348 Itgc Jobs - Page 3

Proficiency in IT systems, IT Risk management tools - ITGC, GRC Develop and maintain a comprehensive IT control testing plan. Execute control testing activities Document the results of control testing activities, including any identified deficiencies or issues Excellent analytical, problem-solving, and communication skills. Ability to work independently and collaboratively in a fast-paced environment.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Mandatory Skills: ServiceNow SecOps. Experience: 3-5 Years. >

Role & responsibilities Understanding engagement objectives and assisting the engagement manager in preparing the plan and testing procedures to meet the audit objectives. Gaining detailed understanding of relevant IT processes, systems and controls and performing controls evaluations. Support risk assessments, IT process walkthroughs, and control testing Ensuring work papers documentation to ensure the retained documentation supports the audit work performed. Assisting in the assessment of identified gaps and areas for improvement and evaluating their significance and potential business impact. Propose remediation steps that are practical and reasonable. Preferred candidate profile Bachelors/master’s degree in information technology, Computer Science, or related field. 3–5 years of experience in IT Audit, IT Risk, or Information Security roles. Strong understanding of ITGCs, application controls, cybersecurity, data privacy frameworks as such - NIST CSF, ISO/IEC 27001, COBIT, ITIL, PCI-DSS, GDPR/DPDPA Familiarity with cloud platforms (AWS, Azure, GCP) and is a plus. Excellent written and verbal communication skills. Strong analytical and documentation abilities. Certifications – CISA, ISO 27001/27701 Lead Auditor

Experience Implementation of ISO 27001, GRC ITGC & IT Regulatory compliance Knowledge in ISMS, ITGC Knowledge about regulators RBI, IRDA, SEBI Fresher 2023 /2024 in B. Tech or Cybersecurity

Skill required: Control Testing - Agile Testing Designation: Service Delivery Ops Senior Analyst Qualifications: Any Graduation Years of Experience: 5-8 Years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties. What are we looking for A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties.A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial Roles and Responsibilities: In this role you are required to do analysis and solving of moderately complex problems May create new solutions, leveraging and, where needed, adapting existing methods and procedures The person would require understanding of the strategic direction set by senior management as it relates to team goals Primary upward interaction is with direct supervisor May interact with peers and/or management levels at a client and/or within Accenture Guidance would be provided when determining methods and procedures on new assignments Decisions made by you will often impact the team in which they reside Individual would manage small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture Please note that this role may require you to work in rotational shifts Qualification Any Graduation

IT Auditor SOX & Technology Assurance Location : [Insert Location] Experience : 3- 5 Years Industry : Financial Services / Technology / Risk Management Employment Type : Full-time Shift: 3PM-12 AM About the Role Join our Internal Audit (IA) team as an IT Auditor , where you'll play a key role in evaluating the adequacy and effectiveness of our organizations internal controls, ensuring compliance with SOX regulations, and identifying opportunities to enhance IT risk management. This is your opportunity to make a meaningful impact by contributing to a high-performing, global audit function. Key Responsibilities Support the IA function in providing senior management and the board with assurance on risk management, internal controls, and SOX compliance. Plan and execute a portfolio of high-quality audits across IT infrastructure, applications, and emerging technologies. Develop and maintain strong working relationships with mid-level IT management and global audit teams. Produce clear, insightful reports that influence executive decision-making and risk mitigation strategies. Respond to ad hoc audit or business requests from global heads of audit and data analytics leadership. Execute the companys SOX compliance program, including quarterly certifications, control documentation, and testing. Drive innovation through data analytics initiatives, including implementation of tools and development of continuous monitoring rules. What Were Looking For Education & Certifications: Bachelors degree in Information Technology, Computer Science, MIS, or related field. Professional certifications such as CISA , CRISC , CISSP , or a related graduate degree are preferred. Experience: 3–5 years of relevant experience in IT Audit , SOX compliance , or IT Risk Management . Prior Big 4 audit or consulting experience is a strong plus. Skills: Hands-on experience with SOX audits and IT risk frameworks. Strong background in both IT infrastructure and application audits . Familiarity with IT governance , regulatory frameworks, and risk assessment methodologies. Excellent written and verbal communication skills, with the ability to explain technical findings to non-technical stakeholders. Strong project management and supervisory experience, especially in guiding junior auditors. Proficiency in data analytics and tools used for audit automation is an added advantage.

