9635 Remediation Jobs - Page 31

About This Role Wells Fargo is seeking a Senior Independent Testing Specialist In This Role, You Will Lead or participate in moderate to high risk or complex review activities in a matrixed environment and communicate emerging risks to management within Independent Testing Contribute to large scale planning related to Independent Testing deliverables Review and research moderately complex potential corrective actions, and follow through on reporting, escalation, and resolution Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs and controls according to standards and other applicable policies Resolve moderately complex issues and lead team to meet Independent Testing deliverables while leveraging solid understanding of risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners, management and lines of business regarding risk management Required Qualifications: 4+ years of Independent Testing experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: Proven expertise in control testing & validation and knowledge and awareness of financial crime business acumen i.e. KYC, CDD, transaction monitoring etc. Certification CIA, CAMS, CFCS is an added advantage. Lead or participate in moderate to high risk or complex review activities in a matrixed environment and communicate emerging risks to management within Independent Testing Contribute to large scale planning related to Independent Testing deliverables Review and research moderately complex potential corrective actions, and follow through on reporting, escalation, and resolution Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs and controls according to standards and other applicable policies Resolve moderately complex issues and lead team to meet Independent Testing deliverables while leveraging solid understanding of risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners, management and lines of business regarding risk management Job Expectations: Shift timings 1:30 PM to 10:30 PM WFO 3 days a week Posting End Date: 3 Aug 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-476132

About This Role Wells Fargo is seeking a Senior Independent testing Specialist In This Role, You Will Lead or participate in moderate to high risk or complex review activities in a matrixed environment and communicate emerging risks to management within Independent Testing Contribute to large scale planning related to Independent Testing deliverables Review and research moderately complex potential corrective actions, and follow through on reporting, escalation, and resolution Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs and controls according to standards and other applicable policies Resolve moderately complex issues and lead team to meet Independent Testing deliverables while leveraging solid understanding of risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners, management and lines of business regarding risk management Required Qualifications: 4+ years of Independent Testing experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: Proven expertise in control testing & validation and knowledge and awareness of financial crime business acumen i.e. KYC, CDD, transaction monitoring etc. Certification CIA, CAMS, CFCS is an added advantage. Lead or participate in moderate to high risk or complex review activities in a matrixed environment and communicate emerging risks to management within Independent Testing Contribute to large scale planning related to Independent Testing deliverables Review and research moderately complex potential corrective actions, and follow through on reporting, escalation, and resolution Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs and controls according to standards and other applicable policies Resolve moderately complex issues and lead team to meet Independent Testing deliverables while leveraging solid understanding of risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners, management and lines of business regarding risk management Job Expectations: Hybrid work environment - WFO 3 days a week Shift timings - 1:30 PM to 10:30 PM Posting End Date: 3 Aug 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-476076

About This Role Wells Fargo is seeking a Risk Analytics Consultant. Wells Fargo India enables global talent capabilities for Wells Fargo Bank NA., by supporting business lines and staff functions across Technology, Operations, Risk, Audit, Process Excellence, Automation and Product, Analytics and Modeling. We are operating in Hyderabad, Bengaluru and Chennai locations. You will be a part of Information Delivery & Analytics team within Market and Counterparty Risk Management (MCRM) which is responsible for design and production of reports. You will interact closely with multiple business partners including the Market Risk Officers, Counterparty Credit Risk, and Technology teams.The Corporate & Investment Banking (CIB) Risk group independently oversees and challenges all risk management activities within the CIB business. CIB provides corporate and transactional banking, commercial real estate lending and servicing, investment banking, and equity and fixed income solutions to clients across the globe. The CIB Risk group is responsible for enhancing the effectiveness of risk oversight and providing a comprehensive view of risks across the business, while creating streamlined independent risk management interactions with CIB leaders In This Role, You Will Participate in less complex analysis and modeling initiatives, and identify opportunity for process production, data reconciliation, and model documentation improvements within Risk Management Review and analyze programing models to extract data, and manipulate databases to provide statistical and financial modeling, and exercise independent judgment to guide new and existing projects with medium risk deliverables Coordinate and consolidate the production of monthly, quarterly, and annual performance reports for more experienced management Present recommendations for resolving data reconciliation, production, and database issues Exercise independent judgment while developing expertise in policy governance, risk projects, and regulatory requests Collaborate and consult with peers, managers, experienced managers, compliance, including various lines of business Required Qualifications: 2+ years of Risk Analytics experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education. Desired Qualifications: Design & develop BI reports and dashboards using Power BI, SQL and other tools to fulfill the analytical needs of risk officers Collaboration with stakeholders supporting all phases of project life cycle Perform data extraction and transformation with SQL queries to generate required datasets for dashboards Maintain and support existing dashboards/reports, resolving identified issues Provide support & governance to Risk application including analytics. Identify opportunities and deliver process improvements, standardization and automation Support PowerBI architecture and design data flows 3+ years of experience in Data visualization and designing dashboards using Power BI 3+ years SQL experience with knowledge of data wrangling leveraging multiple data sources Strong technical skills and problem-solving skills Excellent verbal, written, and interpersonal communication skills Strong ability to develop partnerships and collaborate with other business and functional areas Knowledge and understanding of issues or change management processes Experience in performing root cause analysis Flexibility with changing priorities. Knowledge of Market and Counterparty risk within banking domain Posting End Date: 31 Jul 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-474956

