery of services across the organization. Desired Candidate Profile 6-10 years of experience in ITGC, SOX Compliance, or related fields such as SOC/ITGC audits or consulting engagements. Strong understanding of IT general controls principles and their application in various industries. Experience leading teams on multiple assignments simultaneously; ability to prioritize tasks effectively under tight deadlines.

Job Purpose Support and act as a key team member of LOS Compliance unit for review of functional applications controls across various lending applications. Duties and Responsibilities Lead projects of LOS (lending Origination Systems) Compliance for one of the largest, most prestigious NBFC, be part of Fintech Transformation journey of BFL. Guide, manage and review compliance assignments in the areas of IT application controls (ITACs) or manual functional mainly comprising of- Access control review. Segregation of Duties (SOD) controls review- review of actual accesses against set policy. Functional lending functions of SFDCs and other similar applications such as workflows review, layout reviews and data analytics. Ensure existing and ongoing internal, RBI and any other statutory compliances for the lending application processes from IT and functional perspective. Support to such audits. Pushing teams for closure of above observations by maintaining trackers. Excellent hands-on experience in MS Excel and good at data analytics. Demonstrate technical & functional understanding of lending applications like SFDCs, ATOS, etc. Work jointly with a dynamic & growing team having diversified experience With various BFL Fin-tech initiative, candidate need to have agility to adopt to new changes and put state of art review process. Also drive specific projects around IT & Fintech. Key Decisions / Dimensions Scope and methodology of testing approach while reviewing LOS functional processes across journeys with respect to profiles. Sample sizes to be picked up for process review Validation of explanations/justification for reported exceptions. Major Challenges Understanding the complex IT environment and applying the existing regulations/controls for the same. Reviewing the LOS functional processes especially access loan booking journeys. Required Qualifications and Experience a)Qualifications BE/B.Tech/CA/MBA/ CISA with 5-8 years of experience in similar role. Willingness to work in compliance function conducting IT reviews for lending functional controls. b)Work Experience Strong technical knowledge of given domains, ability to stay up to date with latest technologies. Strong analytical skills. Highly motivated, self-starter, Agile, Quick Learner Excellent oral and written communication, clarity of thoughts Demonstrated success & achievement orientation c)Skills Keywords LOS Compliance, CA, CISA, Access controls, SOD review, segregation of duties, Info Security, NBFC compliance, IT Controls, Functional control testing, ITGC reviews, SFDCs, salesforce.

RAS- DRC - Senior Associate -Bangalore / Gurgaon Role Description / Technical Sets : Candidates should have proficient knowledge for execution & review in the areas of:- - IT General Controls testing (ITGC), IT Application Controls (ITAC), and SoD Analysis of Azure cloud platforms, ERP applications like SAP, Oracle, NetSuite, Microsoft and Linux OS and Databases for Internal Audits (IA) & Sarbanes-Oxley (SOX) 302, 404 audits. SOC1, SOC2 etc. - Experience in participating the walkthroughs and determining the clients IT infrastructure and applications to determine the effectiveness of the control environment - Prior experience with internal controls including flowcharts, process documentation and testing of design & operating effectiveness is required - Experience or knowledge with ISO 27001 and PCI-DSS is preferred - Experience in executing the IT audits under the offshore delivery model in an effective and efficient manner Other Knowledge, Skills & Abilities: - Ensure company compliance with accounting and auditing standards (IIA, PCAOB), regulatory reporting requirements (SEC) and other industry best Practices (COSO , COBIT). - Data analytics support for Internal Audits (IA), Sarbanes-Oxley (SOX) 404 assessments and other risk advisory services - Excellent verbal and written communication skills, specifically business / report writing - Strong analytical skills with high attention to details - Project management and organization skills Ability to prioritize effectively, multi-task and meet competing deadlines - Solid understanding and experience planning and coordinating the stages to perform an audit - Identifying control weaknesses, discussing and agreeing these observations with senior management preparing well drafted audit reports and findings, and presenting these findings to senior management. Software: - Ability to use Excel, Word, PowerPoint for SOX control testing and reporting. - Proficient in the use of workflow tools like Auditboard, Workiva etc. is preferred - Working knowledge of data analytics software such as IDEA or ACL is optional. Education : - Bachelors or Masters degree in Accounting, Finance, Engineering, Technology, Information Systems, Computer Application or other relevant field required License/Certifications: CA/CISA preferred