Job Responsibilities: Planning, conducting and managing Internal Audit and IT Audits. Identifying the areas for data analytics and executing & reporting the exceptions for remediation and corrective actions. Reviewing and reporting audit observations and gaps. Discussions and closure of audit issues with various stakeholders and obtaining an action plan. If external agencies or others are involved, then coordinating their work and quality review of their work. Follow up of audit issues raised in various audits and track their implementation. Competencies Exposure to Internal Audit in Manufactory Companies Exposure to IT General Controls and IT Application Controls Exposure to Data Analytics in SAP Environment Good knowledge of various Audit Methodologies and audit procedures to be adopted for testing of automated controls Strong inter-personal and communication skills including drafting of good audit reports. Working knowledge of SAP, its functionalities and use for conducting IT audits Ability to identify areas for developing risk based analytics reports for monitoring of exception Ability to get to the root cause of internal control related issues and devise practical recommendations for implementation Ability to direct external agencies and manage large internal audit assignments.

Technology Risk and Governance Professional Lead and act as SPOC for the Internal and External audits as part of Information Technology function. Provide clarity to IT stakeholders pertaining to requirements/queries raised by auditor wherever required. Ensure timely submission of data to auditors Ensure appropriate management responses provided along with reasonable and achievable timelines for the observations Publish progress tracker and ensure timely completion of audit as per plan Lead or conduct regular assessments of IT processes and systems to identify areas for improvement (In terms of security and compliance) which are identified as part of Assurance program. Ensure closure of open findings with technology leaders and auditors Create awareness among IT teams for Audits, compliance and legal requirements Prepare IT audit Assurance program in collaboration with Risk, Security and Compliance Team considering Design and implementation of IT Controls Skills Required: Min 4-12 years of Work Experience as Internal Auditor/GRC team Knowledge of Internal controls, auditing standards and statutory compliance (RBI, UIDAI, NCIIPC regulations) Sound understanding of Banking/Fintech industry and frameworks such as COSO, COBIT Ability to add value and improve operations by bringing a systematic approach to the effectiveness of Risk management, control and governance processes Certification ISO 27001/CISA or equivalent Certification

send cvs to shilpa.srivastava@orcapod.work IT AUDIT Professional requirements : Professional should be flexible to work in shifts and work from office/client office. Strong knowledge of IT audits- ITGC, ITAC and SOC report understanding Strong PMO/stakeholder management and work as per SLA/KPI Provide recommendations on control issue remediation plans or risk reduction/mitigation. Manage and review control issues or exceptions, ensuring timely resolution to mitigate risk. Assist application owners in the ITGC testing process. Validate testing artifacts / identified issues to ensure completeness and accuracy. Support ITGC testers in properly documenting issues, including action plans, remediation dates, sustainability period, and issue closure timelines. Conduct process walkthroughs and log identified issues in GRC tools. Validate remediation documentation to ensure effective implementation of controls. Ensure timely closure of audit observations to mitigate risks. Collaborate with teams to ensure timely completion of audit activities. Work experience : 1 6 years Base office location : Bengaluru Preferred Qualification : Graduation B.E/ B.Tech in Any Specialization Relevant certifications (CISA, CISSP, CRISC) are a plus Prior work experience working on GRC tools such as ServiceNow, AuditBoard etc.

As a Control Management Analyst in the Finance team at our innovative bank, you will play a crucial role in defining, refining, and delivering set goals for our firm. Your responsibilities will include performing independent reviews and validations of external reporting processes to mitigate the risk of errors, utilizing your strong auditing skills and understanding of internal control systems within financial institutions. You will also be involved in assisting in the development, execution, and refinement of control reporting processes, ensuring the integrity of review documentation for various reviews such as SCG QA, Internal Audit Review, and External Audit Requests. Additionally, you will manage program implementation and monitoring of control programs impacting CCB Finance, ensuring adherence to policies and standards while contributing to the enhancement of the business control environment through the execution of the Control and Operational Risk Evaluation (CORE). To be successful in this role, you should have at least 3 years of experience in Auditing, Accounting, Internal Control, or Finance, along with a Bachelor's degree in accounting or finance. Strong communication skills, attention to detail, influencing abilities, and the capacity to interact comfortably with staff at all levels are essential. You should also possess strong quantitative and qualitative analytical skills, a willingness to challenge conventional thinking, and proficiency in Microsoft Office applications. Preferred qualifications include knowledge of Tableau and Alteryx, Big Four public accounting experience, and certifications such as CA, CISA, CPA, CIA, or an MBA. Join our team to embark on a rewarding career in Internal Controls, contributing to the success and excellence of our organization.,

