9 Technology Controls Jobs

As a Senior in the IT Audit & Assurance, Risk Consulting team, you will be responsible for assisting in planning activities, developing audit programs, and executing internal audits and IT control assessments across various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements. You will review clients" processes and controls against leading practices and industry frameworks, identify gaps, and communicate issues and recommendations to engagement leads and client management. Additionally, you will work with client management to implement new processes and controls to address key risks as needed. Your role will involve drafting comprehensive executive summaries and final reports for delivery to client senior management, as well as documenting and reviewing engagement workpapers in accordance with standard KPMG and industry-accepted internal audit methodologies. You will also participate in kick-off, status, and closing meetings with the engagement team and clients, contributing to the IT Audit knowledge base and internal practice development initiatives. Furthermore, you will support AM and Managers in managing and upskilling the team. In terms of mandatory technical and functional skills, you should possess knowledge of security measures and auditing practices within various operating systems, databases, and applications. Experience in assessing risks across different business processes, particularly within the Financial Services sector, is essential. You should also have expertise in identifying control gaps, communicating audit findings and control redesign recommendations to senior management and clients, and conducting IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management. Knowledge of regulations impacting the privacy, integrity, and availability of customer Personally Identifiable Information (PII) is required. Experience in leading IT Audit engagements and working on Identity Access Management aspects like user management, authentication, and authorization is preferred. Additionally, having team-leading experience and performance management skills from your current or previous roles will be beneficial. From a technical perspective, you should have prior experience in evaluating the design and operating effectiveness of technology controls across various IT platforms, including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL.,

As a Technology Risk Manager at Deutsche Bank in Pune, India, you will play a crucial role in ensuring robust and sustainable control governance across the Corporate Bank's Technology, Data, and Innovation (TDI) group. Your responsibilities will involve partnering with and supporting CIO-1 areas in risk management and control implementation, managing audit/regulatory/self-identified findings, participating in regulatory and audit exams, and monitoring stakeholders" compliance with key risk indicators. You will work closely with CIO-1s, the CIO Corporate Bank Chief Risk Officer, senior technology management, business and operations stakeholders, regulatory management, and other embedded risk teams. Your role will focus on identifying, assessing, and measuring risks, developing and implementing remediation actions, monitoring risk levels, and ensuring effective control implementations. Additionally, you will be part of a cross-functional agile delivery team, contributing to all stages of software delivery and bringing an innovative approach to software development. To excel in this role, you should possess excellent communication skills, both written and verbal, extensive experience in technology risk management and risk advisory, strong analytical and investigatory skills, and the ability to work effectively with auditors, regulators, and external auditors. A technical background in application development or infrastructure engineering would be preferred. Deutsche Bank offers a supportive work environment with training and development opportunities, coaching from experts in your team, and a culture of continuous learning to aid in your career progression. The company values empowerment, responsibility, commercial thinking, initiative, and collaboration, striving for excellence together every day. If you are passionate about technology risk management and seeking a challenging opportunity to contribute to a dynamic and technology-centric business environment, we encourage you to apply for the Technology Risk Manager position at Deutsche Bank in Pune. To learn more about Deutsche Bank and our values, please visit our company website: https://www.db.com/company/company.htm,

As a Senior in the IT Audit & Assurance, Risk Consulting team, you will be responsible for assisting in planning activities, developing audit programs, and executing internal audits and IT control assessments in various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements. You will review clients" processes and controls against leading practices and industry frameworks, identify gaps in design and execution, and effectively communicate issues and recommendations to engagement leads and client management. Additionally, you will work closely with client management teams to help implement new processes and controls to address key risks as necessary. You will be expected to draft comprehensive executive summaries and final reports for delivery to client senior management, as well as document and review engagement workpapers in accordance with standard KPMG and industry-accepted internal audit methodologies. You will also assist in kick-off, status, and closing meetings with the engagement team and clients, contributing to IT Audit knowledge base and internal practice development initiatives. Furthermore, you will support AM and Managers in managing and upskilling the team. In terms of mandatory technical and functional skills, you should possess knowledge of security measures and auditing practices within various operating systems, databases, and applications. Experience in assessing risks across different business processes, particularly in the Financial Services sector, is required. You should have the ability to identify control gaps and effectively communicate audit findings and control redesign recommendations to senior management and clients. Hands-on experience with IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management is essential. Knowledge of regulations impacting the privacy, integrity, and availability of customer Personally Identifiable Information (PII) is also necessary. Moreover, you should have exposure to leading IT Audit engagements and working on Identity Access Management aspects like user management, authentication, and authorization. Team-leading experience, as well as performance management skills in your current or previous roles, are expected. Technical skills required include prior experience in evaluating the design and operating effectiveness of technology controls over various IT platforms such as ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL. For qualifications, educational requirements include a degree in BE/B-Tech/MCA/BSC-IT/MBA. Certifications such as CISA, CRISC, CISSP, CCSK, etc., are preferred and cleared/certified candidates will be given preference.,

