66 Technology Risk Jobs - Page 3

The first line Tech Risk function for business divisions (Corporate Bank (CB), Investment Bank (IB) and Operations (Ops) at Deutsche Bank sits within the Divisional Control Office (DCO) embedded in the Business. CB and IB front-to-back have the largest footprint within the banking divisions, and you will be part of a dynamic team, consistently in demand for providing insights and managing Information Technology (IT) and Information Systems (IS) risks on behalf of the business. You will join the Bank s journey and contribute towards our strategic goal of managing risk within appetite whilst enabling adoption of emerging and new technologies for business growth. You will report directly to the Head of Technology Risk for CB and IB, oversee initiatives in India and deputize at management forums as necessary. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Manage a team of 35+ members across all people related subjects including hiring, identifying, and developing talent across fungible team, staff retention, cross training, cultivating change and risk conscious mindset. Drive understanding and representation of ITIS risks with business line heads across CB and IB front-to-back divisions and work closely with Head of Tech Risk Governance to successful implement initiatives in India Manage global stakeholders and prioritization of delivery of DCO BOW from the teams located in Mumbai, Pune and Bangalore Lead innovation, efficiency initiatives automation through use of Data Analytics or AI models to enhance maturity in Technology risk management and empower decision making. Be a strategic partner with Senior Leadership including DCO and business aligned CIO divisions to drive the control-based risk exposure and management discussions Ensure management transparency by way of timely reporting and represent the IT/IS risk types, and remediation plans against appetite at the various divisional Non-financial Risk Council forums Manage all aspects of Front Office Technology risk, working closely with Risk leads in the Technology divisions including tracking of Self-Identified Issues, Audit Findings Work closely with peers leading other pillars in the team (such as Divisional Chief Information Security Office) to establish an effective risk management 1st line function in the Business Partner with 2nd LoD, NFRM (Non-Financial Risk Management) to ensure alignment towards Group wide minimum control standards and risk appetite framework Promote and support proactive IT risk culture at the Bank Your skills and experience Previous experience in similar Technology risk roles in a front office IB/ CB division or IT audit (internal/external) in a cross-cultural and diverse operating environment with knowledge of business products In-depth knowledge of industry-wide risk landscape and global regulatory expectations, and leading engagement prep Strong understanding of Industry best practices in Technology Risk Frameworks such as National Institute of Standards and Technology (NIST), Control Objectives for Information and Related Technology (COBIT) and fundamentals of Artificial Intelligence/Machine Learning (AI/ML) and Cloud based services Excellent communication, presentation and collaboration skills, with result-oriented mindset How we ll support you Training and development to help you excel in your career Coaching and support from experts in the team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your need

Ernst Young is looking for Senior Consultant to join our dynamic team and embark on a rewarding career journey Lead project teams and manage client relationshipsDevelop and implement project plans, schedules, and budgetsProvide expert advice and guidance to clients on a wide range of strategic and operational issuesConduct research and analyze data to support decision-makingDevelop and deliver presentations to senior management and stakeholdersBuild and maintain strong relationships with clients and stakeholdersMentor and train junior consultantsStay up-to-date with the latest industry developments and trendsRequirementsExperience in consulting or a related fieldStrong analytical and problem-solving skillsExcellent communication and interpersonal skillsStrong leadership and mentorship skillsDemonstrated ability to deliver high-quality work under tight deadlines

