351 Itgc Jobs - Page 4

Consultant/Senior Consultant || SOX || Gurgaon || (Immediate joiners preferred) What are we looking out for: Skilled and detail-oriented SOX Compliance and Internal Audit Consultant who will play a critical role in ensuring compliance with SOX requirements through the design, execution, and assessment of internal controls over financial reporting (ICFR). Job Profile (Non IT SOX): Responsible for executing client-related engagements in the areas of SOX 404 & Clause 49 assistance, Governance, Risk & Compliance (GRC), Internal Audits, Process Reviews, Standard Operating Procedures,. Responsible to discuss with risk owners for identification and assessment of key risks and development of mitigation plans Perform gap assessments by conducting detailed walkthroughs with process owners and identifying opportunities for automation, process transformation Review and assess the design of internal controls to ensure they address key risks and comply with SOX requirements. Develop detailed process narratives, risk control matrices (RCMs), and flowcharts. Information Produced by the Entity (IPE) Testing - Evaluate the reliability of information used in the execution of controls; perform detailed testing to validate the accuracy, completeness, and integrity of IPEs; ensure that data sources and logic align with control objectives. Management Review Controls (MRC) testing Test the design and operating effectiveness of Managements review of financial and operational data; evaluate the documentation, criteria, and frequency of management reviews; assess the quality of evidence and identify any gaps in the review process. Working on SOX readiness Assess the existence, efficiency, and effectiveness of the SOX control environment by directing control/process optimization. Collaborate with cross-functional teams, including accounting, IT, and operations, to ensure control objectives are met. Assist clients in preparation for external audits by addressing auditor inquiries and providing necessary documentation. Inspect companys policies and procedures; perform evaluation of control design; and carry out assessment of the effectiveness of company internal controls concerning business processes and systems. Review of working papers & client folders. Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Create/manage status trackers and report the statuses and/or challenges to the Project Manager/Director, clients and all other stakeholders over status calls. Ensure compliance with engagement plans and internal quality & risk management procedures. Keep abreast of emerging technologies with the IT environment and help in developing audit plans to counter whatever risks that might be associated with the application of such technologies. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coach, counsel and develop junior team members. Attention to detail and mentor young interns and analysts within the practice. Perform other duties that may be assigned by management. Qualification: Graduate/ Post-Graduates

As a Control Management Analyst in the Finance team at our innovative bank, you will play a crucial role in defining, refining, and delivering set goals for our firm. Your responsibilities will include performing independent reviews and validations of external reporting processes and data to minimize the risk of errors, utilizing strong auditing skills and a comprehensive understanding of internal control systems within a financial institution. You will also assist in the development, execution, and enhancement of control reporting processes, ensuring the integrity of review documentation for various internal and external audits. Additionally, you will manage the implementation and monitoring of control programs impacting CCB Finance, maintaining adherence to CCB and firmwide policies and standards. To excel in this role, you should have at least 3 years of experience in Auditing, Accounting, Internal Control, or Finance, along with a Bachelor's degree in accounting or Finance. You must possess internal audit/ITGC/automated controls testing experience, strong communication skills, attention to detail, and the ability to interact effectively with individuals at all levels within the organization. Your role will also require strong quantitative and qualitative analytical skills, proficiency in Microsoft Office applications, and the ability to synthesize data to draw persuasive conclusions for strategic plans. A willingness to challenge traditional thinking, as well as the ability to work in a dynamic environment, manage multiple projects, and support business growth, are essential for success in this position. Preferred qualifications for this role include knowledge of Tableau and Alteryx, as well as experience with Big Four public accounting firms or certifications such as CA, CISA, CPA, CIA, or MBA. By joining our team, you will have the opportunity to contribute to the development and enhancement of the business control environment through the execution of the Control and Operational Risk Evaluation (CORE) methodology.,

GRC experience in managing regulatory submissions to banking regulators, ideally should have a sound understanding of risk management and compliance reporting with detailed technical knowledge in the audit and implementation of ISMS, ITSMS and BCMS frameworks. Should possess excellent communication, documentation, and reporting skills. Should be able to independently manage regulatory submissions and reporting requirements. Should be able to deliver training on reporting requirements to identified personnel and stakeholders. Should be able to co-ordinate with identified stakeholders to obtain data points for submitted data.

