80 Technology Risk Jobs

As a global leader in assurance, tax, transaction, and advisory services, we at EY hire and develop passionate individuals to contribute towards building a better working world. Our culture is centered around providing you with the necessary training, opportunities, and creative freedom to grow both personally and professionally. At EY, we focus not only on your current abilities but also on nurturing your potential for the future. We believe that your career is yours to shape, and we offer limitless possibilities along with motivating and fulfilling experiences to support you in becoming your best professional self. The opportunity available is for the role of Senior Consultant in Risk Consultant (Internal Audit) in the Non-FS sector based in Mumbai. Within the Technology, Media & Entertainment, and Telecommunications (TMT) sector, EY assists organizations in navigating industry convergence, evolving, and transforming while addressing challenges around competitiveness and developing agile corporate strategies for growth. Our aim is to help TMT companies enhance employee and customer experiences, maintain talent, achieve operational excellence, protect data and brand reputation, and pursue M&A strategies to create long-term value and lead the technology revolution. Under the CNS - Risk - Process & Controls segment, EY Consulting focuses on transforming businesses through people, technology, and innovation. The service lines include Business Consulting, Technology Consulting, and People Advisory Services, where we assist clients in identifying and managing risks effectively to support their long-term business strategies and objectives. Your key responsibilities would involve demonstrating technical excellence in execution on client engagements, ensuring quality delivery as per client requirements, reviewing working papers and client folders, suggesting ideas for improving engagement productivity, identifying areas for process improvement, managing data analytics, complying with engagement plans and internal quality & risk management procedures, and developing strong client relationships among other tasks. To qualify for this role, you are required to have a CA qualification or a master's degree in Science, Arts, Business, Accounting, Finance, or a related discipline, along with 3 to 5 years of relevant experience. We are looking for individuals who can work collaboratively across various client departments, possess practical problem-solving skills, deliver insightful solutions, demonstrate agility, curiosity, mindfulness, and maintain a positive energy while being adaptable and creative. Our inclusive work environment focuses on delivering excellent client service while supporting the career growth and well-being of our people. At EY, we offer a personalized Career Journey, access to resources for skills and learning, and the opportunity to work with market-leading professionals and entrepreneurs. If you meet the criteria above and are ready to contribute towards building a better working world, we encourage you to apply and join us on this journey.,

As a global leader in assurance, tax, transaction, and advisory services, EY is dedicated to hiring and nurturing passionate individuals to contribute to building a better working world. Our culture emphasizes providing you with training, opportunities, and creative freedom to shape your career. We believe in not only focusing on your current abilities but also empowering you to reach your full potential. Your career journey is yours to build with limitless possibilities, and we are here to offer motivating and fulfilling experiences to support you in becoming your best professional self. The role of Consultant-NAT-Business Consulting Risk-CNS in Risk Transformation at EY Consulting, Bangalore, presents an opportunity to drive long-term value for clients by solving their most critical strategic challenges. Our client-centric approach leverages the power of people, technology, and innovation to transform businesses. EY Consulting comprises three sub-service lines: Business Consulting, Technology Consulting, and People Advisory Services, with a focus on areas such as Performance Improvement and Risk Consulting. In the realm of Risk Transformation, we assist clients in identifying and managing both upside and downside risks to make informed decisions that align with their future business objectives. Our key areas of expertise include Enterprise Risk, Technology Risk, and Financial Services Risk. By addressing risks in these areas, we help organizations enhance their agility, protect business performance, and navigate regulatory compliance effectively. Your responsibilities in this role include demonstrating technical excellence through activities such as identifying and escalating potential red flags, preparing reports and presentations, managing multiple projects simultaneously, handling data analytics, and ensuring compliance with internal auditing standards. To excel in this position, you will need to possess qualifications such as being a Chartered Accountant, Certified Internal Auditor, or holding a Masters in Business Administration, along with 1 to 3 years of relevant experience. We seek individuals who can collaborate effectively across various client departments, adhere to commercial and legal requirements, and approach problem-solving with practicality and innovation. Our ideal candidates exhibit agility, curiosity, mindfulness, positive energy, adaptability, and creativity in their work. At EY, we offer a dynamic and inclusive work environment where you can embark on a personalized Career Journey, leverage our career frameworks, and access abundant learning resources to enhance your skills and career opportunities. EY is committed to fostering diversity and inclusivity while providing a supportive environment for our employees to excel professionally and prioritize their well-being. If you meet the qualifications and attributes outlined above, we encourage you to reach out to us promptly. Join us in our mission of building a better working world by applying for this exciting opportunity at EY.,

As a global leader in assurance, tax, transaction and advisory services, EY is dedicated to hiring and developing passionate individuals to contribute to building a better working world. At EY, you will be part of a culture that values training, opportunities, and creative freedom. The focus is not only on your current self but also on your potential for growth. Your career at EY is yours to shape, with limitless possibilities. You will be provided with motivating and fulfilling experiences throughout your journey, helping you become your best professional self. The role available is for a Consultant in the TMT (Technology, Media & Entertainment, and Telecommunications) sector within Business Consulting Risk-CNS in New Delhi. TMT organizations have the opportunity to evolve and transform in a rapidly changing industry landscape. EY assists TMT companies in creating exceptional employee and customer experiences, achieving operational excellence, safeguarding data and reputation, and executing M&A strategies that create value and reduce risk. Within the CNS - Risk - Process & Controls domain, EY Consulting focuses on transforming businesses through people, technology, and innovation. The service lines include Business Consulting, Technology Consulting, and People Advisory Services. EY assists clients in identifying and managing risks, ensuring long-term decisions align with business strategies, and enhancing internal controls for sustainable growth. Key Responsibilities: - Ensure quality delivery on client engagements as per requirements. - Review working papers and client folders, suggesting ideas for engagement improvement. - Identify areas for process improvement in client business processes. - Handle data analytics using tools such as Alteryx, Power BI, and Generative AI. - Ensure compliance with engagement plans and internal quality & risk management procedures. - Demonstrate problem-solving skills and a solution-based approach. - Manage engagement budgets and support in developing marketing collaterals. - Develop strong client relationships, mentor interns and analysts, and contribute to knowledge management sessions. Skills and Attributes: To qualify for this role, you must have: - A CA or masters degree in business, accounting, finance, or related discipline. - 2-6 years of relevant IA experience. - Experience in internal controls frameworks, risk remediation strategies, gap analysis, and Enterprise Resource Management. What We Look For: We seek individuals who can collaborate across departments, solve complex problems, and deliver practical solutions. We value agility, curiosity, mindfulness, positive energy, adaptability, and creativity in our team members. What We Offer: EY is a leading employer with a strong brand presence globally. We invest in our people's skills and learning, providing personalized career journeys and access to career frameworks for growth. EY is committed to inclusivity, enabling our people to deliver excellent client service while focusing on career development and wellbeing. If you meet the criteria mentioned above, we encourage you to apply and join us in building a better working world at EY. Apply now for this exciting opportunity.,

