875 Cisa Jobs

2-3 years IT audit experience in Domain like ITGC, Cyber Security, SOC 2, Application and IT security Infrastructure and IT Regulatory compliance Proficient in assessing IT-related risk and controls review Familiarity with IT regulatory requirements related to information security of regulators such as RBI, IRDA, SEBI and other IT Standards Educational Professional Credentials Working IT audit experience in role of lead or IT audit team member. Bachelor's/Master's degree in Engineering such as IT, Computer Science etc. Having one IT Security certification such as CISA, ISO 27001, CISSP, CISM, CCSK etc. Required Knowledge Skills Excellent written and verbal communication skills.

2 - 5 years of experience in Information Security and Compliance in medium to large-sized companies. Good Understanding of Technology Risk Assessment Frameworks and Application risk Assessment. Good Understanding and hands on experience on PCI DSS Standard and various PCI compliance is must. Experience of working in the Banking or Payment sector is preferred. Hands-on experience with various Audits and Standards Such as ISMS, SSAE 18, ISO 27001, ISO 31000, ISO 22301, CSA Star, NIST Risk framework, PCI DSS, PCI 3DS, PCI PA-DSS/SSF, PCI S3 etc. Experience of Vendor Risk Assessment and responding to client Request for Proposal (RFP). Excellent written and oral communication and penchant for technical documentation Educational & Professional Credentials Bachelor of Technology (BE/ B. Tech) or ME in Computer Science, MCA or equivalent. Good to have Information Security Certifications like CISA, CISM, CISSP etc. Required Knowledge & Skills Work with internal and external stakeholders to assess the IT architecture or proposed IT architecture solutions to identify the risk areas with regards to PCI controls. Assess the network architecture and or reviews the Firewall rulesets, Network devices/appliances to see if they are aligned with the PCI control requirements and recommends compensatory controls where necessary. Execute operational activities to support audit and compliance activities including technical validation processes. Conduct PCI DSS scoping engagements, gap analysis and assessments related to securing the Cardholder Data Environment. Effectively multi-tasks on multiple assignments and deliverables. Actively accepts individual and team responsibilities to meet commitments. Takes responsibility for own performance and actions and demonstrates responsibility and teamwork towards overall team/department goals. Discuss the SOP document with all relevant stakeholders - right from process owner to the BU functional heads Detailed understanding of SOC reports (SOC2, Type 1, 2), ISMS reports and ability to relate the IT General Controls, IT Application Controls, Cyber Controls to the SOC framework. Develop and Maintain Vendor Risk Management /Third Party Risk Management Program including Vendor Onboarding Audit, Periodic Vendor Assessment, Maintain TPRM Database. Review and implement controls and policies as per RBI and other regulatory requirements. Maintain ISMS framework, evaluate effectiveness of implemented controls and provides recommendations for improvement. Facilitate Client Due - Diligence in collaboration with Business. Develop and Maintain Enterprise Risk Assessment framework. Perform Internal Assessment against various Standards to ensure the established policies are being followed and prepare internal reports. Contract review and providing responses to client Request for Proposal (RFP)

Key Accountabilities and Main Responsibilities Support the Internal Audit Team to contribute to the development of an annual IA plan that covers the whole group. Follow the IA methodology and from time to time contribute to the maintenance and improvement of the framework and methodology. Build the profile of the team in the organisation and develop strong relationships with key stakeholders (particularly stakeholders in India). Work with the Audit Teams in other locations to support Internal Audit s goals of global coverage and independence. This will require the Senior Internal Auditor to act independently of local management. Complete or contribute to IA fieldwork and reporting as required (noting some reviews may be stand alone and some reviews may be global or cover multiple jurisdictions). Provide constructive recommendations focused on internal control as well as value add recommendations to help the business achieve its objectives. Prepare clear, concise and timely audit reports (including times where the Senior Auditor is contributing to audit reports that cover multiple jurisdictions). Support the oversight of co-source IA activity in India, where applicable. In conjunction with the Head of Internal Audit, initiate new audits by engaging management, drafting audit Terms of Reference (Scope) and seeking executive/management approval to commence each review. Maintain effective relationships with management including agreement of audit terms of reference, clearance of audit reports (including appropriate management actions) and offering management on-going support and guidance where appropriate. Assist in coordinating and executing the Internal Audit follow up of overdue actions. Assist the Head of Internal Audit with the preparation of audit reporting for risk committees, the executive and the Group Audit Committee Experience & Personal Attributes Five plus years of relevant experience in an Internal Audit environment including IT technology audit within a professional services firm or a financial services context. Experience working for a multinational would be would be desirable but is not essential. As this would be the first (only) in-house technology related audit role in Link the applicant would need to have sufficient experience to contribute to our Internal Audit Plan for technology as well as to lead and execute technology related audits (noting that some specialised audits would still be completed by third parties). Strong written and verbal communication skills Strong stakeholder management experience and ability to interact with stakeholders at all levels. Understanding of technology internal controls and a desire to deliver quality audit outcomes Ability to work independently as well as ability to work with other team members in other locations as required Understanding that this role involves the completion of audit testing/fieldwork with no or limited assistance from junior staff. The candidate may be required to work under the direction of staff from other jurisdictions to fulfill audit objectives. Prepared to undertake a level of domestic travel (Likely less than 20 days per year) Prepared to support end to end audit processes including planning, execution, follow up of outstanding audit items and reporting to management and the Board. Tertiary qualifications relevant to information technology (e.g. CISA etc)

Key Accountabilities and Main Responsibilities Support the Internal Audit Team to contribute to the development of an annual IA plan that covers the whole group. Follow the IA methodology and from time to time contribute to the maintenance and improvement of the framework and methodology. Build the profile of the team in the organisation and develop strong relationships with key stakeholders (particularly stakeholders in India). Work with the Audit Teams in other locations to support Internal Audit s goals of global coverage and independence. This will require the Senior Internal Auditor to act independently of local management. Complete or contribute to IA fieldwork and reporting as required (noting some reviews may be stand alone and some reviews may be global or cover multiple jurisdictions). Provide constructive recommendations focused on internal control as well as value add recommendations to help the business achieve its objectives. Prepare clear, concise and timely audit reports (including times where the Senior Auditor is contributing to audit reports that cover multiple jurisdictions). Support the oversight of co-source IA activity in India, where applicable. In conjunction with the Head of Internal Audit, initiate new audits by engaging management, drafting audit Terms of Reference (Scope) and seeking executive/management approval to commence each review. Maintain effective relationships with management including agreement of audit terms of reference, clearance of audit reports (including appropriate management actions) and offering management on-going support and guidance where appropriate. Assist in coordinating and executing the Internal Audit follow up of overdue actions. Assist the Head of Internal Audit with the preparation of audit reporting for risk committees, the executive and the Group Audit Committee Experience & Personal Attributes Five plus years of relevant experience in an Internal Audit environment including IT technology audit within a professional services firm or a financial services context. Experience working for a multinational would be would be desirable but is not essential. As this would be the first (only) in-house technology related audit role in Link the applicant would need to have sufficient experience to contribute to our Internal Audit Plan for technology as well as to lead and execute technology related audits (noting that some specialised audits would still be completed by third parties). Strong written and verbal communication skills Strong stakeholder management experience and ability to interact with stakeholders at all levels. Understanding of technology internal controls and a desire to deliver quality audit outcomes Ability to work independently as well as ability to work with other team members in other locations as required Understanding that this role involves the completion of audit testing/fieldwork with no or limited assistance from junior staff. The candidate may be required to work under the direction of staff from other jurisdictions to fulfill audit objectives. Prepared to undertake a level of domestic travel (Likely less than 20 days per year) Prepared to support end to end audit processes including planning, execution, follow up of outstanding audit items and reporting to management and the Board. Tertiary qualifications relevant to information technology (e.g. CISA etc)