Control Testing in automated controls is must Roles and Responsibilities: In this role you are required to do analysis and solving of lower-complexity problems Your day to day interaction is with peers within Accenture before updating supervisors In this role you may have limited exposure with clients and/or Accenture management You will be given moderate level instruction on daily work tasks and detailed instructions on new assignments The decisions you make impact your own work and may impact the work of others You will be an individual contributor as a part of a team, with a focused scope of work Please note that this role may require you to work in rotational shifts

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails

As a professional in IT Risk, Compliance, and security, you will play a crucial role in ensuring the security and integrity of core IT projects. Your responsibilities will include assessing audit findings and control weaknesses, collaborating with stakeholders to develop management action plans, and implementing security classification, change controls, and SDLC. Your expertise in industry frameworks such as ISO standards, GDPR, NIST, and PCI DSS will be essential in identifying and mitigating cyber security risks. In addition to your technical skills, you will also utilize your project management experience to plan and execute multiple IT Risk, Compliance, and security operations. You will contribute to the planning of SOX programs, conduct follow-ups on security control implementations, and develop project plans and resource plans to meet client needs. Your ability to communicate effectively and provide regular project updates to clients and leaders will be crucial in ensuring the success of GRC and Security engagements. Your primary skills in Governance, Risk and Compliance (GRC), Security Frameworks, and ISMS Implementation will be instrumental in driving the security initiatives forward. Additionally, possessing certifications such as CISA, CISM, CRISC, or CISSP will further enhance your expertise in the field. Joining Capgemini will provide you with the opportunity to work alongside a collaborative community of colleagues from around the world and contribute to building a more sustainable and inclusive world through technology. Capgemini is a global leader in business and technology transformation, with a strong legacy of over 55 years. As part of a diverse team of 340,000 members in more than 50 countries, you will have the chance to make a tangible impact on enterprises and society. Leveraging your skills in IT Risk, Compliance, and security, you will help unlock the value of technology for clients and address their business needs with innovative solutions. If you are passionate about technology and seeking to shape your career in a dynamic and supportive environment, we invite you to join us at Capgemini.,

We're Hiring! I am excited to share some amazing career opportunities at Happiest Minds. Take your Security career to the next level with Happiest Minds, ! Join a dynamic team, where Security Meets Innovation, and grow with us. Be recognized in a Great Place to Work Certified environment Interested professionals can directly reach out to me ankita.patari@happiestminds.com or can apply in below post Skills : GRC - Compliance, SOX ITGC, Communication Skills, GRC - Risk management Responsibility: Should have good experience in SOX consulting, process and frameworks - Should be conversant with GRC practices, audits and compliance - Should have excellent communication skills, both verbal and written User access review experience is also require. Experience :1-3 Years Location : Bangalore NP- who can join max by15 days Shifts: Rotational Shift(US and UK Shift) Thanks and regards, Ankita Ghosh ankita.patari@happiestminds.com

Role & responsibilities Perform Security and Privacy review of existing and new business process and solution implementations. Review product architectures for IT control security design gaps and vulnerabilities and consult with product teams and cyber security to remediate or mitigate cyber risk. Identify IT application end to end security deficiencies and implement approved remedial actions. Perform Privacy Impact Assessments for new processes involving personal data. Support adoption of comprehensive application security processes, procedures, and guidelines. Undertake required tactical application security skills and awareness training as required. Implement systems and integrations to drive greater automation and remove areas of human error. Collaborate with internal and external auditors during IT audits. Regularly assess the effectiveness of IT application controls using defined metrics and indicators. Prepare regular reports on outcomes and recommend enhancements to bolster IT governance. Proactively monitor IT security controls (data validation, authorization, encryption, audit logging, etc.) for key applications (on-premises and cloud-based) to identify weaknesses and potential vulnerabilities. Analyze security alerts and application security control deficiencies, recommending and implementing corrective actions. Regularly assess the effectiveness of IT security controls using defined metrics and indicators to identify areas for improvement. Collaborate with internal and external auditors during IT audits, providing technical expertise and insights. Ensure IT security controls operate efficiently and effectively, aligned with information security policies, standards, and compliance requirements. Identify and address gaps in security control design to mitigate cyber risks. Support the adoption of comprehensive application security processes and procedures, ensuring adherence to security best practices. Collaborate with cross-functional teams (product, development, security) to ensure a secure and seamless customer experience across platforms. Prepare regular reports on security control effectiveness and recommend enhancements to strengthen IT governance. Communicate effectively with technical and non-technical audiences regarding security controls and findings. Minimum Requirements Bachelors degree required. 10+ years of Cybersecurity and Privacy experience, with a heavy background managing cybersecurity and privacy functions. Knowledge of information security and privacy management frameworks (example: ISO 27001/NIST CSF). Knowledge of Global and India Data protection laws and regulations. (example: GDPR, India DPDPA, SG PDPA etc.) Ability to communicate clearly and effectively with both technology/development and business partners. Strong relationship, team building and facilitation skills. Ability to translate technical/security issues to business users. Proven analytical and problem-solving abilities. Ability to independently influence others to achieve objectives. High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity. Preferred skills and experiences: Bachelors degree in computer science, information systems or equivalent. Security certifications to include: CISSP, CISM, CRISC, CISA and other technical certifications. Privacy Certifications to include: CIPM, CIPT, CIPP and other product specific certifications. MBA or Master's degree in a management, scientific, technical, or engineering field. Significant work experience with different regions/business units on risk management and leading information security initiatives.