About the Vacancy IT Advisory Risk Consulting IT Audit & Assurance KPMGs IT Advisory Risk Consulting team is looking for Managers to join their IT Audit & Assurance team. Team provides Independent assurance on controls in place across client’s IT environment and ways to mitigate Technology risks. Skill set for IT Audit - IT Audit with knowledge of IT governance practices Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Prior IT Audit experience in areas of ITGC, SOX 404, SOC-1 and SOC-2 Audits and Application Controls Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security measures and auditing practices within various applications, operating systems, and databases Qualifications Bachelor's degree in an appropriate field from an accredited college/university Project or team lead experience, specifically within a consulting firm is preferred Excellent written and verbal communication, facilitation, and presentation skills with the ability to gain the confidence and respect of senior level executives Strong analytical and problem solving skills Ability to work well in teams Ability to work under pressure – stringent deadlines and tough client conditions which may demand extended working hours Willingness to travel within India or abroad for continuous long periods of time Demonstrate integrity, values, principles, and work ethic and lead by example

Senior Cyber Compliance Audit analyst: Responsible for assessing, challenging, and testing the design and operational effectiveness of controls using TRs control framework by working collaboratively with control owners and stakeholders to improve the control testing process, including defining re-test cycles and evidence expected. About the Role : In this opportunity as Compliance Program Technical Auditor, you will assess, challenge, and test the design and operational effectiveness of controls using TRs control framework by working collaboratively with control owners and stakeholders to improve the control testing process, including defining re-test cycles and evidence expected. Execute a testing plan by communicating requirements to control owners, reviewing evidence submitted, agreeing on deficiencies found and finalizing the next steps in meeting control requirements. Oversee and act as a liaison for both external and internal audits . Identify procedures and practices that are not compliant with industry Frameworks Recommend and support stakeholders making changes to address non-compliance issues . Compile reports on audit results and present them to managers supervisors. Propose efficiencies and automation where possible to optimize workflow. Work closely with other teams like ERM, Finance, business and application owners, third party or contractors supporting processes to report and track remediation plans for any control deficiencies identified. Ensure awareness about security risks, best practices and policy/standard requirements are essential to ensure compliance. Work independently, act decisively and ensure personal deadlines and team requirements are met. Willingness and drive to learn continuously and approach change with openness. About You You're a fit for the role of Senior Business Technology Analyst if your background includes: Bachelor's degree in IT, Accounting, Finance or equivalent education and experience. At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations. One of these certifications in order of preference is essential CISA, CISSP, CCAK, CISM, CRISC. Strong ethical principles and understanding of business and IS ethics. Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top 10 and Cloud Security Alliance (CSA). Experience in testing Cloud controls and related technologies will be an asset. Excellent oral and written communication skills in English. Additional expertise in French, Spanish or another language will be an asset. Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like.

EYGDS is actively seeking seasoned Transformation Risk professionals to join our team. Experience required - 3 to12 years Locations - Gurgaon, Bangalore, Pune, Chennai, Hyderabad, Noida, Pune, Kochi, Trivandrum & Kolkata Required Skills: Bachelor's or Master's degree in Information Technology, Computer Science, Risk Management, or a related field. Minimum of 5 years of experience in technology risk management, with a focus on transformation projects. Strong understanding of IT governance frameworks (e.g., COBIT, ITIL), cybersecurity principles, and data privacy regulations (e.g., GDPR, CCPA). Desired experience in Internal controls within SAP ECC/S4 Applications and their integrations and strong understanding of IT application controls, IT general controls and interface controls Professional certifications such as CRISC, CISM, CISSP, or equivalent are highly desirable. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.