Responsibilities Role will ensure that the Bank is in full compliance with the relevant technology policies, standards, and regulatory requirements. Role is to manage technology risks and cybersecurity effectively and to ensure that consistent risk management framework and practices are applied across the region. Assist to deliver strategic technology risk and cybersecurity transformation activities. Effective management of all technology risk and cybersecurity framework including technology policies and standards based on the Bank’s risk appetite. Ensure that all necessary legal and regulatory controls (e.g., HKMA SPMs and MAS TRMG) are in place from initial migration through service provisioning Lead the Bank’s technology risk and cybersecurity acceptance process whenever necessary and follow-up risk mitigation / prevention plans Coordinate with other IT teams to address control weaknesses, including design and implement new controls to address known issues. Qualifications Minimum of 10 years’ experience in technology risk, cybersecurity, or IT audit. Professional certifications such as CISA, CISM, CISSP, CRISC, CGEIT, and CDPSE. Solid understanding of regulatory requirements (e.g., HKMA SPMs and MAS TRMG) and industry standards (e.g., COBIT). Experience in designing and implementing new controls to mitigate identified risks Excellent communication and interpersonal skills including presentations and writing risk papers, with the ability to collaborate effectively with stakeholders at all levels. Analytical mindset and problem-solving abilities Ability to work in a fast moving high pressure environment and balancing multiple work streams. Experience in financial services or regulated environments is preferred Previous experience in cloud security is an advantage.

JD for SAP Audit - Following are some of our key solution offerings • Risk Based IT Internal Audit • IT SOX 404 Controls Testing, Quality Assurance • IT Attestation (SOC1/SOC2/ISAE 3402, ISAE 3000 etc.) • Internal Financial Controls related to IT General Controls • IT General Controls as part of Financial Statements Audits • IT Risk & Control Self-Assessment • Business Systems Controls / IT Application Controls • Auditing Emerging Technologies such as Cloud, Intelligent Automation etc. Position: Associate Consultants/Consultants/ Assistant Managers Location: Bangalore office Responsibilities • Plan and execute client engagements focusing on SAP FICO, SAP SD, SAP MM and audits of SAP environments • Evaluate the design and effectiveness of SAP controls throughout the business cycle • Work with clients to identify opportunities for improvement in the areas of SAP FICO, SAP security, and SAP controls • Help coach and train team members to grow the SAP knowledge base of the team Additional Responsibilities for Assistant Managers: • Supervise associates and interns on engagements • Serve as a liaison between financial services clients and upper management

Job Description: Designation: Assistant Manager - Information Technology Security controls What you will do: Undertake technology risk assessment Building the repository of Internal controls for Information Technology (Design / Flow-charts, Risk Control matrices, Entity level controls) Collaborate with stakeholders to implement robust design of internal controls within Technology environment Ensuring diligent follow-ups for issue resolution,, Support in the attainment of functional objectives as designed What you will bring: At least 3 to 5 years of experience in Information Technology Security controls Strong understanding of process technology risks and controls

Technology Risk Assessment Assistant Manager / Manager: Conduct risk assessments to identify potential threats to the organization's technology infrastructure. Develop and implement risk management strategies to mitigate identified risks. Monitor and report on the effectiveness of risk management strategies. Collaborate with other departments to ensure that risk management strategies are integrated into overall business processes. Stay up to date with the latest developments in technology and risk management. Provide training and support to staff on risk management best practices. Prepare and present reports to senior management on the status of technology risks and mitigation efforts. Education: Bachelors degree in Information Security, Cyber Security, Computer Science, IT, Engineering or a related field. Experience: Minimum 3 years of experience in risk management, governance, compliance, or internal audit roles, preferably within industries like finance, healthcare, or technology. Experience with compliance frameworks such as SOX, ISO 27001 etc.