Hiring TPRM (third party risk management) risk assessment In a world of growing cyber threats and regulatory demands, role of a TPRM Analyst has never been more vital We are seeking Governance, Risk, and Compliance (GRC) to implement robust frameworks that integrate risk management, compliance, and governance processes into our business strategy. Experience - 4 -7Years Location - Bengaluru Work Mode - Hybrid Certifications: ISO 27001 LA/LI, ISC2 CC, Security+, CTPRP, CTPRA, CISA, CISM, CRISC, CISSP (any one is preferable ) Information Security Governance, Compliance and Security Assessment, experience, with a focus on IT and IS Risk Assessments and program reviews / establishment. Familiarity with and demonstrated experience assessing against the BS ISO/IEC/SIG 27002:2005 BS 7799 standard domains, BS 25999 including Risk Assessment; Security policy; Organization of Information Security; Asset Management; HR Security; Physical and Environmental Security; Communications and Operations Management; Access Control; IS Acquisition, Development and Maintenance; IS Incident Management; Business Continuity Management; and Compliance. Broad understanding of Information Security trends, services and disciplines and experience applying them in dynamic environments. Were ready to fast-track your application if youre available to start! Think youre a perfect fit? Drop your resume bhumika.soni@weareams.com or Share this with someone you know who fits the bill.

Job Description: The Information Security GRC Specialist will be responsible for leading and managing the Governance, Risk, and Compliance (GRC) function within the organization. This role ensures adherence to regulatory requirements, conducts control testing, and implements security risk management practices in alignment with global standards. The ideal candidate should have a deep understanding of security frameworks, compliance requirements, and risk assessment methodologies. Key Responsibilities: 1) Regulatory Compliance and Coordination with Regulators Lead the development and implementation of system-wide risk management frameworks to identify and monitor information security risks. Understand regulatory and business requirements and ensure information security compliance in alignment with RBI, UIDAI, CERT-IN, DPSC, IRDAI, and other global regulations. Act as the primary liaison with regulatory bodies, ensuring timely compliance with cybersecurity mandates and regulatory filings. 2) Control Testing (ITGC) and Global Standards (NIST, ISO 27001) Conduct technical risk assessments for applications, IT general controls (ITGC), and cloud environments. Perform compliance assessments aligned with international security standards such as NIST, ISO 27001, and CIS controls. Validate the effectiveness of security controls and ensure continuous improvement in security postures. 3) Security KPIs and KRI’s Identify and define Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for measuring the effectiveness of information security initiatives. Develop security metrics to track compliance, risk mitigation, and operational security efficiency. 4) Understanding of Security Technologies Strong knowledge of security tools and technologies such as Firewalls, IDS/IPS, DDoS protection, SIEM, DLP, and vulnerability management solutions. Ability to interpret security logs, alerts, and incident data to enhance security operations. 5) Project Management Skills Lead and manage complex security projects, ensuring timely implementation and compliance with regulatory mandates. Collaborate with cross-functional teams and senior management to align security initiatives with business objectives. 6) Soft Skills Strong communication skills to articulate security risks and solutions effectively. Ability to engage with stakeholders, auditors, and regulators confidently.

