1810 Nist Jobs - Page 7

Join us as a "CBP Global Regulatory Governance" at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence. You'll harness cutting-edge technology to revolutionize our digital offerings, ensuring unapparelled customer experiences. To be successful as a "CBP Global Regulatory Governance", you should have experience with: Lead a team that governs regulatory engagements for Technology & CSO, supporting leadership where necessary. Delivers against the agreed strategy for Technology and CSO regulatory, external audit and client engagement globally. Experience in managing Technology & Cyber Regulatory Engagements and external audits. Excellent knowledge of information technology risks, controls and risk remediation. Collaboration with various stakeholders across the bank and business units to improve overall control effectiveness through detailed documentation of control assessments, procedures, and findings. Some Other Highly Valued Skills May Include Review of Audit findings, self-identified issues and breaches to align them with operational risk, regulatory requirements and Barclay’s Control Framework. Advising IT on pragmatic approaches to meeting regulatory mandated technology controls and risk reduction. Relevant professional certification such as CISA, CISSP, CISM, PMP, CRISC or equivalent. Desirable Skills/Preferred Qualifications Experience in playing a lead role in: Review of Audit findings, self-identified issues and breaches to align them with operational risk, regulatory requirements and Barclay’s Control Framework. Advising IT on pragmatic approaches to meeting regulatory mandated technology controls and risk reduction. Delivering of risk reduction and operational improvement projects. Managing diverse staff and stakeholders. Relevant professional certification such as CISA, CISSP, CISM, PMP, CRISC or equivalent.. You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. Location-Noida Purpose of the role To assess the integrity and effectiveness of the banks internal control framework to support the mitigation of risk and protection of the banks operational, financial, and reputational risk. Key Accountabilities Lead a team that governs regulatory engagements for Technology & CSO, supporting leadership where necessary Delivers against the agreed strategy for Technology and CSO regulatory, external audit and client engagement globally Advisory around developing the Tech & CSO response to all regulatory requests for information and meetings, providing governance and internal review/quality assurance Responsible for delivering position papers on regulatory policies and statements, identifying impact to Barclays Technology & CSO strategy Supports the conduct of gap assessments and high-level compliance assessments against regulatory standards and preferred governance frameworks. Acts as an escalation point for notification to the regulators of significant events within Barclays Develop an effective working relationship with the Regulatory Relations, Compliance and other key governance stakeholders Tracks progress of all activity associated with commitments made to regulators, ensuring there is a clear plan for delivery and escalating issues as needed Drive the Emerging and Heightened Risk Management Initiative, scan the horizon for external events such as Regulatory actions & penalties, regulatory changes/breaches and emerging threats. Carry out proactive risk assessment to analyse Barclays Controls environment & preparedness and recommend remediation for identified gaps Ensure appropriate security policies and controls are in place that will safeguard bank’s digital information and electronic systems. Promote awareness of applicable technology and security policies, standards and procedures Establish and maintain an effective risk culture Stakeholder Management and Leadership Experience in working with senior stakeholders across businesses & functions Ability to engage and influence key stakeholders related to the role both globally and within India and also strong relationship with key partners such as Control office, Compliance and CSO Excellent written and communication skills Ability to work in a highly matrix environment Decision-making and Problem Solving Coordinate & Manage priorities and organize work to competing and demanding deadlines Ability to develop a fact based point of view, raise issues and engage in a fact-based discussions and problem solving Risk and Control Objective Ensure that all activities and duties are carried out in full compliance with regulatory requirements, Enterprise Wide Risk Management Framework and internal Barclays Policies and Policy Standards Person Specification Ability to manage multiple priorities and work effectively in a fast-paced, high volume, results driven environment Ability to rapidly assess a situation and identify, isolate and communicate problems and issues. Excellent communication skills (both oral/written) including ability to clearly communicate risks and control issues to technologists and non-technologists. Excellent analytical and methodical approach to respond to internal and external events related to Technology & Cyber, emerging threats, identified vulnerabilities, regulatory actions. Detail orientated with excellent time management skills Problem solving – ability to think unconventionally and find solutions to unstructured problems Ability to network and establish rapport with internal colleagues across global teams Strong interpersonal skills with an ability to communicate difficult or complex ideas clearly and constructively Collaborative, able to drive agreement across varying stakeholders Confident in negotiating and influencing colleagues or stakeholders Degree of independent thinking and decision-making authority, and ability to influence upwards Strong assertiveness skills and ability to challenge effectively at all the levels in the organization on the underlying risk management Being a global role, person must be adaptive and flexible to work across various time zones Essential Skills/Basic Qualifications Bachelor’s degree in Computer Science and equivalent work experience in relevant industry with strong background in risk management, technology and information security Experience in managing Technology & Cyber Regulatory Engagements and external audits Experience of a project environment, in particular planning, testing, and tracking against a plan Experience in leveraging IT risk frameworks such as COBIT5, COSO, NIST Excellent knowledge of information technology risks, controls and risk remediation Key Accountabilities Lead a team that governs regulatory engagements for Technology & CSO, supporting leadership where necessary Delivers against the agreed strategy for Technology and CSO regulatory, external audit and client engagement globally Advisory around developing the Tech & CSO response to all regulatory requests for information and meetings, providing governance and internal review/quality assurance Responsible for delivering position papers on regulatory policies and statements, identifying impact to Barclays Technology & CSO strategy Supports the conduct of gap assessments and high-level compliance assessments against regulatory standards and preferred governance frameworks. Acts as an escalation point for notification to the regulators of significant events within Barclays Develop an effective working relationship with the Regulatory Relations, Compliance and other key governance stakeholders Tracks progress of all activity associated with commitments made to regulators, ensuring there is a clear plan for delivery and escalating issues as needed Drive the Emerging and Heightened Risk Management Initiative, scan the horizon for external events such as Regulatory actions & penalties, regulatory changes/breaches and emerging threats. Carry out proactive risk assessment to analyse Barclays Controls environment & preparedness and recommend remediation for identified gaps Ensure appropriate security policies