Build your career in the Internal Controls working across functions like Quality Assurance Program, SOX/CCAP Testing, Resolution and Recovery, Program Management while working in the world's most innovative bank which values creativity and excellence. As a Control Management Analyst in the Finance team, you will spend each day defining, refining, and delivering set goals for the firm. Perform an independent review and validation of external reporting processes and data to mitigate the risk of external reporting errors. Possess strong auditing skills, a solid understanding of internal control systems within a financial institution, and knowledge of consumer businesses and products. Assist in the development, execution, and refinement of new and existing control reporting processes. Maintain the integrity of review documentation and provide it when requested for various reviews, such as SCG QA, Internal Audit Review, and External Audit Requests. Manage program implementation and monitoring of control programs impacting CCB Finance, such as Intelligent Solution Standards, Model/Estimations Governance, and User Tools. Monitor adherence to CCB and firmwide policies and standards. Maintain the integrity of program management/reporting documentation and provide it when requested for various reviews. Contribute to the development and enhancement of the business control environment through the execution of the Control and Operational Risk Evaluation (CORE). Required qualifications, capabilities, and skills: - 3 years of experience in Auditing, Accounting, Internal Control, and/or Finance - Bachelor's in accounting or Finance - Internal audit/ITGC/automated controls testing experience required - Strong communication (written and verbal) and attention to detail; demonstrated influencing skills; interact comfortably with staff at all levels - Strong quantitative and qualitative analytical skills; ability to synthesize data from many sources, design and draw persuasive conclusions for plans - A willingness to challenge conventional thinking and assumptions and to constructively dissent when appropriate - Strong working knowledge of Microsoft Office applications - Ability to work in an evolving environment, manage multiple projects, and support a growing business Preferred qualifications, capabilities, and skills: - Knowledge of Tableau and Alteryx - Big Four public accounting experience and/or CA/CISA/CPA/CIA/MBA certification preferred,

As a GDS Consulting SAP GRC IAM Senior Consultant at EY, you will be part of the EY-GDS GRC Technology team, where you'll play a pivotal role in contributing technically to SAP GRC & IAM client engagements. Your responsibilities will include delivering client engagements collaboratively with team members, identifying risks within engagements, ensuring high-quality work, and creating a positive learning culture within the team. You will have the opportunity to leverage your expertise in SAP GRC Access Control & IAM to drive the growth of the service offering and build long-term relationships with clients and internal stakeholders. Key Responsibilities: - Drive high-quality work products within expected timeframes and budget. - Develop and maintain relationships with clients and internal stakeholders. - Demonstrate deep technical capabilities in SAP GRC AC, IAM, IAG, and Cloud security solutions. - Assist in selecting and tailoring approaches, methods, and tools to support service offering. - Stay updated on market trends, competitor activities, and EY products and service lines. - Build positive working relationships with clients to deliver exceptional service. - Identify opportunities to enhance engagement profitability. - Support business development initiatives and account management. - Contribute to team performance reviews and recruitment activities. - Cross-skill and train team members as per business requirements. - Maintain an educational program to develop personal skills and those of team members. - Understand and adhere to workplace policies and procedures. Skills And Attributes For Success: - Strong communication, presentation, and team building skills. - Positive learning attitude and willingness to upskill. - Participation in organization-wide people initiatives. - Foster teamwork, quality culture, and mentor junior team members. - Support learning agenda for self and team. To qualify for this role, you must have: - More than 5 years of experience in SAP IAM projects and knowledge of SAP GRC Access Controls, IAG, IPS, IAS, and Cloud security. - Strong understanding of business processes, controls framework, compliance, and segregation of duty in an SAP ERP Environment. - Experience in delivering end-to-end identity lifecycle solutions and automation in GRC access controls. - Familiarity with DevOps delivery models and agile ways of working. - Ability to independently lead workshops on SOD remediation and SOD ruleset review/assessments. - Knowledge of ITGC, logical access review/assessments, and change management settings. Join EY and be part of a market-leading team with opportunities for personal and professional growth. Take advantage of the diverse ecosystem partners and global network at EY to shape the future with confidence and contribute to building a better working world. Apply now to be a part of a culture that values training, opportunities, and creative freedom to make a lasting impact.,