As a global leader in assurance, tax, transaction and advisory services, EY hires and develops passionate individuals to help build a better working world. The culture at EY believes in providing training, opportunities, and creative freedom to its employees. EY focuses not only on who you are presently but also on who you can become. Your career at EY is yours to build, with limitless potential. EY aims to provide motivating and fulfilling experiences throughout your career to help you become your best professional self. The role available is for an Advisor in the TMT-Business Consulting Risk-CNS - Risk - Digital Risk department based in Bangalore. TMT (Technology, Media & Entertainment, and Telecommunications) organizations are offered the opportunity to evolve and transform in the face of industry convergence. However, challenges around competitiveness and delivering agile corporate strategies for growth also arise. At EY, the focus is on helping TMT companies create compelling employee and customer experiences, achieve operational excellence, and safeguard their data, brand, and reputation. EY enables the pursuit of M&A strategies that create value and reduce risk, transforming TMT companies into future technology powerhouses. Within the CNS - Risk - Digital Risk department, EY Consulting aims to transform businesses through people, technology, and innovation. The client-centric approach focuses on delivering long-term value by solving strategic problems. EY Consulting comprises Business Consulting, Technology Consulting, and People Advisory Services. The key areas of focus include Enterprise Risk, Technology Risk, and Financial Services Risk. As an Advisor, your key responsibilities include assisting seniors and managers in developing new methodologies and internal initiatives, identifying and escalating potential red flags, preparing reports/deliverables, demonstrating the ability to multi-task, managing engagement budgets, supporting superiors in developing marketing collaterals and business proposals, mentoring young interns and analysts, identifying potential business opportunities, and being client-facing. To qualify for this role, you must have a Bachelor's or master's degree in Science, Arts, Business, Accounting, Finance, or a related discipline, along with 3 to 5 years of experience. EY looks for individuals who can work collaboratively across multiple client departments, solve complex problems, deliver practical solutions, and exhibit agility, curiosity, mindfulness, positive energy, adaptability, and creativity. EY offers a personalized Career Journey, resources for skills and learning, and a commitment to being an inclusive employer. If you meet the criteria above, EY invites you to join in building a better working world by applying now.,

As a Consultant in Business Consulting Risk at EY, you will have the opportunity to work with Technology, Media & Entertainment, and Telecommunications (TMT) organizations, helping them navigate industry convergence and achieve agile corporate strategies for growth. You will play a key role in creating compelling employee and customer experiences, ensuring operational excellence, safeguarding data and reputation, and enabling M&A strategies that drive value and reduce risk. By joining EY, you will have the chance to contribute to the technology revolution and build a better working world for all. In the CNS - Risk - Process & Controls sub-service line, you will be part of a team dedicated to transforming businesses through the power of people, technology, and innovation. Your focus will be on identifying and managing risk areas to support clients in making informed decisions that align with their long-term business strategies. You will collaborate with clients in the TMT sector to address enterprise risk, technology risk, and financial services risk, ensuring sustainable growth and regulatory compliance. Key Responsibilities: - Identify and escalate potential red flags related to engagements - Prepare reports, deliverables, and presentations - Manage multiple projects simultaneously - Conduct data analytics using tools such as Access and ACL - Monitor counselees" chargeability on engagements - Stay updated on internal auditing standards issued by IIA and ICAI Skills and Attributes: To excel in this role, you should possess the following qualifications and attributes: - Qualification: Chartered Accountant/Certified Internal Auditor/Masters in Business Administration - Experience: 1 to 3 years of relevant experience - Ability to work collaboratively across client departments - Practical problem-solving skills - Agility, curiosity, mindfulness, and positive energy - Adaptability and creativity in approach What We Offer: EY is a global leader in professional services, with a strong presence in India and a commitment to investing in the skills and learning of our people. As part of our team, you will have access to personalized career development opportunities and resources to enhance your professional growth. We prioritize inclusivity and strive to maintain a healthy work-life balance for our employees while delivering exceptional client service. Join us at EY and be a part of building a better working world. Apply now to contribute to our mission and enhance your career journey.,

About The Role : Job Title Technology Risk Manager Corporate Title Director Location Pune, India Overview Our Corporate Bank group is a technology centric business, with an increasing move to real-time processing, an increasing appetite from customers for integrated systems and access to supporting data. This means that technology is more important than ever for the business. The CIO Corporate Bank (CB) division sits in the Banks Technology, Data and Innovation (TDI) group. The Risk and Control (R&C) team ensures the Bank's technology control priorities are effectively implemented across CIO - CB. The R&C team offers dedicated support for each Chief Information Officer (CIO) business line, advisory services for control responses, and program management services for broad control uplifts. The team's mission is to reduce the organization's technology risk exposure by implementing key bank controls, ensuring appropriate and timely resolution of audit and regulatory issues, and participating in the Bank's design of control implementations. Therefore, a role on the R&C team is integral in supporting the front-line management in identifying, assessing/measuring risks, developing/implementing remediation actions, and monitoring risks. We are looking for a technology risk manager (also known as embedded risk team lead) to join the Risk & Control team to ensure robust and sustainable control governance across CIO CB, in particular for CB Data and head for India Risk and Control team. You will be responsible for supporting the CB Chief Data Office in managing audit/regulatory/self-identified findings, participating in regulatory and audit exams, monitoring stakeholders compliance with key risk indicators, and ensuring controls are implemented effectively and sustainably. Your role will be integral in supporting the front-line management in identifying and assessing/measuring risks, determining remediation plans, monitoring levels of risk, and implementation of remediation. You will work directly with CIO-1s, the CIO Corporate Bank Risk Leads, senior technology management, business and operations stakeholders, regulatory management, and other embedded risk teams and will represent CB Risk & Control . As a senior member in the region, you will spearhead risk initiatives within the region and will oversee India applications. As a Tech Risk and Controls Director, you will play a pivotal role in shaping and implementing the firms technology risk management strategy. What well offer you 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your Key Responsibilities: Partner with CB CDO, in risk management and control implementation. Create deep and productive relationships with the teams and finding owners for audit/regulatory/self-identified issues to ensure overall risk posture for the area is improved. Support CIO-1 portfolio(s) in managing audit/regulatory/self-identified findings to ensure appropriate and timely resolution of risks/gaps in controls, and resolve non-compliance with Bank policies, procedures and processes and non-compliance with regulations and laws. Review and revise findings lifecycle event documentation. Provide strategic direction on risk management matters to senior leadership including implementation of detailed data driven narratives to inform leadership of risks related to IT and Cybersecurity topics. Provide credible challenge across all information technology and cybersecurity enabling business growth while ensuring that risks remain within appetite. Participate in, and coordinate with technology stakeholders, on internal and external audits and regulatory exams Ensure Risk & Control topics and standards are effectively included in all Change Programs related to CB Data, in particular within the perimeter of the EDM Program. Ensure appropriate senior management awareness/oversight of follow-up on action items to resolve identified technology issues Support application teams in control implementation requirements Ensure risk remediation programs are initiated and executed. Design and implement processes to test effectiveness and sustainability of technical controls. Develop strategies for reducing the risk exposure of CIO CB portfolio(s), including preparedness of critical applications for audit and regulatory exams and working with application owners to address and prevent common risk issues Assist application owners and other technology stakeholders in identifying and documenting risks and developing remediation Tracking and reporting on CIO CB portfolio(s) key risk indicators (KRI) and control uplift programs. Assisting application owners in developing plans to ensure compliance with KRIs. Close control gaps. Ensure risk remediation programs are initiated and executed in line with the Banks policies, procedures and standards. Work with the application teams and control owners to identify and resolve potential issues in control design. Advise on effectiveness metrics, ensure control design includes proper evidence, and provide input to the design and effectiveness of centrally provided tooling. Create risk awareness and positive attitudes through specialized trainings and educate the wider Corporate Bank CDO stakeholders regarding Risk & Control. Develop and guide a culture of talent development to meet business objectives and strategy. Your Skills and Experience: Excellent communication skills, both written and verbal to present ideas and concepts effectively Extensive experience (15-20 years) in technology risk management and risk advisory Strong understanding of three lines of defense model and compliance frameworks, Experience with regulatory environments and financial services technology. Robust knowledge and experience of data risks, in particular data-related technology controls, - policies, - standards and - tools Excellent analytical and investigatory skills to identify underlying technology issues Extensive experience in assessing risk, writing issues, and developing appropriate corrective actions Demonstrate viable solutions and problem solving Relevant experience working with auditors, regulators and external auditors on exams, reports and information requests Prefer experience with designing and testing technology controls and processes Prefer technical background (application development, infrastructure engineering, etc.) How well support you About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