Job Title:Corporate Bank (CB), Investment Bank (IB) and Operations (Ops) Technology Risk Function, AVP Role Description The first line Tech Risk function for business divisions CB, IB and Ops at Deutsche Bank sits within the Divisional Control Office. CB and IB front-to-back have the largest footprint as a risk bearing function within the banking divisions, and you will be part of a dynamic team which is consistently in demand for providing insights, assessments and managing Information Technology (IT) and Information Systems (IS) risks on behalf of the business. Divisional Control Office (DCO) team ensures that the division operates with high levels of integrity. It is responsible for supporting the business by developing, implementing and maintaining a risk culture to ensure a strong and sustainable business control environment whilst minimizing risk arising from non-financial risk factors. DCO strategy includes improving the risk management information and strengthening the governance and risk culture and has a functional responsibility for providing a central point of oversight over the Risk & Control Assessments (RCA). This includes supporting the business by driving Risk & Control Assessment specifically focusing on Information Security (IS) / Information Technology (IT) risks in line with NFRM (2LOD) guidelines. RCA is a key component of the bank's non-financial risk management toolkit, to enable the effective profiling, monitoring and management of operational risks. As part of the team, you will join the Banks journey and contribute towards our strategic goal of managing technology risk within appetite whilst enabling adoption of emerging and new technologies for business growth. This role will specifically perform RCAs as related to the IB business. Knowledge of IB products/operations is a big plus Your key responsibilities Collaborate with businesses and support them in conducting Risk & Control Assessments as per NFRM guidelines specifically focusing on Information Security (IS) / Information Technology (IT) risks Analyze contextual data and relevant data triggers and determine or update risk profile, inherent risk, control environment and residual risk ratings along with supporting rationale, liaising with Risk Types SMEs in their business Ability to assess impact of control environment on inherent risk along with documentation of qualitative assessment Participate in 1LoD-led RCA meetings for business to drive the risk discussions, focusing on key or emerging risks that may impact the business Coordinate with businesses/2LoD and assist in 2LoD challenges Prepare RCA reports and obtain business sign-offs Document risk mitigation decisions, if required, with consideration of risk appetite Deliver high quality Global Governance decks and reporting trends to support senior management Your skills and experience CISA/CRISC or relevant security qualifications with experience of Risk & Controls and/or Internal Audit in banking industry covering Information Security (IS) / Information Technology (IT) risks Experience in SOX/ ISO27001 control framework Knowledge related to risk management (including conducting Risk & Control Assessments) and corporate banking products, processes and systems preferred, specifically focusing on Information Security (IS) / Information Technology (IT) risks Proven people management skills with ability to lead activities independently Strong quantitative and analytical skills required to critically evaluate information for key risk assessments Strong project management skills and a proactive team partner Influencing, negotiation skills and stakeholder management expertise Strong verbal and written communication skills Proficiency with automating tasks in Excel to improve efficiency a plus, but not mandatory.

As a Tech Risk & Controls Senior Associate in [Insert LOB and/or Sub LOB], you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Compliance in line with the firms standards. Leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement effective controls. Your role in risk identification, control evaluation, and security governance is crucial in advising on complex situations and enhancing the firm s risk posture. Through collaboration and analytical skills, you will contribute to the overall success of the Technology Risk & Services team and ensure compliance with regulatory obligations and industry standards. Job responsibilities Assess and monitor technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices Support implementation of effective controls in collaboration with cross-functional teams and stakeholders Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firms risk posture Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures Required qualifications, capabilities, and skills Formal training or certification on Tech Risk & Control concepts and 3+ years applied experience Expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation. Proficiency in working with large datasets, including data cleaning, transformation, and analysis, as as automating routine processes using tools such as Python, R, or Alteryx. Strong data visualization skills with experience in platforms like Tableau, Power BI, or similar, to effectively communicate insights and automate metrics and KRIs reporting Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, and industry best practices Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or other industry-recognized risk certifications Familiar in data analysis and reporting automation

We help TMT companies create compelling employee and customer experiences, retaining skills and talent while achieving enterprise-wide operational excellence. We help them guard their data, brand and reputation. We also enable the pursuit of MA strategies that methodically create value, reduce risk and transform TMT companies into powerhouses that will lead the technology revolution of the future - building a better working world for all. ASU - TR - Technology Risk Assurance s purpose is to inspire confidence and trust to enable a complex world to work. We do so by protecting and serving the public interest, promoting transparency, supporting investor confidence and economic growth and fostering talent to provide future business leaders. We help clients by 1) Ensuring their accounts comply with the requisite audit standards 2) Providing a robust and clear perspective to audit committees and 3) Providing critical information for stakeholders. Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting implementation support etc. Your key responsibilities 1. IT General Controls/ IT SOX 2. IT Application Controls testing 3. Exposure to DevOps/CI-CD 4. Understanding emerging technologies such as AI Skills and attributes To qualify for the role you must have Qualification CA, CISA, BE/ B.Tech,, or MSC in Computer Science, Experience 2 years of experience in IT General Controls Testing/ IT Application Controls Testing