At EY, you will have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. Your unique voice and perspective are essential to help EY become even better. Join us to build an exceptional experience for yourself and contribute to creating a better working world for all. As a Risk Assurance Staff, you will contribute technically to Risk Assurance client engagements and internal projects. Your role will involve assisting Seniors & Managers and actively participating within client engagements. Anticipating and identifying risks within engagements and sharing any issues with senior team members will be a crucial part of your responsibilities. In line with EY's commitment to quality, you will ensure that your work is of high quality and is reviewed by the next-level reviewer. You will also help create a positive learning culture within the team and assist fellow team members while delivering assignments. Your responsibilities will include: - Participating in Risk Assurance engagements - Working effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress - Conducting research and assisting senior team members in preparing client presentations and information memorandums - Striving towards exceeding client and team expectations and working on increasingly complex assignments In terms of people responsibilities, you will be required to: - Maintain an educational program to continually develop personal skills of staff - Understand and follow workplace policies and procedures - Attend L&D programs and exhibit thorough knowledge of advisory methodology and consulting attributes - Exhibit initiative and participate in corporate social and team events Technical Skills Requirements: - Preferably CA/MBA/M.Sc/B.E/B.Tech (Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc. with 0-3 years of experience - Knowledge of Information system audit covering areas like ITGC, Application controls, etc. - Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. - Certifications: CISA Additional Requirements: - Demonstrated track record with a blue-chip consulting organization and/or a blue-chip organization - Strong academic record including a degree (percentage more than 70% throughout) EY exists to build a better working world, helping to create long-term value for clients, people, and society, and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Role & responsibilities Position Summary The IT Audit Senior Manager will be responsible for leading the execution of the annual IT audit plan. This position will plan and execute control documentation and control testing in accordance with SOX and execute integrated audits that focus on process level and underlying computer application controls. This position will also conduct pre-implementation and post- implementation reviews of new applications and technologies. This position will regularly interact with executive leadership and the external auditors. Key Accountabilities: Lead corporate IT SOX compliance activities including: Developing ITControl Framework which includes IT general controls and application controls Updating SOX documentation Performing SOX walkthroughs Executing control testing for both general and application IT control reviews- including review of system architecture, configuration settings and application functionality Follow up action plans for SOX IT findings to ensure timely implementation of remediation plans Leads IT internal audit engagements and assessments to evaluate the adequacy of internal controls and deliver audit reports that add value to the area audited Perform the planning, fieldwork, reporting, and follow-up phases of IT audits with limited supervision Perform infrastructure, network and applications reviews, pre and post implementation reviews of new IT systems/applications Evaluate and document system-related controls supporting applications, operating systems, databases, networks, and other technologies Assess the design and effectiveness of policies and procedures related to deployment of IT system changes and IT application changes Assess the design and effectiveness of security policies and standards, internet use, network security awareness and enforcement, access controls security architecture and administration, and operating systems. Perform data privacy and cyber reviews and related risk analysis Demonstrates a thorough understanding of complex information systems, and utilizes knowledge of emerging technology to identify technological developments and evaluate impacts on the business Maintain relationships with IT and business management and is seen as a trusted advisor for system development projects and other critical IT initiatives Establish and maintain effective relationships with management, external auditors, and other control partners to analyze business risks and controls Provides guidance and shares knowledge with staff members during the execution of the audits, and participates in performing procedures especially focusing on complex, judgmental and/or specialized issues Take a proactive role in departmental continuous improvement initiatives Education and Experience: Bachelors degree in business or related field CISA 8+ years of experience in IT SOX Compliance Experience in audit, public or private Experience in project management preferred Preferred candidate profile Skills and Behaviors: Ability to direct multiple projects ensuring timely communications and resource planning Knowledge of SAP is required GRC knowledge is preferred Excellent analytical and organizational skills Must have strong attention to detail Ability to meet monthly deadlines and goals Ability to work and adapt to a fast paced, highly engaged, team environment Excellent verbal and written communication and interpersonal skills Strong working knowledge of Microsoft Office; must be proficient in Excel, Access, and Word Knowledge of business intelligence query tools, such as Cognos, Business Object, Micro Strategy, etc. preferred Strong leadership and supervisory skills