Key Accountabilities and Main Responsibilities Support the Internal Audit Team to contribute to the development of an annual IA plan that covers the whole group. Follow the IA methodology and from time to time contribute to the maintenance and improvement of the framework and methodology. Build the profile of the team in the organisation and develop strong relationships with key stakeholders (particularly stakeholders in India). Work with the Audit Teams in other locations to support Internal Audit s goals of global coverage and independence. This will require the Senior Internal Auditor to act independently of local management. Complete or contribute to IA fieldwork and reporting as required (noting some reviews may be stand alone and some reviews may be global or cover multiple jurisdictions). Provide constructive recommendations focused on internal control as well as value add recommendations to help the business achieve its objectives. Prepare clear, concise and timely audit reports (including times where the Senior Auditor is contributing to audit reports that cover multiple jurisdictions). Support the oversight of co-source IA activity in India, where applicable. In conjunction with the Head of Internal Audit, initiate new audits by engaging management, drafting audit Terms of Reference (Scope) and seeking executive/management approval to commence each review. Maintain effective relationships with management including agreement of audit terms of reference, clearance of audit reports (including appropriate management actions) and offering management on-going support and guidance where appropriate. Assist in coordinating and executing the Internal Audit follow up of overdue actions. Assist the Head of Internal Audit with the preparation of audit reporting for risk committees, the executive and the Group Audit Committee Experience & Personal Attributes Five plus years of relevant experience in an Internal Audit environment including IT technology audit within a professional services firm or a financial services context. Experience working for a multinational would be would be desirable but is not essential. As this would be the first (only) in-house technology related audit role in Link the applicant would need to have sufficient experience to contribute to our Internal Audit Plan for technology as well as to lead and execute technology related audits (noting that some specialised audits would still be completed by third parties). Strong written and verbal communication skills Strong stakeholder management experience and ability to interact with stakeholders at all levels. Understanding of technology internal controls and a desire to deliver quality audit outcomes Ability to work independently as well as ability to work with other team members in other locations as required Understanding that this role involves the completion of audit testing/fieldwork with no or limited assistance from junior staff. The candidate may be required to work under the direction of staff from other jurisdictions to fulfill audit objectives. Prepared to undertake a level of domestic travel (Likely less than 20 days per year) Prepared to support end to end audit processes including planning, execution, follow up of outstanding audit items and reporting to management and the Board. Tertiary qualifications relevant to information technology (e.g. CISA etc)

Key Accountabilities and Main Responsibilities: Strategic Focus: Development of First Line Risk Frameworks : Contribute to the design and enhancement of risk procedures aligned with enterprise standards. Participation in Strategic Projects : Engage in cross-functional initiatives like system implementations and regulatory efforts. Compliance with Risk Governance Standards : Ensure alignment with CUSO Risk Framework and promote a strong risk culture. Operational Management: Support RCSA Program Execution : Plan and execute Risk and Control Self-Assessments . Issue Monitoring and Remediation Coordination : Track and resolve open issues across risk domains. Policy and Procedure Management : Maintain and update risk-related documentation. Control Testing Execution : Perform and document control tests. Documentation & Reporting : Prepare reports and dashboards for transparency. Continuous Improvement : Recommend enhancements to controls and methodologies. Project Management Skills : Track progress and direct team efforts. People Leadership: Stakeholder Engagement : Collaborate with internal teams and communicate findings. Fostering Team Cohesion and Performance : Lead and motivate the team. Strong Presentation and Communication Skills : Communicate effectively across levels and demonstrate leadership in team settings. Governance & Risk: Compliance & Standards Alignment : Ensure adherence to internal and external standards. Experience in Operational Risk Management : Focus on Information/Technology Risk . Industry Frameworks Familiarity : Knowledge of NIST, FFIEC, COBIT, ISO27002, OWASP . Preferred Certifications : CISSP, CRISC, CISA, CISM . Issue Identification & Escalation : Identify and escalate control deficiencies. Experience & Personal Attributes: Qualifications: Educational and Professional Qualifications : Chartered Accountant / Master's degree in Business Administration, Commerce, Finance . Minimum of 4 years of experience in Operational Risk Management (with a focus on Information/Technology Risk ) and operations/accounting within the financial services industry. Experience in the Second Line of Defense (SLoD) is desirable. Strong understanding of risk assessment methodologies and experience in Financial Services , preferably in the Fund Services environment. Proven ability to demonstrate detailed knowledge of various operational risk types and internal control principles to support the execution of risk programs. Personal Attributes: Strong analytical and problem-solving skills with the ability to lead a medium-sized team. Support senior leadership in the adoption and execution of accounting review standards and best practices. Ability to analyze, resolve, and document problems and resolutions. Ability to work as part of a cross-cultural team . Strong organization and time management skills. Continuous improvement focus with the ability to identify risks, cost efficiencies, and operational improvements. Strong presentation and communication skills with the ability to communicate clearly and effectively at all levels. Self-driven and motivated with a focus on operational efficiency and continuous improvement .

Key Accountabilities and Main Responsibilities: Strategic Focus: Development of First Line Risk Frameworks : Contribute to the design and enhancement of risk procedures aligned with enterprise standards. Participation in Strategic Projects : Engage in cross-functional initiatives like system implementations and regulatory efforts. Compliance with Risk Governance Standards : Ensure alignment with CUSO Risk Framework and promote a strong risk culture. Operational Management: Support RCSA Program Execution : Plan and execute Risk and Control Self-Assessments . Issue Monitoring and Remediation Coordination : Track and resolve open issues across risk domains. Policy and Procedure Management : Maintain and update risk-related documentation. Control Testing Execution : Perform and document control tests. Documentation & Reporting : Prepare reports and dashboards for transparency. Continuous Improvement : Recommend enhancements to controls and methodologies. Project Management Skills : Track progress and direct team efforts. People Leadership: Stakeholder Engagement : Collaborate with internal teams and communicate findings. Fostering Team Cohesion and Performance : Lead and motivate the team. Strong Presentation and Communication Skills : Communicate effectively across levels and demonstrate leadership in team settings. Governance & Risk: Compliance & Standards Alignment : Ensure adherence to internal and external standards. Experience in Operational Risk Management : Focus on Information/Technology Risk . Industry Frameworks Familiarity : Knowledge of NIST, FFIEC, COBIT, ISO27002, OWASP . Preferred Certifications : CISSP, CRISC, CISA, CISM . Issue Identification & Escalation : Identify and escalate control deficiencies. Experience & Personal Attributes: Qualifications: Educational and Professional Qualifications : Chartered Accountant / Master's degree in Business Administration, Commerce, Finance . Minimum of 4 years of experience in Operational Risk Management (with a focus on Information/Technology Risk ) and operations/accounting within the financial services industry. Experience in the Second Line of Defense (SLoD) is desirable. Strong understanding of risk assessment methodologies and experience in Financial Services , preferably in the Fund Services environment. Proven ability to demonstrate detailed knowledge of various operational risk types and internal control principles to support the execution of risk programs. Personal Attributes: Strong analytical and problem-solving skills with the ability to lead a medium-sized team. Support senior leadership in the adoption and execution of accounting review standards and best practices. Ability to analyze, resolve, and document problems and resolutions. Ability to work as part of a cross-cultural team . Strong organization and time management skills. Continuous improvement focus with the ability to identify risks, cost efficiencies, and operational improvements. Strong presentation and communication skills with the ability to communicate clearly and effectively at all levels. Self-driven and motivated with a focus on operational efficiency and continuous improvement .