Knowledge: Strong knowledge and understanding of the business, their processes and ambition are essential. Detailed knowledge and practical experience with risk management practices and frameworks (COBIT, ISF SoGP, NIST, ISO, GDPR etc.) Working knowledge of collaboration tools and new technologies with the ability to champion team learning and coach business colleagues when required. Essential knowledge of three lines of defence practice. Working knowledge of Financial Services, Technology industries and regulatory requirements in relation to IT risk, outsourcing and operational resilience. Experience of third party relationships and the Information Technology and security risks created. Certifications like CISA/CGEIT/CRISC would be advantageous. Skills: Ability to translate technical and risk requirements and specifications into easily understood business concepts and vice versa. Able to determine risk profiles and to be accountable for these judgements and for the business activities undertaken to address them. Ability to build relationships at all levels in the business. Good organisational and system automation skills. Ability to drive activities in collaboration with colleagues in other areas. Excellent communication, verbal and written, and stakeholder management skills. Remain effective in situations when responsibilities, tasks, priorities and / or work environment change significantly. Commercial awareness across IT marketplace including offshore marketplace and supplier knowledge. Experience: 6 Years experience in Technology and/or security risk management. Proven experience of creating simple but concise and impactful updates/visual presentation from complex data to key stakeholders during times of increased pressure. Demonstrable experience at working within three line of defence model and with senior business and IT stakeholders (e.g. managing directors, directors, Chief information officer, Chief information security officer, Chief operating officer). Educational Qualification: Graduate in any discipline

Location -Kolkata, Trivandrum, Bangalore, Chennai, Hyderabad, Noida, Gurgaon, Pune Experience- 3-6Years To qualify for the role you must have A bachelors or masters degree and at least 3-5 years of related work experience Deep understanding of Oracle business processes (e.g., purchase-to-pay, record-to-report, order-to-cash). Oracle Fusion Cloud/EBS Experience: Experience in Internal controls within Oracle Applications and their integrations and strong understanding of IT application controls, IT general controls and interface controls. Securing application and DB layer within Oracle EBS/Fusion AND/OR Strong understanding of Segregation of Duties and User provisioning, experience implementing, assessing, or implementing controls monitoring tools like Oracle Advanced Controls, Oracle Risk Management or other GRC tools AND/OR Experience implementing and supporting at least one Oracle Fusion Cloud or Oracle EBS implementations in a Functional role. Excellent teaming skills, with ability to train, coach and manage staff Excellent communication, documentation and report writing skills Professionals with Oracle certification preferred, Good to have additional Industry related certification such as CISA, CISM etc.

Control & Compliance Position: Lead-Client Ops Education: CA/CA inter Exp: 12+ yrs Exp in Risk assessment, ToD/ ToE for process controls relating to P2P, O2C, & R2R,SOX principles, COSO Frameowrk. Loc: Jaipur Salary upto.30LPA Regards, Js4u Team

Step into a leadership role as a Controls Assurance Manager , driving risk and compliance strategies across the business. You will conduct control testing, oversee issue assurance, and collaborate with senior stakeholders to enhance governance and security frameworks. Location : Mumbai Your Future Employer Join a global leader in enterprise security and technology, providing robust governance, risk, and compliance (GRC) solutions. Be part of a dynamic team that ensures regulatory excellence and operational resilience. Responsibilities Performing control testing across Third Party Risk Management, Operational Resilience, Data & Privacy. Overseeing and supporting the Technology controls testing team. Supporting Issue Assurance processes and validating closure packs. Assisting management in remediating control gaps and implementing improvements. Building strong relationships with key stakeholders and senior leadership. Enhancing IT risk efficiency through innovative approaches. Requirements Graduate in any discipline. 8+ years of experience in Technology and/or Security Risk Management. Strong knowledge of risk management frameworks and three lines of defense practices. Experience in Financial Services, IT Risk, and Operational Resilience. Certifications like CGEIT/CRISC would be an advantage. Whats in it for you? Opportunity to work with global stakeholders and industry leaders. A dynamic work environment with cutting-edge technology risk practices. Career growth in enterprise security and governance. Reach us : If this role aligns with your career aspirations, send your updated CV to shreya.mohan@crescendogroup.in for a confidential discussion.