and controls are in place that will safeguard bank’s digital information and electronic systems. Promote awareness of applicable technology and security policies, standards and procedures Establish and maintain an effective risk culture Stakeholder Management and Leadership Experience in working with senior stakeholders across businesses & functions Ability to engage and influence key stakeholders related to the role both globally and within India and also strong relationship with key partners such as Control office, Compliance and CSO Excellent written and communication skills Ability to work in a highly matrix environment Decision-making and Problem Solving Coordinate & Manage priorities and organize work to competing and demanding deadlines Ability to develop a fact based point of view, raise issues and engage in a fact-based discussions and problem solving Risk and Control Objective Ensure that all activities and duties are carried out in full compliance with regulatory requirements, Enterprise Wide Risk Management Framework and internal Barclays Policies and Policy Standards Person Specification Ability to manage multiple priorities and work effectively in a fast-paced, high volume, results driven environment Ability to rapidly assess a situation and identify, isolate and communicate problems and issues. Excellent communication skills (both oral/written) including ability to clearly communicate risks and control issues to technologists and non-technologists. Excellent analytical and methodical approach to respond to internal and external events related to Technology & Cyber, emerging threats, identified vulnerabilities, regulatory actions. Detail orientated with excellent time management skills Problem solving – ability to think unconventionally and find solutions to unstructured problems Ability to network and establish rapport with internal colleagues across global teams Strong interpersonal skills with an ability to communicate difficult or complex ideas clearly and constructively Collaborative, able to drive agreement across varying stakeholders Confident in negotiating and influencing colleagues or stakeholders Degree of independent thinking and decision-making authority, and ability to influence upwards Strong assertiveness skills and ability to challenge effectively at all the levels in the organization on the underlying risk management Being a global role, person must be adaptive and flexible to work across various time zones Essential Skills/Basic Qualifications Bachelor’s degree in Computer Science and equivalent work experience in relevant industry with strong background in risk management, technology and information security Experience in managing Technology & Cyber Regulatory Engagements and external audits Experience of a project environment, in particular planning, testing, and tracking against a plan Experience in leveraging IT risk frameworks such as COBIT5, COSO, NIST Excellent knowledge of information technology risks, controls and risk remediation All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship – our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset – to Empower, Challenge and Drive – the operating manual for how we behave. Back to nav Share job X(Opens in new tab or window) Facebook(Opens in new tab or window) LinkedIn(Opens in new tab or window) Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Solution Development Good to have skills : NA Minimum 15 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education As a Security Solution Architect (SA), candidate would be primarily responsible for solution architecture/presales effort on medium to large complexity or owns multiple components of large complex deals. Lead or work as Lead Solution Architect on complex deals. Independently and with little oversight can come up with the solution. Conduct the solution reviews with SME’s and the delivery approver. Attend calls with the client team to understand the requirement to bring value and differentiated solution. Roles & Responsibilities: Able to participate in requirements gathering, gathering data requirements, and assisting in the reconciliation of technical requirements. Prepare end to end solution including effort estimation & costing. Involved in preparing the client proposal & response. Develop statement of work Performs reviews with the delivery leadership. Participation in the client Orals or presentations. Leads negotiations or develop business terms & conditions. Has led solution development for multiple deal types. Work with delivery leads for the approval of solution/efforts. Bring out technical differentiators and value in the solution. Active ownership or accountability in delivering the solution within the specified time frame. Should be good to work as individual contributor and good team player. When assigned responsibilities to lead the team, candidate should show leadership qualities to manage the team and get the work done. Professional & Technical Skills: Candidate must have been a Presales experience with maximum coverage around following GRC or Privacy or Strategy domains. Skill around domains like Risk & Compliance Advisory and Operation, Compliance Management, Security Strategy Frameworks, Risk and Compliance Strategic Advisory, Cyber Security Assessments, Security Architecture Advisory, NIST CSF, Data Privacy, Third Party Risk Assessment ISO 27001, SOX, GDPR, Risk Assessment Services and GRC automation platforms like Archer, ServiceNow Interpret customer needs and design appropriate GRC, eGRC, Cyber Security Strategy, & Data Privacy Management solutions, experience in developing value based customer proposal closely working with delivery and sales teams. Hands on delivery experience across these domains would be added advantage to utilize the experience while solutioning. Maintain current knowledge of applicable Risk and Data Privacy requirements and accreditation standards, and monitor changes in technology impacting privacy, risk, and compliance posture. Knowledge of leveraging innovation, automation, Gen Ai in GRC solutioning Work with delivery and capability team keep abreast with latest assets, offerings, solution accelerators to bring in value adds while solutioning. Overall knowledge of GRC, TPRM, Data Privacy tool stack Pre-Sales knowledge on Non GRC Security domains will be an added advantage to work in cross functional deals. Flexibility on need basis in line with the nature the nature of SA Strong verbal and written communication are a must to be able to document and present complex topics and solutions. Strong interpersonal and problem-solving skills Stay informed about new products, services, technologies, and other information as required to deliver effective solutions CISSP, CISM, CISA, CGRC Cloud Security knowledge and certification AWS, Azure ISO 27k1, 22301, Privacy, Archer, ServiceNow GRC certifications Additional Information: Minimum 15- year full time education The candidate should have minimum 15 years of experience This position is based at our Gurugram office. Show more Show less