The SOC professional will be responsible for the preparation of third party attestation reports, including Service Organization Control (SOC) 1, SOC 2, and WebTrust for CAs, as well as HITRUST, and ISO, applying most areas of the governing standard as necessary and documenting, validating, testing and assessing various control systems. This position may also be involved in other business process or IS assurance related engagements, including SOX, IT general control testing for private company financial audit engagements, and agreed-upon procedure engagements. Job Duties Control Environment Applies knowledge and understanding of the collective effect of various factors on establishing or enhancing effectiveness, or mitigating the risks, of specific policies and procedures by: Identifying and considering all applicable policies, laws, rules, and regulations of the firm, regulators, or other authoritative bodies as part of engagement team; Communicating with the client to understand key IT and business processes, identifying key risks; Prioritizing key risks, and assesses their impact and likeliness of occurrence; Applying professional skepticism while evaluating the control effectiveness; Documenting business and IT processes and controls and tests key controls for service organizations in a variety of industries; Documenting and validating the operating effectiveness of the clients control; Developing and maintaining relationships with client personnel and management; and Ensuring technology is appropriately integrated into the examination process. GAAS Applies knowledge and understanding of professional standards; application of the principles contained in professional standards; and the ability to document and communicate an understanding and application of professional standards on an engagement by: Developing and applying an intermediate knowledge of auditing theory, a sense of audit skepticism, and the use of BDO audit manuals; Applying auditing theory to various client situations; Documenting working papers and attestation reports in line with BDO policy, identifying deviations and notifying more senior team members in order to obtain appropriate approvals; Applying knowledge to identify instances where testing may be reduced or expanded and notifying more senior team members of the occurrence; and Contributing ideas and opinions to the engagement team. Methodology Applies knowledge and application of BDO standards to guide effective and efficient delivery of quality services and products by: Completing all appropriate documentation of BDO work papers; and Ensuring assigned work is performed in accordance with BDO methodology and requirements. Research Applies methodology used to seek or maintain information from authoritative sources and to draw conclusions regarding a target issue based on the information by: Researching basic and intermediate topics and forming an initial opinion on the treatment independently. Training Attend professional development and training sessions on a regular basis Complete required CPE hours to maintain applicable certifications Other duties as required

About The Role Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Analyst Qualifications: Any Graduation Years of Experience: 3 to 5 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints. Automated/IT control testing experience is required What are we looking for Commitment to qualityWritten and verbal communicationRisk managementAbility to work well in a teamAbility to meet deadlinesAutomated/IT control testing experience is must Roles and Responsibilities: In this role you are required to do analysis and solving of lower-complexity problems Your day to day interaction is with peers within Accenture before updating supervisors In this role you may have limited exposure with clients and/or Accenture management You will be given moderate level instruction on daily work tasks and detailed instructions on new assignments The decisions you make impact your own work and may impact the work of others You will be an individual contributor as a part of a team, with a focused scope of work Please note that this role may require you to work in rotational shifts Qualification Any Graduation