As the Lead, Technology Risk Analyst at Mastercard, you will play a crucial role in ensuring the company's safety and security from cyber and physical threats. Your primary responsibility will be to drive readiness and compliance on security aspects related to evolving regulatory and statutory needs across global markets. Your passion for information security and cybersecurity, along with your analytical skills and exposure to the regulatory environment, will be instrumental in this role. Your key responsibilities will include monitoring and assessing security obligations stemming from new and changing regulations worldwide. You will collaborate with various teams across Corporate Security to advise and ensure compliance with region-specific regulatory requirements within Information Security and Cyber Security domains. Engaging with partner teams on supporting Regulatory audits and obligations, you will lead and monitor remediation efforts in the realm of Security. Moreover, you will be tasked with developing and implementing governance processes to manage regulatory risks effectively, ensuring the sustainability of controls and measures implemented for compliance. Managing documentation, tracking, and reporting of security requirements and ongoing compliance efforts will also fall under your purview. Additionally, you will represent the company on Risk & Governance Committees and internal forums, providing regular reports to senior leadership. To excel in this role, you should possess a strong understanding of information and cyber security domains, governance, and risk management practices. Your experience in handling security audits, conducting assessments, and managing senior stakeholders will be invaluable. Demonstrated leadership abilities in leading cross-functional teams and managing complex projects are essential. A solid grasp of security frameworks such as NIST, ISO 27001, and PCI-DSS, as well as familiarity with regulatory standards, will be advantageous. Holding a preferred security certification like CISSP, CISM, or CISA is a plus. Excellent written and verbal communication skills are a must, enabling you to effectively interact with stakeholders. You should be viewed as a trusted advisor who comprehends business processes and can offer security consultation and advisory services. Your confidence, analytical mindset, and ability to drive security discussions with stakeholders will set you up for success in this role. In line with Mastercard's commitment to information security, it is expected that you adhere to the company's security policies and practices diligently. Safeguarding the confidentiality and integrity of accessed information, promptly reporting any suspected security violations or breaches, and completing all mandatory security trainings are integral parts of your responsibilities as a member of the Corporate Security team.,

You have 8 to 12 years of experience in the field of Identity and Access Management. As an IAM Architect, your responsibilities include having hands-on experience with various IAM tools such as Azure, Okta, ForgeRock, PingFederate, SailPoint, Saviynt, CyberArk, Delinea, Beyond Trust, and One Identity. You should have a good understanding of concepts like CIAM, Identity Governance, Privileged Access Management, and Enterprise SSO. Your role involves integrating IAM solutions with in-house and third-party applications for Single Sign-On (SSO), Federation, provisioning, deprovisioning, and custom workflows. You will work on enabling legacy and modern identity providers like AD, ADFS, Azure AD, certificates, and PKI for management by IAM tools. Furthermore, you will oversee the development and lifecycle management of services related to Identity Governance Administration services. It is essential to support the business in ensuring IDAM control outcomes are met for IT Assets/Services and provide expertise on group control operation to manage residual risk effectively. Your responsibilities also include executing the IDAM Control Exceptions (ICE) process and tooling, monitoring and managing the operating effectiveness and residual risk of IT Assets/Services, and implementing enhancements to control processes by collaborating with key stakeholders. Additionally, you will support the business in using control tools, troubleshoot issues, and provide training. Seeking opportunities to enhance, streamline, and automate processes is crucial. Communication with stakeholders throughout the process is necessary. The ideal candidate should have experience in Cyber Security and IAM controls, technical and architectural skills, and the ability to make timely decisions based on relevant information. Role-relevant qualifications such as CISSP, CISM, or CISA are desirable. You should have a proven track record of delivering within schedule, working with auditors and regulators, strong data analytical skills, process mapping skills, and be accountable for deliverables. If you meet these requirements and are interested in this position, please share your CV at Puja.Singh@ltimindtree.com.,

This position is responsible for performing vendor security assessments, analyzing risks, and processing exceptions to security standards and PEEP requests. The increasing regulatory and audit oversight of these critical activities emphasizes the importance of continued execution of these tasks. The key responsibilities of this role include conducting risk analysis, reporting metrics, and providing business support. This entails collaborating with business partners, leadership, vendor management, IT leaders, and staff. The position plays a crucial role in ensuring that vendor security assessments are conducted as required, meeting Ameriprise's regulatory obligations, capturing necessary requirements, ensuring timely responses, escalating issues as necessary, and reporting risks and security results to leaders. It also involves integrating these processes with CTI and managing the workload effectively. Additionally, the position is responsible for ensuring that exceptions are reported, escalated, addressed promptly, and consistently to reflect risks accurately, prevent them from becoming idle, and meet regulatory obligations. The candidate must be willing to work in the evening shift from 4:45 pm to 1:15 am and demonstrate the ability to work under pressure and coordinate with offshore/onshore teams. Required qualifications for this role include a degree in computer science, engineering, IT, or an equivalent technical field. Preferred certifications include ISO-27001, CISA, and CISM. Preferred qualifications entail in-depth knowledge and 2-4 years of experience working in the Global Risk and Compliance domain. Strong communication skills are essential for interacting with users globally on Information Security best practices, exceptions, assessments, and audit modules. Additional certifications such as ISO-27001, CISA, and CISM are considered advantageous. Ameriprise India LLP has been offering client-based financial solutions for 125 years, helping clients plan and achieve their financial objectives. As a U.S.-based financial planning company headquartered in Minneapolis with a global presence, the firm focuses on Asset Management and Advice, Retirement Planning, and Insurance Protection. Join a collaborative and inclusive culture that values your contributions and offers opportunities to work with talented individuals who share your dedication to excellence. This is an opportunity to make a difference both in the office and the community while working for an ethical company that cares. This is a full-time position with working hours from 4:45 pm to 1:15 am in the India Business Unit under the AWMP&S President's Office. The job family group is Technology.,

We are looking for an experienced Information Security professional with certifications like CISSP or CISA, and a strong background in leading compliance initiatives for SOC 2 Type II, ISO 27001, PCI DSS, and IOCFR. Direct experience working with RBI regulations and auditors is mandatory . The ideal candidate should have hands-on knowledge of AWS cloud security, and familiarity with tools such as GuardDuty, Wiz/Orca, Splunk, Crowdstrike, and Vanta. Experience in fast-paced sectors like FinTech, E-commerce, or Payment Solutions is a strong plus. What You&aposll Do: Governance & Compliance: Develop and maintain information security policies and drive compliance with ISO 27001, SOC 2, and RBI guidelines. Act as the primary contact for audits and inspections. Risk Management: Conduct risk assessments, manage risk registers, and oversee third-party/vendor security reviews. Security Operations: Oversee tools and processes for SIEM, DLP, EDR, patch management, and incident response. Lead security incident simulations and resolution. Cloud & App Security: Manage AWS security architecture, implement CSPM programs, and embed secure coding and DevSecOps practices across CI/CD pipelines. Business Continuity & DR: Maintain and test disaster recovery and continuity plans (RTO: 60 mins; near-zero RPO). Awareness & Culture: Run regular security training, phishing drills, and promote a security-aware culture across the organization. Reporting & Strategy: Present security metrics, dashboards, and risk reports to leadership and participate in strategic IT governance forums. What Were Looking For: 8+ years in cybersecurity or information security roles; at least 3 years in a leadership capacity. Background in fintech, NBFC, or regulated financial services preferred. Proven track record in managing audits (ISO 27001, SOC 2), incident response, and cloud security (AWS). Strong knowledge of cybersecurity tools and frameworks: AWS, SIEM, CSPM, IAM, patch management, DLP, EDR. Familiar with secure SDLC, DevSecOps, threat modeling, and regulatory compliance. Effective communicator with experience working across cross-functional teams. Certifications (preferred): CISSP, CISM, CISA, ISO 27001 Lead Auditor/Implementer, AWS Security Specialty. Bonus: DCPP, CIPP/E, or other data privacy/RBI-focused certifications. About Kissht: Kissht, a Great Place to Work certified organization, is a consumer-first credit app that is transforming the landscape of consumer credit. As one of the fastest-growing and most respected FinTech companies, Kissht is a pioneer in data and machine-based lending. With over 15 million customers, including 40% from tier 2 cities and beyond, we offer both short and long-term loans for personal consumption, business needs, and recurring expenses. Founded by Ranvir and Krishnan, alumni of IIT and IIM, and backed by renowned investors like Endiya Partners, the Brunei Investment Authority, and the Singapore Government, Kissht is synonymous with excellence in the industry. Join us and be a part of a dynamic, innovative company that is changing the future of financial technology. Show more Show less