Project Role : Risk and Compliance Representative Project Role Description : Support service delivery through quality and risk management. Increase awareness of compliance policies and processes. Must have skills : Risk Management Good to have skills : Security Compliance Management Minimum 15 Year(s) Of Experience Is Required Educational Qualification : Minimum BE BTech from a reputed university Summary: As a Risk and Compliance Representative, you will support service delivery through quality and risk management. Increase awareness of compliance policies and processes. A typical day involves ensuring adherence to risk management protocols and enhancing compliance awareness. To design and deploy IT Risk Management, Security Governance, and Operational excellence to meet regulatory for large scale technology projects such as data lake, digital platform, and other core business and supporting applications IT GRC Consultant Roles & Responsibilities: - Primary contact for Security governance, risk, and compliance - Take full accountability of GRC domain including compliance related to client’s third-party risk management and supply chain risk management - Take ownership of security compliance related issues and challenges and drive for solutions working with various internal teams and third-party solution providers such as OEMs and technology partners - Define and develop high level operating procedures for seamless operations of the project - Support transition of projects from deployment to operations - Anchor design and implementation of governance processes for risk and compliance - Be a SPOC for all security governance initiatives in existing project and able to navigate through the client’s landscape to upsell new initiatives in security space or able to pave ways for upselling value-driven initiatives for the client in other related domains - Lead the teams across various security governance towers such as vulnerability management, security incident management, and thrive for upskilling and cross skilling to rationalize the resources across the towers and across the clients. - Introduce innovative solutions such as automation to increase productivity and improve service delivery quality - Participate in architecture and design review and approval forums to ensure the security design principles are adhered to for any changes in the existing landscape or any new initiatives being rolled out in the existing landscape - Participate in client account planning and discussions to ensure security level initiatives are accounted for and issues are escalated to the right leaders for resolution - Build strong relationships with all client stakeholders and Accenture project teams for effective collaboration and outcomes Professional & Technical Skills: - Must have: - Strong experience in design and deployment of security controls and processes for FS regulatory mandates, guidelines, and standards such as RBI Cyber Security Framework and NIST Framework - Certified Information Security Auditor - Strong Leadership skills - Strong Communication skills - Ability to drive discussions and ideas with client’s senior leadership forums - Problem solving skills - Good to have - Certification in enterprise security architecture framework Additional Information: - Total IT experience of minimum 18 years; and - Minimum 10 years of experience in designing and deploying security controls and processes for financial institutions governed by regulators such as RBI, SEBI, and IRDA. - This position is based at our Mumbai office. - A Minimum BE BTech from a reputed university is required. Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Solution Development Good to have skills : NA Minimum 15 Year(s) Of Experience Is Required Educational Qualification : 15 years full time education As a Security Solution Architect (SA), candidate would be primarily responsible for solution architecture/presales effort on medium to large complexity or owns multiple components of large complex deals. Lead or work as Lead Solution Architect on complex deals. Independently and with little oversight can come up with the solution. Conduct the solution reviews with SME’s and the delivery approver. Attend calls with the client team to understand the requirement to bring value and differentiated solution. Roles & Responsibilities: Able to participate in requirements gathering, gathering data requirements, and assisting in the reconciliation of technical requirements. Prepare end to end solution including effort estimation & costing. Involved in preparing the client proposal & response. Develop statement of work Performs reviews with the delivery leadership. Participation in the client Orals or presentations. Leads negotiations or develop business terms & conditions. Has led solution development for multiple deal types. Work with delivery leads for the approval of solution/efforts. Bring out technical differentiators and value in the solution. Active ownership or accountability in delivering the solution within the specified time frame. Should be good to work as individual contributor and good team player. When assigned responsibilities to lead the team, candidate should show leadership qualities to manage the team and get the work done. Professional & Technical Skills: Candidate must have been a Presales experience with maximum coverage around following GRC or Privacy or Strategy domains. Skill around domains like Risk & Compliance Advisory and Operation, Compliance Management, Security Strategy Frameworks, Risk and Compliance Strategic Advisory, Cyber Security Assessments, Security Architecture Advisory, NIST CSF, Data Privacy, Third Party Risk Assessment ISO 27001, SOX, GDPR, Risk Assessment Services and GRC automation platforms like Archer, ServiceNow Interpret customer needs and design appropriate GRC, eGRC, Cyber Security Strategy, Data Privacy Management solutions, experience in developing value-based customer proposal closely working with delivery and sales teams. Hands on delivery experience across these domains would be added advantage to utilize the experience while solutioning. Maintain current knowledge of applicable Risk and Data Privacy requirements and accreditation standards, and monitor changes in technology impacting privacy, risk, and compliance posture. Knowledge of leveraging innovation, automation, Gen Ai in GRC solutioning Work with delivery and capability team keep abreast with latest assets, offerings, solution accelerators to bring in value adds while solutioning. Overall knowledge of GRC, TPRM, Data Privacy tool stack Pre-Sales knowledge on Non GRC Security domains will be an added advantage to work in cross functional deals. Flexibility on need basis in line with the nature the nature of SA Strong verbal and written communication are a must to be able to document and present complex topics and solutions. Strong interpersonal and problem-solving skills Stay informed about new products, services, technologies, and other information as required to deliver effective solutions CISSP, CISM, CISA, CGRC Cloud Security knowledge and certification AWS, Azure ISO 27k1, 22301, Privacy, Archer, ServiceNow GRC certifications Additional Information: Minimum 15- year full time education The candidate should have minimum 15 years of experience This position is based at our Gurugram office. Show more Show less

SUMMARY Our client is IT MNC part of one of the major insurance groups based out of Germany and Europe. The Group is represented in around 30 countries worldwide, with Over 40,000 people worldwide, focusing mainly on Europe and Asia. Our client offers a comprehensive range of insurances, pensions, investments and services by focusing on all cutting edge technologies majorly on Could, Digital, Robotics Automation, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate the customers future needs around the globe thru supporting millions of internal and external customers with state of-the-art IT solutions to everyday problems & dedicated to bringing digital innovations to every aspect of the landscape of insurance. Job Location: Hiranandani Gardens, Powai, Mumbai Mode: Work from Office Requirements Key Responsibilities: : Business-Cybersecurity Alignment: o Work closely with business stakeholders, IT security teams, and cross-functional teams to ensure cybersecurity initiatives align with the organization’s broader business goals. o Translate business needs into technical security requirements that can be effectively executed by the security and IT teams. Risk Analysis & Security Assessments: o Conduct risk assessments in the context of hybrid IT environments (cloud, on-premises, and edge) to identify security gaps and vulnerabilities. o Collaborate with security teams to evaluate existing security controls and recommend solutions to mitigate identified risks, balancing business needs with security requirements. Cybersecurity Frameworks & Compliance: o Ensure that all business and