As a Senior in the IT Audit & Assurance, Risk Consulting team, you will play a crucial role in planning activities, developing audit programs, and executing internal audits and IT control assessments across various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs, application controls, and regulatory/compliance requirements. Your responsibilities will involve reviewing clients" processes and controls against leading industry frameworks, identifying gaps in design and execution, and effectively communicating issues and recommendations to engagement leads and client management. Additionally, you will collaborate with the client management team to assist in implementing new processes and controls to address key risks, as required. Your role will also include drafting comprehensive executive summaries and final reports for delivery to client senior management, documenting and reviewing engagement workpapers in line with standard KPMG and industry-accepted internal audit methodologies, and participating in kick-off, status, and closing meetings with the engagement team and clients. Furthermore, you will contribute to enhancing the IT Audit knowledge base and internal practice development initiatives while supporting AM and Managers in managing and upskilling the team. In terms of mandatory technical and functional skills, you are expected to possess knowledge of security measures and auditing practices within various operating systems, databases, and applications. Your experience should include assessing risks across different business processes, with a focus on Financial Services sector clients. You should be capable of identifying control gaps, communicating audit findings, and providing control redesign recommendations to Senior Management and Clients. Hands-on experience in IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management is essential. Additionally, you should be familiar with regulations impacting the privacy, integrity, and availability of customer Personally Identifiable Information (PII) and have exposure to leading IT Audit engagements and working on Identity Access Management aspects like user management, authentication, and authorization. Moreover, you should have team-leading experience and a background as a performance manager in your current or previous role. Your technical skills should encompass prior experience in evaluating the design and operating effectiveness of technology controls across various IT platforms, including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL.,

As a Control Library Manager at LSEG, you will play a key role in maintaining and updating the centralised Technology & Cyber Security control library. Your responsibilities will include ensuring that controls align with industry frameworks such as NIST, ISO, and COBIT, as well as meeting regulatory requirements like DORA. You will be tasked with translating complex framework and regulatory requirements into clear and actionable controls. Your role will also involve conducting Tests of Design Assurance and Operating Effectiveness Assurance for key controls at both group and divisional levels. By documenting test results and identifying areas for improvement, you will provide critical support for Group Engineering, Risk & Control Assessments. Additionally, you will establish and oversee processes for proper documentation, storage, and accessibility of control evidence at required frequencies. As part of your duties, you will plan and coordinate periodic independent assurance activities with internal audit teams and external assessors, preparing documentation and facilitating access to evidence. You will also be responsible for implementing, tracking, and analyzing Key Control Indicators (KCIs) aligned to the control library to identify trends and potential weaknesses. In your role, you will maintain detailed control performance dashboards and metrics to communicate control status to various partners, from technical teams to executive leadership. You will lead a team of GRC analysts, providing mentorship, technical guidance, and career development opportunities while ensuring high-quality results. Moreover, you will collaborate with control/process owners to develop and implement effective remediation strategies for thematic control weaknesses. To qualify for this position, you should have a relevant degree in IT, Cybersecurity, or Risk Management (Desirable) along with at least 5 years of experience in technology controls or compliance. Strong knowledge of control frameworks such as NIST, ISO, and COBIT is essential, as well as demonstrable knowledge of key controls across Technology process areas. Your experience in control implementation, testing, evidence validation, team management, and project delivery will be beneficial. Excellent analytical, communication abilities, and presentation skills are required for this role. Experience with GRC tools and control automation will also be advantageous. Join LSEG, a leading global financial markets infrastructure and data provider, and be part of a dynamic organization that values individuality and encourages new ideas. Together, we aim to drive financial stability, empower economies, and create sustainable growth for communities and economies globally.,