Good experience in in the areas of, ITGC ,ITAC, IT audits, SOX / ICFR / IFC / SAS 70 / SSAE / SOC, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits Knowledge of ERP s like SAP / OFIN / JDE / etc and their native application controls. Must have hands on experience or led projects to comply with regulatory requirements / international standards like (SSAE / ISAE / SOX, PCI, ISO 27001) and good practices (COSO, COBIT) relating to information security. Must have Excellent English skills, excellent presentation skills, excellent soft-skills (influencing & negotiation) Team management skillset is mandatory In our Risk Assurance team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Assist client in identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services Understand clients business environment and basic risk management approaches Project Management: Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions Play substantive/lead role and engagement planning, economics, and billing Generate innovative ideas and challenge the status quo Participate in proposal development efforts Participate in "add-on" sales to client Membership and visibility in professional & civic organizations Identify opportunities to cross-sell other services Build and nurture positive working relationships with clients with the intention to exceed client expectations Qualification and Certification: Chartered Accountant and/or MBA with Finance/IT Certifications of CISA, CISSP, CISM, ISO27001 preferred Your role as a leader At Deloitte India, we believe in the importance of leadership at all levels. We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society and make an impact that matters. In addition to living our purpose, employees across our organization: Builds own understanding of our purpose and values; explores opportunities for impact Demonstrates strong commitment to personal learning and development; acts as a brand ambassador to help attract top talent Understands expectations and demonstrates personal accountability for keeping performance on track Actively focuses on developing effective communication and relationship-building skills Understands how their daily work contributes to the priorities of the team and the business

Jul 24, 2025 Location: Mumbai Designation: Assistant Manager Audit & Assurance - Assurance Assistant Manager - Internal audit What impact will you make Every day, your work will make an impact that matters, while you thrive in a dynamic culture of inclusion, collaboration and high performance. As the undisputed leader in professional services, Deloitte is where you ll find unrivaled opportunities to succeed and realize your full potential Deloitte is where you ll find unrivaled opportunities to succeed and realize your full potential. The Team Discover the various Internal Audit services, we offer to help organizations look below the surface to achieve superior performance through a full range of outsourcing, co-sourcing, and advisory services including with respect to technology and data analytics . We enhance the overall value delivered by IA functions through strengthening quality, flexibility, efficiency, and value. Additionally, Deloitte helps clients extend their IA oversight to gain greater understanding of key enterprise risks such as evolving IT systems, applications, and other technologies. Work you ll do As Assistant Manager in our Internal Audit team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Key Job Responsibilities As a part of our team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Ability to effectively perform the technical components of risk assessments to provide an accurate view of the client s current risk state Ability to perform end-to-end business process analyses and design Ability to gather, synthesize, and analyze data using appropriate tools and technologies Ability to assess and design internal controls by applying an understanding of internal control design frameworks and regulatory requirements Ability to understand the client s business, interpret sector trends, and learn leading practices Ability to effectively interact with colleagues and clients of varying backgrounds to effectively serve clients Ability to enhance quality and efficiency of recommended conduct risk solutions by applying relevant frameworks, conducting research, and performing analyses Ability to conduct internal audits by leveraging approved processes and methodologies Ability to set the stage for a successful assessment of client s internal audit processes and controls by collecting and organizing data Ability to enhance quality of assurance engagements by identifying risks, performing testing, researching governing regulations, and developing reports Ability to form a core Extended Enterprise Risk Management (EERM) skillset through proactively conducting research, and participating in internal and external initiatives Qualifications CA BBM / BBA / B. Com Must have one of the certifications - CFE, CPA, CIA, CISA Experience in Advanced Analytics and ERP is preferred Your role as a leader At Deloitte India, we believe in the importance of leadership at all levels. We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society and make an impact that matters. In addition to living our purpose, Assistant Manager across our organization: Builds own understanding of our purpose and values; explores opportunities for impact Demonstrates strong commitment to personal learning and development; acts as a brand ambassador to help attract top talent Understands expectations and demonstrates personal accountability for keeping performance on track Actively focuses on developing effective communication and relationship-building skills Understands how their daily work contributes to the priorities of the team and the business How you ll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there s always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Centre. Audit & Assurance - Assurance Assistant Manager - Internal audit Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Our purpose Deloitte is led by a purpose: To make an impact that matters . Every day, Deloitte people are making a real impact in the places they live and work. We pride ourselves on doing not only what is good for clients, but also what is good for our people and the communities in which we live and work always striving to be an organization that is held up as a role model of quality, integrity, and positive change. Learn more about Deloittes impact on the world Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you re applying to. Check out recruiting tips from Deloitte professionals. Eager to learn and grow in a fast-paced environment