RISK Operational Risk Management (RISK ORM), created early 2021 to oversee operational risks within the mandate of the RISK function, is organised, under the responsibility of the Group Chief Operational Risk Officer (Group CORO), around 3 Poles: RISK ORM Framework, RISK ORM Technology & Transversal Risks and RISK ORM Network. Under the authority of the Poles Manager, RISK ORM Network is made up of all the Operational Risk Officers (OROs) acting as the second line of defence (LoD2) within the Groups operational entities (Poles, Business Lines, Functions, Transversal Activities). The below requirement is for Operational Risk Officer- ICT Controls Testing role which part of the Common ICT LoD2 Controls Execution Platform (CICEP) under Group RISK ORM Network team. The candidate will be part of The Banks 2nd line of defense function, and they will be responsible for testing the deployment, and effectiveness of the IT and Cyber controls globally. The position is based in India Solutions Pvt. Ltd. (ISPL), Mumbai and reports to the Head of CICEP (India CoE), plus functionally to Group Head of ICT Controls Testing. Key success of the CICEP relies on building trusted partnerships with stakeholders and particularly with the ORM Network community and globally, with all entities of the Group. Responsibilities Direct Responsibilities Perform the independent testing of ICT controls (ITGC controls testing) to determine the design effectiveness, and operating effectiveness of IT and Cyber controls. Contribute to the industrialization and automation of RISK ORM ICT control testing services by development of methodologies / tools for the achievement of assignments. Draft high-quality reports containing the assessors opinion on the ICT control gaps, and recommendations for improvement, post completion of an assignment. Review and assist with the evaluation of control deficiencies and provide practical recommendations for remediation. Identify areas of improvement for ICT control testing and assist with the enhancement of the methodologies / tools for carrying out the ICT controls testing assignments. Ensure completion of the testing and adherence to the internal timelines. Provide IT and cyber risk management consultancy (specific to ICT controls) to business and IT stakeholders. Work in collaboration with other stakeholders from business and RISK ORM teams to contribute towards influencing the ICT risk culture of The Bank. Improve the effectiveness of the Internal Controls programme by reviewing the control environment, risk assessment process, control activities, information and communication and monitoring activities Contributing Responsibilities Collaboration at the India CoE level with Head of India CoE, including but not limited to the CoE level reporting requirements Effectively contribute to the CoE, RISK India Hub and ISPL on Group mandates, Objectives and priorities Help and contribute to build the CoE as a positive place to work Technical & Behavioral Competencies SKILLS, EXPERIENCE AND COMPETENCIES Skills Required 3-6 years of experience in IT audit / ITGC controls testing / technical assessments, preferably in the areas of Cyber and Technology domains in a financial institution. Must be able to interface and coordinate work efficiently, and effectively with business partners. Excellent analytical skills being able to come to a thoughtful and business focused conclusion quickly. Good communication, listening and influencing skills, including ability to articulate complex issues and incorporate feedback. Ability to manage their workload independently to meet their targets, and priorities set in conjunction with management. Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate. Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done. Being rigorous and thorough especially when logging and tracking issues through to conclusion. Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business. Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate. Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no rework. Team player focus on the success of the whole team. Working well both with others, as well as individually. Ability to work under strict timelines and at pressure situations to manage the delivery. Open to work under global time zones as required for workshops or stakeholder discussions. Skills Preferred Has the proven ability to think outside of the box, challenge industry norms and adapt quickly to evolving requirements. Is self-aware, anticipates problems, adapts and meets them head on. Strong stakeholder management, relationship building, influencing, facilitating and presenting skills. Is solutions focused measures their output on whether issues, problems or challenges are resolved as a criteria for success. Competencies: University degree (technical), and/or certification such as ISO27001, CISA. Professional qualifications/trainings relevant to technology and/or cyber risk (e.g. change management, outsourcing, vulnerability management, cloud security etc.). Conduct: Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure. Specific Qualifications (if required) University degree (technical), and/or certification on Risk Management Skills Referential Behavioural Skills: Attention to detail / rigor Ability to deliver / Results driven Ability to synthetize / simplify Ability to collaborate / Teamwork Transversal Skills: Ability to anticipate business / strategic evolution Ability to develop and adapt a process Ability to set up relevant performance indicators Analytical Ability Ability to develop and leverage networks Education Level: Bachelor Degree or equivalent Experience Level At least 3 years