About This Role Wells Fargo is seeking a Technology Program Analyst for 2026 campus program. We believe in the power of working together because great ideas can come from anyone. Through collaboration, any employee can have an impact and make a difference for the entire company. Explore opportunities with us for a career in a supportive environment where you can learn and grow. In This Role, You Will Perform a variety of job assignments to develop key skills and gain a working knowledge of the organization Attend classroom training, self-study assignments, workshops, networking, and other events Participate in or provide support for low complexity initiatives within functional area Review basic or tactical issues, policies or procedures for which answers can be quickly obtained related to low-risk tasks and deliverables with narrower impact Receive direction from supervisor and exercise judgment within defined parameters while developing understanding of the function, policies, procedures, and compliance requirements Provide information to managers, functional colleagues, and stakeholders, including internal or external customers if applicable Required Qualifications: 6+ months of work experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Posting End Date: 29 Jul 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-477302-1

About This Role Wells Fargo is seeking a Technology Program Intern for 2026 campus program. We believe in the power of working together because great ideas can come from anyone. Through collaboration, any employee can have an impact and make a difference for the entire company. Explore opportunities with us for a career in a supportive environment where you can learn and grow." In This Role, You Will Participate in formal internship program and workshops for low complexity initiatives within Internship Program Attend classroom training, self-study assignments, workshops, networking, and other events Review basic or tactical issues, policies or procedures for which answers can be quickly obtained related to low-risk tasks and deliverables with narrower impact Receive direction from supervisor and exercise judgment within defined parameters while developing understanding of the function, policies, procedures, and compliance requirements Provide information to managers, functional colleagues, and stakeholders, including internal or external customers if applicable Required Qualifications: 6+ months of work experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Posting End Date: 29 Jul 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-477001-1

About This Role Wells Fargo is seeking a Due Diligence Coordinator. In This Role, You Will Support Due Diligence group Seek ways to improve client onboarding process, on-going periodic client reviews and quality control activities Conduct complex comprehensive research or background investigations on transactions, individuals, entities, organizations or locations to identify and mitigate associated sanctions, financial crime, and reputational risks Receive direction from supervisor and escalate non-routine questions Interact with immediate team and Due Diligence area on wide range of information Engage with clients indirectly through relationship managers to support meeting policy and regulatory requirements Required Qualifications: 2+ years of Due Diligence experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Posting End Date: 29 Jul 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-476881

About This Role Wells Fargo is seeking a Operations Processor In This Role, You Will Perform moderately complex operations duties in support of either a service center or department environment Require considerable knowledge of company personnel policies and practices Collect data and prepare related operational reports Prepare input forms for automated data processing system Utilize the company's internal operations to perform duties Coordinate projects Furnish information to authorized persons Provide guidance to all levels of employees regarding personnel policies and procedures requiring some policy interpretation Required Qualifications: 2+ years of operations support experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education. Posting End Date: 31 Jul 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-476859

About This Role Wells Fargo is seeking a Financial Reporting Analyst In This Role, You Will Meet the company's regulatory, Security and Exchange Commission and other external financial reporting requirements Support external financial reporting activities with a thorough understanding of reporting requirements, end to end reporting processes, and data needed to deliver accurate and complete financial reporting Support implementation of moderate to complex projects and initiatives Provide accounting technical regulatory capital and regulatory reporting guidance Identify compliance and risk management requirements for supported area Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals Communicate and provide consultation with experienced stakeholders throughout the enterprise Required Qualifications: 2+ years of Finance, Accounting, Financial Reporting experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: CA/CMA/MBA-Finance or equivalent Meet the company's regulatory, Security and Exchange Commission and other external financial reporting requirements (FR Y11/ FR 2314/ FR Y9C/ FFIEC 031) Posting End Date: 3 Aug 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-470126

About This Role Wells Fargo is seeking an Operations Processor In This Role, You Will Perform moderately complex operations duties in support of either a service center or department environment Require considerable knowledge of company personnel policies and practices Collect data and prepare related operational reports Prepare input forms for automated data processing system Utilize the company's internal operations to perform duties Coordinate projects Furnish information to authorized persons Provide guidance to all levels of employees regarding personnel policies and procedures requiring some policy interpretation Required Qualifications: 2+ years of operations support experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: 2+ years of experience in Payment's background. Must have experience in International Banking Payments. Posting End Date: 31 Jul 2025 Job posting may come down early due to volume of applicants. We Value Equal Opportunity Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic. Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements. Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process. Applicants With Disabilities To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo . Drug and Alcohol Policy Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy to learn more. Wells Fargo Recruitment And Hiring Requirements Third-Party recordings are prohibited unless authorized by Wells Fargo. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process. Reference Number R-470116

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304774

Summary Position Summary Job title: SAST/DAST AppSec - Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: As a Consultant, you are responsible for performing following activities as a SAST/DAST professional: Integrate SAST and DAST tools into CI/CD pipelines to automate security testing throughout the development lifecycle. Perform regular static (SAST) and dynamic (DAST) security assessments on applications to identify vulnerabilities such as SQL injection, cross-site scripting, and other OWASP Top 10 risks. Analyze scan results, triage findings, and provide actionable remediation guidance to development teams. Collaborate with developers to ensure secure coding practices and support secure design reviews. Define and maintain security roles, responsibilities, and ownership between Deloitte and client stakeholders for test preparation, execution, and support. Ensure that vulnerabilities are tracked, reported, and resolved in accordance with organizational policies and client requirements. Conduct root cause analysis (RCA) workshops and publish performance and security testing reports. Stay current with industry trends, emerging threats, and advancements in SAST/DAST tools and methodologies. Required Skills Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304772