As one of the world s leading asset managers, Invesco is dedicated to helping investors worldwide achieve their financial objectives. By delivering the combined power of our distinctive investment management capabilities, we provide a wide range of investment strategies and vehicles to our clients around the world. If youre looking for challenging work, smart colleagues, and a global employer with a social conscience, come explore your potential at Invesco. Make a difference every day! Job Description Department: The Invesco Internal Audit function provides independent assurance, advisory, and investigative services for the organization. Partnering closely with business leaders, the department focuses on the most critical risks and issues facing the organization and delivers strategic, innovative, and data-driven results. The department strives to be valued business advisors that provide meaningful solutions and insights, not just information and recommendations. Our team continuously seeks opportunities to improve our methodology by leveraging technology, data, agile principles, and creative solutions to maximize value to the organization. Role Summary: The Assistant Manager, IT Internal Audit, is responsible for conducting Sarbanes-Oxley testing, traditional internal audits, and other projects assigned by the Audit Director. This role requires obtaining an understanding of the areas under review, executing internal control tests, and documenting the results in accordance with Invesco s agile auditing principles and applicable professional standards. Key Responsibilities: Audit Planning and Execution: Plan and execute Sarbanes-Oxley testing and traditional internal audits of applicable business areas, as requested by the Audit Director and the Internal Audit Leadership Team. This includes: Performing assessments and evaluating the design and operation of global ITGCs, IT Application Controls, and IPE (Key Reports) to determine the effectiveness of controls, identify gaps, and implement action plans to remediate gaps. Assessing risks associated with system implementations and working with management to identify and implement controls to address identified risks. Partnering with global IT and Business Leadership to manage, control, perform, and audit activities related to SOX regulations and the ITGC environment. Reviewing control descriptions, process narratives, and testing strategies for reasonableness and accuracy. Influencing stakeholders and related affiliates to implement necessary process modifications to meet regulatory needs. Reviewing and implementing remediation of control gaps found from SOX and ITGC/ITAC/IPE reviews and risk assessments. Partnering with the Big 4 audit team to handle both administrative and testing tasks. Documentation and Reporting: Conduct walkthroughs, document business procedures, evaluate key controls, and develop audit programs to guide test work. Execute audit testing, complete high-quality work papers, and obtain management acceptance on control weaknesses and action plans. Manage assignments within timeframes, foster relationships with business partners, and promote a culture of risk and control awareness. Continuous Improvement: Embrace a culture of agility, innovation, and continuous improvement within the Internal Audit function. Special Projects: Perform other duties and special projects as assigned by the Audit Director. Qualifications and Experience: Education: Bachelor s degree in Information Systems, Computer Science, Engineering, or Finance preferred. Other business or technology-related degrees considered depending upon relevant experience. Certifications: Professional auditing, security, or technology designation (e.g., CISA, CISSP, CCSP, AWS Cloud Practitioner, etc.) or actively pursuing the completion of such designation preferred. Experience: Minimum 2-4 years of auditing experience with strong knowledge of general controls and SOX Compliance, technology audit, consulting, or information security roles. Previous experience in audit-related, risk management, and/or compliance roles is desirable. Technical Skills: Knowledge of IT Security aspects towards key areas like Cloud Computing, database management systems, SDLC, IT general controls (ITGC), COBIT, and experience working with agile development methodologies. Sound experience with SOX 404 documentation and testing compliance. Analytical Skills: Strong critical thinking, analytical, and decision-making skills. Knowledge of analytical tools such as Tableau is an added advantage. Communication Skills: Excellent verbal and written communication skills in English. Project Management: Strong project management, interpersonal, and administrative skills. Professional Ethics: Demonstrates high professional ethics. Microsoft Office: Proficient in Microsoft Office (MS Word, Excel, PowerPoint, etc.). Key Competencies: Integrity and Ethics: Uphold the highest standards of integrity and ethical behavior. Critical Thinking: Apply critical thinking and problem-solving skills to identify risks and develop effective audit strategies. Adaptability: Demonstrate flexibility and adaptability in a rapidly changing business environment. Collaboration: Work effectively with cross-functional teams and build strong relationships with stakeholders. Professional Development: Commit to continuous learning and professional development to stay current with the latest audit practices and standards. Travel: Potential for up to 10% domestic and international travel. Full Time / Part Time Full time Worker Type Employee Job Exempt (Yes / No) Yes Workplace Model At Invesco, our workplace model supports our culture and meets the needs of our clients while providing flexibility our employees value. As a full-time employee, compliance with the workplace policy means working with your direct manager to create a schedule where you will work in your designated office at least three days a week, with two days working outside an Invesco office. Why Invesco In Invesco, we act with integrity and do meaningful work to create impact for our stakeholders. We believe our culture is stronger when we all feel we belong, and we respect each other s identities, lives, health, and well-being. We come together to create better solutions for our clients, our business and each other by building on different voices and perspectives. We nurture and encourage each other to ensure our meaningful growth, both personally and professionally. We believe in diverse, inclusive, and supportive workplace where everyone feels equally valued, and this starts at the top with our senior leaders having diversity and inclusion goals. Our global focus on diversity and inclusion has grown exponentially and we encourage connection and community through our many employee-led Business Resource Groups (BRGs). What s in it for you As an organization we support personal needs, diverse backgrounds and provide internal networks, as well as opportunities to get involved in the community and in the world. Our benefit policy includes but not limited to: Competitive Compensation Flexible, Hybrid Work 30 days Annual Leave + Public Holidays Life Insurance Retirement Planning Group Personal Accident Insurance Medical Insurance for Employee and Family Annual Health Check-up 26 weeks Maternity Leave Paternal Leave Adoption Leave Near site Childcare Facility Employee Assistance Program Study Support Employee Stock Purchase Plan ESG Commitments and Goals Business Resource Groups Career Development Programs Mentoring Programs Invesco Cares Dress for your Day In Invesco, we offer development opportunities that help you thrive as a lifelong learner in a constantly evolving business environment and ensure your constant growth. Our AI enabled learning platform delivers curated content based on your role and interest. We ensure our manager and leaders also have many opportunities to advance their skills and competencies that becomes pivotal in their continuous pursuit of performance excellence. To know more about us About Invesco: https: / / www.invesco.com / corporate / en / home.html About our Culture: https: / / www.invesco.com / corporate / en / about-us / our-culture.html About our D&I policy: https: / / www.invesco.com / corporate / en / our-commitments / diversity-and-inclusion.html About our CR program: https: / / www.invesco.com / corporate / en / our-commitments / corporate-responsibility.html Apply for the role @ Invesco Careers : https: / / careers.invesco.com / india /

Jun 16, 2025 Location: Bengaluru Designation: Deputy Manager Your potential, unleashed. India s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. Your work profile: Professional should be able to work in hybrid model from office/client office. Strong knowledge of IT audits- ITGC, ITAC and SOC report understanding Conduct process walkthroughs and test the controls. Ensure timely closure of audit tasks. Collaborate with teams to ensure timely completion of audit activities. Desired qualifications Graduation / B.E/ B. Tech in Any Specialization. Work experience: Minimum 4-5 years. Role Summary: Takes ownership of client deliverables and leads modules end-to-end. Responsibilities: Lead modules or small-scale engagements and supervise fieldwork execution for ITGC, ITAC, and SOC reviews. Manage stakeholders for walkthroughs, data requests, and clarifications. Take ownership of modules within larger audits and assist in engagement planning, resource allocation, and quality control. Document control testing results, observations, and evidence clearly and accurately for high-risk areas. Liaise directly with client teams for walkthroughs and issue discussions. Conduct quality review of testing documentation and ensure completeness. Coach and guide junior team members; assist in team capability development. Contribute to audit planning, control design analysis , and remediation support. Must Have: Hands-on experience with ERP-based control testing (SAP/Oracle preferred). Working knowledge of audit standards and control frameworks (SOX, SSAE, ISO 27001). Deep working knowledge of ITGC, ITAC , and regulatory requirements. Experience in reviewing control design and effectiveness . Strong grasp of business process controls and their ERP mapping. Capability to lead teams and manage deliverables . Good analytical and documentation skills. Preferred Qualifications: Relevant certifications (CISA, CISSP, CRISC) are a plus. Knowledge of TPRM Experience working with IT audit processes and compliance frameworks. Experience in risk management and compliance reporting. Experience in risk management, compliance reporting, and IT audit. Prior experience working with ITGC frameworks and SOC report evaluations. Location and way of working: Base location: Bengaluru How you ll grow Connect for impact. Our exceptional team of professionals across the globe are solving some of the world s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead. You can be a leader irrespective of your career level. Our colleagues are characterised by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude, and potential each and every one of us brings to the table to make an impact that matters. Drive your career. At Deloitte, you are encouraged to take ownership of your career. We recognize there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone s welcome entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here s a glimpse of things that are in store for you.