The overall purpose of this position, as part of the RISK ORM Payment Systems Risk and Testing team, is to ensure the continued development and implementation of group-wide Payment Systems Technical Testing program, through leading and executing ICT risk assessments of Payment Systems across the group in accordance with the Group Risk ORM standards and policies In addition, this role will also be responsible for delivering the Operational Risk Officer (ORO) oversight activities per the operational risk management framework (ORMF) in IT departments supporting critical payment processing systems Furthermore, this role entails representing the team in Risk Management governance committees (conducted in French/English); influencing the ICT risk culture by driving the agenda and reporting the risk status to the senior management through working in collaboration with other Stakeholders from the business and RISK ORM teams Responsibilities Lead Payment Systems independent testing mission engagements with accountability and responsibility to ensure that the engagement team delivers the missions within agreed timelines adhering to RISK ORM framework and high-quality standards. Ensure that identification and assessment of operational risks are effective across the organization by correlating inputs from Independent Testing, Audit Findings, Internal Loss Data Collection Analysis, External Data Collection Analysis, Risk Control Self Assessments, Business Process Reviews, KPIs KRIs and Scenario Analysis. Accountable for providing excellence within Payment Systems Risk domain and serving as an advisor to business managers, identifying, analysing, categorizing, and prioritizing the risks affecting BNPP. Improve the effectiveness of the ICT Control Framework for Payment Systems by regularly assessing the control environment, risk assessment process, control activities, and monitoring activities in accordance with the Group Risk ORM standards and policies. Monitor operational risk profiles and material exposure to losses and provide appropriate reporting mechanism to senior management and business stakeholders, including through risk management governance committees. Contribute to the implementation and enhancement of BNPP operational permanent control framework. Provide a fair check and challenge to the LoD1 on Payments related Regulatory Attestation Exercises (e.g. CHAPS, TARGET2 and PSD2) Provide Payments Systems risk management consulting to the business, technical and operations groups.Contributing Responsibilities Collaborates at the India CoE level with Head of India CoE, including but not limited to the CoE level reporting requirements. Effectively contributes to the CoE, RISK India Hub and ISPL on Group mandates, objectives and priorities Lead by example, demonstrating effective Leadership in the CICEP team leading to CoE as a positive place to work in conjunction with the Head of India CoE. Skills Required 10 to 12 years of experience in IT audit / ITGC controls testing / technical assessments, preferably in the areas of Payments Technology or Cyber domains within in a financial institution. Good working knowledge of best practices in risk management processes within the Banking sector. Excellent analytical skills with the ability to translate technical concepts and provide specialist guidance and advice to others. Demonstrated ability to communicate effectively and to present in a structured approach in English. Strong people management skills and an ability to work with individuals to set individual objectives and manage performance to ensure their delivery. Proven commercial and communication / relationship management skills. Ability to lead risk assessments. Good working knowledge of concepts related to Payment and Information Security including emerging threats and attacks methodologies is highly desirable, at least in most of the below areas: Payment Flows/Chains SWIFT Systems Good technical understanding of security technologies, including intrusion detection/prevention, correlation of events, firewall, antivirus, anti-spam, policy tightening, patch management and configuration management, audit, security development technique, etc. Knowledge of cryptographic standards for encryption, electronic signature, key management infrastructure (PKI). Knowledge of IT Risk Management Skills Preferred Has the proven ability to think outside of the box, challenge industry norms and adapt quickly to evolving requirements. Is self-aware, anticipates problems, adapts and meets them head on. Strong stakeholder management, relationship building, influencing, facilitating and presenting skills. Is solutions focused measures their output on whether issues, problems or challenges are resolved as a criteria for success. Competencies: Professional qualification and expert knowledge in a specific Risk specialism and how that fits within the broader organization as well as more deeply within the Risk function. Degree level qualification in STEM subject will be advantageous. Conduct: Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure. Specific Qualifications (if required) Bachelors degree, and certification in Information Systems Skills Referential Behavioural Skills : (Please select up to 4 skills) Attention to detail / rigor Ability to deliver / Results driven Ability to deliver / Results driven Ability to collaborate / Teamwork Transversal Skills: Ability to develop others improve their skills Ability to inspire others generate people's commitment Ability to set up relevant performance indicators Analytical Ability Ability to develop and leverage networks Education Level: Bachelor Degree or equivalent

About The Role Skill required: Finance & Accounting - Risk Management Designation: Quality Auditing Associate Qualifications: BCom/Master of Business Administration Years of Experience: 1 to 3 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do You will be aligned with our Finance Operations vertical and will be helping us in determining financial outcomes by collecting operational data/reports, whilst conducting analysis and reconciling transactions.General Accounting practicesAnticipate, plan for, and react to risks and issues to the project, including categorizing their severity, taking into account the likelihood of occurrence, mitigation & contingency planning. Follow an agile approach that builds risk management into scrum roles, artifacts, and events and helps in continuous project delivery. What are we looking for Candidate must have SOX control testing experience in finance & accounts. Candidate must have SOX control testing experience in finance & accounts. Roles and Responsibilities: In this role you are required to solve routine problems, largely through precedent and referral to general guidelines Your expected interactions are within your own team and direct supervisor You will be provided detailed to moderate level of instruction on daily work tasks and detailed instruction on new assignments The decisions that you make would impact your own work You will be an individual contributor as a part of a team, with a predetermined, focused scope of work Please note that this role may require you to work in rotational shifts Qualification BCom,Master of Business Administration

Manage the complete IT Governance and control verification of end user controls for technologies deployed Dashboard and non compliance reporting and closure Audit data collection and handling of all audits Knowledge of scripts , automation and end user controls Understanding of server-side controls for all environments Stakeholder management and team handling Review of access control solution, process and periodic access control reviews for all systems Automation in IS processes