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304773

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304774

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304773

Summary Position Summary Job title: SAST/DAST AppSec - Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: As a Consultant, you are responsible for performing following activities as a SAST/DAST professional: Integrate SAST and DAST tools into CI/CD pipelines to automate security testing throughout the development lifecycle. Perform regular static (SAST) and dynamic (DAST) security assessments on applications to identify vulnerabilities such as SQL injection, cross-site scripting, and other OWASP Top 10 risks. Analyze scan results, triage findings, and provide actionable remediation guidance to development teams. Collaborate with developers to ensure secure coding practices and support secure design reviews. Define and maintain security roles, responsibilities, and ownership between Deloitte and client stakeholders for test preparation, execution, and support. Ensure that vulnerabilities are tracked, reported, and resolved in accordance with organizational policies and client requirements. Conduct root cause analysis (RCA) workshops and publish performance and security testing reports. Stay current with industry trends, emerging threats, and advancements in SAST/DAST tools and methodologies. Required Skills Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304772

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304774

Summary Position Summary Job title: SAST/DAST AppSec – Senior Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines and cloud (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Excellent collaboration, communication, and documentation skills. Required Skills Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304774

Summary Position Summary Job title: SAST/DAST AppSec - Consultant About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk Deloitte's application security testing professionals review the test results output from various in-scope security services and take the appropriate actions to minimize developer effort and provide truly actionable results to provide protection spanning applications’ entire lifecycle in the client environment. Work you’ll do Roles & Responsibilities: As a Consultant, you are responsible for performing following activities as a SAST/DAST professional: Integrate SAST and DAST tools into CI/CD pipelines to automate security testing throughout the development lifecycle. Perform regular static (SAST) and dynamic (DAST) security assessments on applications to identify vulnerabilities such as SQL injection, cross-site scripting, and other OWASP Top 10 risks. Analyze scan results, triage findings, and provide actionable remediation guidance to development teams. Collaborate with developers to ensure secure coding practices and support secure design reviews. Define and maintain security roles, responsibilities, and ownership between Deloitte and client stakeholders for test preparation, execution, and support. Ensure that vulnerabilities are tracked, reported, and resolved in accordance with organizational policies and client requirements. Conduct root cause analysis (RCA) workshops and publish performance and security testing reports. Stay current with industry trends, emerging threats, and advancements in SAST/DAST tools and methodologies. Required Skills Hands-on experience with leading SAST and DAST tools (e.g., Checkmarx, Veracode, Fortify, Burp Suite, OWASP ZAP). Strong understanding of secure software development lifecycle (SSDLC) principles and OWASP Top 10 vulnerabilities. Experience integrating security testing into CI/CD pipelines (e.g., Jenkins, Azure DevOps, GitLab CI). Ability to interpret and communicate vulnerability findings and remediation steps to technical and non-technical stakeholders. Familiarity with both black-box (DAST) and white-box (SAST) testing methodologies. Qualification Bachelor's degree or higher in Computer Science, or equivalent experience. Security certifications such as CSSLP, CEH, or similar. Experience with cloud-native application security and container security. Knowledge of regulatory and compliance requirements related to application security. Good to have: Experience participating in or conducting security architecture reviews to identify design-level vulnerabilities and ensure alignment with security best practices and organizational standards. Proficiency in performing threat modeling exercises (e.g., using STRIDE, PASTA, or other frameworks) to systematically identify, document, and prioritize potential threats and attack vectors in applications and systems. Skill in translating threat model findings into actionable SAST/DAST test cases and ensuring that identified threats are adequately tested and mitigated. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304772

Organizational Change Management (OCM) Lead – HRMS Implementations Role Purpose You will own the full change‑management and end‑user enablement lifecycle for 1–3 concurrent enterprise rollouts of our HRMS suite, ensuring every client goes live with engaged, confident users. Key Responsibilities Change Strategy & Stakeholder Management Run impact and resistance assessments, map stakeholders, and craft ADKAR‑aligned change plans. Chair change‑control forums and champion networks; escalate risks early. Communications & Training Build a detailed communications calendar and author executive‑to‑end‑user messages. Design blended training paths (e‑learning, virtual classroom, job aids) and configure digital‑adoption walkthroughs in WalkMe or Whatfix. Readiness & Adoption Analytics Define adoption KPIs (feature uptake, sentiment, help‑desk volume), build Power BI dashboards, and action remediation plans. Asset Factory & Continuous Improvement Create reusable comms packs, localisation kits, and persona‑based training paths for future projects. Collaboration Partner closely with the Implementation Lead, QA, and Data teams to align timelines and messaging. Success Metrics ≥ 80 % targeted users complete mandatory training before UAT Hyper‑care tickets drop ≥ 40 % by week 4 post go‑live End‑user NPS ≥ +40 at go‑live + 45 days At least two reusable change/training assets contributed per project Required Experience 6–10 years leading change programmes for SaaS HRMS/ERP deployments (Workday, SAP SuccessFactors, Oracle HCM, etc.) Led at least two implementations above 3 000 employees, including Core HR or Payroll Deep working knowledge of ADKAR or similar frameworks Hands‑on with digital adoption platforms (WalkMe, Whatfix) and LMS authoring tools (Articulate 360, Rise, Captivate) Comfortable building adoption dashboards in Power BI or Tableau Preferred certifications: Prosci ADKAR, ATD CPTD/CLDP, SHRM‑CP/SCP Exceptional facilitation and executive‑level communication skills Desired Traits Storyteller who translates process change into compelling narratives Analytical coach who balances empathy with data‑driven decisions Playbook builder committed to documentation and reuse Travel 30–40 % travel for discovery workshops, UAT, and go‑live weeks