TempHtmlFile Job Title : Analyst Function : Governance, Risk and Compliance Services (GRCS) Location : Gurgaon OVERVIEW KPMG is a global network of professional firms providing Audit, Tax and Advisory services. We operate in 156 countries and have 152,000 people working in member firms around the world. KPMG in India, a professional services firm, is the Indian member firm of KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets and competition. KPMG in India provide services to over 4,500 international and national clients, in India. KPMG has offices across India in Delhi, Chandigarh, Ahmedabad, Mumbai, Pune, Chennai, Bangalore, Kochi, Hyderabad and Kolkata. The Indian firm has access to more than 7,000 Indian and expatriate professionals, many of whom are internationally trained. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment. KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Consulting, Management Consulting and Transactions & Restructuring services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. With increasing regulatory requirements, the need for greater transparency in operations, and disclosure norms, stakeholders require assurance beyond the traditional critique of numbers. Hence assurance is being increasingly required on industry issues, business risks and key business processes. The Governance, Risk & Compliance Services practice assists companies and public sector bodies to mitigate risk, improve performance and create value. We assist our clients to effectively manage business and process risks by providing a full spectrum of corporate governance, risk management, and Compliance Services. These services are tailored to meet client s individual needs, and provide effective support to management in meeting the challenges and opportunities presented by todays complex business environment. Our professionals provide the experience to help companies stay on track and deal with risks that could unhinge their business survival. Our services enable clients to effectively co-ordinate their key growth, quality and operational challenges and working in partnership with us, clients have the benefits of KPMGs experienced, objective, and industry-grounded viewpoints. Following are some of our key service offerings: Risk Based Internal Audit Enterprise Risk Management Risk Assessment Model Business Process Development Sarbanes Oxley 404 Assistance Compliance Assistance Contracts and regulations Corporate Governance Advisory Review and Assessment Revenue Assurance Control Self Assessment Continuous Auditing / Continuous Monitoring Apart from the above service offerings, we also assist client organizations around various aspects viz. Accounting Manuals, Capital Projects Audits, Project focused Control Assessment, setting up IA function, etc. Role & Responsibilities Analysts are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of other solutions of GRCS Consistently deliver quality client services Monitor progress, manage risk and verify key stakeholders are kept informed about progress and expected outcomes Demonstrate basic accounting and process related knowledge. Demonstrate ability to assimilate to new knowledge Remain current on new developments in advisory services capabilities and industry knowledge The job would require travel to client locations within India and abroad THE INDIVIDUAL Have basic understanding of process consulting/ internal audit/ risk consulting Strong analytical and problem solving skills. Possess strong data analytics skills and knowledge of advanced data analytical tools will be an advantage Strong written and verbal communication skills Ability to work well in teams Basic understanding of IT systems, Knowledge of MS office ( MS Excel, PowerPoint, Word etc) Have the ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours Be willing to travel within India or abroad for continuous long periods of time Demonstrate integrity, values, principles, and work ethic Qualification Graduates (BE/B.Tech, BCom, BMS, BBM or similar degree) with 0 - 2 years of related audit, business or sector experience Certifications like Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) would be an added advantage SELECTION PROCESS Candidates should expect 2 - 3 rounds of personal or telephonic interviews to assess fitment and communication skills Compensation Compensation is competitive with industry standards Details of the compensation breakup will be shared with short-listed candidates only People BENEFITS Continuous learning program Driving a culture of recognition through ENCORE our quarterly rewards and recognition program Comprehensive medical insurance coverage for staff and family Expansive general and accidental coverage for staff Executive Health checkup (Manager & above, and for staff above the age of 30) Les Concierge desk Internal & Global mobility Various other people friendly initiatives Strong commitment to our Values such as CSR initiatives The opportunity is now! If you are interested in being part of a dynamic team, serving clients and reaching your full potential KPMG Advisory Services is for you! .

What is the Internal Audit group responsible for? The Franklin Templeton Internal Audit group is an independent and objective function within the Franklin Templeton organization, designed to improve and protect organizational value by providing independent, dynamic risk-based assurance and advisory services. Internal Audit (IA) accomplishes its objectives by being a future-focused and sought-after business partner driven by our insight, knowledge and expertise. What is the Manager, Internal Audit, responsible for ? As our Manager, Internal Audit, you will play a key role in assessing risks, reviewing internal controls, and providing forward-looking insights into improving business processes. You will work closely with senior Private Market stakeholders and co-source partners to deliver high-quality internal audit reviews and help strengthen governance. Collaboration with teams across Internal Audit and the wider organization, while working under limited supervision, is key to supporting delivery of organizational strategies. Our global organization provides a stimulating environment and the opportunity to collaborate with knowledgeable colleagues and specialists around the world. What are the ongoing responsibilities of the Manager, Internal Audit? Planning and executing Private Market audits and special projects, including meeting with auditee management, documenting the control environment, documenting control weaknesses, inefficiencies, root causes, risks, and recommendations. Finalizing audits and special projects for Private Market areas, including conducting exit meetings and drafting and/or reviewing the audit reports. Meeting and interacting with key stakeholders (primarily Private Markets), overseeing our co-source partner of internal audit services, coordinating with other internal compliance/risk management functions. Attending and reporting to Boards and Audit Committees (ACs) as required. Interacting with external auditors and/or regulators as required. Training and developing Internal Audit personnel, working on department-wide initiatives including methodology enhancements, quality assurance, audit tool/system enhancements and procedural reviews What ideal qualifications, skills & experience would help someone to be successful? Bachelors Degree or equivalent in Business, Accounting, Information Technology, or a related discipline 10 to 15+ years of auditing experience and at least 4 years in a senior/supervisory position. 4+ years of top-tier public accounting firm experience Required to hold one or more professional certification/designations in the following: Auditing, e.g., CPA, CIA, CA, CISA, CFE Experience in the asset management industry (Private Markets Private Credit / Private Debt, Real Estate, Private Equity) Knowledge of regulations affecting asset management Demonstrated ability to perform both Assurance and Advisory reviews as well as collaborating with co-source partners Data analytics / data visualization experience (e.g., Tableau, Power BI, Business Objects) What are the other abilities of an Audit Manager? Knowledge of and ability to understand, adapt, respond to, and proactively seek changes and innovation in the technology business environment to improve the competitive advantage of an organization Drive critical activities to completion. Ability to work independently and as part of a team with minimal supervision Apply organizational acumen to identify and maintain focus on key success factors for the organization Knowledge of and ability to work and think alongside stakeholders to achieve stakeholders' current and future aspirations and successes Knowledge of effective influencing tactics and strategies; ability to impact decisions within and outside own organization Knowledge of and the ability to use summarization and simplification techniques to explain complex technical concepts in simple, clear language appropriate to the audience Work with minimal supervision and exercise independent judgment consistent with department guidelines Act as supervisor to lower-level staff Ability to interact with senior management on a regular basis Ability to maintain a professional image (e.g., demeanor, confidentiality, humbleness, maturity and confidence) Work Shift Timings - 2:00 PM - 11:00 PM IST

Essential Services : Role & Location fungibility At ICICI Bank, we believe in serving our customers beyond our role definition, product boundaries, and domain limitations through our philosophy of customer 360-degree. In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team . To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service . The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature. About the role We are looking for a skilled professional to join our Information Security Team as a DevSecOps Manager. As a DevSecOps Manager, you will be responsible for implementation of Security tools in DevOps CI/CD (Continuous integration/Continuous Delivery) pipeline and publish security standards and best practices for Developers teams. Key Responsibilities Identifying Vulnerabilities: Enable automated security scanning process to identify the known vulnerabilities in source code, Open-source library, and configuration. Provide technical leadership and direction in the DevSecOps domain. Analysis: Troubleshoot DevSecOps pipeline implementation issue and support for successful deployment. Implement DevSecOps with multiple agile teams across various platforms, environments, and instances. Implement Automated DevSecOps template-based solutions for cloud environments. Implement Security Measures: Understand the Security Requirements & Implement the new DevSecOps process. Integrate, Monitor and Improve Cloud Security controls via DevSecOps process in existing DevOps process. Perform assessment and help to mitigate Security findings and implement improvement Security measures. Configure Cloud Security Tools/Systems in a CI/CD Pipelines. Implementing Security scanning into Jenkins, Code Pipeline, and DevOps workflows. Define gating process metrics for security and implement in DevSecOps. Employ infrastructure as code to increase automation, scalability, and reliability. Reporting: Prepare and provide necessary metrics, detailed reports, artifacts, executive summary and dashboard to leadership on a regular frequency. Build and maintain a set of tools that enable developers to self-serve for remediation. Monthly Dashboard Reporting for Leadership. Collaborate: Capable of working in a dynamic environment, multi-department coordination and attaining the target. Qualifications & Skills Educational Qualification: Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent. Certifications: CSSLP, CISSP, GPEN, ECSA, CEH, CISM, CISA, or equivalent. Compliance: Good understanding of cyber security trends & hacking techniques. Experience in analysing threats of cloud and application components. Familiarity with OWASP, SANS vulnerabilities along with its validations in source code and other security frameworks & Compliance. Ability to review assessment reports to provide risk mitigation & recommendations on that basis. Technical Skills: Experience with various application security tools including SAST, DAST, Software composition analysis and application Penetration testing. Experience with Automation in testing or orchestration Selenium, Maven, Ant, Msbuild, Npm, Yarn, Jenkins, Gitlab, Bitbucket, etc. Knowledge of Agile and Scrum processes. Understanding of virtualization and container technologies (Docker, Kubernetes, etc). Communication Skills: Outstanding communication abilities. Ability to effectively communicate the required recommendations. About the Business Group ICICI Banks Information Security Group believes in providing services to its customers in the safest and secured manner, keeping in mind that data protection for its customers is as important as providing quality banking services across the spectrum. The CIA triad of Confidentiality, Integrity, and Availability is built on the vision of creating a comprehensive information security framework. The Bank also lays emphasis on customer elements like protection from phishing, adaptive authentication, awareness initiatives, and provide easy to use protection and risk configuration ability in the hands of customers. With this core responsibly, ICICI administer and promotes on going campaigns to create awareness among customers on security aspects while banking through digital channels.

