1063 Cobit Jobs

Company: Qualcomm India Private Limited Job Area: Finance & Accounting Group, Finance & Accounting Group > IT Internal Audit Qualcomm Overview: Qualcomm is a company of inventors that unlocked 5G ushering in an age of rapid acceleration in connectivity and new possibilities that will transform industries, create jobs, and enrich lives. But this is just the beginning. It takes inventive minds with diverse skills, backgrounds, and cultures to transform 5Gs potential into world-changing technologies and products. This is the Invention Age - and this is where you come in. General Summary: Unique opportunity to join Qualcomm’s Corporate Internal Audit & Advisory Services department within the SOX Program Management Office (PMO) organization to support the IT SOX 404 and 302 Compliance efforts. The department’s activities and services focus on assisting the Audit Committee of the Qualcomm Board of Directors and Management in the evaluation and improvement of processes that identify and manage risks related to achieving Qualcomm’s business objectives. Key responsibilities include: Lead the IT SOX 404 risk assessment and scoping exercise, execute the process and control walkthroughs, assess the design of controls, develop and enhance comprehensive test plans, and perform independent testing Perform deficiency root cause analyses and assist management with the development of remediation plans Offer effective supervision to, and review the work of other auditors, including the company’s co-sourcing audit partners Collaborate with Qualcomm management to identify financial risks, assess business impacts, and present potential solutions (leading practices) As a key member of the SOX PMO, the successful candidate will be a primary interface between IT management and the external auditors to provide guidance, support, training, and project management Collaborate with the external auditors in the planning and execution of SOX 404 requirements and ensure all deadlines are met with high quality deliverables Participate and assists in ad-hoc projects such as system implementations when needed Three to seven years of recent relevant professional experience in IT SOX compliance for a fast-paced global company or a public accounting firm (“Big 4” or mid-tier). Prior SOX PMO experience preferred. Independent and adaptable team player with strong project management skills to comfortably lead and conduct multiple significant projects and tasks with quality, accuracy, and attention to detail. Strong critical thinking with sound judgment and decision-making skills. Self-motivated, positive, and professional attitude. Exceptional prioritization, organization, and time-management skills to consistently meet deadlines with quality deliverables in a fast-paced environment. Strong interpersonal skills (including oral and written communications) with the ability to lead all related interactions with various levels of the organization including middle and senior management. Excellent understanding of internal controls, frameworks (COSO, COBIT), fundamental audit methodology, SOX 302 and 404 requirements. Strong ability to understand IT and business process risks and related controls Experienced with leading practices for business processes, financial accounting, and reporting risks to ensure compliance with GAAP and external reporting requirements Delivers high-quality work products (form and substance) including the ability to prepare written documents (e.g., work papers, PowerPoint presentations, audit reports, etc.) that clearly lay out key messages Professional Certifications (e.g., CPA, CISA, CIA preferred) ERP experience with Oracle EBS a plus Semiconductor business experience or familiarity Fluent English; multi-lingual capability is a plus Strong communication (oral and written) and presentation skills Fast learner with strong, organization, analytical, critical thinking, and problem-solving skills Ability to work in flexible and non-hierarchical team environment Willingness to get things done and take responsibility Ability to recognize and apply a sense of urgency, when necessary Positive attitude, professional maturity, good work ethic Ability to work independently, handle multiple projects simultaneously, and multi-task to meet deadlines with high-quality deliverables Bachelor's degree in Accounting, Business Administration, Management Information Systems, or related field. Applicants : Qualcomm is an equal opportunity employer. If you are an individual with a disability and need an accommodation during the application/hiring process, rest assured that Qualcomm is committed to providing an accessible process. You may e-mail myhr.support@qualcomm.com or call Qualcomm's toll-free number found here . Upon request, Qualcomm will provide reasonable accommodations to support individuals with disabilities to be able participate in the hiring process. Qualcomm is also committed to making our workplace accessible for individuals with disabilities. Qualcomm expects its employees to abide by all applicable policies and procedures, including but not limited to security and other requirements regarding protection of Company confidential information and other confidential and/or proprietary information, to the extent those requirements are permissible under applicable law. To all Staffing and Recruiting Agencies: Our Careers Site is only for individuals seeking a job at Qualcomm. Staffing and recruiting agencies and individuals being represented by an agency are not authorized to use this site or to submit profiles, applications or resumes, and any such submissions will be considered unsolicited. Qualcomm does not accept unsolicited resumes or applications from agencies. Please do not forward resumes to our jobs alias, Qualcomm employees or any other company location. Qualcomm is not responsible for any fees related to unsolicited resumes/applications. If you would like more information about this role, please contact Qualcomm Careers.