Job Description: Job Title : Technology Risk Manager Corporate Title: Director Location: Pune, India Overview Our Corporate Bank group is a technology centric business, with an increasing move to real-time processing, an increasing appetite from customers for integrated systems and access to supporting data. This means that technology is more important than ever for the business. The CIO - Corporate Bank (CB) division sits in the Bank s Technology, Data and Innovation (TDI) group. The Risk and Control (R&C) team ensures the Banks technology control priorities are effectively implemented across CIO - CB. The R&C team offers dedicated support for each Chief Information Officer (CIO) business line, advisory services for control responses, and program management services for broad control uplifts. The teams mission is to reduce the organizations technology risk exposure by implementing key bank controls, ensuring appropriate and timely resolution of audit and regulatory issues, and participating in the Banks design of control implementations. Therefore, a role on the R&C team is integral in supporting the front-line management in identifying, assessing/measuring risks, developing/implementing remediation actions, and monitoring risks. We are looking for a technology risk manager (also known as embedded risk team lead ) to join the Risk & Control team to ensure robust and sustainable control governance across CIO - CB, in particular for CB Data and head for India Risk and Control team. You will be responsible for supporting the CB Chief Data Office in managing audit / regulatory / self-identified findings, participating in regulatory and audit exams, monitoring stakeholders compliance with key risk indicators, and ensuring controls are implemented effectively and sustainably. Your role will be integral in supporting the front-line management in identifying and assessing/measuring risks, determining remediation plans, monitoring levels of risk, and implementation of remediation. You will work directly with CIO-1s, the CIO - Corporate Bank Risk Leads, senior technology management, business and operations stakeholders, regulatory management, and other embedded risk teams and will represent CB Risk & Control . As a senior member in the region, you will spearhead risk initiatives within the region and will oversee India applications. As a Tech Risk and Controls Director, you will play a pivotal role in shaping and implementing the firms technology risk management strategy. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Flexible working arrangements Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities: Partner with CB CDO, in risk management and control implementation. Create deep and productive relationships with the teams and finding owners for audit / regulatory / self-identified issues to ensure overall risk posture for the area is improved. Support CIO-1 portfolio(s) in managing audit / regulatory / self-identified findings to ensure appropriate and timely resolution of risks/gaps in controls, and resolve non-compliance with Bank policies, procedures and processes and non-compliance with regulations and laws. Review and revise findings lifecycle event documentation. Provide strategic direction on risk management matters to senior leadership including implementation of detailed data driven narratives to inform leadership of risks related to IT and Cybersecurity topics. Provide credible challenge across all information technology and cybersecurity enabling business growth while ensuring that risks remain within appetite. Participate in, and coordinate with technology stakeholders, on internal and external audits and regulatory exams Ensure Risk & Control topics and standards are effectively included in all Change Programs related to CB Data, in particular within the perimeter of the EDM Program. Ensure appropriate senior management awareness/oversight of follow-up on action items to resolve identified technology issues Support application teams in control implementation requirements Ensure risk remediation programs are initiated and executed. Design and implement processes to test effectiveness and sustainability of technical controls. Develop strategies for reducing the risk exposure of CIO CB portfolio(s), including preparedness of critical applications for audit and regulatory exams and working with application owners to address and prevent common risk issues Assist application owners and other technology stakeholders in identifying and documenting risks and developing remediation Tracking and reporting on CIO CB portfolio(s) key risk indicators (KRI) and control uplift programs. Assisting application owners in developing plans to ensure compliance with KRIs. Close control gaps. Ensure risk remediation programs are initiated and executed in line with the Bank s policies, procedures and standards. Work with the application teams and control owners to identify and resolve potential issues in control design. Advise on effectiveness metrics, ensure control design includes proper evidence, and provide input to the design and effectiveness of centrally provided tooling. Create risk awareness and positive attitudes through specialized trainings and educate the wider Corporate Bank CDO stakeholders regarding Risk & Control. Develop and guide a culture of talent development to meet business objectives and strategy. Your Skills and Experience: Excellent communication skills, both written and verbal to present ideas and concepts effectively Extensive experience (15-20 years) in technology risk management and risk advisory Strong understanding of three lines of defense model and compliance frameworks, Experience with regulatory environments and financial services technology. Robust knowledge and experience of data risks, in particular data-related technology controls, - policies, - standards and - tools Excellent analytical and investigatory skills to identify underlying technology issues Extensive experience in assessing risk, writing issues, and developing appropriate corrective actions Demonstrate viable solutions and problem solving Relevant experience working with auditors, regulators and external auditors on exams, reports and information requests Prefer experience with designing and testing technology controls and processes Prefer technical background (application development, infrastructure engineering, etc. ) How we ll support you Training and development to help you excel in your career Flexible working to assist you balance your personal priorities Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About us and our teams https://www. db. com/company/company. htm Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