As aRisk Control AssuranceAnalyst, you will: Support the assurance of robust risk and control measures by aiding in the development and implementation of strategies compliant with SOX requirements and industry best practices Contribute to a team specializing in controls assurance. Depending on your experience and skills, your role might focus on assessing and monitoring IT system controls in alignment with established standards or ensuring regulatory compliance in our business operations and helping to streamline processes. As we expand our risk and control practices beyond SOX,youllhave the opportunity to broaden yourexpertiseand take on new challenges in different areas. Collaborate with international teams and cross-functional partners to align risk management practices and controls initiatives Utilize data analytics and automation tools to enhance our teams capabilities and support the organizations control improvement by driving automation and streamlining control processes Promote initiatives to increase awareness and understanding of internal controls and SOX requirements throughout the organization About You: 3 or more years of relevant work experience, or equivalent combination of education and experience, preferably within a regulated industry Familiarity with control assurance principles in technology and/or business processes Relevant professional certifications such as CISA, CIA,CISSPor others is a plus Experience with data analytics and automation tools is a plus Problem-solving abilities, adaptability, a learning mindset, and a team-player attitude Excellent communication skills, with the ability to work effectively with international teams

As a Tech Delivery & Op Excellence Practitioner, you understand how to deliver value to clients and apply methods or certifications appropriately. Your attention to detail and deep expertise allow you to see inherent risks or improvement opportunities that others may not. You work directly with client teams to ensure a high standard of delivery and operational excellence is met. Key responsibility: - Risk and Compliance senior Analyst works with the Application service delivery organization and other compliance related functions to help: - Perform audits/reviews to assess risks in Application development and maintenance service environment - Manage risk in Application development and maintenance service to an acceptable level - Increase awareness of and compliance with policy and process-related matters - Support successful completion of various external compliance certification programs and internal compliance assessments - Introduce continual improvement including lessons learned from matters requiring intervention - The successful candidate for this role will be a member of a dedicated team operating a Controls and Compliance function, performing audit-style reviews of Application Development & Maintenance Services outsourcing engagements covering compliance matters and operational service management and service delivery good practice. Must-Have Skills/Qualifications: - Minimum of 1-year experience in Auditing principles and practices (sample qualifications*: CISA, ISO 27001 Lead Auditor) - Minimum of 1-year experience in Application security/audit roles in Application development & maintenance service industry (sample qualifications*: EC-Councils CASE, CEH, Agile Methodology, DevOps Certification, CMMI for Development) - Knowledge of secure SDLC models, secure coding standards, OWASP Top 10, threat modeling, SAST, DAST, single sign-on, Encryption - Minimum of 1-year experience in Operational compliance requirements - Contract Management/Service Reporting (including Service Level Agreements and Operational Level Agreements) - Risk management or assessment (sample qualification*: CRISC) - Knowledge of cloud environment and services (sample qualification*: Microsoft Azure/AWS/Google Certifications) - Team and stakeholder management Nice-to-Have Skills/Qualifications: - Data privacy and protection (sample qualifications*: CIPM, CIPT, CIPP) - CISSP, CISM, CISA, CCSK, CCSP - SOC1 and SOC2 (SSAE16/ISAE3402) awareness - Business Continuity and Disaster Recovery awareness (ISO 22301) Professional Attributes: 1. Good communication 2. Teamwork 3. Problem-solving capabilities 4. Work planning and management 5. Quick learner 6. Eager to take on responsible tasks 7. Dedicated and focused Educational Qualification: 1. MBA-Information Security/IT 2. BE/B-Tech with CS/IT/related domain 3. BSc-IT Additional Information: - Occasional within-country travel - Flexibility in working hours - 15 years full-time education,

The job is located in Fort, Mumbai. You should possess a Bachelor's degree in Information Security, Computer Science, or a related field. Additionally, certifications such as CISA, ISO27001, ISO22301, and CISSP would be advantageous. Ideally, you should have 8 to 10 years of experience in a Senior Manager/AGM role. Your responsibilities will include: - Governance and Risk Management - Incident Management - Training and Awareness - Reporting and Documentation - Policy and Procedure Management - Audit Management This is a full-time position with benefits such as Provident Fund. The schedule for this role is a fixed shift. The preferred candidate will have a total of 8 years of work experience. The work location is in person.,

The role of Auditor - COO & Senior Auditor in Bangalore & Hyderabad is a full-time position requiring at least 5+ years of experience and eligibility criteria of being a Qualified CPA or Qualified CA. As a Senior Auditor - COO, you will be responsible for executing and managing multiple concurrent projects or audit engagements under the direction of senior management. You will participate in audits as a subject matter expert, demonstrating a broad knowledge encompassing technology, operations, finance, and regulations across various business areas. Building strong business relationships within the Audit team and with other stakeholders is a key aspect of this role. Additionally, you will be accountable for project management, timely completion of audits, and effective communication. The ideal candidate should have a CA or MBA (Finance) qualification along with 3 to 5 years of relevant experience in Internal Audit or a similar domain, preferably in the banking sector, captives, or Big 4s. Experience across Investment Banking audit, Operations teams, Risk and Control functions is desirable. Possessing a good understanding of internal banking processes, auditing techniques, and audit life-cycle is essential. Post-Graduation degree and certifications like CIA, CFA, CPA, ACCA, and CISA will be advantageous. Furthermore, the role requires excellent communication skills, organizational abilities, multitasking, and prioritizing skills. The candidate should have an agile mindset, problem-solving attitude, good analytical skills, and high attention to detail. An ability to positively impact team environments, adaptability, and flexibility are crucial for success in this position. Travel of up to 10% of the time may be required for this role.,

The role you are applying for will involve coordinating with Group CISO & the Asia Pacific Region (APR) Risk Management team to implement central directives regarding cybersecurity governance, conducting analysis, and organizing committees within APR. This position will report directly to the Regional Head of Risk Management, Asia Pacific Region (APR). The ideal candidate for this role should have experience working as a Chief Information Security Officer (CISO) with a background in Cyber Security, Cyber Risk Management, and Risk Management. You will be responsible for managing the APR region (Asia Pacific/Europe) and should have prior experience working with APR countries or other Asian countries, primarily Europe. It is essential to have expertise in developing and executing security strategies. Candidates with a history of frequent job changes (e.g., almost every year) will not be considered. Knowledge of EU regulations, such as DORA, is advantageous. Certifications such as CISSP, CISM, or CISA are required for this position. Your main responsibilities will include adapting Group documents to enhance local cyber resilience, organizing quarterly regional ISS Committees, cascading risk mapping to the local level, supporting the assessment of local third parties" security, advising on local/regional IT and Cyber Projects, and overseeing cybersecurity regulations in Asia Pacific. You will also be involved in conducting Cyber Risk assessments at a regional level and other risk management activities as needed. Candidates should hold a bachelor's degree in information technology, computer science, or a related field. Professional qualifications such as CISSP, CISM, or CISA are necessary. A minimum of 10 years of experience in IT management/cybersecurity governance or related fields, preferably in financial institutions, is required. You should have a strong understanding of security principles, standards, and technologies, including access control, network security, identity management, and cyber incident management. The candidate should possess strong communication and interpersonal skills to collaborate effectively with stakeholders at all levels. Being well-organized, detail-oriented, a good team player, and capable of establishing and maintaining effective working relationships with internal stakeholders are essential attributes for this role. Additionally, you should be able to work independently and demonstrate strong self-motivation.,