You will be responsible as a Senior Associate in SOX Compliance for identifying, documenting, and assessing IT application controls and formalizing IT General Controls to ensure SOX compliance. Your role will involve executing certain controls and collaborating closely with IT, business process owners, and external auditors to ensure regulatory requirements are met effectively. Your key responsibilities will include identifying IT application controls related to financial reporting systems, defining and formalizing IT General Controls across key areas, performing walkthroughs and risk assessments, maintaining control documentation, collaborating with auditors during testing and remediation cycles, tracking control deficiencies, and supporting remediation efforts. You will also be monitoring and evaluating changes in systems and processes to ensure SOX compliance, as well as assisting in continuous improvement of the IT control framework. To excel in this role, you should have 3-5 years of experience in IT audit, IT compliance, or SOX IT controls, a solid understanding of SOX requirements, IT General Controls, and application control principles, experience with Workday is a plus, familiarity with IT risk frameworks such as COBIT and NIST, experience in creating user role definitions, and possess strong analytical, documentation, and communication skills. Preferred qualifications include experience in a top accounting firm as an IT Auditor, working in a public company environment or with external auditors. This is a full-time, permanent position based in Bangalore with a Bachelor's Degree in IT/Computers - Software as the required education. Key skills for this role include Application Controls, COBIT, IT General Controls, NIST, and SOX Compliance. If you are seeking a challenging opportunity in SOX Compliance within the IT industry, this role as a Senior Associate could be an ideal fit for you.,

As the leading provider of professional services to the middle market globally, our purpose at RSM is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience, as well as our ability to be compelling to our clients. You will find an environment at RSM that inspires and empowers you to thrive both personally and professionally because there's no one like you, and that's why there's nowhere like RSM. You will have the opportunity to work directly with clients, key decision makers, and business owners across various industries and geographies to deliver a top-quality client experience. At RSM, a diverse and inclusive workplace, you will work as part of a team while being valued as an individual, mentored as a future leader, and recognized for your accomplishments. In the Risk Consulting department at RSM, you will assist clients across various industries in addressing complex strategic, operational, compliance, and governance challenges. The major offerings of Risk Consulting include AML & Regulatory Compliance, ERP Advisory, Automation and Analytics, Enterprise Risk Management, Internal Audit, SOX Advisory, Contract Compliance, Credit Reviews, Information & Technology Audits, Cybersecurity risk management, Third-party risk management, IT due diligence, SOC1 / SOC2, Security and Privacy Risk, Governance Risk and Compliance, PCI, Cyber Transformation, Manage Security Services, Secure Architecture Solutions, Cyber Testing, Digital Forensics and Incident Response, and Cyber Threat Intelligence. As part of the ERP, Risk and Automation Services (ERAS) Consulting practice, you will work with various consulting, internal, and external audit clients by bringing in-depth ERP, automation, and data analytics skills where needed. This practice involves security and controls designs/assessments, complex data analytics, GRC automation/implementation, security role design, security managed services, segregation of duties assessments, as well as ERP implementation risk reviews. We are seeking a confident individual who can think strategically about risk and control management while also being task-oriented and capable of meeting tight deadlines associated with implementation-related work. We are looking for a candidate with experience in SAP technologies, including scoping, supervising, and executing ERP security & controls, segregation of duties assessments, security role designs, GRC implementations, and operationalizing user access management. Qualifications and minimum entry requirements for this position include a Bachelor or Master's degree with a minimum of 4-5 years of professional experience in public accounting or relevant compliance industry experience. Additionally, deep understanding of business processes and controls in SAP, ERP implementation experience, technical knowledge of controls monitoring/auditing tools, and experience with risk and controls for S/4 HANA and HANA database/platform are desired. Candidates with CISA/CA/SAP certification, as well as CIA, CISSP, CPA certifications, will be preferred. In this role, you will be responsible for developing an understanding of the RSM US Risk Consulting service offerings, methodologies, and tools, executing SAP ERP engagements related to audit, risk, and control issues for highly visible ERP clients, and handling multiple client projects while contributing to internal initiatives. Additionally, you will be expected to provide first-choice advisor experience to clients, maintain strong relationships with professionals, and ensure documentation compliance with the firm's quality standards. At RSM, we offer a competitive benefits and compensation package, flexibility in your schedule, and opportunities to balance life's demands while serving clients. Learn more about our total rewards at https://rsmus.com/careers/india.html. Accommodation for applicants with disabilities is available upon request. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application or participate in the recruiting process, please email us at careers@rsmus.com.,