Location- Bangalore, Hyderabad, Chennai, Gurgaon, Kolkata, Noida To qualify for the role, you must have Graduate (CS/ IT, Electronics, Electronics & Telecommunications,)/MBA/M.Sc. with at least 3 years of experience Demonstrated track record with a blue-chip consulting organization and/or a blue-chip organization. Requirements (including experience, skills and additional qualifications) Preferably B.E/B.Tech (Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA with at least a minimum of 3 years relevant experience Knowledge and experience of the following areas, and be developing deep experience and technical competence in at least one IT audit in the context of a financial audit, and related regulations, auditing standards and guidelines Minimum three years of relevant experience in cloud consulting or cloud audit of Microsoft Azure or Amazon Web Services. Understanding and hands on experience in cloud technology focusing on cloud security, information protection and DevOps. Internal audit services with a specific focus on IT, and related industry standards Common IT governance, control and assurance industry frameworks, including COSO, COBIT, RiskIT, ValIT, IT Governance Institute and ISACA good practices. Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Certifications (Preferred): Recognized cloud certifications from AWS, Azure, GCP, Oracle, CCSK, CCAK etc.

Audit Assignment Execution - Execute the audit plan to ensure complete coverage of internal audit while adhering to the timelines - Collaborate with the internal teams to ensure timely and smooth availability of necessary documents from the auditee - Track that the complete audit check list is taken care of in audit of each file and the same is suitably recorded. - Complete defined audit plan & schedule discussion and meetings with auditee for timely completion of the assigned tasks Corrective and Preventive Action, Follow up & Testing - Monitor implementation of all corrective and preventive action agreed with the auditee and notify Lead Internal Audit in case of anomalies - Provide suggestions for process improvements based on the audit results - Meet auditees at defined intervals to monitor the progress on implementation on agreed points of action. - Check updated manuals and SOPs for insertion / modification on points of agreed recommendations. - Track repeated audit observations on specific areas/non- corrective action despite the mutual agreement and highlight the same to Lead Internal Audit Audit Reports - Create audit reports while ensuring correctness and completeness of audit reports in a timely manner - Discuss with Lead-internal audit on reports to ensure timely finalization of audit reports with corrective and preventive action plans along with timelines Monitor quality assurance reports to ensure adherence to process guidelines by the claims teams Internal Audit Process - Track and follow updates of internal audit templates and tools to ensure adherence to defined processes - Follow the defined audit process (engagement communication, work-paper documentation, final report release) for each audit being performed by self - Execute open action plans to ensure closure of action plans within the stipulated time - Complete documentation of work-papers for each audit

Location - Kolkata, Kochi, Bangalore, Hyderabad, Pune, Noida Gurgaon Exp- 3-6 Years To qualify for the role, you must have A bachelors or masters degree and approximately 3-6 years of related work experience Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant)

Greetings From Bahwan CyberTek (BCT), Job Title: Senior Associate \ Assistant Manager Location: Bangalore, Chennai, Coimbatore Position Summary: This position is primarily responsible for execution of various engagement objectives within assigned areas and assists where necessary to complete the overall engagement. The individual may be responsible for day-to-day execution of engagement objectives on smaller engagements. This role requires the ability to supervise teams of 1 3 Associate staff members to ensure they receive direction and resources in the event engagement issues arise. This requires a basic understanding of the clients industry (e.g. inventory / distribution, oil & gas, financial institutions) and pertinent regulations, and the ability to learn unfamiliar industries and regulations. The individual should have a solid understanding of the role that information technology plays in financial reporting and other critical business cycles. This position should have a solid understanding of IT general controls including security administration, program change management, program development and computer operations, and should develop a better than basic understanding of the interaction of systems and financial processes. Skills: Experience in ITGC, SOC 1, SOC 2 Audit and SOX 404 preferred. CISA or CISA candidate, CISSP or CISSP candidate, CIA or CIA candidate, and/or CPA or CPA candidate. 2- 3 + years or more equivalent experience (public accounting / external audit, internal audit, information technology and/or staff accountant responsibilities). Excellent written and oral communications skills. Team orientation and strong interpersonal skills. Basic familiarity with GAAP, GAAS and IIA standards. Proficient at Microsoft Office product suite. Knowledge of IT controls and how they affect the control environment. COBIT, COSO, and related standards preferred. Greater than basic understanding of Sarbanes Oxley Section 404, and the role that information technology plays in compliance. Greater than basic understanding of systems infrastructure and security, connectivity, remote access, and data mining. Greater than basic understanding of financial reporting, transaction cycles and business processes. Greater than basic understanding of fundamental layers of information systems including network infrastructure, computer operating systems, database management systems, and computer applications. Experience supervising 1 to 3 or more individuals.