About The Role : Job TitleRegulatory Control Lead, VP LocationBangalore, India Role Description We are seeking a highly experienced and strategic leader to join our FCR&C division as Vice President Financial Crime Risk and Control - Technology Risk Strategy & Controls . This role is critical in shaping the risk and control landscape across our technology platforms, with a strong emphasis on Python-based automation , audit readiness , and strategic risk governance . The ideal candidate will bring a blend of technical acumen , regulatory insight , and banking domain expertise to drive innovation and resilience in a complex, fast-paced environment. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities Strategic Risk Leadership Define and lead the technology risk strategy for Financial Crime Risk and Compliance (FCR&C) division, aligning with enterprise risk appetite and regulatory expectations. Advise senior Leadership on emerging technology risks, regulatory developments (e.g., Basel III, EMIR, GwG, ECB), and control enhancements. Drive strategic initiatives to embed risk intelligence into digital transformation and innovation programs. Technology Enablement & Automation Lead the development of Python-based tools and analytics to automate risk assessments, control testing, and audit support. Oversee the integration of advanced analytics and AI/ML into risk monitoring and reporting frameworks. Collaborate with engineering and data teams to ensure secure, scalable, and compliant technology solutions. Audit, Controls & Regulatory Compliance Own the design and execution of IT control frameworks across trading platforms, payment systems, and client onboarding technologies. Partner with internal audit, DCO and compliance to ensure readiness for regulatory reviews and external audits. Monitor and assess control effectiveness across front-to-back banking processes, including trade lifecycle, credit risk, and operational risk. Review internal processes to confirm all financial crime risks have been appropriately identified and documented. Confirm relevant controls or risk mitigants are in place to manage all financial crime risks within internal processes. Perform design and/or operating effectiveness testing on controls and mitigants. Conduct annual assessment of controls within FCR&C to demonstrate they are operating effectively. Identify, analyse and review operational readiness for any change-related activities. Define the requirements e.g. for the standardisation of processes/policies, translating the required changes for an operational environment and overview effective implementation. Assess risks that are responsible for the mitigating and protecting the Banks reputation. Stakeholder Engagement & Governance Present testing results, risk insights, control metrics, and strategic recommendations to Leadership team Build strong partnerships with front office, operations, DCO, compliance, and technology teams to foster a risk-aware culture. Lead governance forums and working groups focused on technology risk and control transformation. Your skills and experience Qualifications: Bachelors or Masters degree in Computer Science, Information Systems, Finance, or a related field. 14+ years of experience in technology risk, audit, or compliance within investment or corporate banking. Strong proficiency in Python and experience leading automation or analytics initiatives in a regulated environment. Deep understanding of banking products, trading systems, and regulatory frameworks (e.g., SOX, Basel, MiFID II, DORA). Proven leadership in cross-functional teams and executive-level stakeholder management. Experience with testing the design and operating effectiveness of controls and remediating any identified control gaps. Analytical skills and attention to detail, with the ability to think laterally around issues, proposing solutions where required. Effective communication, organisation, prioritisation and interpersonal skills Ability to work to high standards and under strong time constraints. Preferred Certifications: Python/Data Science certifications MBA or executive leadership training (preferred) CISA, CRISC, or equivalent (desirable) How well support you

As a global leader in assurance, tax, transaction, and advisory services, we at EY hire and develop passionate individuals to contribute towards building a better working world. Our culture emphasizes providing training, opportunities, and creative freedom for personal and professional growth. At EY, we focus not only on your current capabilities but also on nurturing your potential for future development. Your career at EY is yours to shape, with limitless possibilities. We are committed to offering motivating and fulfilling experiences throughout your journey to help you reach your full professional potential. The opportunity available is for the role of Senior Manager - Business Consulting Risk - TMT - Internal Audit (SAP & Controls Focus) in Bangalore. In the TMT (Technology, Media & Entertainment, and Telecommunications) sector, organizations face the opportunity for evolution and transformation, along with challenges related to competitiveness and implementing agile corporate strategies for growth. At EY, we assist TMT companies in enhancing employee and customer experiences, retaining talent, achieving operational excellence, safeguarding data and reputation, and pursuing M&A strategies to create value and lead the technology revolution of the future, ultimately contributing to a better working world for all. Within the CNS - Risk - Process & Controls domain at EY Consulting, we aim to transform businesses by leveraging the power of people, technology, and innovation. Our client-centric approach focuses on delivering long-term value by solving strategic problems. The service lines under EY Consulting include Business Consulting (Performance Improvement and Risk Consulting), Technology Consulting, and People Advisory Services. We assist clients in identifying and managing risks to make informed decisions that align with their business strategy and objectives. Your key responsibilities as a Senior Manager - Internal Audit with a focus on SAP and controls include: - Leading and executing risk-based internal audits with a focus on SAP-driven processes. - Identifying control gaps and inefficiencies in end-to-end business processes. - Performing control testing in compliance with SOX, IFC, and ICFR requirements. - Defining critical controls and establishing meaningful control indicators. - Designing, implementing, and testing Continuous Control Monitoring rules using tools like SAP GRC, Celonis, etc. - Collaborating with stakeholders to ensure accurate and sustainable control automation. - Translating internal control requirements into technical logic within SAP. - Monitoring and recommending improvements to existing internal controls. - Preparing audit reports and presenting findings to senior management. Key requirements for the role include: - In-depth understanding of SAP processes and architecture across FI, MM, and SD modules. - Proven experience in SOX/IFC/ICFR control testing. - Proficiency in tools supporting Continuous Control Monitoring. - Strong analytical and problem-solving skills with the ability to handle large data volumes. - Ability to work independently and manage multiple stakeholders effectively. To qualify for this role, you must have: - Chartered Accountant (CA) with articleship experience in Risk Advisory/Internal Audit OR MBA (Finance or Systems) with significant experience in Internal Audit/Risk Advisory practices focused on SAP environment. - Minimum of 12 years of relevant experience. EY is dedicated to being an inclusive employer that fosters a balanced work environment, enabling our people to deliver exceptional client service while focusing on career growth and wellbeing. If you meet the criteria and possess the desired skills and attributes, we encourage you to apply and join us in building a better working world at EY.,