About Company BDO India LLP is the India member firm of BDO International. BDO India offers strategic, operational, accounting, tax & regulatory advisory and assistance for both domestic and international organisations across a range of industries. We are led by more than 300 Partners & Directors with a team of over 8500 professionals operating across 12 cities Ahmedabad, Bengaluru, Chandigarh, Coimbatore, Chennai, Hyderabad, Goa, Kochi, Kolkata, Mumbai, New Delhi-Gurugram and Pune. We take pride in our service portfolio on the backing of a rich blend of experience and expertise, bringing to fore a work culture that is both client-centric and knowledge driven. Our focus on delivering exceptional client service is backed by a partner driven approach to offer tailor-made solutions ensuring quality excellence & time efficiencies. About BDO ITRA Leveraging our global expertise and experience, our team of subject matter experts and industry professionals work across sectors and industries to help our clients respond to the changing business environment. With deep analytic skills and state-of-the art technologies, our professionals deliver customised and innovative solutions to clients across geographies. We at BDO, engage in transforming data into insights, our professionals guide clients through a crisis, fraud, regulatory investigations, etc. and advise them on strategies to prevent and mitigate the disruption arising from these complex matters. Details: Position Title Manager and Assistant Manager Department BAS -IT Risk Assurance Experience At least 3 to 8 year of relevant experience into IT Risk Audit, ITGC, etc Qualification CA / B.Tech / MBA (IT) / CISA / DISA Core ITRA Roles & Responsibilities: Responsible for executing client related engagements in the areas ITGC, process reviews, IT Application Controls, standard operating procedures review, SOCR (SOC 1, SOC 2), SOX 404 Audits. Determine that the work delivered is of high quality. Anticipate and identify engagement related risks and escalate issues as appropriate. Actively establish & strengthen client (functional heads & key influencers) and internal relationships. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coaches, counsels and develops junior team members. Identify & escalate potential business opportunities for the firm on existing client engagements. Should be a team player with a proactive and result oriented approach. Ability to prioritize, work on multiple assignments, and manage ambiguity. Should have good presentation & communication skills. Should also be well versed with MS office tools. Should be open and honest in communication with clients and colleagues. Fluency in written & verbal English High on personal integrity and work ethics and can be trusted without micro-level supervision from seniors Qualified CA, MBA, BTech/BE. (Preferred CISA or equivalent certifications) Competencies: Analytical Thinking Collaboration IT Skills (Excel, PPT, Word, Outlook) Communication Skills Interpersonal Relationship & Respect Innovation

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As part of our EY-GDS GRC Technology team, you'll contribute technically to GRC Technology SAP GRC client engagements and internal projects. An important part of your role will be to assist Seniors & Managers while actively participating within the client engagement. Similarly, you'll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY commitment to quality, you'll confirm that work is of high quality and is reviewed by the next-level reviewer. As a member of the team, you'll help to create a positive learning culture and assist fellow team members while delivering an assignment. The opportunity: We're looking for people with expertise in SAP GRC Access Control Senior Consultant to join our EY-GDS GRC Technology Team. This is a fantastic opportunity to be part of a leading firm while being instrumental in the growth of the service offering. Your Key Responsibilities: - Consistently deliver quality client services and manage expectations of client service delivery. - Drive high-quality work products within expected timeframes and on budget. - Develop and maintain long-term relationships and networks with clients and internal EY stakeholders. - Demonstrate deep technical capabilities and professional knowledge within different phases of the project including problem definition, diagnosis, technical design, and deployment of SAP GRC AC solutions. - Assist in the selection and tailoring of approaches, methods, and tools to support service offering. - Demonstrate a general knowledge of market trends, competitor activities, EY products, and service lines. - Build and nurture positive working relationships with clients with the intention to achieve exceptional client service. - Contribute to Identifying opportunities to improve engagement profitability. - Develop and maintain productive working relationships with client/onsite personnel. - Assist leadership to drive business development initiatives and account management. - Support managers in performance reviews for team members and recruitment activities as required. - Should cross skill and cross train the team members as per the business requirements. - Maintain an educational program to continually develop personal skills of self and team members. - Understand and follow workplace policies and procedures. Skills And Attributes For Success: - Strong communication, presentation, and team building skills and experience in producing high-quality reports, papers, and presentations. - Inculcate a positive learning attitude and the zeal to upskill as well as cross-skill. - Participating in the organization-wide people initiatives. - Maintain an educational program to continuously upskill. - Foster teamwork, quality culture, and lead by example while training and mentoring juniors. - Inculcate a positive learning culture and support learning agenda for self and team. To qualify for the role, you must have: - More than 3 years of experience in Technology Consulting. - More than 3 years of working experience on Managed Services projects and supported all suites of SAP GRC Access Control 10.x/12.0. - Strong working knowledge of business processes, controls framework, compliance, regulations, and segregation of duty concepts in an SAP ERP Environment. - Experience in requirements gathering, workshops, system configuration, testing, cutover, Go-live, and operations. - Experience in at least 3 - 7 end-to-end delivery of the Enterprise SAP GRC 10.0/10.1/12 solution with a focus on SAP GRC Access Control components (ARA, EAM, ARM, BRM, UAR, and SoD Review). - Stronghold on the basic SAP landscape, transports system, and version compatibility concepts. - Experience in automation in GRC access controls space to increase productivity and reduce manual tasks wherever applicable. - Good to have experience in Service Now, SailPoint, or Other Identity Management products integration with SAP GRC. - Good to have knowledge of Cloud solutions like Success Factors, ARIBA, IBP, CALM, etc. - Experience in developing functional specifications for custom developments/enhancements in SAP GRC Access Control. - Working experience on specific SAP GRC Suite but not limited to: Access Request Management, Provide recommendations on ways to simplify existing processes to gain productivity, Management of SAP GRC workflows and master data in compliance with controls. - Experience in handling GRC workflows using MSMP and BRF+. - Troubleshooting and resolution of issues around Access Requests for User and FFID provisioning. - Knowledgeable on setting up GRC master data for Access Requests requirements. - Access Risk Analysis, Good understanding of the concepts of Segregation of Duties (SoD), Must have a solid background on SOD reports (user level, role level, and simulation reports) and mitigating controls. - Experience on GRC ruleset including maintenance of functions and risks. - Able to execute GRC master data change activities as and when needed. - Can help and knowledge to members around ARA. - Good exposure to remediation activities for GRC rulesets. - Emergency and Access Management, Business Role Management, User Access Review, and SoD Review. - Independently carry out workshops/drive engagements on SOD remediation, access clean up. - Independently carry out SOD ruleset review/assessments and suggest remediation aligned with leading practices. - Good to have knowledge and familiarity with ITGC and logical access review/assessments, understand the configuration and settings of change management and logical access controls, assess current ITGC controls against the leading practice and suggest remediation steps. What We Look For: A Team of people with commercial acumen, technical experience, and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of a market-leading, multi-disciplinary team of 1400 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. What working at EY offers: At EY, we're dedicated to helping our clients, from start-ups to Fortune 500 companies, and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: - Support, coaching, and feedback from some of the most engaging colleagues around. - Opportunities to develop new skills and progress your career. - The freedom and flexibility to handle your role in a way that's right for you. EY | Building a better working world: EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Engineer , you have a pivotal operational role to provide and deprovision system access. You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What youll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices. Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM What youll bring 2 years of experience in Identity or Access Management Tireless adherence and attention to appropriate IT general computing controls Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