technical security requirements comply with relevant regulatory compliance frameworks (e.g., NIST CSF, ISO 27001, GDPR, HIPAA). o Support audits and compliance assessments, identifying any gaps between current practices and regulatory standards. (must have) Security Process Improvement: o Identify opportunities for process improvements within the cybersecurity function, including streamlining security incident response, access management processes, and threat detection workflows. o Develop business cases for proposed security improvements, including cost-benefit analyses and risk assessments. The Business Analyst will have comprehensive responsibilities spanning multiple cybersecurity domains, and should have expertise in at least 5 of the following areas o SIEM Sentinel & Security Operations: Manage and optimize SIEM solutions, particularly Sentinel, for effective monitoring, incident detection, and security event correlation across hybrid environments. Collaborate with security operations teams to ensure proper configuration, tuning, and reporting within SIEM platforms to support proactive threat management. o Security Tools & Technology Integration: Work with security teams to implement and optimize security tools such as SIEM (e.g., Splunk, Microsoft Sentinel), EDR (e.g., CrowdStrike, MS Purview/Defender), SOAR platforms, CASB (Cloud Access Security Broker), and Threat Intelligence systems. Help define and document requirements for the integration of cybersecurity tools into the broader security ecosystem. o User Access Management (UAM) & RBAC: Work closely with identity and access management teams to ensure the implementation of UAM and RBACsystems that align with the organization's security policy and business requirements. Support the development of processes for managing user roles, privileges, and access rights across enterprise systems. o Cloud & Encryption Security: Ensure that security policies and controls are applied across both on-premises and cloud environments(AWS, Azure, Google Cloud), addressing challenges related to cloud security, data encryption, and access management. Collaborate with technical teams to implement strong encryption methods for data - in - transit, data-at-rest, and data-in-use in line with organizational security policies. o AI & ML in Cybersecurity: (Good to have) Contribute to the use of AI/ML technologies to enhance threat detection, anomaly identification, and predictive analytics within the organization’s security operations. Collaborate with data scientists and security teams to define requirements for AI/ML-based security models and incident response automation. o SOAR Integration & Incident Response: Assist with the integration of Security Orchestration, Automation, and Response (SOAR) solutions into the incident response lifecycle to streamline response times and automate repetitive tasks. Support the continuous improvement of incident response procedures and playbooks, ensuring a consistent, rapid, and efficient approach to security incidents. Benefits

Introduction Welcome to Gallagher – a global leader in insurance, risk management, and consulting services. With a growing team of more than 52,000 professionals worldwide, we empower businesses, communities, and individuals to thrive. At Gallagher, you can build a career whether it’s with our brokerage division, our benefits and HR consulting division, or our corporate team. Experience The Gallagher Way, a culture fueled by shared values and a collective passion for excellence. Join one of our dynamic teams, where you'll play a pivotal role in shaping Gallagher's future and unlocking unparalleled opportunities for both clients and yourself. We believe that every candidate brings something special to the table, including you! So, even if you feel that you’re close but not an exact match, we encourage you to apply. Overview The Business Information Security Officer (BISO) – India is responsible for managing the Gallagher Cyber Information Security (GCIS) program of works for the Indian region. This includes identifying, evaluating, and reporting on information security risks across all Gallagher divisions in India, in a manner that meets compliance and regulatory requirements, as well as aligning with the company's risk appetite. In addition to reporting on a regular basis to the UK - based EMEA BISO, this role will work closely with: IT Directors of India and Local CTO for Gallagher India and Gallagher Centre of Excellence The India Senior Business Leaders for IT and QA & Transition GCIS Colleagues globally who have global remits (application security, identity management etc) The India division’s ISMS manager in maintaining their ISO27001 certification GCIS Project Managers delivering both new and enhanced capabilities. This is a hybrid role, in office 2-3 days per week, and can be based out of either our Pune or Bangalore offices, with some travel between the two expected. How You'll Make An Impact Continue to develop and prioritise the information security strategy and roadmap for India that aligns with the GCIS security strategy. Monitor and manage security incidents, vulnerabilities, and threats that affect the various Indian divisions, and work with Gallagher’s global security teams to ensure effective response and remediation. Ensure compliance with applicable laws, regulations, and contractual requirements related to information security throughout India. Work with the Global SOC in the co-ordination and escalation of security incidents to the appropriate Indian authorities when appropriate. Develop and maintain relationships with key stakeholders across India, including business leaders, IT teams, and external partners to ensure effective communication and collaboration on information security matters. Conduct periodic security risk assessments and audits of information systems, networks, applications and suppliers in India to identify and mitigate potential security risks. Lead and coordinate the implementation of security policies, standards, and procedures in India. Ensure security awareness and training programs are in place and effective in India. Manage the security budget for India, ensuring efficient and effective use of resources. Represent India in the appropriate security governance forums and ensure alignment with the region security strategy. Brokerage clients will have time-sensitive due diligence security audits and questionnaires that will need to be managed and responded to. Business suppliers and IT supply chain vendors must be managed to ensure they do not introduce risk to Gallagher. Confidential participation in the Merger and Acquisition process with external companies, lawyers and security consultant About You Bachelor's degree in computer science, information systems, or a related field. A master's degree is preferred. At least 8-10 years of experience in information security, with a minimum of 5 years in a leadership role. Strong knowledge of security frameworks and standards such as ISO 27001, NIST, PCI-DSS, and GDPR. Demonstrated experience in the management of staff and small teams. Experience in managing security incidents and crises. Excellent communication and stakeholder management skills are required. Familiarity with security technologies such as firewalls, intrusion detection systems, and SIEMs. Knowledge of cloud security and Insurance practices is a plus. Relevant certifications such as CISSP, CISM, or CRISC are preferred. Lead auditor experience in ISO27001 is preferred. Additional Information We value inclusion and diversity Inclusion and diversity (I&D) is a core part of our business, and it’s embedded into the fabric of our organization. For more than 95 years, Gallagher has led with a commitment to sustainability and to support the communities where we live and work. Gallagher embraces our employees’ diverse identities, experiences and talents, allowing us to better serve our clients and communities. We see inclusion as a conscious commitment and diversity as a vital