Shape the future of product delivery while crafting solutions that enhance and optimize customer experiences. Lead end-to-end processes, manage dependencies, and liaise with stakeholders as part of a team at the forefront of innovation. As a Product Delivery Manager in Cybersecuirty & Tech Controls team, you will lead the integration of risk management practices into our organization, thereby enhancing the security and compliance of our products. You will also help drive closure of risk gaps within our products, support execution of audits and assessment, and enhance the efficiency of our Product Security Teams programs. Applying a broad knowledge of technical principles, practices, and theories is essential to developing innovative solutions, along with leveraging analytical reasoning and adaptability skills to navigate through ambiguity and change. Your strong communication abilities will enable you to effectively collaborate with cross-functional teams and manage stakeholder relationships, ensuring alignment on project objectives and governance. By optimizing resources and managing risks, you will contribute to the successful delivery of high-impact projects that shape the future of the firm. Job responsibilities Guide, coach, and oversee the creation and modification of control procedures (CPs), rather than writing them from scratch. Engaging with Product Security Leads (PSLs) to ensure adherence to the GTPC (Global Technology Policies & Controls) process; Ensuring the development of high-quality controls for Products. Assisting with normalizing language, wording, and measurement for consistency across controls; Ensuring that controls are maintained, regularly reviewed, and properly re-certified; Understanding which control procedures apply to products during the planning and building stages, and coaching teams on how to identify relevant controls. Effective integration and engagement with Audit. This involves assisting with the accuracy of Request for Information (RFI) reviews, facilitating communication by addressing questions to and from the audit team, and clarifying the audit scope. Emphasizes "Compliance from the Start". While not the Control Manager, the Risk Lead provides valuable advice in improving the RAS (Risk Assessment Structure), assists in mapping risks to control procedures (CPs) and addressing CORE (Control and Operational Risk Evaluation) issues. Leverage strong communication skills to validate controls and ensure their effectiveness. Required qualifications, capabilities, and skills Formal training or certification on Product delivery management concepts and 5+ years applied experience Expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation. Proficient in risk management frameworks, industry standards, and regulatory requirements specific to the financial industry. Strong critical thinking skills. Excellent written and verbal communication abilities. Proficient knowledge in data security, risk assessment and reporting, control evaluation, design, and governance. Proven track record of implementing effective risk mitigation strategies Preferred qualifications, capabilities, and skills Knowledge of the product development life cycle, design, and data analytics Shape the future of product delivery while crafting solutions that enhance and optimize customer experiences. Lead end-to-end processes, manage dependencies, and liaise with stakeholders as part of a team at the forefront of innovation. As a Product Delivery Manager in Cybersecuirty & Tech Controls team, you will lead the integration of risk management practices into our organization, thereby enhancing the security and compliance of our products. You will also help drive closure of risk gaps within our products, support execution of audits and assessment, and enhance the efficiency of our Product Security Teams programs. Applying a broad knowledge of technical principles, practices, and theories is essential to developing innovative solutions, along with leveraging analytical reasoning and adaptability skills to navigate through ambiguity and change. Your strong communication abilities will enable you to effectively collaborate with cross-functional teams and manage stakeholder relationships, ensuring alignment on project objectives and governance. By optimizing resources and managing risks, you will contribute to the successful delivery of high-impact projects that shape the future of the firm. Job responsibilities Guide, coach, and oversee the creation and modification of control procedures (CPs), rather than writing them from scratch. Engaging with Product Security Leads (PSLs) to ensure adherence to the GTPC (Global Technology Policies & Controls) process; Ensuring the development of high-quality controls for Products. Assisting with normalizing language, wording, and measurement for consistency across controls; Ensuring that controls are maintained, regularly reviewed, and properly re-certified; Understanding which control procedures apply to products during the planning and building stages, and coaching teams on how to identify relevant controls. Effective integration and engagement with Audit. This involves assisting with the accuracy of Request for Information (RFI) reviews, facilitating communication by addressing questions to and from the audit team, and clarifying the audit scope. Emphasizes "Compliance from the Start". While not the Control Manager, the Risk Lead provides valuable advice in improving the RAS (Risk Assessment Structure), assists in mapping risks to control procedures (CPs) and addressing CORE (Control and Operational Risk Evaluation) issues. Leverage strong communication skills to validate controls and ensure their effectiveness. Required qualifications, capabilities, and skills Formal training or certification on Product delivery management concepts and 5+ years applied experience Expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation. Proficient in risk management frameworks, industry standards, and regulatory requirements specific to the financial industry. Strong critical thinking skills. Excellent written and verbal communication abilities. Proficient knowledge in data security, risk assessment and reporting, control evaluation, design, and governance. Proven track record of implementing effective risk mitigation strategies Preferred qualifications, capabilities, and skills Knowledge of the product development life cycle, design, and data analytics