About the Role: Grade Level (for internal use): 10 The Team The Customer Experience, a new shared capability within Market Intelligence, partners closely with the Sales organization to deliver a differentiated customer experience. This group enables our sales team and businesses by overseeing customer success, sales operations, and implementation of commercial technology. This includes Salesforce, alignment to targets in strategic growth areas, and empowers accelerated growth and delivery by putting the customer at the core of everything we do driving a full customer experience that differentiates us from our competitors. The Proposal & Customer Assessment Team is part of the broader commercial solutions. An enabling function to assist with due diligence questionnaires, risk assessments, audits, and other customer inquiries. Our goal is to enable new revenue generation via RFX & deliver superior customer satisfaction by providing high-quality proposals & relevant information during pre/post-sales. We serve a vast array of clients across geographies and are committed to the client-first mindset. Responsibilities and Impact This position within the Proposal & Assessment Team is integral to supporting Market Intelligence commercial teams in responding to the growing volume of client audits and inquiries. The person will collaborate closely with product, risk, compliance, legal, and functional teams, to ensure client requirements are met effectively. Responding/Managing client audits and risk assessments from end to end, maintaining awareness of internal controls and audit trends to uphold the efficacy of the audit process. Serving as the primary point of contact for our top customers, assisting them in meeting their vendor management requirements. Cultivating partnerships and closely collaborating with corporate and divisional groups to seek information and influence approaches and outcomes. Developing familiarity with Market Intelligence's audit processes and the company's cyber security policies, standards, processes, and controls. Tracking assessment and audit outcomes, management responses to address findings, and follow-up activities, and producing reports for executives and management. Undertaking additional tasks and responsibilities as directed by the team manager, while continuously enhancing the overall process to align with evolving industry standards. What W ere L ooking F or Bachelor's degree in a related field, or equivalent professional experience in Third-Party Risk Management (TPRM) , Audit, and Risk. 6-7+ years of relevant experience in conducting audits or responding to audits, within a SaaS-related business environment. Demonstrated understanding of client-initiated audits and organizational controls. Familiarity with CISA, ISO Standards, NIST, and SOC standards. Proven track record of building strong relationships resulting in successful outcomes. Ability to collaborate effectively with a global team spanning multiple time zones. Competencies Exceptional communication and interpersonal skills, adept at engaging and influencing stakeholders across all levels. Demonstrated flexibility and negotiation prowess to achieve optimal outcomes. Proficient in efficiently managing multiple concurrent projects, with a keen ability to adapt as priorities evolve. Exhibits creativity and perseverance in devising solutions. Possesses strong analytical and problem-solving capabilities, proficient in assessing complex information and formulating actionable strategies. Fosters robust working relationships with internal colleagues, facilitating collaboration and synergy within teams. About S&P Global Market Intelligence At S&P Global Market Intelligence, a division of S&P Global we understand the importance of accurate, deep and insightful information. Our team of experts delivers unrivaled insights and leading data and technology solutions, partnering with customers to expand their perspective, operate with confidence, andmake decisions with conviction.For more information, visit www.spglobal.com/marketintelligence . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Recruitment Fraud Alert If you receive an email from a spglobalind.com domain or any other regionally based domains, it is a scam and should be reported to reportfraud@spglobal.com. S&P Global never requires any candidate to pay money for job applications, interviews, offer letters, pre-employment training or for equipment/delivery of equipment. Stay informed and protect yourself from recruitment fraud by reviewing our guidelines, fraudulent domains, and how to report suspicious activity here. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 20 - Professional (EEO-2 Job Categories-United States of America), SLSGRP202.1 - Middle Professional Tier I (EEO Job Group)