Job Description: Job Title- Project Manager (Audit Functions/Transformation) TDI Engineering Location- Pune, India Corporate Title : AS Role Description The TDI Engineering unit is responsible for all desktop, end user automation, engineering, and collaboration tools within the bank. The goal of this unit is to provide enterprise development tools as services for teams across Deutsche Bank, enabling them to reach higher levels of maturity in their process. These services consist of all necessary to support teams from initial Program/Project investment governance decisions and subsequently management through development, testing, deployment as well as compliance with the Bank s software processes. Tools such as Bitbucket, JIRA, Confluence, TeamCity, Artifactory, MF ALM. The Developer Tools Project Portfolio has multiple Programs/Initiatives driven by Regulatory/Audit-finding based remediation, Strategic Programs e. g. , Cloud (GCP) migration (of tools, as part of a larger, bank-wide Programme), Developer Experience initiatives and Migration to new tools. The Project manager will manage sub projects under a set of these Programs. A Programme is a group of related projects that together deliver the intended value of a business case. Project manager functionally reports to the Programme Manager. The Project Manager will be part of TDI engg support Audit remediation or Internal initiative projects in Candidate/application functions. We are searching for a candidate with a good understanding of IT risks and controls. This role is integral in supporting the function in complying with the Non-Financial Risk Management framework including the Findings Management Policy (FMP). The project manager will work with subject manner experts, across TDI engg, Group Audit and Non-Financial Risk. This is an exciting opportunity for a high-performing and motivated individual to help shape the technology infrastructure in response to demanding regulations making a real impact on the profitability and reputation of the organization. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy Best in class leave policy. Gender neutral parental leaves Sponsorship for Industry relevant certifications and education Comprehensive Hospitalization Insurance for you and your dependents Accident and Term Life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities To deliver the required output whilst managing the costs to budget, delivering the business benefits according to plan, identifying project delivery risks and proposing mitigations as required Manage the execution, track deliverables, budgets (on the bank-wide Portfolio Management system e. g. , dbClarity) Establish and drive the governance for this Program including TDI(IT)-wide stakeholders Engage with a variety of stakeholders within the bank, other Programme Managers, Project Management Offices/COO functions to effectively steer the Programme Ensure that the Project Team (Engineering, Policy teams, Operations teams, Product Owners) are appropriately aligned to the Programme and its deliverables Provide MI and reporting on a periodic basis to the stakeholders Understand the expectations of the CAF (Central Approval Function), DCRO & Auditor on all audit procedures and help the project team articulate the SII Forms, Closure packs and Remediation plan accordingly. Coordinate with Portfolio Owners/SPOCs for the upcoming audit schedule and request if any potential SIIs are to be raised for the audit scope. Support application leads/delegate on closure documentations (Include Finding & Action Level). Responsible for doing the first pass reviews of all Life Cycle Events before it is submitted to CAF (Central Approval Function). Participate in Weekly and Monthly Status calls with Portfolio owners / CIO-1, GCIO Embedded Risk Manager and Divisional Compliance officer to update the status of the remediations. Coordination and management with Portfolio Owners/Delegates, ERT, Control Owners, CAF members & collaboratively work with them to address the requirements to close the remediation on time. Work with domain leads to tracking all remediations to ensure timely closure without any KPI impact. Prepare for the monthly Governance meetings MB-1, CIO and CIO-1 Level. Support the delivery risk and control initiatives. This includes participation in risk and control activities, risk-based control reporting of key issues, performance, and validation. Ensure management transparency by way of timely risk reporting and proactive engagement and representing controls team at different governing forums. Identify and evaluate potential areas of non-compliance or risk, assessing impact, probability and present findings and proposals for risk mitigation measures. Familiarize with policies, procedures, and internal documentation, as well as management models pertaining to Deutsche Operational Risk & Findings Management. Manage and deliver the critical book of work for Risk & Controls. Establish a proactive risk culture with simplified governance, improved application stability and investment in reduction of manual support activities. Your skills and experience Overall 10+ years of experience in any of the SDLC/STLC engagement and minimum 3 years on risk and audit related experience in IT Risk. Previous experience with IT risk assessment, audit, controls validation and emerging risk identification. A strong team player comfortable in a cross-cultural and diverse operating environment. Result oriented and ability to deliver under tight timelines. Excellent communication and collaboration skills Desire to learn about new and emerging technologies and continuous upskilling. Must be comfortable with navigating ambiguity to extract meaningful risk insights. Excellent verbal and written communication skills Ability to work independently, plan, organize, prioritize, and meet deadlines in a rapidly changing environment. Ability to assimilate large quantities of information in short periods of time. How we ll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs https://www. db. com/company/company. htm Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