Manager - Technology Risk Assessment Team - Technology Risk & Compliance ,Compliance Location - Bangalore The PhonePe Technology Risk and Compliance team plays a critical role in the successful execution of the firm's compliance mission. The Tech Risk and Compliance function ensures the development and maintenance of a strong compliance culture by developing and maintaining program infrastructure that identifies, measures and monitors compliance with applicable laws, regulations and rules that govern our business globally. Compliance teams work closely with Engineering, SREs, business, legal and other functions to provide expertise on regulatory compliance matters; assess and measure compliance and related risks and monitor and test the adequacy of the firm's compliance control environment. Roles and Responsibilities: To review PhonePe products, processes and environment from the perspective of security, regulatory compliance and best practices. To conduct due diligence on new and existing technology implementations across business units at PhonePe. To provide support to internal departments in areas of compliance with regulatory bodies (i.e. RBI, NPCI, SEBI, IRDAI, UIDAI), and implementation of security related requirements from circulars issued by regulators. To collaborate with product/business/engineering teams to implement compliance plans to mitigate risks in the early stage of product development To create control frameworks in guidance of the team and conduct gap assessment against security practices, various regulatory guidelines and compliance requirements Must Haves: 7 to 9 years of relevant work experience, B. Tech Prior people management experience. Strong understanding of ITGC domains and business processes. Experience in managing audits and implementing cyber security controls, NIST, PCI DSS standards, ISMS etc., Certifications such as ISO 27001 / CISA / CISM / CISSP preferred. High ethical standards and are able to work diligently to complete your duties. Analytical mind able to see the complexities of procedures and regulations. Demonstrate the ability to plan and execute projects with minimal management support. PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. Read more about PhonePe on our blog. Life at PhonePe PhonePe in the news

Position - ITGC Desired candidate Profile is Direct Employment (No Third Party Payroll or CTH) Requirements (including experience, skills and additional qualifications) Technical skills requirements Preferably CA/MBA/M.Sc/B.E/B.Tech (Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc. with 1-6 year experience. Knowledge of Information system audit covering areas like ITGC, Application controls, etc. Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Certifications: CISA Additional requirements Demonstrated track record with a blue chip consulting organization and/or a blue chip organization Strong academic record including a degree (percentage more than 70% throughout) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Position: IT Audit Skills Required: IT Audit, ITGC, ITAC • Possesses extensive experience in IT Audit, IT Risk & Control Assurance space • Core Technical Skills: Hands on experience in executing and delivering audits/assurance engagements of IT General Controls around Applications, Database, Operating Systems, Middleware, Networks, IT Application Controls, IT Attestation (SOC1,SOC 2 etc.), IT Regulatory Compliance, Third Party Risk Assurance etc. • Exposure to business development in consulting (Pre-sales support, proposals, RFP responses) • Possess strong domain knowledge, understanding of business processes and possible risks in operations of at least two industry sectors • Consistent display of leadership skills • Have experience in process consulting/ internal audit/ risk consulting at a project manager level role • Strong analytical and problem solving skills. • Strong written and verbal communication skills • Ability to work well in teams • Ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours • Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic and lead by example.

New requirement - JD for Cybersecurity risk manager: Key responsibilities As a Cyber Risk & compliance Professional in our Group CISO office, you will be occupied in the following domainsa) Risk management b) Compliance.This role is responsible for planning, managing and coordinating various cybersecurity risk management activities focused on identifying, assessing, and mitigating risks for the enterprise from a business perspective. Skill requirement: Degree, or equivalent, in Information Security or Cyber Security or Computer science or similar course Self-motivation to continuously develop in the areas of cybersecurity Ability to prioritize and complete multiple complex projects under tight deadlines Ability to translate security issues into business risks Excellent interpersonal skills and ability to work effectively within a team at all hierarchical levels Willingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologies Experience, knowledge and strong interest in information and cyber security domains are essential for this role Experience Cyber / technology risk assessments & management methodologies Hands on with assessment report preparation and presenting to senior technical and business stakeholders Articulative and confident in presentation to senior stakeholders Knowledge of use of and risks related to modern and emerging technologies Cybersecurity audit Advanced knowledge and understanding of ITGC, NIST 800-53, NIST CSF controls and Risk management frameworks Expertise in complex business processes and technological risks Deep understanding of security technologies including firewalls, proxies, SIEM, XDR, CSPM, IGA, PAM, Data protection Experience8 12 years. Applications from people with disabilities are explicitly welcome.