Job Description: Job Title: Divisional Risk and Control Analyst TDI Controls Testing & Assurance, AS Location: Pune, India Role Description Infrastructure Chief Operating Office (COO) is responsible for the effective operation of the infrastructure functions, driving operational efficiency whilst supporting the effective delivery of infrastructure services in line with business objectives and control requirements. It also includes oversight of Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). Infrastructure Divisional Control Office (IDCO) as part of Infrastructure COO, provides services to multiple functions in infrastructure. The IDCO function is a dedicated risk, control, and regulatory oversight function, with prime responsibility for managing and proactively mitigating risk across the full breadth of the Technology and Infrastructure organization. Function also provides a consolidated view and central coordination of (non-financial) risks, as well as effective, efficient, and consistent standards and policies. (Technology Data & Innovation) TDI Control Testing & Assurance team part of IDCO identifies, tracks and reports control testing & assurance activities, conducts independent controls testing (design and operating effectiveness) on different risk types in line with the Control Testing Standards. The team also focuses on regulatory and risk-based assurance requirements. This role is within TDI Control Testing & Assurance team. What we ll offer you As part of our flexible scheme, here are just some of the benefits that you ll enjoy, Best in class leave policy. Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Perform Control Testing in line with Control Testing methodology/minimum standard Identify control deficiencies (findings), risks related to elements of controls, participate in findings agreement with stakeholders, escalate potential issues and exception items noted during the testing to senior management for discussion and further investigation, if deemed necessary Prepare Control Testing workpapers for senior management detailing testing results, document findings with highest quality Track Control Testing identified findings, perform required follow-up on open findings Consider regulatory and internal firm policy requirements as well as established best practices for control assurance. Support controls assurance activities Support in monitoring Control testing teams adherence to Control Testing methodology/minimum standards Support, contribute in managing Control Testing vendor resources, where applicable Track testing related effort/budget Plan Vs. Actuals throughout the testing lifecycle Build and maintain solid working relationships with key stakeholders such as within the DCO, IDCO, TSCO, GTI and other Testing Teams including Divisions/sub-divisions, 2 LoD and Group Audit (GA) Your skills and experience University degree preferably in Computer Science, Mathematics, Engineering or a related subject or equivalent qualification in the areas of information security. Professional/industry recognized qualifications e. g. , CISA, CISSP, CISM, CRISC are beneficial. Experience in Cloud Security audit/testing, GCP (Google Cloud Platforms) or Professional/industry recognized qualifications e. g. , CCSP, CCSK will be an advantage Good knowledge of auditing IT application controls, e. g. , from IT audits or IT risk management. Understanding of the relationship between IT risk and underlying business process risk. Knowledge of regulations governing financial institutions is beneficial. Strong written and verbal communication skills and the ability to communicate effectively in conflict situations. Strong organizational skills and attention to detail. Ability to work under pressure, multi-task and prioritize workload. Strong analytical skills and structured thought process with the ability to clearly articulate control deficiencies and related risk Flexible, proactive, and innovative mind set with strong organizational skills to take ownership and responsibility for agreed targets and to meet them within budget to enable a timely and efficient completion of projects. This is an IC (individual contributor) role. How we ll support you Training and development to help you excel in your career. Coaching and support from experts in your team. A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. https://www. db. com/company/company. htm Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

If you are a strategic thinker passionate about driving solutions and mitigating risk; you have found the right team. The Testing CoE (Center of Excellence) team is responsible for ensuring a strong and consistent control environment across the firm. This role is a great opportunity to be working with a large Controls Testing team and help establish a newly formed organization which provides the potential hire a good starting point within the firm. Job Summary As an Associate within the Testing Center of Excellence, you will be responsible for the execution of independent risk-based, point-in-time evaluations of the control design adequacy and execution effectiveness, to mitigate compliance, conduct and operational risks. The role requires overseeing the performance of complex evaluations of business processes through a comparison of actual processes against expected practices (policies, standards, procedures, laws, rules and regulations). Testing activities often include sophisticated data analytics on large datasets and regular engagement with senior stakeholders across the firm. This is an exciting opportunity to work on key risk initiatives as they become the focus of the firm and across the financial services industry. You will excel at creative thinking and problem solving; be self-motivated, confident and ready to work in a fast-paced, energetic environment. Through collaboration and analytical skills, you will contribute to the Testing CoE s overall success and strengthen the firm s compliance with regulatory obligations and industry standards. Job responsibilities Lead comprehensive control evaluations and substantive testing to independently assess the design and effectiveness of controls Ensure compliance with internal policies, procedures, and external laws, rules, and regulations, while identifying necessary remediation actions. This includes developing and executing testing procedures, meticulously documenting results, drawing informed conclusions, making actionable recommendations, and distributing detailed compliance testing review reports. Foster collaboration with Compliance and Operational Risk Officers on various engagements. This includes developing detailed test scripts, facilitating issue discussions, participating in business meetings, and drafting comprehensive final reports to ensure alignment and clarity. Utilize advanced critical thinking skills to apply substantive testing techniques, thoroughly evaluating the effectiveness of high-risk business processes and identifying potential areas for improvement. Proactively assess and monitor risks, ensuring adherence to firm standards, regulatory requirements, and industry best practices. Implement strategies to mitigate identified risks effectively. Collaborate with cross-functional teams and stakeholders to support the design and effectiveness of controls. Drive initiatives that enhance the business control environment through recommended updates to the Compliance and Operational Risk Evaluation (CORE) application. Develop and execute robust control test scripts aimed at identifying control weaknesses, determining root causes, and recommending practical solutions to enhance operational efficiency and control effectiveness. Document test steps and results in a comprehensive and organized manner, ensuring sufficient support and justification for testing conclusions. Maintain a high standard of documentation to facilitate transparency and accountability. Lead meetings with business owners at various management levels, delivering testing results and supporting sustainable control enhancements. Identify and capitalize on opportunities to strengthen controls and improve operational efficiency. Required qualifications, capabilities, and skills 3+ years of experience or equivalent expertise in risk management, assessment, control evaluations, or a related field, within the financial services industry. Possess a strong understanding of industry standards and regulatory requirements. Demonstrated ability to analyze complex issues, develop and implement effective risk mitigation strategies, and communicate insights and recommendations clearly to senior stakeholders. Proficient knowledge of risk management frameworks, regulations, and industry best practices. Ability to stay updated with evolving regulatory landscapes and adapt strategies accordingly. Exceptional ability to develop and communicate well-founded recommendations based on regulatory guidance and standards, ensuring alignment with organizational goals and compliance requirements. Highly organized and detail-oriented, with a proven track record of managing multiple priorities and delivering results in a fast-paced environment. Strong analytical and communication skills, with the ability to convey complex information in a clear and concise manner to diverse audiences. Preferred qualifications, capabilities, and skills CISM, CRISC, CISSP, CISA, CCEP, CRCM, CRCMP, GRCP, or other industry-recognized risk and risk certifications preferred. A background in auditing and the ability to understand of internal controls is beneficial. Proficiency in MS (Microsoft Suite) Office - Microsoft Word, Excel, Access, and PowerPoint.