About the Role: Grade Level (for internal use): 10 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self- QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in p repar ing and deliver ing comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5 + years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5 + years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Role Location Gurgaon, Noida, Bangalore Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group)

Job Title:IT SOX-Risk Management-Audits & Business Continuity PlanningExperience5-10 YearsLocation:Bangalore : IT SOX, Risk Management, Audits, Business Continuity Planning

JD IT Senior TEAM: This position will support our IT Audit Group. CohnReznick’s specialized SOC practitioners focus on conducting SOC1, SOC2 and SOC3 audits for third-party service providers, while also conducting internal control assessments, attestations, penetration tests, and firewall assessments. ROLE: Responsibilities include but not limited to: Participates in planning and scoping of IT audits for both SOC engagements and ICFR audits. Comfortable leading technology walkthroughs in IT general controls and application control Develops test procedures for execution and prepares relevant documentation Executes testing of IT general controls and application controls based on internal and industry standards and guidelines. Problem solves and steps in to complete work to meet critical deadlines. Conducts root cause analysis, compensating and mitigating controls, and impact analysis. Communicates engagement status to client and engagement team management. You possess knowledge in ITGCs, IT application controls, cybersecurity as well as IT infrastructure including databases, networks and operating systems. Experience working with both applications and infrastructure supporting financial reporting processes. Being comfortable leading interviews with IT personnel to understand and document the design of IT General Controls (ITGCs). Having experience designing and executed testing for ITGCs. Key focus on Access Management (with related experience in Privileged Access Management and Identity and Access Management), and Change Management (with knowledge of Agile and DevOps methodologies) Possess supervisory skills to supervise, guide and coach activities of other department staff with varying skillsets Working independently or on small teams and possess the ability to multi-task to ensure timely completion of work and managing client and manager/partner expectations. Possess effective planning, coordination, time management, and organization skills. Demonstrate flexibility in prioritizing and completing assignments on time and within budget. Demonstrate attention to detail, strong organization skills, and ability to be agile and adaptable. Being comfortable interacting with clients across different levels of seniority. Experience presenting with a good working knowledge of Microsoft Office applications. EXPERIENCE: The successful candidate will have: 2- 4 years of relevant work experience Bachelor's Degree in computer science or accounting information systems; Experience in IT external audit, IT internal audit, and Technology Risk and / or ITGC assessment for compliance with SOX. ERP Oracle, SAP, JDE) and Cloud security (Azure, AWS, Google Cloud security) knowledge a plus. Must be able to travel, if required and work overtime during busy season Certified Information Systems Auditor (CISA) and/or CPA or working towards it

Responsibilities Supervise, plan and perform procedures around ITGCs for Internal Audit support engagements and various consulting client engagements and provide support around ITGC assessments for financial statement audit clients Lead a team of staff members under supervision of a Manager and/or Partner Demonstrate an understanding of basic and moderately complex workpaper preparation Analyze control activities and supporting documentation and draw logical conclusions Exercise professional skepticism in the critical assessment of audit evidence Identify, assess, and document controls and weaknesses in client accounting systems Thoroughly evaluate assigned areas of controls testing and identify potential points for improvement Develop understanding of client businesses related to assigned assurance areas Know and apply specialized knowledge, rules, regulations, and code of ethics of the AICPA Perform timely review of staff workpapers and provide constructive feedback Perform some management duties, including: second review of workpapers, directly report to Partner and attend board/client presentations/meetings, wherever possible Requirements Bachelors degree in Accounting, Management Information Systems (MIS), Information Technology, or related field Certified Public Accountant (US) or qualified Chartered Accountant Minimum of 1 years of experience in public accounting in audit or assurance Demonstrate knowledge of information technology and systems Experience in supervising staff professionals Strong project management skills Ability to identify internal control deficiencies and document management letter comments for purposes of communicating deficiencies and weaknesses to clients Working knowledge of Microsoft Office Suite and Adobe Acrobat Engagement Compensation and Benefits Compensation: Commensurate with Industry standards Other Benefits: Provident Fund, Gratuity, Medical Insurance, Group Personal Accident Insurance etc. employment benefits depending on the position.