Position: IT Audit Skills Required: IT Audit, ITGC, ITAC • Possesses extensive experience in IT Audit, IT Risk & Control Assurance space • Core Technical Skills: Hands on experience in executing and delivering audits/assurance engagements of IT General Controls around Applications, Database, Operating Systems, Middleware, Networks, IT Application Controls, IT Attestation (SOC1,SOC 2 etc.), IT Regulatory Compliance, Third Party Risk Assurance etc. • Exposure to business development in consulting (Pre-sales support, proposals, RFP responses) • Possess strong domain knowledge, understanding of business processes and possible risks in operations of at least two industry sectors • Consistent display of leadership skills • Have experience in process consulting/ internal audit/ risk consulting at a project manager level role • Strong analytical and problem solving skills. • Strong written and verbal communication skills • Ability to work well in teams • Ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours • Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic and lead by example.

Desired Profile : Experience into ITGC, ITAC, SOC, SOX is must Should have excellent communication skills and MS- Office skills Candidate with extensive experience in cyber security will not be fit for this role Candidate should be ok to travel to client places and work from office from Day 1. Roles & Responsibilities- Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Conducting controls assessment in manual/ automated environment Prepare/Review of Policies, Procedures, SOPs Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding projects progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status

Role & responsibilities IT Control Testing - Test internal controls in relation to Encores SOX Compliance program , a requirement for publicly traded companies in the Unites States and India ICoFR requirements as per requirements of India Companies Act. Assess the effectiveness of internal controls assessing whether the controls are appropriately designed, implemented and operating effectively. IT Audits - Assist in IT specific or other audits covering computer operations, security, change management and other IT areas as per the audit plan for the year. IT Audit related Special Projects - Assist in special projects involving review of system migrations, software changes, any other management requests and investigations. Preferred candidate profile EDUCATION: Bachelor's FIELD OF STUDY: IT, Computer Science EXPERIENCE: 1 year CERTIFICATION(S): KNOWLEDGE, SKILLS, ABILITIES, AND OTHER ATTRIBUTES: 1. Basic knowledge of SOX and IT general controls. 2. Proficient in written and oral communication 3. Logical and analytical approach with a keen eye on detail. 4. Basic knowledge with MS Office products (Excel/Visio/PowerPoint/Access), databases, etc Perks and Benefits Transportation Services : Convenient and reliable commute options to ensure a hassle-free journey to and from work. Meal Facilities : Nutritious and delicious meals provided to keep you energized throughout the day. Career Growth Opportunities : Clear pathways for professional development and advancement within the organization. Captive Unit Advantage : Work in a stable, secure environment with long-term projects and consistent workflow. Continuous Learning : Access to training programs, workshops, and resources to support your personal and professional growth. Apply Now at https://encore.wd1.myworkdayjobs.com/externalnew/job/Gurgaon---Candor-Tech-Space-IT---ITES-SEZ/Associate-Information-Technology-Audit_HR-18726 And Share your CV at shobhana@mcmcg.com or anjali.panchwan@mcmcg.com

Skill required: SOX Control Testing - SOX Compliance Audit Designation: Delivery Operations Team Lead Qualifications: Any Graduation Years of Experience: 7 to 11 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do "Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties." What are we looking for "A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties.A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties." Roles and Responsibilities: "In this role you are required to do analysis and solving of moderately complex problems May create new solutions, leveraging and, where needed, adapting existing methods and procedures The person would require understanding of the strategic direction set by senior management as it relates to team goals Primary upward interaction is with direct supervisor May interact with peers and/or management levels at a client and/or within Accenture Guidance would be provided when determining methods and procedures on new assignments Decisions made by you will often impact the team in which they reside Individual would manage small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture Please note that this role may require you to work in rotational shifts" Qualification Any Graduation

Skill required: SOX Control Testing - SOX Compliance Audit Designation: Delivery Operations Team Lead Qualifications: Any Graduation Years of Experience: 7 to 11 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties. What are we looking for A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties.A SOX compliance audit is intended to verify the financial statements of the company, and the processes involved in creating them. During the audit, the financial statements and management of internal controls are analyzed and assessed by an external auditor. The audit report must be made available to relevant parties. Roles and Responsibilities: In this role you are required to do analysis and solving of moderately complex problems May create new solutions, leveraging and, where needed, adapting existing methods and procedures The person would require understanding of the strategic direction set by senior management as it relates to team goals Primary upward interaction is with direct supervisor May interact with peers and/or management levels at a client and/or within Accenture Guidance would be provided when determining methods and procedures on new assignments Decisions made by you will often impact the team in which they reside Individual would manage small teams and/or work efforts (if in an individual contributor role) at a client or within Accenture Please note that this role may require you to work in rotational shifts Qualification Any Graduation