Job Description: Job Title: AI/ML and Knowledge Management Location: Mumbai, India Corporate Title: Assistant Vice President Role Description The AI/ML and Knowledge Management team will drive the build of 1 LOD data analytics and knowledge management capability, with a view towards supporting a proactive risk management function. The candidate will take active responsibility in developing solutions to achieve strategic and business objectives. The candidate will provide technical expertise and use large language models (AI/ML) effectively to build solutions to ensure continuous development of risk MI, data models for Risk and Control assessments, regulatory sentiment analysis, and knowledge management for Technology Risk across CB, IB and Ops divisions. The 1st line Tech Risk function for business divisions (CB, IB and Ops) at Deutsche Bank sits within the Divisional Control Office. CB and IB front to back have the largest footprint as a risk bearing function within the banking divisions and you will be part of a dynamic team which is consistently in demand for providing insights, assessments and managing IT and IS risks on behalf of the business. As part of the team, you will join the Bank s journey and contribute towards our strategic goal of managing technology risk within appetite whilst enabling adoption of emerging and new technologies for business growth. You will do so through promoting a data-enabled risk management function, that provides business division aligned insights for informed decision making. The role will work closely with stakeholders within the team and in business divisions to gather requirements and provide innovative solutions for risk insights and analytics capabilities. This role will report directly to the AI/ML and Knowledge Management Lead and has no line management responsibilities. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Establish and maintain a risk reporting model for IT and IS risk. This includes operational and risk dashboards for senior management views. Develop a knowledge management model which helps create a structured and indexable central repository for regulatory responses and presentations for various councils. Leverage opportunities to design innovative solutions that facilitate the periodic Risk and Control assessments with singular view of contextual and reference data. Develop process models that aid intelligent response production for multiple and global regulatory and external queries. Be a catalyst and an enabler for sustainable IT&IS risk reduction in-line with changing regulatory landscape and overall internal controls framework. Partner with reporting functions in other teams to ensure alignment with business needs and group risk management framework. Your skills and experience Minimum 5 years experience in Data Analytics - designing and implementation of data models and creating meaningful dashboards that drive insights. Overall experience in similar roles in a Technology division or in a Banking Technology division or IT audit in a cross-cultural and diverse operating environment Good understanding of Industry best practices over how risk data or AI models are defined, and data quality and integrity is maintained. Programming Language - Python, MS SQL and Data analytics and visualization tools - Tableau, SAP objects, Informatica, Alteryx. Experience in developing data standards, processes, and policies, as well as developing and implementing enterprise data strategies, operational data stores and data quality tools. Experience with dimensional modeling, change data capture methods and implementation of data warehouse and data lake house architectures. Strong team player with a result-oriented mindset and ability to deliver under tight timelines. Must be comfortable with navigating ambiguity to extract meaningful risk insights. How we ll support you Training and development to help you excel in your career Flexible working to assist you balance your personal priorities Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

As a global leader in assurance, tax, transaction and advisory services, EY hires and develops passionate individuals to contribute towards building a better working world. The culture at EY focuses on providing training, opportunities, and creative freedom to help individuals reach their full potential. EY believes in nurturing your career growth and offers limitless potential. Motivating and fulfilling experiences are provided throughout your career journey to support you in becoming your best professional self. The opportunity available is for the role of Associate-National-Business Consulting Risk-CBS - RM - Proj & Operations based in Mumbai. EY Consulting aims to transform businesses through the power of people, technology, and innovation with a client-centric approach. The Consulting division comprises Business Consulting, Technology Consulting, and People Advisory Services, all working towards creating long-term value for clients by addressing their strategic challenges. The key focus areas within the Consulting division include Enterprise Risk, Technology Risk, and Financial Services Risk. These areas help clients in identifying and managing risks effectively to support their business strategies and objectives. The role involves working on risk management CoE with an emphasis on technical excellence. To qualify for this role, candidates must possess a qualification in Risk Management. While prior experience is not mandatory, freshers are encouraged to apply. EY is looking for individuals who can collaborate effectively across client departments, adhere to commercial and legal requirements, and offer practical solutions to complex problems. The ideal candidates should be agile, curious, mindful, and able to maintain positive energy while being adaptable and creative in their approach. EY, with a large global presence and a strong brand reputation, offers a personalized Career Journey to its employees. The organization is dedicated to investing in the skills and learning of its workforce. EY promotes inclusivity and strives to create a balance that allows employees to excel in client service while focusing on their career development and well-being. If you believe you meet the criteria and possess the necessary skills, EY encourages you to apply to be a part of building a better working world. Apply now to join a dynamic team and contribute to EY's mission of driving positive change in the business landscape.,

Key Responsibilities: Perform audits and assessments of internal controls (regulatory compliance Audits, ISO 27001, NIST, GDPR, HIPAA, etc.). Conduct risk assessments and develop mitigation plans across IT and business processes.

As a global leader in assurance, tax, transaction, and advisory services, EY hires and develops passionate individuals to contribute to building a better working world. At EY, the focus is not only on your current self but also on your potential growth. Your career is yours to shape, with limitless possibilities and support to help you become your best professional self. EY Consulting is dedicated to transforming businesses through people, technology, and innovation, with a client-centric approach aiming to drive long-term value by solving strategic problems. The Risk Consulting - Internal Audit - Non-FS team in Mumbai helps clients manage risks effectively to support their future business strategies and objectives. The team focuses on Enterprise Risk, Technology Risk, and Financial Services Risk to address key risk areas, support business performance, and identify, manage, and monitor risks in the financial sector. As a Manager-Risk Consulting, your responsibilities include performing various risk advisory engagements such as internal audit, SOX/IFC/ICFR, risk management, process reviews, data analytics, and other governance, risk & compliance engagements for global and Indian clients in the telecom and technology sectors. You will lead internal audit processes, deliver high-quality engagements, identify areas for process improvement, and contribute to business development activities. To excel in this role, you must have the ability to lead teams, act as a mentor, contribute to knowledge sharing, provide innovative solutions, and communicate effectively. Strong relationship management skills, proficiency in MS Office tools, data analytics, and the willingness to work across time zones are essential. Qualifications include being a Chartered Accountant or MBA from a top-tier institute, with 5 to 7 years of post-qualification experience in risk advisory or related internal audit engagements. EY offers a dynamic work environment where you can collaborate across multiple client departments, solve complex problems, and deliver practical solutions. The organization is committed to investing in your skills and learning, providing a personalized career journey and access to resources for career development. EY values inclusivity, striving to maintain a balance that allows employees to excel in their careers while focusing on their well-being. If you are ready to contribute to building a better working world and meet the qualifications mentioned above, we encourage you to apply and join us on this exciting journey at EY.,