As a Tech Risk Assurance Lead in the Cybersecurity & Tech Controls team, you will have the opportunity to shape the risk culture and ensure technological safeguards in a dynamic and collaborative environment. Your role involves identifying and influencing the design of technology controls to enhance the firm's ability to manage compliance and operational risk exposure. You will provide subject matter expertise and technical guidance to technology-aligned product and process owners, ensuring that controls are integrated and adhered to throughout the Global Technology organization in alignment with regulatory, legal, and industry standards. Collaboration with stakeholders such as Product Owners, Business Control Managers, and Regulators will be essential to provide a comprehensive view of the technology risk posture and its impact on the business. Your advanced understanding of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively lead a diverse team in a dynamic and evolving risk environment. This position offers personal growth opportunities in supply chain risk, software development lifecycle, and emerging technologies like blockchain and AI/ML. Your responsibilities will include effectively identifying, quantifying, communicating, and managing technology risks with an emphasis on root cause analysis and resolution recommendations. Building and sustaining strong relationships to become a trusted partner with line of business technologists, assessment teams, and product owners will be crucial for supporting cross-functional collaboration. You will facilitate progress toward shared goals through robust partnerships and collaboration, execute reporting and governance of controls, policies, issue management, and measurements, and provide senior management with insights into control effectiveness and risk posture for proper prioritization. Proactively monitoring and evaluating control effectiveness, identifying gaps, and recommending enhancements to strengthen risk posture and regulatory compliance will also be part of your role. Required qualifications, capabilities, and skills include formal training or certification on Tech Risk & Control concepts and a minimum of 5 years of applied experience in technology risk management, information security, or a related field. Expertise in risk identification, assessment, and mitigation, familiarity with risk management frameworks and industry standards, knowledge of financial industry regulatory requirements, proficiency in supply chain risk, software development lifecycle, and control evaluation, and the ability to influence executive-level decision-making and translate technology insights into business strategies are essential. Preferred qualifications, capabilities, and skills include certifications such as CISM, CRISC, CISSP, or similar industry-recognized risk certifications.,

As a Senior in the IT Audit & Assurance, Risk Consulting team, you will be responsible for assisting in planning activities, developing audit programs, and executing internal audits and IT control assessments across various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, as well as regulatory/compliance requirements. You will review clients" processes and controls against leading industry frameworks, identify design and execution gaps, and effectively communicate issues and recommendations to engagement leads and client management. Collaborating with client management, you will help implement new processes and controls to address key risks when necessary. Your role will involve drafting comprehensive executive summaries and final reports for client senior management, documenting and reviewing engagement workpapers following standard KPMG and industry-accepted internal audit methodologies. Furthermore, you will contribute to kick-off, status, and closing meetings with the engagement team and clients, while also contributing to the IT Audit knowledge base and internal practice development initiatives. You will assist AM and Managers in managing and upskilling the team. In terms of mandatory technical and functional skills, you should possess knowledge of security measures and auditing practices in various operating systems, databases, and applications. Experience in assessing risks across different business processes, particularly within the Financial Services sector, is required. You should be adept at identifying control gaps and effectively communicating audit findings and control redesign recommendations to senior management and clients. Hands-on experience in IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management is essential. Additionally, knowledge of regulations impacting customer PII privacy, integrity, and availability is crucial. The ideal candidate will have exposure to leading IT Audit engagements and working on Identity Access Management aspects such as user management, authentication, and authorization. Team leading experience, along with being a performance manager in your current or last role, is preferred. Your technical skills should include prior experience in evaluating the design and operating effectiveness of technology controls over various IT platforms, including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL.,