About The Role : Experience in Risk, Compliance, Assurance and Regulatory areas. Preferred candidate with professional consulting experience in risk management ideally with a Big4 or similar large consulting firm. Good understanding of Technology Risk and Compliance frameworks is preferred. Ensure strategic objectives are implemented, risks managed, and benefits realised. Advise the projects and programs on how to identify, monitor, measure and manage existing and emerging risks. Provide independent oversight and challenge the effectiveness of risks and controls during pre and post implementation of projects. Good communication and presentation skills with a proven track record in stakeholder engagement and influencing skills. Ability to plan and prioritise to manage multiple work streams/tasks simultaneously. Candidates with certifications like CISA, CRISC, and PRINCE2/Agile will be preferred. Primary Skills Risks and Controls Management within technology space Technology Insight (Infrastructure, Data, Cloud and Service Management) Project Lifecycle Management Stakeholder engagement Secondary Skills Team Management Presentation skills Inclusive Communication Multi-Tasking

The impact you will have in this role: As the IAM Risk Engineer you will be identifying, evaluating, and prioritizing risks to minimize, monitor, and control the probability or impact of unfortunate events or to improve the realization of opportunities. The role involves developing risk management strategies, implementing risk assessment methodologies, and ensuring compliance with regulatory requirements. Your Primary Responsibilities: Risk Management Planning: Identify and analyze risks to the business, including financial, regulatory, legal, and operational risks. Develop and implement risk management policies and procedures. Implement health and safety measures for risk prevention. Risk Monitoring: Continuously supervise risk management processes and controls. Review and update risk policies and practices to ensure they are current and appropriate. Compliance: Ensure compliance with regulatory requirements and internal policies. Keep abreast of legal and regulatory updates that may affect the organization. Stakeholder Engagement: Work with other departments to integrate risk management with company processes. Liaise with external risk consultants. Strategic Risk Management: Align risk management strategies with company objectives. Advise on the risk implications of strategic decisions. **NOTE: The Primary Responsibilities of this role are not limited to the details above. ** Qualifications: Minimum of 8 years of experience and/or equivalent expertise in technology risk management, cybersecurity, or a related field, focusing on risk assessment and mitigation Bachelors Degree and/or equivalent experience Excellent command of IT Risk Management organization practices, operations risk management processes, principles, architectural requirements, engineering threats and vulnerabilities, including incident response methodologies Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for improvements or remediation Experience with implementation and oversight of technology risk and controls, coordination of activities for audits and assessing an IT controls environment and detail oriented, with experience evaluating processes, controls, and issues to resolve risks Subject matter authority on information security and technology risk management with understanding of IT control policies Confirmed experience in leading large teams, handling cross-functional projects, and implementing risk management policies and processes Proven understanding of industry regulations, guidelines, and best practices, such as NIST, ISO, FFIEC, and GDPR Actual salary is determined based on the role, location, individual experience, skills, and other considerations. Please contact us to request accommodation