Big 4 Hiring in large number IT AUDIT PROFESSIONALS - ACROSS INDIA MEGA DRIVES Call on : 9359055605 /7208835287 Call: 7738402343 Mail: divyani@contactxindia.com Mail : zeenat@contactxindia.com Role & responsibilities Minimum Degree Required: Chartered Accountant or Bachelors Degree Required Fields of Study: Accounting, Finance, Management Information Systems, Computer Science, Economics, Business Administration/Management, Engineering, Mathematics, Statistics , and/or other relevant degree. Minimum Years of Experience: Four years of experience in IT auditing, auditing, consulting and/or implementing experience. Oral and written proficiency in English required. Preferred Knowledge/Skills: Demonstrates thorough knowledge of providing services related to controls around the financial reporting, compliance and operational processes, including business process and IT management controls, which includes a proven record of success with facilitating and completing deliverables involving the following: Financial reporting and information technology risks, processes and controls; Current and emerging technologies which may include: Oracle, SAP, Oracle Database, web development tools, virtualization, UNIX, Linux, and security technologies; COSO Framework, CoBIT and/or other leading business and IT control frameworks; and, Key domains of information technology general controls, including change management, access to programs and data, computer operations and systems development. Identifying key risks and controls, knowledge of Sarbanes Oxley readiness, controls optimization, including the configuration of controls around security, business process and within IT environments; Applying internal control principles and business/technical knowledge working experience applying professional skepticism skills; Leading the execution of a work program and practice aid, as well as perform assessments, using Company proprietary or other relevant tools to evaluate controls, security, SOD, and potential for optimization; Exhibiting project management skills, including developing project plans, budgets, and deliverables schedules; Creating a positive environment, monitoring workloads of the team while meeting client expectations, and respecting the work-life quality of team members. This includes providing candid, meaningful feedback in a timely manner and keeping leadership informed of progress; and, Interacting with clients on solutions and executing projects on client engagements, forming client relationships and demonstrating an understanding of the client's business. Preferred candidate profile

About the Role: Grade Level (for internal use): 12 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role reports to the Head of Technology Risk and Governance, in the Global Digital Technology Organization. The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the first line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities This role belongs to First Line of Defense. Lead efforts to build APIs between various governance tools to streamline data integration. Lead efforts to d evelop APIs for automated risk reporting to enhance data accuracy and timeliness. Drive automation in controls, including testing and monitoring, to improve efficiency and effectiveness. Design and implement a Digital Solutions scorecard to track key performance metrics. Lead efforts to c reate and maintain a comprehensive controls/risks dashboard for real-time insights and decision-making Prepare presentations for Management reporting. What Were Looking For Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 10+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 12+ years of experience in a large global organization leading the technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Recruitment Fraud Alert If you receive an email from a spglobalind.com domain or any other regionally based domains, it is a scam and should be reported to reportfraud@spglobal.com. S&P Global never requires any candidate to pay money for job applications, interviews, offer letters, pre-employment training or for equipment/delivery of equipment. Stay informed and protect yourself from recruitment fraud by reviewing our guidelines, fraudulent domains, and how to report suspicious activity here. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.2 - Middle Professional Tier II (EEO Job Group)

About the Role: Grade Level (for internal use): 11 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role reports to the Head of Technology Risk and Governance, in the Global Digital Technology Organization. The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact Lead efforts in defining and documenting a comprehensive Issue Management Process document/ methodology Lead efforts to centralize control gaps/ issues in GRC tool Lead efforts in logging, tracking, monitoring and remediation of control gaps/ issues Coordinate with key stakeholders to ensure the issues are clearly articulated, mapped to appropriate risk category, mitigating controls are identified through proper risk assessment Lead efforts in periodic reporting of issues to senior Management Conduct data analysis to demonstrate trends of progress made in issue remediation by various technology processes Conduct meetings to discuss issues and risk remediation plan Lead efforts in risk exception and risk acceptance process Monitor risk acceptance scenarios and bring it to appropriate committees for reporting Prepare PowerPoint presentations to provide comprehensive and holistic issue management process What Were Looking For Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5+ years of experience in a large global organization leading the technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.2 - Middle Professional Tier II (EEO Job Group)

PwC India Placement Drive for Fresh CA of May 2025 as well as Experienced CA 1. Technology Risk Assurance (TRAS) - A tech-driven role focused on system and process assurance Walk-In Interviews at Locations : Bangalore, Mumbai, Pune, Gurgaon Gurgaon- 25th July 2025 - No CA Final Attempt Criteria Eligibility: - CA Final students Fresh CA of May 2025/ Nov 2024 /May 2024 - Experienced 0-2 years CA's from May 23 onwards Apply here to attend: https://forms.gle/1TbncMy5AaXd445w9 1. To Activate Copy and paste above link into browser and you can apply 2. Link is also mentioned in website tab in this form for direct acess Start your Big 4 journey with PwC India! Join our WhatsApp community for updates, vacancies, and exclusive placement tips! https://chat.whatsapp.com/BgnO3qxcNLKALBZtmt1zLS?mode=r_c Lets turn your Degree into a Dream Job with D2P Degree to Placements D2P Degree to Placements is here to help you bridge the gap from results to recruitment! For queries, feel free to contact us. Regards, D2P Consulting deepak.npa@gmail.com

As a global leader in assurance, tax, transaction, and advisory services, EY hires and develops passionate individuals to contribute towards building a better working world. EY believes in providing training, opportunities, and creative freedom to help individuals grow and reach their full potential. Your career at EY is what you make of it, with limitless potential and a promise of motivating and fulfilling experiences throughout your journey towards becoming your best professional self. The role available is for a Manager in the CNS - Risk Management division, based in Gurgaon. EY Consulting focuses on transforming businesses through the power of people, technology, and innovation. The three sub-service lines within EY Consulting are Business Consulting (including Performance Improvement and Risk Consulting), Technology Consulting, and People Advisory Services. The CNS - Risk - Risk Management team helps clients manage risks effectively to make informed decisions that align with their business strategy and objectives. Your key responsibilities in this role include driving business development processes, identifying key client contacts, building relationships, identifying cross-selling opportunities, planning client engagements, deploying the right team, reviewing engagements" status, managing billing, and collections. A minimum of 7 years of relevant work experience is required for this role, along with a university undergraduate degree (post-graduation preferred). EY looks for individuals who can work collaboratively across client departments, solve complex problems, deliver practical solutions, and demonstrate agility, curiosity, mindfulness, positive energy, adaptability, and creativity. EY offers a personalized Career Journey, access to career frameworks, and a commitment to inclusivity and employee well-being. If you meet the qualifications and criteria mentioned above, EY encourages you to apply and join in building a better working world. Apply now to be a part of EY's mission and contribute to shaping a brighter future.,

Role & responsibilities Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either System audit, IT reviews, Technology Risk Assessments & Gap Assessments inline with circulars issued by SEBI/RBI/IRDAI. Technical Strong experience in review of guideline defined, conducting regulatory assessments for BFSI (E.g. RBI, SEBI, IRDAI). Global guidelines knowledge which includes NIST, ISO27001, PCI-DSS, COBIT, etc. Assisting in remediating gaps on the defined guidelines for the client. Performing System Audit and conducting technology landscape review. Having worked on Information Technology Risk Assessment areas such as NIST, ISO27001, PCI-DSS, COBIT, etc. Experience of handling IT audits and reviews. Good understanding on technology topics related to cyber security, encryption, architecture resiliency , business continuity, disaster recovery, IT Governance, Third party outsourcing risk and information security/technology risk. Certification - CISA, CISSP, ISO27001 Soft Skills Good presentation and report writing skills is mandatory. Excellent communication skills and confident demeanor Experience of working with client stakeholders Good problem-solving skills. Preferred candidate profile