If you are a strategic thinker passionate about driving solutions and mitigating risk; you have found the right team. The Testing CoE (Center of Excellence) team is responsible for ensuring a strong and consistent control environment across the firm. This role is a great opportunity to be working with a large Controls Testing team and help establish a newly formed organization which provides the potential hire a good starting point within the firm. Job Summary As an Associate within the Testing Center of Excellence, you will be responsible for the execution of independent risk-based, point-in-time evaluations of the control design adequacy and execution effectiveness, to mitigate compliance, conduct and operational risks. The role requires overseeing the performance of complex evaluations of business processes through a comparison of actual processes against expected practices (policies, standards, procedures, laws, rules and regulations). Testing activities often include sophisticated data analytics on large datasets and regular engagement with senior stakeholders across the firm. This is an exciting opportunity to work on key risk initiatives as they become the focus of the firm and across the financial services industry. You will excel at creative thinking and problem solving; be self-motivated, confident and ready to work in a fast-paced, energetic environment. Through collaboration and analytical skills, you will contribute to the Testing CoE s overall success and strengthen the firm s compliance with regulatory obligations and industry standards. Job responsibilities Lead comprehensive control evaluations and substantive testing to independently assess the design and effectiveness of controls Ensure compliance with internal policies, procedures, and external laws, rules, and regulations, while identifying necessary remediation actions. This includes developing and executing testing procedures, meticulously documenting results, drawing informed conclusions, making actionable recommendations, and distributing detailed compliance testing review reports. Foster collaboration with Compliance and Operational Risk Officers on various engagements. This includes developing detailed test scripts, facilitating issue discussions, participating in business meetings, and drafting comprehensive final reports to ensure alignment and clarity. Utilize advanced critical thinking skills to apply substantive testing techniques, thoroughly evaluating the effectiveness of high-risk business processes and identifying potential areas for improvement. Proactively assess and monitor risks, ensuring adherence to firm standards, regulatory requirements, and industry best practices. Implement strategies to mitigate identified risks effectively. Collaborate with cross-functional teams and stakeholders to support the design and effectiveness of controls. Drive initiatives that enhance the business control environment through recommended updates to the Compliance and Operational Risk Evaluation (CORE) application. Develop and execute robust control test scripts aimed at identifying control weaknesses, determining root causes, and recommending practical solutions to enhance operational efficiency and control effectiveness. Document test steps and results in a comprehensive and organized manner, ensuring sufficient support and justification for testing conclusions. Maintain a high standard of documentation to facilitate transparency and accountability. Lead meetings with business owners at various management levels, delivering testing results and supporting sustainable control enhancements. Identify and capitalize on opportunities to strengthen controls and improve operational efficiency. Required qualifications, capabilities, and skills 3+ years of experience or equivalent expertise in risk management, assessment, control evaluations, or a related field, within the financial services industry. Possess a strong understanding of industry standards and regulatory requirements. Demonstrated ability to analyze complex issues, develop and implement effective risk mitigation strategies, and communicate insights and recommendations clearly to senior stakeholders. Proficient knowledge of risk management frameworks, regulations, and industry best practices. Ability to stay updated with evolving regulatory landscapes and adapt strategies accordingly. Exceptional ability to develop and communicate well-founded recommendations based on regulatory guidance and standards, ensuring alignment with organizational goals and compliance requirements. Highly organized and detail-oriented, with a proven track record of managing multiple priorities and delivering results in a fast-paced environment. Strong analytical and communication skills, with the ability to convey complex information in a clear and concise manner to diverse audiences. Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, CISA, CCEP, CRCM, CRCMP, GRCP, or other industry-recognized risk and risk certifications preferred. A background in auditing and the ability to understand of internal controls is beneficial. Proficiency in MS (Microsoft Suite) Office - Microsoft Word, Excel, Access, and PowerPoint.