strength. By embracing diversity in all its forms, we live out The Gallagher Way to its fullest. Gallagher believes that all persons are entitled to equal employment opportunity and prohibits any form of discrimination by its managers, employees, vendors or customers based on race, color, religion, creed, gender (including pregnancy status), sexual orientation, gender identity (which includes transgender and other gender non-conforming individuals), gender expression, hair expression, marital status, parental status, age, national origin, ancestry, disability, medical condition, genetic information, veteran or military status, citizenship status, or any other characteristic protected (herein referred to as “protected characteristics”) by applicable federal, state, or local laws. Equal employment opportunity will be extended in all aspects of the employer-employee relationship, including, but not limited to, recruitment, hiring, training, promotion, transfer, demotion, compensation, benefits, layoff, and termination. In addition, Gallagher will make reasonable accommodations to known physical or mental limitations of an otherwise qualified person with a disability, unless the accommodation would impose an undue hardship on the operation of our business. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Title: Associate Director / Director – VAPT Location: Mumbai Experience: 10+ years Work Mode: Onsite (Mumbai) Certification: OSCP preferred; other relevant certifications (e.g., OSCE, CISSP, CISM, GPEN) are an added advantage Role Overview: We are seeking an experienced cybersecurity leader to join our team as an Associate Director / Director – VAPT in Mumbai . The role demands a seasoned professional with deep expertise in Vulnerability Assessment and Penetration Testing across web, mobile, network, infrastructure, cloud, and source code environments. The ideal candidate will bring strong technical capabilities along with proven leadership in managing high-performing teams and driving large-scale security engagements for enterprise clients. Key Responsibilities: Leadership & Strategic Oversight: Lead the VAPT practice for the region, ensuring alignment with organizational goals and client expectations. Define and evolve methodologies, standards, and best practices for VAPT engagements. Collaborate with senior leadership and clients (CIOs, CISOs, Risk Heads) on cybersecurity strategy, roadmap, and execution. Lead business development , proposal creation, RFP responses, and pre-sales activities. Delivery & Engagement Management: Oversee multiple VAPT projects spanning web, mobile, infrastructure, cloud, IoT, and source code . Ensure high-quality delivery of technical assessments, risk reporting, and mitigation recommendations . Monitor project performance, client satisfaction, and profitability. Act as a technical escalation point for complex and critical vulnerabilities. Team Development & Mentorship: Build, mentor, and retain a team of high-caliber security professionals. Conduct knowledge-sharing sessions, lead training initiatives, and promote internal capability building. Encourage a culture of continuous learning, innovation, and ethical hacking . Desired Skills & Experience: 12+ years of overall cybersecurity experience with a strong focus on VAPT and Red Team assessments . Proven expertise in conducting and managing manual and advanced penetration testing of applications, networks, and cloud environments. Familiarity with tools like Burp Suite, Metasploit, Nmap, Nessus, Qualys, AppScan, Fortify, Wireshark , etc. Solid understanding of security frameworks and standards : OWASP, NIST, MITRE ATT&CK, ISO 27001, PCI-DSS, RBI guidelines. Strong knowledge of secure coding practices and experience in reviewing source code in multiple languages. Exposure to cloud platforms (AWS, Azure, GCP) and DevSecOps is preferred. Excellent communication, stakeholder management, and team leadership skills. OSCP certification is preferred ; additional credentials such as OSCE, CISSP, CISM, GPEN are a plus. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. FS TR- ITC – Tech Risk As Risk consultant, you’ll contribute technically to Risk Consulting client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for EY within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. In line with EY’s commitment to quality, you’ll confirm that work is of high quality and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. The opportunity We’re looking for Seniors Consultants to join the leadership group of our EY-Consulting Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Understanding on Control frameworks such as COSO, internal control principal and related regulations including SOX and J-SOX. Common IT governance and Assurance standards including NIST, COBIT, Risk IT, ITIL and third-party reporting standards as SSAE16. Understanding on independent and risk based operational audits such as Software Development Life Cycle (SDLC), Business Resilience, Cybersecurity audits, Data privacy and data protection audits, Network security audit. Understanding and hands-on experience on data analysis tool such as Tableau, Power Bi, python etc. Conduct performance reviews and contribute to performance feedback for staff. Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions, sand decisions we expect from our people. Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress. Help prepare reports and schedules that will be delivered to clients and other parties. Develop and maintain productive working relationships with client personnel. Responsible for managing reporting on assurance findings and ensure control owners take remediation action as required. Identify, lead, and manage the continuous improvement of Internal Controls through implementation of continuous control monitoring and automation. Obtain and review evidence of compliance for adherence to standards. Key domains of compliance controls, including change management, access to system, network and Data, computer operations and system development. Stay current with and promote awareness of applicable regulatory standards, upstream risk, and industry best practices across the enterprise. Skills And Attributes For Success Experience in application controls and Information security experience. Understanding of risk management systems and processes Ability to build relationships with key stakeholders across different levels of seniority. Strong written and verbal communication skills To qualify for the role, you must have. Preferably bachelor’s degree in (Finance/Accounting, Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc./CA Minimum of 3-4 years of experience in internal controls and Internal Audit Enterprise risk services with specific focus on IT and related industry standards IT Risk Assurance framework Control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX Preferred security skills related to a broad range of operating systems, databases or security tools, e.g., UNIX, Linux, Windows 2000 and NT, firewalls and IDS systems. Familiarity with IT analysis, delivery, and operations methods, including SDLC and CM Familiarity with security and risk standards such as ISO 27001-2, PCI DSS, NIST, ITIL, COBIT Experience of security testing methods and techniques including network, operating and application system configuration review Application controls and security experience: sensitive access and SOD testing controls testing Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. Preferred Certifications: CISA What We Look For We believe that you should own and shape your career. But we’ll provide the support and opportunities to develop the skills, knowledge and experience to succeed. The strength of our global network, combined with local empowerment and a relentless focus on winning in specific markets, means you’ll interact and team with individuals from various geographies and sectors. So, whenever you join, however long you stay, the exceptional EY experience lasts a