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Lead in Cybersecurity & Tech Controls team, you will be responsible for identifying, and mitigating compliance and operational risks in line with the firms standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance Required qualifications, capabilities, and skills Formal training or certification on Tech Risk & Control concepts and 5+ years applied experience Expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation In-depth knowledge of application architecture, infrastructure, security principles, and technology risks/controls. Manage & lead transformative projects and initiatives, showcasing strong organizational and leadership skills. Excellent communication and presentation skills for conveying complex risk information to stakeholders at all levels. Adapt to and articulate changes in technology risk landscapes and emerging technologies. Stakeholder management skills, with the capability to engage and influence diverse groups Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or other industry-recognized risk certifications. Familiar in a multi-tiered organization, with a deep understanding of how technology is applied across different levels. Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management. As a Tech Risk & Controls Lead in Cybersecurity & Tech Controls team, you will be responsible for identifying, and mitigating compliance and operational risks in line with the firms standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape. Job responsibilities Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance Required qualifications, capabilities, and skills Formal training or certification on Tech Risk & Control concepts and 5+ years applied experience Expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation In-depth knowledge of application architecture, infrastructure, security principles, and technology risks/controls. Manage & lead transformative projects and initiatives, showcasing strong organizational and leadership skills. Excellent communication and presentation skills for conveying complex risk information to stakeholders at all levels. Adapt to and articulate changes in technology risk landscapes and emerging technologies. Stakeholder management skills, with the capability to engage and influence diverse groups Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or other industry-recognized risk certifications. Familiar in a multi-tiered organization, with a deep understanding of how technology is applied across different levels.

Business Funtion Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Banks operational processes and inspire to delight our business partners through our multiple banking delivery channels. Job Purpose This is to manage and mitigate Technology Risk for DBS India. Key Accountabilities The Scope includes all Findings where Technology is impacted (across external and internal audits and reviews, and excluding IT Information Security) are in scope. Engagement across Technology verticals, Operations, Business, Compliance to prioritize, plan, act, prove, close all open findings within committed timelines. Scan regulatory requirements, circulars to ensure forward planning and execution for compliance. This includes Singapore and India regulatory requirements. For the overall e2e Technology estate” across DBS, Partners, external environment : are we ready for scale / DR & bcp / quality of code in terms of impact & user experience & customer experience / newer technologies Job Duties & responsibilities Liaise with stakeholders within and outside DBS, including at Group level to have a comprehensive view of all Technology Risks. Engage with Technology verticals and others as appropriate within DBS, to progress on closure of all open points. Engage with Compliance, understand the regulatory requirements at country and group level, and add these to the action points which Technology has to ensure. Early identification of execution challenges in risk mitigation actions, and being an effective catalyst with Technology teams and seniors to resolve bottlenecks such as cost or resource approvals, conflicting priorities. Risk assessment across the estate” covering partners, external environment and identify potential risks such as relating to scale-preparedness, DR & bcp support for the organization, code quality in terms of testing and deployment governance. Regular updates as per agreed rhythm, and fronting dialogues with different seniors across DBS at country and group, to highlight process on Risk Management and Risk Mitigation. Liaise with relevant departments such as HR, to ensure awareness of Technology Risk within the DBS India Technology Team, and partner for this awareness across DBS India. People management and Team building Requirements Ideally, 15+ years of successful experience in Technology Risk Management. The more recent 5+ years should be in a well established bank (Indian or Multinational). Education / Preferred Qualifications Minimum Computer Science or Technology Management graduate, preferably in Info-Sec specialization. Core Competencies Good communication skills and ability to manage dialogues with seniors. Readiness to raise the red flag” for risks, in the interests of the bank. Technical Competencies Ideally, risk-accreditations like CISA, experience on Information System audits and remediation, Agile Scrum accreditation and/or experience, and has worked as a Lead Auditor in Information System audits including ISO audits. Work Relationship Awareness of Information Systems and their complexity, potential points of failure from a risk perspective. DBS India - Culture & Behaviors Drive Performance Through Value Based Propositions Ensure Customer Focus by Delighting Customers & Reduce Complaints Build Pride and Passion to Protect, Maintain and Enhance DBS Reputation Enhance Knowledge Base, Build Skill Sets & Develop Competencies Invest in Team Building & Motivation through Ideation & Innovation Execute at Speed While Maintaining Error Free Operations Develop a Passion for Performance to Grow Talent Pool Maintain the Highest Standards of Honesty and Integrity

The Global Information Security (GIS) Technology Risk Management Analyst will work with peers in Global Information Security (GIS) and across the Technology Division to ensure that third party technology risks are properly identified, assessed, monitored, and communicated in support of the overall Third Party Risk Management (TPRM) program. The Analyst will assist with the continuous improvement and daily operation of the GIS Third Party Risk Management (GIS TPRM) program. Responsibilities Include: Work with peers to identify and assess Information Security risks Conduct risk assessments using CME Groups established GIS Third Party Risk Management assessment process Collaboratively author and edit various assessment related documents including Deficiencies Observed, Summary of Work, Risk Advisory Memos, exceptions from GIS technical policies and standards, and other related output resulting from risk adjudication activities Participate in and contribute to various working groups across the Technology Division, including, but not limited to, Third Party Risk Management working group, Governance, Risk Management, and Compliance (GRC) working group, etc. Assist the GIS TPRM function with: Continuous improvement and maturation of the methods, instrumentation, training, documentation, and processes required to properly manage third party technology risks Providing advisory and consulting services to the Information Technology Management Team related to InfoSec risks, treatment strategies, and decision-making Assist in the preparation of management reports, presentations, metrics, and other documentation required to support governance functions Assist in compiling and delivering business and operational metrics at regular intervals Promoting a culture of risk awareness and accountability through training, education, and risk management consultative support Problem Solving: Objectively assess the impact, likelihood, and velocity of identified risks Objectively advise on any number of controls that will mitigate risk while not imposing undue burden on those who must implement the controls Drive objectivity and build consensus among stakeholders with widely divergent perspectives and drivers Rapidly analyze complex technical details Synthesize detailed analysis into a big picture view that can be easily understood by non-technical stakeholders in order to support risk-based decision-making for senior managers within the company Decision Making: Recommend risk treatment decisions Recommend remediation actions when risk mitigation is desired Recommend improvements to methods, instrumentation, training, documentation, and processes Recommend solutions for automating and streamlining GIS TPRM risk management practices Working Relationships: Interacts with peers across all elements of the Technology Division Communicate regularly with cross-functional peers outside of the Technology Division, including Legal, Information Governance, Global Operations, Global Assurance (Internal Audit), Enterprise Risk Management, Third Party Risk Management, and other business unit leadership Interact occasionally with industry peers from other Systemically Important Financial MarketUtilities(SIFMUs),research organizations, solution providers, etc. Required Experience: Bachelors Degree or equivalent experience Minimum of 4 to 6 years of relevant experience in publicly traded companies or finance/technology industry operations with third party risk management experience a plus Experience in at least two of the following: InfoSec (Operations, Program Management, Governance, Risk Management, etc.), Enterprise Architecture, Identity & Access Management, Application Development, Infrastructure & Operations, IT Compliance, or Internal Audit Experience working with industry based information security and / or control frameworks (NIST Cyber Security Framework, ISO 27002, COBIT, etc.) Demonstrable knowledge of a broad range of InfoSec technologies and practices Demonstrable, impeccable writing skills for technical, management, and executive audiences Additional preferred experience: Demonstrable knowledge of InfoSec risk management methods and practices Experience with operating GRC solutions Professional certification in InfoSec or Risk Management (such as CRISC, CISM, CISSP, CGEIT, CISA, etc.)