Job Title: Attack Surface Management Analyst Job Location: UniOps Bangalore ABOUT UNILEVER: Be part of the world s most successful, purpose-led business. Work with brands that are well-loved around the world, that improve the lives of our consumers and the communities around us. We promote innovation, big and small, to make our business win and grow; and we believe in business as a force for good. Unleash your curiosity, challenge ideas and disrupt processes; use your energy to make this happen. Our brilliant business leaders and colleagues provide mentorship and inspiration, so you can be at your best. Every day, nine out of ten Indian households use our products to feel good, look good and get more out of life giving us a unique opportunity to build a brighter future. Every individual here can bring their purpose to life through their work. Join us and you ll be surrounded by inspiring leaders and supportive peers. Among them, you ll channel your purpose, bring fresh ideas to the table, and simply be you. As you work to make a real impact on the business and the world, we ll work to help you become a better you. ABOUT UNIOPS: Unilever is one of the world s leading consumer goods companies with operations in over 190 countries and serving 3. 4 billion consumers every day. Unilever delivers best in class performance with market making, unmissably superior brands which include Dove, Knorr, Domestos, Hellmann s, Marmite and Lynx. Our strategy beings with a purpose that places our consumers at the heart of everything we do, Brighten everyday life for all . Role Purpose: This role supports the Threat Intelligence & EASM Lead in identifying, monitoring, and managing Unilever s external digital footprint. The EASM Analyst will leverage open-source intelligence (OSINT), commercial EASM platforms, and reconnaissance tools to discover, assess, and reduce Unilever s exposure to external cyber threats. Role Summary: The External Attack Surface Management (EASM) Analyst plays a critical role in Unilever s proactive cybersecurity strategy by continuously identifying, analyzing, and mitigating risks associated with the organization s internet-facing assets. As digital transformation accelerates and cloud adoption expands, the external attack surface becomes increasingly dynamic and complex. This role is designed to provide visibility into that evolving landscape and ensure that Unilever s digital perimeter is secure, monitored, and well-managed. The analyst will be responsible for leveraging a combination of commercial EASM platforms (such as Mandiant, Wiz, and Qualys) and open-source reconnaissance tools (like Shodan, FOFA, and Censys) to discover unknown or unmanaged assets, detect misconfigurations, and identify potential vulnerabilities. This includes domains, IP addresses, cloud services, APIs, and third-party integrations that may be exposed to the internet. The EASM Analyst will work closely with Threat Intelligence, Vulnerability Management, and Incident Response teams to contextualize findings, prioritize risks, and support remediation efforts. They will also contribute to the development of automated discovery and alerting mechanisms, ensuring that new exposures are detected in near real-time. In addition to technical responsibilities, the role requires strong communication and collaboration skills to engage with asset owners, IT teams, and business stakeholders across the organization. The analyst will help drive awareness of external risks, support secure asset lifecycle management, and contribute to the overall maturity of Unilever s cyber defense capabilities. Main Accountabilities External Asset Discovery & Mapping: Use EASM tools (e. g. , Mandiant, Wiz, Qualys) to identify and catalog Unilever s external-facing assets. Perform continuous monitoring to detect changes in the external attack surface. Reconnaissance & Threat Identification: Utilize OSINT and reconnaissance tools (e. g. , Shodan, FOFA, Censys) to identify exposed services, misconfigurations, and potential vulnerabilities. Correlate findings with threat intelligence to assess risk and prioritize remediation. Risk Assessment & Reporting: Collaborate with vulnerability management and security operations to triage and remediate high-risk exposures. Provide regular reports and dashboards on EASM findings, trends, and KPIs. Collaboration & Process Improvement: Work with IT and cloud teams to validate asset ownership and ensure secure configurations. Contribute to the development of EASM processes, playbooks, and automation strategies. Key Skills and Relevant Experience Skills: Strong understanding of internet protocols, DNS, SSL/TLS, and cloud infrastructure. Proficiency with EASM and OSINT tools (e. g. , Mandiant, Wiz, Qualys, Shodan, FOFA). Ability to analyze large datasets and identify patterns or anomalies. Excellent communication skills to convey technical findings to non-technical stakeholders. Familiarity with vulnerability management and threat intelligence workflows. Experience: 3 5 years of experience in cybersecurity, with at least 1 2 years in EASM, threat intelligence, or vulnerability management. Experience with cloud platforms (Azure, AWS, GCP) and their security configurations. Knowledge of security frameworks such as MITRE ATT&CK, NIST CSF, or CIS Controls. Relevant certifications (e. g. , CEH, OSCP, Security+, GIAC GOSI) are a plus. Note: "All official offers from Unilever are issued only via our Applicant Tracking System (ATS). Offers from individuals or unofficial sources may be fraudulent please verify before proceeding. "

As a Transaction Processing Manager in Market Operations, youll be responsible for regulatory reporting implementation and ongoing remediation activities, while covering various products. Responsibilities Responsible for regulatory reporting implementation and ongoing remediation Understand the regulatory requirements working with Legal / Compliance / Industry (ISDA/Equities industry groups/DTCC etc. ) and internal stakeholders Establish the end-to-end control processes Review and improve the end-to-end control process around the Regulatory Reporting agenda in Credit / Rates / Equities Establish a strategic attestation process on regulatory reporting for the jurisdictions already implemented to the business Develop process and system enhancement recommendations Work with business and Technology group to prioritize the requirements by presenting the business case Perform cost benefit analysis to propose optimum future process to the businessS Successfully deliver controlled environment of Regulatory Reporting Ensure all controls and checks are completed by the end of day This role requires a wide variety of strengths and capabilities, including Strong understanding of Credit / Rates / Equity Derivatives products Strong understanding of Dodd Frank CFTC Trade Reporting and EMIR Trade Reporting Excellent business analysis skills to drill down the complex regulatory reporting requirements for multiple jurisdictions Excellent problem solving skills in order to identify, understand, and address operational and technical issues Strong communication skills, both written and verbal, including the ability to develop relationships across the various stakeholders including Senior Business executives Self-motivated and ability to deliver with minimal supervision Understanding of the end-to-end transaction cycle for derivative products Ability to work in a high pressure environment with time-critical deliveries Control mindset to identify process control gaps, prioritize, and mitigate operational risk Effective stakeholder management Experience with investment banking environment is a must, preferably in Middle Office / Trade Support Bachelor s degree, Finance / Economics or other related disciplines is preferred Strong proficiency in Microsoft Office As a Transaction Processing Manager in Market Operations, youll be responsible for regulatory reporting implementation and ongoing remediation activities, while covering various products. Responsibilities Responsible for regulatory reporting implementation and ongoing remediation Understand the regulatory requirements working with Legal / Compliance / Industry (ISDA/Equities industry groups/DTCC etc. ) and internal stakeholders Establish the end-to-end control processes Review and improve the end-to-end control process around the Regulatory Reporting agenda in Credit / Rates / Equities Establish a strategic attestation process on regulatory reporting for the jurisdictions already implemented to the business Develop process and system enhancement recommendations Work with business and Technology group to prioritize the requirements by presenting the business case Perform cost benefit analysis to propose optimum future process to the businessS Successfully deliver controlled environment of Regulatory Reporting Ensure all controls and checks are completed by the end of day This role requires a wide variety of strengths and capabilities, including Strong understanding of Credit / Rates / Equity Derivatives products Strong understanding of Dodd Frank CFTC Trade Reporting and EMIR Trade Reporting Excellent business analysis skills to drill down the complex regulatory reporting requirements for multiple jurisdictions Excellent problem solving skills in order to identify, understand, and address operational and technical issues Strong communication skills, both written and verbal, including the ability to develop relationships across the various stakeholders including Senior Business executives Self-motivated and ability to deliver with minimal supervision Understanding of the end-to-end transaction cycle for derivative products Ability to work in a high pressure environment with time-critical deliveries Control mindset to identify process control gaps, prioritize, and mitigate operational risk Effective stakeholder management Experience with investment banking environment is a must, preferably in Middle Office / Trade Support Bachelor s degree, Finance / Economics or other related disciplines is preferred Strong proficiency in Microsoft Office