About The Role : Job Title- Divisional Risk and Control Senior Analyst, AVP Location- Pune, India Role Description The 1st line Tech Risk, Insights and controls function at Deutsche Bank sits within the Chief Technology Office (CTO) for Deutsche Bank Group. CTO has the largest footprint within the Technology, Data and Innovation (TDI) division and is joined by other business-aligned CIO IT divisions. The Tech Risk, Insights and Controls is a dynamic team, consistently in demand, for providing guidance and challenge to deliver change and maintain systems in a secure and resilient manner. As part of the team, you will join the Banks journey and contribute towards our strategic goal of cloud enabled solutions as well as activities that improve our operational resilience and risk reduction. Specifically, you will bring expertise for risk identification and remediation advisory, records management supporting a proactive risk management function. It will therefore also include planning and executing thematic risk assessments and inputting into risk scenario testing and macro threat assessments. Further you will respond to client due diligence requests. You will liaise with other risk and control functions, on a management level to assure the integration of risk initiatives and projects. This role will report to the Head of Risk Assessments and Response and ultimately to the Global Head of Risks, Insights and Controls. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Risk Management Promote risk awareness, encourage prioritization of risk remediation, process re-engineering and strategic risk management Provide processes for systematic, proactive, and forward-looking risk identification, risk assessment, monitoring, reporting, and keeping CTO risk profile up to date Plan and execute thematic risk assessments and input into risk scenario testing and macro threat assessments Identify material remediation priorities for CTO and key cross divisional priorities impacting CTO (control / remediation book of work) Support CTO in managing the CTB budget allocated for high risk finding remediation and CTO involvement in reducing risk owned by other CIO and CISO divisions Be a catalyst and an enabler to the global leadership for achieving the objectives in line with changing regulatory and industry operating landscape and reducing risk against overall technology operations portfolio Ensure management transparency by way of timely risk reporting and proactive engagement and representing controls team at different governing forums Audit Management Manage and govern audit requests and findings in a quality assured and controlled manner Respond to client due diligence requests in a timely manner End-to-end governance, monitoring, control, and reporting of audit lifecycles Audit support and advice incl. quality assurance of management action plans, completion check of the deliverables, closure review, ownership transfer, downgrade, risk acceptance and target date extensions Act as overall interface with Audit for fieldwork support and ongoing oversight, co-ordination, quality control, read across for all divisional audit findings Establish a consistent approach to ownership of management action plans Manage operation of audit interface to vendors including monitoring and reporting Foster lessons-learned on audit findings and missed self-identified findings Stakeholder Management Identify, Partner, and Collaborate Establish relationship with external and internal Audit teams to ensure effective and robust challenge to finding and to establish smart management action plans. Partner with 2nd LoD, NFRM (Non-Financial Risk Management) to ensure alignment towards Group wide minimum control standards Collaborate closely and proactively with DCRO team to manage the finding lifecycle Promote and support proactive IT risk culture at the Bank Your skills and experience Desired experience Minimum 2 years of experience as Risk and Control Lead in designing and implementation of Technology risk framework in a global organization Good understanding of Industry best practices such as NIST, COBIT, ITIL and ISO 27001 Knowledge of Agile change delivery methodology, DevOps and Shift left concepts Cloud Computing Technology (GCP, AWS, Azure etc.) certifications or similar domains Other professional qualifications and certifications in Technology risk management Desired behaviors A strong team player comfortable in a cross-cultural and diverse operating environment Result oriented and ability to deliver under tight timelines Ability to successfully resolve conflicts in a globally matrix driven organization Excellent communication and collaboration skills Desire to learn about new and emerging technologies and continuous upskilling Must be comfortable with navigating ambiguity to extract meaningful risk insights How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