As a global leader in assurance, tax, transaction and advisory services, EY hires and develops passionate individuals to contribute to building a better working world. This commitment is reflected in a culture that emphasizes training, opportunities, and creative freedom. At EY, the focus is not only on your current abilities but also on nurturing your potential for growth. Your career at EY is yours to shape, with limitless possibilities for advancement and a commitment to providing enriching experiences to support your professional development. The opportunity at hand is for the position of Manager-NAT-Business Consulting Risk-CBS - FIN - Markets - Finance in Kolkata. EY Consulting is dedicated to driving transformation in businesses through the combined power of people, technology, and innovation. The client-centric approach at EY Consulting is structured around creating long-term value by addressing strategic challenges. The service lines within EY Consulting include Business Consulting (comprising Performance Improvement and Risk Consulting), Technology Consulting, and People Advisory Services. In this role, you will be involved in helping clients identify and manage risks to make informed decisions that safeguard their future business strategies and objectives. The key focus areas encompass Enterprise Risk, Technology Risk, and Financial Services Risk. Your responsibilities will include overseeing core functions at the organizational level, such as personnel allocation, monitoring staff utilization, updating skill set records, managing internal staff transfers, ensuring timely timesheet submission, and coordinating personnel profiles for vacant roles. To qualify for this role, you should hold a Graduate or Post Graduate Degree and have a minimum of 6 years of relevant experience. EY looks for individuals who can collaborate effectively across various client departments, adhere to commercial and legal requirements, and demonstrate a practical approach to problem-solving. The ideal candidate would possess agility, curiosity, mindfulness, positive energy, adaptability, and creativity. EY offers a dynamic environment with a vast client base and a global workforce, providing ample opportunities for growth and learning. The organization values inclusivity and strives to maintain a balance that empowers employees to excel professionally while prioritizing their well-being. If you meet the criteria outlined and are ready to contribute to building a better working world, we encourage you to apply and join us on this journey of growth and success.,

About the Role: Grade Level (for internal use): 10 The Team Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self- QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in p repar ing and deliver ing comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5 + years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications 5 + years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required . Role Location Gurgaon, Noida, Bangalore Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ---- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ---- 202 - Middle Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), RSKMGT202.1 - Middle Professional Tier I (EEO Job Group)

Overview The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Responsibilities Security Design ExpertiseProven track record in assessing security designs, including data flow diagrams, architectural blueprints, low-level designs, networking diagrams, authentication mechanisms, and authorization schemes. Must demonstrate experience in aligning these designs with industry standards such as NIST 800-53, ISO 27002, CIS, and OWASP to ensure robust security postures. Skilled at identifying potential security gaps and implementing best practices to fortify system architectures against emerging threats. Familiarity with the latest security tools and technologies, as well as experience in integrating security measures into complex IT environments, is essential. Compliance AssessmentAssess new and changing application designs and requirements to ensure compliance with PepsiCo information security standards. Risk CommunicationIdentify, quantify, and communicate technology risks impacting the business, recommending resolutions and identifying root causes. Explain scan results (infrastructure, applications, databases) and pen testing results to stakeholders. Threat ModelingUtilize expert knowledge in threat modeling techniques and methodologies to proactively identify, assess, and prioritize security risks, enabling the organization to implement targeted mitigation strategies and maintain a robust information security posture. Project Lifecycle ReviewsReview IT and Information Security systems throughout the project lifecycle, identifying risks and security requirements, and recommending paths to eliminate identified risks and implement compensating controls. Automated Risk AssessmentsConduct risk-based assessments using automated tools and techniques to prioritize and address security risks. Collaboration and EducationCollaborate with various IT and Business teams to ensure they are knowledgeable about Information Security processes and requirements, influencing them to eliminate or reduce risks. ServiceNow UtilizationExperience using ServiceNow to gather necessary information and data, automating security assessment processes to enhance efficiency and effectiveness. Metrics Management and ReportingManage operational metrics related to the ISA and GRC processes, utilizing Power BI for advanced reporting, tracking project progress, and developing corrective action plans. Process Improvement and Proactive SecurityGovern Information Security services from the ISA, tracking process metrics, identifying issues, and driving process improvement initiatives. Stay updated with threat intelligence, leverage Azure and cloud security knowledge, and implement Agile and DevSecOps methodologies to integrate security into the development process. Qualifications A minimum of 8 years of experience in Information Security, IT Risk Management, or a similar role. Mandatory Technical Skills: In-depth technical experience and knowledge of infrastructure technologies, networks, web, computing, cloud services, manufacturing equipment, mobile devices, and information (cyber) security. Strong understanding of information security frameworks, regulations, and standards such as NIST 800-53, CIS, and ISO 27002. Proficient in ServiceNow, with the ability to leverage its modules for information gathering, data analysis, and automation of the ISA service. Experience in threat modeling and applying threat modeling methodologies in previous roles. Proficient in Power BI for developing reports and dashboards to support data-driven decision-making. Strong skills in developing ad hoc reports and managing metrics. Knowledge of Azure and general cloud security principles. Ability to read and explain scan (infrastructure, applications, databases) and pen testing results to technical and non-technical stakeholders, guiding them on risk and vulnerability remediation. Mandatory Non-Technical Skills: Proficient in influencing and educating stakeholders on security best practices and policies, ensuring understanding and adherence to security standards. Established a reputation as a trusted adviser, providing expert guidance on information security matters. Strong presence to represent PepsiCo Information Security in complex situations with business and IT partners. Ability to collaborate with various stakeholders, including business units and product managers.