About the Employer JPMorgan Chase & Co. , a global financial services leader with $3. 4 trillion in assets, offers diverse services under the J. P. Morgan and Chase brands. Global Finance & Business Management (GF&BM) India, with over 3400 professionals, supports the firms finance functions in Mumbai, Bengaluru, and Hyderabad, providing extensive career growth opportunities. The firm values diversity and continuous improvement, fostering a respectful culture. This role is within Finance Control Management in Bengaluru, part of the Corporate LOB at GF&BM India. About the Team As an Associate in the Finance Control Management (FCM) - Valuation Control group (VCG), you will be responsible for maintaining a strong and consistent control environment across VCG, promoting early operational risk identification and assessment, effective design and evaluation of controls and sustainable solutions to mitigate operational risk. VCG is a Global team of 200+ employees responsible for independent price verification and the determination of any Pricing Testing and Valuation Adjustments required to ensure that fair value estimates for the assets and liabilities that are recorded on the balance sheet at fair value are appropriate. FCM are also responsible for managing the Firm s SOX Framework and CCAR CFO Attestation Program and governing other external reporting initiatives including Quality Assurance, Accountability & Attestations, Issues & Errors Management. Job Responsibilities Conduct ongoing monitoring of operational risks and the control environment to ensure effective risk management. Monitor and evaluate the effectiveness of existing controls, recommending improvements as necessary to enhance operational efficiency. Develop appropriate triggers and metrics to support risk identification, control evaluation, and operational risk reporting to management Providing training and guidance to staff on control processes and risk management practices and foster proactive risk management culture Oversee issue management, including the development and implementation of remediation plans Manage governance and reporting activities, including control committees and forums, to ensure compliance and transparency Coordinate and partner with Internal Audit and Operational Risk during audits and reviews to ensure thorough evaluation and compliance. Required qualifications, capabilities and skills BS in Accounting or Finance 3+ years of experience in Operational Risk Management. Strong acumen for risk identification and assessment, and development of effective control mechanisms that mitigate these risks. Strong skills in time management, problem solving, written and verbal communication Ability to multi-task and prioritize tasks effectively Preferred qualifications, capabilities and skills Experience using any of the following a plus Confluence, Alteryx, Tableau or CORE Experience in Internal control / audit will be added advantage Understanding of Banking products and basic valuation process Shift Timing 12. 30 PM to 930 PM About the Employer JPMorgan Chase & Co. , a global financial services leader with $3. 4 trillion in assets, offers diverse services under the J. P. Morgan and Chase brands. Global Finance & Business Management (GF&BM) India, with over 3400 professionals, supports the firms finance functions in Mumbai, Bengaluru, and Hyderabad, providing extensive career growth opportunities. The firm values diversity and continuous improvement, fostering a respectful culture. This role is within Finance Control Management in Bengaluru, part of the Corporate LOB at GF&BM India. About the Team As an Associate in the Finance Control Management (FCM) - Valuation Control group (VCG), you will be responsible for maintaining a strong and consistent control environment across VCG, promoting early operational risk identification and assessment, effective design and evaluation of controls and sustainable solutions to mitigate operational risk. VCG is a Global team of 200+ employees responsible for independent price verification and the determination of any Pricing Testing and Valuation Adjustments required to ensure that fair value estimates for the assets and liabilities that are recorded on the balance sheet at fair value are appropriate. FCM are also responsible for managing the Firm s SOX Framework and CCAR CFO Attestation Program and governing other external reporting initiatives including Quality Assurance, Accountability & Attestations, Issues & Errors Management. Job Responsibilities Conduct ongoing monitoring of operational risks and the control environment to ensure effective risk management. Monitor and evaluate the effectiveness of existing controls, recommending improvements as necessary to enhance operational efficiency. Develop appropriate triggers and metrics to support risk identification, control evaluation, and operational risk reporting to management Providing training and guidance to staff on control processes and risk management practices and foster proactive risk management culture Oversee issue management, including the development and implementation of remediation plans Manage governance and reporting activities, including control committees and forums, to ensure compliance and transparency Coordinate and partner with Internal Audit and Operational Risk during audits and reviews to ensure thorough evaluation and compliance. Required qualifications, capabilities and skills BS in Accounting or Finance 3+ years of experience in Operational Risk Management. Strong acumen for risk identification and assessment, and development of effective control mechanisms that mitigate these risks. Strong skills in time management, problem solving, written and verbal communication Ability to multi-task and prioritize tasks effectively Preferred qualifications, capabilities and skills Experience using any of the following a plus Confluence, Alteryx, Tableau or CORE Experience in Internal control / audit will be added advantage Understanding of Banking products and basic valuation process Shift Timing 12. 30 PM to 930 PM