Overview: KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International, established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, reflecting a shared knowledge of global and local industries and our experience of the Indian business environment. KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They include IS audit, SOX reviews, Internal audit engagements, IT infrastructure review, and/or risk advisory including but not limited to IT audit supports in nature. Job Role: SAP Audit Job Title: A.Con/Con/Assistant Manager/Manager Function: SAP IT-Audit Location: Bangalore Requirements: Any Graduation degree from a reputed college with a minimum of 3-4 years of SAP audit and implementation experience. One end-to-end SAP implementation experience or at least 3 years of SAP support in FICO, MM, and SD modules. Well-versed with the configuration across different processes for the respective modules. Deep technical skills with experience in any of the following modules: SAP FICO MM SD GRC AC and Security (Roles Re-design, GRC functional and technical) BASIS Good business process knowledge and excellent communication skills. Global SAP certification would be a plus. Work experience in a Big4 (PwC, Deloitte) or system integrator companies (Infosys, HCL, Siemens, IBM, Accenture, Wipro, TCS) would be an advantage. Experience in any Module core function would be a plus. Responsibilities: Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Execute SAP-related audit and advisory engagements, including: Pre & Post implementation review (configurations controls review, BBP Review, Go-Live strategy, etc.) System utilization review Advisory related to the above Data migration review Pre & Post Go-Live reviews Segregation of duties, SOD Ruleset review and design SAP GRC Access Control and Process Controls review Demonstrate strong business process understanding and provide reasonable recommendations as per industry best practices. Be a quick learner, adapt to new client situations quickly, and work under a competitive environment. Ensure quality and timely delivery of projects. Interact independently with various Heads of Departments and CXO level personnel, SAP implementation partners, client IT teams, and other stakeholders. Maintain excellent client relationships. Possess problem-solving skills, a strong drive and resilience, and excellent documentation/report writing skills. Supervise associates and interns on engagements. Qualifications: Minimum of 2 years of experience in any of the following areas: SAP Financial implementation SAP audit and advisory SAP security design/re-design Bachelor's degree in an appropriate field from an accredited college/university. Hands-on SAP Financial and/or security implementation and/or effective SAP audit experience, ideally having both. Project or team lead experience, specifically within a consulting firm is preferred. Excellent written and verbal communication, facilitation, and presentation skills with the ability to gain the confidence and respect of senior-level executives. Strong analytical and problem-solving skills. Ability to work well in teams. Ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours. Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic and lead by example. Selection Process: Candidates should expect 2-3 rounds of personal or telephonic interviews to assess fitment and communication skills.