lifetime. What Working At EY Offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Summary This role involves designing, implementing, and maintaining security solutions across on-premise and cloud environments, responding to incidents, performing threat analysis, and ensuring compliance with internal and regulatory security requirements. The engineer collaborates with IT, Compliance, and Business teams to proactively mitigate risks and enforce security controls throughout the IT ecosystem, ensuring compliance with the Group’s cybersecurity framework and international standards such as CIS, NIST and ISO 27001. Main Responsibilities * Configure and manage security tools (e.g., firewalls, endpoint protection, email security, VPN, EDR/XDR, DLP, IPS/IDS, PAM). * Maintain and fine-tune SIEM systems and threat detection platforms. * Manage MFA, conditional access policies, and identify protection mechanisms. * Support patching, system hardening, and network segmentation activities. * Participate in IT projects by reviewing security requirements and contributing to secure implementation. * Perform and follow up on vulnerability scans and remediation actions. * Maintain an up-to-date threat landscape and proactively mitigate risks based on CVEs and zero-day disclosures. * Support incident response and root cause investigations. * Maintain technical documentation and update security configurations as needed. * Contribute to the ISO 27001 certification process, including control implementation and audit support. * Ensure all technical solutions align with Group IT security policies and standards. Job Requirements * Degree in IT, Cybersecurity, or related field. * 3+ years of experience in IT security * Familiarity with firewalls, endpoint protection, email security, VPN, EDR/XDR, DLP, IPS/IDS, PAM solutions * Exposure to ISO 27001 and/or regulatory compliance frameworks. * Experience with SIEM tools is an advantage * Certifications such as CEH, Security+, Fortinet NSE, Cloud Security or Cisco Security are an advantage. * Analytical thinking, technical troubleshooting, and good communication skills. * Self-motivated, able to deliver consistent results through problem solving. * Ability to work collaboratively with others and excellent team working skills. * A high sense of responsibility and service ownership * A can-do attitude Show more Show less

Job Title: GRC Deputy Manager / Manager Location: Gurgaon Experience: 4+ Years Employment Type: Full-Time Join Time: Immediate joiners preferred Job Summary: We are looking for an experienced GRC Professional to join our Gurgaon office. The ideal candidate will be responsible for managing and enhancing our Governance, Risk, and Compliance (GRC) framework, with a strong emphasis on risk management, regulatory compliance, security governance, and business continuity planning. This role is critical in ensuring that our IT operations align with regulatory standards, industry best practices, and organizational risk appetite. Key Responsibilities: GRC Strategy & Framework: Develop, implement, and maintain policies, procedures, and controls aligned with industry standards such as ISO 27001, NIST, and regulatory requirements (e.g., GDPR, RBI, SEBI). Monitor and assess the effectiveness of the organization's internal controls and GRC framework. Perform periodic risk assessments and control testing to ensure compliance and identify potential areas of improvement. Security & Compliance Oversight: Oversee governance for key security tools and technologies (e.g., SIEM, DLP, EDR, IAM). Coordinate with security operations to ensure compliance with policies and address vulnerabilities. Support compliance audits, prepare documentation, and track remediation activities. Business Continuity Management (BCM): Maintain and enhance the organization's Business Continuity Management System (BCMS) . Conduct Business Impact Analysis (BIA) and support the development, testing, and maintenance of Business Continuity Plans (BCPs) and Disaster Recovery Plans (DRPs) . Stakeholder Collaboration & Reporting: Work closely with cross-functional teams including IT, InfoSec, Legal, and Internal Audit. Prepare and deliver regular reports on risk posture, compliance status, and control effectiveness to senior management. Support internal training and awareness programs related to GRC and security compliance. Qualifications: Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field. Minimum of 4 years of experience in GRC, risk management, IT audit, or related roles. Solid understanding of GRC frameworks, standards, and regulatory environments. Hands-on experience with security tools governance and policy enforcement. Preferred Certifications (Nice to Have): ISO 27001 Lead Auditor/Implementer, CISA, CRISC, CISSP, or equivalent. Show more Show less

Job Title: Consultant / Senior Consultant – VAPT Location: Gurgaon Experience: 2+ years Work Mode: Onsite (Gurgaon) Certification: OSCP – Mandatory Notice Period: Immediate joiners preferred Role Overview: We are looking for highly motivated and technically skilled Consultants / Senior Consultants with a passion for offensive security to join our Vulnerability Assessment and Penetration Testing (VAPT) team in Gurgaon . The ideal candidate will possess strong hands-on experience in application and infrastructure security testing, with the ability to identify and exploit vulnerabilities using both manual and automated techniques. Key Responsibilities: Perform manual and automated penetration testing of web applications, mobile apps, infrastructure, network, and cloud environments . Identify vulnerabilities, simulate real-world attacks, and provide actionable remediation steps. Conduct source code reviews to identify security flaws in programming logic. Create and deliver detailed technical reports and executive summaries . Stay up to date with the latest vulnerabilities, attack vectors, and security trends. Adhere to industry standards and frameworks such as OWASP, NIST, ISO 27001, PCI-DSS, and RBI cybersecurity guidelines . Collaborate with internal stakeholders and clients to explain findings and support remediation. Required Skills & Qualifications: Minimum 2 years of relevant experience in VAPT / offensive security . Strong command of manual testing techniques beyond tool-based assessments. Hands-on experience with tools like Burp Suite, Nmap, Metasploit, Nessus, Wireshark, AppScan, Fortify , etc. Experience in web, mobile, infrastructure, and source code assessments . Solid understanding of network protocols, operating systems (Linux/Windows), firewalls, proxies, and security controls . Mandatory: Valid OSCP certification . Proficiency in one or more scripting languages (e.g., Python, Bash) is an advantage. Excellent analytical, documentation, and communication skills. Show more Show less