Consultant/Senior Consultant || SOX || Gurgaon || (Immediate joiners preferred) What are we looking out for: Skilled and detail-oriented SOX Compliance and Internal Audit Consultant who will play a critical role in ensuring compliance with SOX requirements through the design, execution, and assessment of internal controls over financial reporting (ICFR). Job Profile (Non IT SOX): Responsible for executing client-related engagements in the areas of SOX 404 & Clause 49 assistance, Governance, Risk & Compliance (GRC), Internal Audits, Process Reviews, Standard Operating Procedures,. Responsible to discuss with risk owners for identification and assessment of key risks and development of mitigation plans Perform gap assessments by conducting detailed walkthroughs with process owners and identifying opportunities for automation, process transformation Review and assess the design of internal controls to ensure they address key risks and comply with SOX requirements. Develop detailed process narratives, risk control matrices (RCMs), and flowcharts. Information Produced by the Entity (IPE) Testing - Evaluate the reliability of information used in the execution of controls; perform detailed testing to validate the accuracy, completeness, and integrity of IPEs; ensure that data sources and logic align with control objectives. Management Review Controls (MRC) testing Test the design and operating effectiveness of Managements review of financial and operational data; evaluate the documentation, criteria, and frequency of management reviews; assess the quality of evidence and identify any gaps in the review process. Working on SOX readiness Assess the existence, efficiency, and effectiveness of the SOX control environment by directing control/process optimization. Collaborate with cross-functional teams, including accounting, IT, and operations, to ensure control objectives are met. Assist clients in preparation for external audits by addressing auditor inquiries and providing necessary documentation. Inspect companys policies and procedures; perform evaluation of control design; and carry out assessment of the effectiveness of company internal controls concerning business processes and systems. Review of working papers & client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Create/manage status trackers and report the statuses and/or challenges to the Project Manager/Director, clients and all other stakeholders over status calls. Ensure compliance with engagement plans and internal quality & risk management procedures. Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologies. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coach, counsel and develop junior team members. Attention to detail and mentor young interns and analysts within the practice. Perform other duties that may be assigned by management. Qualification: Graduate/ Post-Graduates

As a Control Management Analyst in the Finance team at our innovative bank, you will play a crucial role in defining, refining, and delivering set goals for our firm. Your responsibilities will include performing independent reviews and validations of external reporting processes and data to minimize the risk of errors, utilizing strong auditing skills and a comprehensive understanding of internal control systems within a financial institution. You will also assist in the development, execution, and enhancement of control reporting processes, ensuring the integrity of review documentation for various internal and external audits. Additionally, you will manage the implementation and monitoring of control programs impacting CCB Finance, maintaining adherence to CCB and firmwide policies and standards. To excel in this role, you should have at least 3 years of experience in Auditing, Accounting, Internal Control, or Finance, along with a Bachelor's degree in accounting or Finance. You must possess internal audit/ITGC/automated controls testing experience, strong communication skills, attention to detail, and the ability to interact effectively with individuals at all levels within the organization. Your role will also require strong quantitative and qualitative analytical skills, proficiency in Microsoft Office applications, and the ability to synthesize data to draw persuasive conclusions for strategic plans. A willingness to challenge traditional thinking, as well as the ability to work in a dynamic environment, manage multiple projects, and support business growth, are essential for success in this position. Preferred qualifications for this role include knowledge of Tableau and Alteryx, as well as experience with Big Four public accounting firms or certifications such as CA, CISA, CPA, CIA, or MBA. By joining our team, you will have the opportunity to contribute to the development and enhancement of the business control environment through the execution of the Control and Operational Risk Evaluation (CORE) methodology.,

GRC experience in managing regulatory submissions to banking regulators, ideally should have a sound understanding of risk management and compliance reporting with detailed technical knowledge in the audit and implementation of ISMS, ITSMS and BCMS frameworks. Should possess excellent communication, documentation, and reporting skills. Should be able to independently manage regulatory submissions and reporting requirements. Should be able to deliver training on reporting requirements to identified personnel and stakeholders. Should be able to co-ordinate with identified stakeholders to obtain data points for submitted data.