The AI/ML and Knowledge Management team will drive the build of 1 LOD data analytics and knowledge management capability, with a view towards supporting a proactive risk management function. The candidate will take active responsibility in developing solutions to achieve strategic and business objectives. The candidate will provide technical expertise and use large language models (AI/ML) effectively to build solutions to ensure continuous development of risk MI, data models for Risk and Control assessments, regulatory sentiment analysis, and knowledge management for Technology Risk across CB, IB and Ops divisions. The 1st line Tech Risk function for business divisions (CB, IB and Ops) at Deutsche Bank sits within the Divisional Control Office. CB and IB front to back have the largest footprint as a risk bearing function within the banking divisions and you will be part of a dynamic team which is consistently in demand for providing insights, assessments and managing IT and IS risks on behalf of the business. As part of the team, you will join the Bank s journey and contribute towards our strategic goal of managing technology risk within appetite whilst enabling adoption of emerging and new technologies for business growth. You will do so through promoting a data-enabled risk management function, that provides business division aligned insights for informed decision making. The role will work closely with stakeholders within the team and in business divisions to gather requirements and provide innovative solutions for risk insights and analytics capabilities. This role will report directly to the AI/ML and Knowledge Management Lead and has no line management responsibilities. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Establish and maintain a risk reporting model for IT and IS risk. This includes operational and risk dashboards for senior management views. Develop a knowledge management model which helps create a structured and indexable central repository for regulatory responses and presentations for various councils. Leverage opportunities to design innovative solutions that facilitate the periodic Risk and Control assessments with singular view of contextual and reference data. Develop process models that aid intelligent response production for multiple and global regulatory and external queries. Be a catalyst and an enabler for sustainable ITIS risk reduction in-line with changing regulatory landscape and overall internal controls framework. Partner with reporting functions in other teams to ensure alignment with business needs and group risk management framework. Your skills and experience Minimum 5 years experience in Data Analytics - designing and implementation of data models and creating meaningful dashboards that drive insights. Overall experience in similar roles in a Technology division or in a Banking Technology division or IT audit in a cross-cultural and diverse operating environment Good understanding of Industry best practices over how risk data or AI models are defined, and data quality and integrity is maintained. Programming Language - Python, MS SQL and Data analytics and visualization tools - Tableau, SAP objects, Informatica, Alteryx. Experience in developing data standards, processes, and policies, as well as developing and implementing enterprise data strategies, operational data stores and data quality tools. Experience with dimensional modeling, change data capture methods and implementation of data warehouse and data lake house architectures. Strong team player with a result-oriented mindset and ability to deliver under tight timelines. Must be comfortable with navigating ambiguity to extract meaningful risk insights. How we ll support you Training and development to help you excel in your career Flexible working to assist you balance your personal priorities Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

Role Description The first line Tech Risk function for business divisions CB, IB and Ops at Deutsche Bank sits within the Divisional Control Office. CB and IB front-to-back have the largest footprint as a risk bearing function within the banking divisions, and you will be part of a dynamic team which is consistently in demand for providing insights, assessments and managing Information Technology (IT) and Information Systems (IS) risks on behalf of the business. Divisional Control Office (DCO) team ensures that the division operates with high levels of integrity. It is responsible for supporting the business by developing, implementing and maintaining a risk culture to ensure a strong and sustainable business control environment whilst minimizing risk arising from non-financial risk factors. DCO strategy includes improving the risk management information and strengthening the governance and risk culture. As part of the team, you will join the Banks journey and contribute towards our strategic goal of managing technology risk within appetite whilst enabling adoption of emerging and new technologies for business growth. This role will specifically focus on managing the Program office for the Technology Risk function and working directly with the Global Head of Technology Risk for CB, IB and Ops. Your Key Responsibilities Oversee strategic initiatives, from development through successful execution, under the guidance of senior leadership Review, design, and execute improvements to organizational structure; find knowledge and skills gaps and help address them Improve current processes and optimize organizational procedures for efficiency and productivity to support proactive risk management Manage and Support the Head of Technology Risk on budgetary aspects of the team including headcount and learning & development needs Serve as liaison with employees, senior stakeholders, and Senior Management on various matters including project updates and team communications Assist in running campaigns/roadshows in establishing the 1LoD Technology risk function and ongoing interactive sessions with business teams to embed positive technology risk culture. Your Skills & Qualifications: Relevant experience of working in a Strategy/Project team in a Technology division across IT/IS risk types Strong understanding of Tech controls framework COBIT, NIST Excellent presentation skills with ability to create and maintain decks Proven people management skills with ability to lead activities independently Strong quantitative and analytical skills required to critically evaluate information for key risk assessments Strong project management skills and a proactive team partner Influencing, negotiation skills and stakeholder management expertise Proficiency with automating tasks to improve efficiency a plus, but not mandatory.