Position Summary: We are seeking an experienced Business Development Manager to lead the promotion and growth of our IT Services business including IT MSP Cybersecurity, Software Development and Application deployment services. The ideal candidate will possess deep knowledge of the IT solutions & services sector, a proven track record in B2B sales, with creative, data-driven approach to marketing. You’ll own the end-to-end process of generating leads, closing deals, and building awareness in target markets—ranging from SMBs to mid-market enterprises across industries such as finance, healthcare, government, and education. Responsibilities: Sales: Develop and execute a strategic sales plan to drive revenue across various services IT Managed Services (e.g., helpdesk, infrastructure support, device management, remote monitoring, cloud migrations) Cybersecurity (e.g., threat detection, SIEM, penetration testing, endpoint protection, compliance consulting) Software (e.g., web and mobile applications, system integrations, legacy modernization, enterprise applications deployment) Identify and qualify high-potential prospects through cold outreach, networking, inbound lead nurturing, and partner channels. Build relationships with key decision-makers including CTOs, CIOs, IT Directors, and Procurement Officers. Respond to and lead the creation of RFPs, proposals, quotes, and presentations. Negotiate and close contracts ensuring a win-win for both client and company. Track and report KPIs, pipeline activity, and forecasting using CRM tools. Marketing: Plan, execute, and optimize marketing campaigns to generate awareness and qualified leads for IT services. Collaborate with technical teams to translate services into customer-facing messaging, value propositions, and case studies. Manage digital marketing efforts including SEO, paid search (Google Ads), LinkedIn campaigns, and email marketing. Develop industry-specific marketing assets (e.g., compliance-focused for healthcare, security-heavy for finance). Coordinate participation in webinars, industry conferences, and tech expos. Conduct market research and competitor analysis to refine positioning and campaigns. Qualifications Bachelor’s or Masters degree related to Marketing, Business Development, IT etc. 5–8 years of experience in B2B sales and/or marketing, specifically in the IT services space. Strong understanding of IT infrastructure, network and cloud services, Information security (including NIST, SOC 2, HIPAA, ISO 27001), Software development, and common solution frameworks (.NET, JavaScript, Python, etc.) Proven ability to sell and market technical solutions to non-technical stakeholders. Familiarity with marketing/sales application platforms (e.g., HubSpot, Salesforce) and marketing automation tools. Experience handling small to enterprise-level sales cycles, including RFPs and compliance-heavy accounts. Preferred Experience Experience with MSPs or IT consulting firms Knowledge of government contracting or public sector sales Background in account-based marketing and consultative selling Ability to speak credibly with CTOs and lead cross-functional sales discussions Success Metrics New revenue and gross margin generated per service line Lead-to-opportunity and opportunity-to-close conversion rates Marketing campaign ROI and MQL generation Client retention and upsell success Show more Show less

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM. As a part of RSM’s growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization. Qualification And Minimum Entry Requirements B.Tech/MCA/MBA with 3 - 5 Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients. Position and Key Responsibilities Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating control’s design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions Review and complete status documents for client delivery Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmus.com/careers/india.html. RSM does not tolerate discrimination and/or harassment based on race; colour; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the Indian Armed Forces; Indian Armed Forces Veterans, and Indian Armed Forces Personnel status; pre-disposing genetic characteristics or any other characteristic protected under applicable provincial employment legislation. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please send us an email at careers@rsmus.com. Show more Show less

About Northern Trust Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world’s most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world’s most sophisticated clients using leading technology and exceptional service. Roles And Responsibilities This individual’s primary day to day responsibilities are mentioned below (but are not limited to these): Perform information security risk assessment processes for new and existing Northern Trust’s third parties business partners. Demonstrate some proven knowledge on some of the following domains: Information Security Governance and Risk Management Access Control Vulnerability and Penetration Network Security Application Security Cryptography Security Architecture and Design Operations Security Business Continuity and Disaster Recovery Planning Legal, Regulations, Investigations and Compliance Physical and Environmental Security Cloud Security Perform assessment of IT controls operation, identifying, gaps, risks and areas for improvement. Report writing skills. Knowledge on regulations related to banking and compliance Should be well versed with contract language, analysis and negotiation process. Responsible for reviewing master services contracts of the third parties to identify information technology and security related clauses. Responsible for working with procurement teams to formulate/renew the contracts as per the information security team guidelines. Responsible for documenting, and reporting to management, all findings from risk assessment processes. Collaborate with internal stakeholders & functional teams to ensure that all identified risks within each third party are assigned to business owners and tracked for timely closure. Able to interact in a professional manner and develop relationships with individuals and teams at any level in Northern Trust. Foster a positive and collaborative environment. Demonstrate ability to work well in both an individual contributor and team capacity. Rapidly and effectively adapt to a highly dynamic and fast-paced work environment. Skills Preferred Excellent written and verbal communication skills. Able to converse and develop business relationships with individuals and teams at any level within Northern Trust. Knowledge of IT Security Domains / Frameworks (e.g., NIST, ISO27001). Knowledge of Compliance regulations. Understanding of IT Audit process. In-depth understanding of information security, risk assessments, security risk management principles. Principle understanding of Technology controls relating to Application and system vulnerabilities, Advanced experience with MS Office, SharePoint, and Reporting tools Ability to develop visual representations of processes and risks to support executive updates. Experience Bachelor’s degree in computer science or a related discipline and at least ten or more years of experience in the field of Technology Security or an equivalent combination of education and work experience. Relevant certification (e.g. CISA, CRISC, CISM, CISSP) is a plus Working With Us As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose. We’d love to learn more about how your interests and experience could be a fit with one of the world’s most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater Reasonable accommodation Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com. We hope you’re excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people. Apply today and talk to us about your flexible working requirements and together we can achieve greater. Show more Show less

Morgan Stanley Technology Risk Management (Control Testing) _Vice President_ Risk & Resiliency Management Profile Description We're seeking someone to join our CDRR team as a Vice President in Firm Resilience function. The Review Lead is a leading role within ITCT accountable for planning, executing, and reporting control testing reviews which must stand up to high-quality expectations, as well as project management of control testing reviews from start to finish CDRR_Technology The Cybersecurity organization's mission is to create an agile, adaptable organization with the skills and expertise needed to defend against increasingly sophisticated adversaries. This will be achieved by maintaining sound capabilities to identify and protect our assets, proactively assessing threats and vulnerabilities and detecting events, ensuring resiliency through our ability to respond to and recover from incidents and building awareness and increase vigilance while continually developing our cyber workforce. Firm Resilience Firm Resilience leads and coordinates initiatives to proactively prepare the Firm to be resilient against operational threats as well as identify and manage material operational risk. Risk & Resiliency Management This is Associate position