About the role: Samsara Technologies India Private Limited is looking for a Senior Auditor - SOX ITGC and Technology Internal Audit, to be part of our growing Internal Audit (IA) team in Bengaluru, India. The Internal Audit & Risk Governance team focuses on providing risk assurance and business insights through audit and operational projects that identify opportunities for management to enhance risk management, controls posture, and improve business operations. We strive to provide value to our stakeholders, insights to the Audit Committee/Board and help management to achieve their strategic goals while mitigating risks and maximizing opportunities. Focus areas include enterprise risk, internal controls, financial reporting, risk governance, business processes, and technology risks. The Senior Auditor - SOX ITGC and Technology Internal Audit, will play a key role in executing IAs Sarbanes-Oxley (SOX) IT General Controls (ITGCs) testing program and supporting a variety of technology-related internal audits (in areas such as IT infrastructure & operations, information security, and software development lifecycle). Their role will entail identifying pragmatic observations and recommendations to improve controls around people, processes, and technology, and will also include leveraging AI, large language models (LLMs), and automation to streamline audit execution, drive efficiencies, and strengthen the Internal Audit teams AI capabilities. Further, their scope will include working closely with stakeholders in key business and technology functions across the company to share insights on risk gaps and recommendations to improve the maturity of Samsara’s technology, operational, financial, strategic, and compliance-related processes. This individual should have a motivated and agile mindset, with SOX control testing & quality review experience, specifically deep knowledge in the IT general control areas, as well as experience executing operational technology and cybersecurity risk based audits. This role will report into the Manager, Technology Internal Audit and Risk Governance, Samsara Technologies India Private Limited, who will also be based in Bengaluru, India. This is a hybrid position requiring 3 days per week in our Bangalore, India office and 2 days working remotely. Relocation assistance will not be provided for this role. You should apply if: You want to impact the industries that run our world: Your efforts will result in real-world impact—helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely. You are the architect of your own career: If you put in the work, this role won’t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment. You’re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers. You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. In this role, you will: Independently execute IA’s SOX testing program for ITGCs while adhering to agreed-upon timelines, meeting quality expectations, and building relationships across the business Drive improvements in the testing process, including implementing best practices, improving documentation to meet reperformance standards, and driving consistency across the team deliverables Execute internal audit projects that provide effective coverage over technology, operational, financial, strategic and compliance risks and controls Collaborate with the IA team to identify opportunities to incorporate the use of AI capabilities (e.g. via LLMs, GenAI) into audit engagements, risk assessments, department metrics, and other initiatives Champion, role model, and embed Samsara’s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices Minimum requirements for the role: 3+ years of relevant experience in IT audit, cybersecurity, SOX, internal audit, risk and compliance, or related field Working knowledge of SOX ITGC, cloud security, and IT governance frameworks (e.g. COBIT, NIST, ISO 27001, SOC 2 etc.) Strong verbal and written communication skills to coordinate operations in India to provide regular and effective updates to the US Demonstrated experience working with US-based teams Ability to juggle multiple projects, being agile and adapting quickly to dynamic situations Attention to detail and keeping a high bar on the quality of audit deliverables An ideal candidate also has: Experience with automation technologies (e.g., scripting) and GenAI/LLM tools (e.g., Gemini, ChatGPT, Claude) is preferred A bachelor’s degree or equivalent in Business, Management Information Systems (MIS), Accounting, Computer Science, or related field Professional certification(s) such as Certified Information Systems Auditor (CISA), Chartered Accountant (CA), Certified Public Accountant (CPA), Certified Internal Auditor (CIA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), or other certification(s) relevant to audit, technology, and/or risk

Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Associate Qualifications: Any Graduation Years of Experience: 1 to 3 years What would you do? Accenture is looking for experienced control testers primarily for their Risk & Compliance vertical. Looking for someone how has sound knowledge of banking and its product. Understanding of Regulatory Control Frameworks and guidance. Working knowledge of data reporting tool is plusLooking for someone with Operational and SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints. What are we looking for? We are looking for candidates who has an eye for detailsUnderstanding the audit, control & compliance function Roles and Responsibilities: In this role you are required to solve routine problems, largely through precedent and referral to general guidelines Your expected interactions are within your own team and direct supervisor You will be provided detailed to moderate level of instruction on daily work tasks and detailed instruction on new assignments The decisions that you make would impact your own work You will be an individual contributor as a part of a team, with a predetermined, focused scope of work Please note that this role may require you to work in rotational shifts Qualifications Any Graduation

Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Senior Analyst Qualifications: Any Graduation Years of Experience: 5 to 8 years What would you do? Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model – powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints.Automated control testing is required. ITGC What are we looking for? Results orientation Strong analytical skills Written and verbal communication Collaboration and interpersonal skills Process-orientation Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications Any Graduation