The role is to support the development and maintenance of robust control frameworks and a unified Technology & Cyber Security Control library. You will help implement process control monitoring capabilities to coordinate control execution across Engineering and contribute to driving a positive risk culture within Engineering by implementing processes for control efficiency demonstration. This role requires organized, methodical thinking with strong attention to detail for creating control test plans and documentation. Your responsibilities will include: - Maintaining and regularly updating the centralized Technology & Cyber Security control library, ensuring controls align with industry frameworks (NIST, ISO, COBIT) and regulatory requirements (e.g. DORA). You will help translate complex framework/regulatory requirements into clear, actionable controls. - Conducting Tests of Design Assurance and Operating Effectiveness Assurance for key controls at both group and divisional levels, providing critical support for Group Engineering, Risk & Control Assessments. Documenting test results and identifying areas for improvement. - Establishing and overseeing processes to ensure control evidence is properly documented, stored, and accessible at required frequencies. Creating standardized templates for evidence collection to improve consistency. Reviewing monitoring results for completeness and accuracy, driving corrective actions as needed. - Planning and coordinating periodic independent assurance activities with internal audit teams and external assessors, preparing documentation and facilitating access to evidence. - Implementing, tracking, and analyzing Key Control Indicators (KCIs) aligned to the control library, helping to identify trends and potential weaknesses before they impact operations. - Maintaining detailed control performance dashboards and metrics that clearly communicate control status to various partners, from technical teams to executive leadership. Performing sample-based testing of control operating efficiency. - Identifying thematic control weaknesses and collaborating with control/process owners to develop and implement effective remediation strategies with clear timelines and accountability. Representing Engineering in risk discussions with internal team members. - Leading a team of GRC analysts, providing mentorship, technical guidance, and career development opportunities while ensuring high-quality results. Qualifications: - Relevant degree in IT, Cybersecurity, or Risk Management (Desirable). - 5+ years of experience in technology controls or compliance. - Strong knowledge of control frameworks (NIST, ISO, COBIT). - Demonstrable knowledge of key controls across Technology process areas (e.g. incident, change, capacity management). - Experience in control implementation across Technology process areas. - Experience in control testing and evidence validation. - Proven team management and project delivery skills. - Excellent analytical, communication abilities, and presentation skills. - Experience with GRC tools and control automation. About Us: LSEG (London Stock Exchange Group) is a diversified global financial markets infrastructure and data business dedicated to excellence in delivering services to customers. With extensive experience and deep knowledge across financial markets, we enable businesses and economies worldwide to fund innovation, handle risk, and build jobs. LSEG values integrity, partnership, excellence, and change, guiding our decision-making and actions every day. We are committed to sustainability and driving sustainable economic growth.,

The Senior in the IT Audit & Assurance, Risk Consulting team at our organization will have the responsibility of assisting in planning activities, developing audit programs, and executing internal audits and IT control assessments in various areas such as IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements. You will review clients" processes and controls against leading practices and industry frameworks, identify gaps in design and execution, and effectively communicate issues and recommendations to engagement leads and client management. Additionally, you will collaborate with the client management team to implement new processes and controls to address key risks when necessary. As a Senior, you will be expected to draft comprehensive executive summaries and final reports for delivery to client senior management, document and review engagement workpapers in accordance with standard KPMG and industry-accepted internal audit methodologies, and participate in kick-off, status, and closing meetings with the engagement team and client. Furthermore, you will contribute to the IT Audit knowledge base and internal practice development initiatives while assisting AM and Managers in managing and upskilling the team. The ideal candidate should possess knowledge of security measures and auditing practices within various operating systems, databases, and applications, along with experience in assessing risks across a variety of business processes. Experience in working with clients in the Financial Services sector, identifying control gaps, communicating audit findings, and recommending control redesign to senior management and clients is essential. Hands-on experience in IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, and Third-Party Risk Management is required. Knowledge of regulations impacting the privacy, integrity, and availability of customer Personally Identifiable Information (PII), as well as experience in leading IT Audit engagements and working on Identity Access Management aspects like user management, authentication, and authorization are key qualifications. Technical skills required include prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Oracle database, DB2, and SQL. Qualifications: - Educational Qualifications: BE/B-Tech/MCA/BSC-IT/MBA - Certifications: CISA, CRISC, CISSP, CCSK, etc. cleared/certified preferred If you meet the mandatory technical and functional skills, possess the required qualifications, and are looking to join a dynamic team where you can contribute your expertise and grow professionally, we encourage you to apply for the Senior position in our IT Audit & Assurance, Risk Consulting team.,