As a Tech Risk & Controls Associate in Cybersecurity & Tech Controls team, you will be a part of a team that supports the implementation of risk mitigation strategies, controls and action plans for the firm. Working closely with the technology risk teams and cross-functional partners, you contribute your skills and insights to the continuous improvement of risk management methods. As a valued member of the team, you will have the opportunity to learn and grow in a dynamic and fast-paced environment, making a tangible impact on technology risk and controls at the firm. We are seeking a Regulatory and Industry Risk Assessor with a background in audit, regulatory and industry risk assessments, and threat modeling to join our growing Technology Risk and Controls organization. This role will serve as the assessor, supporting the firm s continuous compliance with key regulatory frameworks, including SOX, PCI, Swift, HKMA CRAF, and other industry standards. Job responsibilities Facilitate the execution of assessments to ensure they align with organizational goals, risk tolerance, and regulatory standards. Govern and track issues from assessments, ensuring timely resolution and closure of control deficiencies. Monitor technology risks to ensure adherence to company standards, regulatory mandates, and industry best practices. Collaborate with cross-functional teams to implement effective controls. Analyze complex scenarios, advise on risk management strategies, and support risk mitigation efforts. Develop threat modeling processes to identify and prioritize potential threats to the organizations technology infrastructure. Work with stakeholders to integrate threat modeling into the risk management framework, ensuring alignment with governance and compliance goals. Required qualifications, capabilities, and skills Formal training or certification on Tech Risk & Controls concepts and 2+ years applied experience Experience in identifying, assessing, and evaluating risk controls, with a solid grasp of industry standards. Proven capability to analyze intricate issues, devise and execute risk mitigation strategies, and communicate efficiently with senior stakeholders. Well-versed in risk management frameworks, regulations, and industry best practices. Experienced in threat modeling, with the ability to identify and evaluate potential threats and incorporate threat modeling into risk management processes. Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred. Familiar with threat modeling tools and methodologies, such as STRIDE, DREAD, or PASTA, is a plus.

SA (Senior Associate ) - 22 positions AM (Assistant Manager) - 16 Positions Manager - 9 positions Location :- Bangalore (Looking for Bangalore Based Candidates only) Work timings :- 11 am 8 pm Rounds of Interview :- 3 to 4 rounds Technical Skills :- Knowledge of security measures and auditing practices within various operating systems, databases and applications. Experience in assessing risks across a variety of business processes. Experience of working on Financial Services sector clients. Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Sr. Management and Clients. Hands on experience of working on IT General Controls, IT Application controls testing, IT Internal Audits, IT Risk Assessments, Third Party Risk Management. Knowledge of regulations impacting the privacy, integrity and availability of customer PII. Exposure of having led IT Audit engagements Exposure of working on Identity Access Management aspects like user management, authentication and authorization. Has team leading experience and has been a performance manager in current or last role Technical skills: Prior experience in evaluating the design and operating effectiveness of technology controls over varied IT platforms including ERP suites, Windows, Unix/Linux, iSeries, Job Requirements :- We are recruiting for a Senior in the IT Audit & Assurance, Risk Consulting team. Working as a Senior in this team, your responsibilities will include: Assist in planning activities, development of audit program, and execution of internal audits and IT control assessments in the following areas: IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/compliance requirements Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management Work with client management team to assist in implementation of new processes and controls to address key risks, as necessary Draft comprehensive executive summaries and final reports for delivery to client senior management and document and review engagement workpapers in accordance with standard KPMG and industry-accepted internal audit methodologies Assist in kick-off, status, and closing meetings with engagement team and client and contribute to IT Audit knowledge base and internal practice development initiatives Helping AM and Managers to manage and upskill the team. Interested Candidate can share their updated resume on the below mentioned Details :- Whatsapp :- 7208042991