that Identifies, assesses, and mitigates risks to ensure operational continuity and resilience in the face of potential threats or disruptions that could impact the organization, plus management of ongoing incidents. Morgan Stanley is an industry leader in financial services, known for mobilizing capital to help governments, corporations, institutions, and individuals around the world achieve their financial goals. At Morgan Stanley India, we support the Firm’s global businesses, with critical presence across Institutional Securities, Wealth Management, and Investment management, as well as in the Firm’s infrastructure functions of Technology, Operations, Finance, Risk Management, Legal and Corporate & Enterprise Services. Morgan Stanley has been rooted in India since 1993, with campuses in both Mumbai and Bengaluru. We empower our multi-faceted and talented teams to advance their careers and make a global impact on the business. For those who show passion and grit in their work, there’s ample opportunity to move across the businesses for those who show passion and grit in their work. Interested in joining a team that’s eager to create, innovate and make an impact on the world? Read on… What You'll Do In The Role The InfoSec, Technology, and Cybersecurity (ITCT) program assesses Firmwide control compliance with the Global Technology Policy, InfoSec Policy, and Cybersecurity Policy, as well as control testing and validation activities, as agreed with management, in relation to emerging risks, regulatory remediation, and findings from other assessments. Planning Reviews Define the scope of controls for each review depending on regulatory commitments and mandate requirements. Schedule and lead kick-off meetings with PCOs and Risk Officers to review scope, timeline, and approach. Executing Reviews Review evidence request lists developed by Control Testers prior to submission to control contacts. Support Control Testers by being available to help them review unclear evidence and make decisions on acceptable evidence as the testing evolves. Reporting Review Results and Managing Risk Issues Present potential risk issues to control contacts and/or PCOs soon as possible. Review draft issue descriptions and risk ratings for potential issues drafted by Control Testers. Project Management Of Reviews Complete responsibilities described above in line with milestone dates and regulatory commitments. Regularly provide the wider ITCT team and Global Head with status updates on ongoing activities, What You'll Bring To The Role 10 + years of career experience & Working knowledge of key Technology, Information Security, and Cybersecurity concepts (e.g., data security, identity and access management, network security, change management, etc.) Understanding of relevant regulations and industry standards (e.g., ISO 27001, COBIT, NIST, etc.) including principles and key concepts related to risk assessment, controls, and testing. Working knowledge of technology applications and infrastructure (e.g., server, network, platform desktop environment) and ability to identify risk and controls. Ability to employ process-based thinking to effectively obtain, analyze, and interpret information, identify root causes of problems, and draw logical conclusions. Excellent written and verbal communication skills. Good organizational skills with diligence and ability to manage multiple priorities. Proficient use of Microsoft Excel and other Microsoft Office products What You Can Expect From Morgan Stanley We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work. Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents. Show more Show less

Role Overview We are hiring a Technical Lead – AI Security to join our CISO team in Mumbai. This is a critical, hands-on role — ensuring the trustworthiness, resilience, and compliance of AI/ML systems, including large language models (LLMs). You will work at the intersection of cybersecurity and AI, shaping secure testing, understanding secure MLOps/LLMOps workflows, and leading technical implementation of defenses against emerging AI threats. This role requires both strategic vision and strong engineering depth. Key Responsibilities · Lead and operationalize the AI/ML and LLM security roadmap across training, validation, deployment, and runtime to enable AI Security Platform Approach. · Design and implement defenses against threats like adversarial attacks, data poisoning, model inversion, prompt injection, and fine-tuning exploits using industry leading open source and commercial tools. · Build hardened workflows for model security, integrity verification, and auditability in production AI environments. · Leverage AI security tools for scanning, fuzzing, and penetration testing models. · Apply best practices from OWASP Top 10 for ML/LLMs, MITRE ATLAS, NIST AI RMF, and ISO/IEC 42001 to test AI/ML assets. · Ensure AI model security testing framework aligns with internal policy, national regulatory requirements, and global best practices. · Plan and execute security tests for AI/LLM systems, including jailbreaking, RAG hardening, and bias/toxicity validation. Required Skills & Experience · 8+ years in cybersecurity, with at least 3+ years hands-on in AI/ML security or secure MLOps/LLMOps · Proficient in Python, TensorFlow/PyTorch, HuggingFace, LangChain, and common data science libraries · Deep understanding of adversarial ML/LLM, model evaluation under threat conditions, and inference/training-time attack vectors · Experience securing cloud-based AI workloads (AWS, Azure, or GCP) · Familiarity with secure DevOps and CI/CD practices · Strong understanding of AI-specific threat models (MITRE ATLAS) and security benchmarks (OWASP Top 10 for ML/LLMs) · Ability to communicate technical risk clearly to non-technical stakeholders · Ability to guide developers and data scientists to solve the AI Security risks. · Certifications: CISSP, OSCP, GCP ML Security, or relevant AI/ML certificates · Experience with AI security tools or platforms (e.g., model registries, lineage tracking, policy enforcement) · Experience with RAG, LLM-based agents, or agentic workflows · Experience in regulated sectors (finance, public sector) Show more Show less

Position Summary Job title: Azure Cloud Security Engineer (Senior Consultant) About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm. The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs: Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations. Performing technical health checks for cloud platforms/environments prior to broader deployments. Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor. Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption). Documenting all technical issues, analysis, client communication, and resolution. Supporting proof of concept and production deployments of cloud technologies. Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting. Operating across both technical and management leadership capacities. Providing internal technical training to Advisory personnel as needed. Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc. Required Skills 4+ years of information technology and/or information security operations experience. Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid). Familiarity with the following will be considered a plus: Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers Hands-on technical experience implementing security solutions for Microsoft Azure Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms Preferred: Previous Consulting or Big 4 experience. Hands-on experience with Azure, plus any CASB or CWPP product or service. Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc. Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.) Qualification Bachelor’s Degree required.Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2023. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Professional development From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career. Requisition code: 300461 Show more Show less