As a Specialist II, Audit and Advisory at TransUnion, you will have the opportunity to contribute to the cybersecurity and IT practices and controls auditing process within the organization. Your responsibilities will include assisting in the development of risk-based annual audit plans, participating in risk assessment meetings, and coordinating with process owners to conduct controls assessments. You will be involved in analyzing, testing, and evaluating the organization's control environment using a mix of traditional sampling and data analytics/automation methods. Additionally, you will perform detailed assessments of system implementations and cloud migrations, lead engagements when necessary, and communicate audit findings to process owners effectively. Your role will also involve documenting audit procedures, preparing draft audit reports, analyzing information security areas such as governance, risk management, access controls, cybersecurity, and more. You will track and monitor open audit issues for remediation, research security trends and prevention technologies, and participate in departmental initiatives and special projects. To excel in this role, you should have 4-5 years of experience in IT Audit, IT Assessor, or Information Security roles, with a minimum of 2 years in a Public Accounting Firm. A Bachelor's degree in computer science or related field is required, along with a strong understanding of IT and security frameworks such as NIST, CIS, ISO, and COBIT. Industry certifications like CISSP or CISA are also necessary. This hybrid position will require you to perform job responsibilities virtually as well as in-person at a designated TU office location for a minimum of two days a week. If you are a self-driven individual with excellent communication skills, problem-solving abilities, and a strong technical background, we encourage you to apply for the Specialist II, Audit and Advisory role at TransUnion.,

Senior- Controls Champion Role Summary Cognizant’s Global Controllership function is seeking a Senior Associate to become part of the Control Champions team. The Control Champions team, which resides with the Global Controllership function, is responsible for various SOX/internal control activities and assists management in establishing and maintaining robust and effective internal controls. This position will have the opportunity to support management in evaluating and improving the effectiveness of the Company’s processes and controls. The Senior Associate- Controls Champion will be based in the Chennai, India office and will report into the Senior Manager. If you are passionate about internal controls and eager to make a significant impact, we invite you to join our team and contribute to our mission. Key Responsibilities Prepares the supporting schedules and materials for the various SOX activities managed by the Global Controllership team. Prepares and updates internal control and process documentation for the Company’s business processes and IT applications. Assists in evaluating the impact to the processes and controls for any new processes/applications or process/application changes. Assists in making recommendations to management to improve the design of business process and IT controls. Responsible for the day-to-day administration of the SOX application including processing of key control changes and user access provisioning. Assists in making updates to the control deficiencies and management actions plans maintained in the SOX application. Assists in the preparation of training materials that are used to provide periodic SOX training to senior management and the business process owners. Responsible for maintaining documents and records related SOX activities managed by the Global Controllership team including planning, scoping, internal control templates and training material. Assists and participates in other internal control initiatives, as required. Experience / Education Requirements Minimum 3-5 years of experience in a mix of public accounting, internal audit or internal control functions. This position requires a Bachelor’s degree (or equivalent) in Accounting, Business, or Finance. Experience with financial and IT general controls in a complex, public company environment. Experience with COSO framework (and COBIT framework a plus) Understanding of accounting principles & practices in accordance with US GAAP Ability to communicate effectively. Ability to set priorities and drive results. Experience with global company operations is preferred. Professional certification (CPA/Charted Accountant) and/or advanced business degree is preferred.

Who We Are: At Inchcape Shipping Services, our vision is to create a connected world where customers can trade successfully and make informed decisions in every port, everywhere. We achieve this by combining our worldwide infrastructure with local expertise, through our global network of more than 250 proprietary offices and a team of over 3,000 dedicated professionals. Our diverse customer base includes owners and charterers in the oil, cruise, container, and bulk commodity sectors, as well as naval, government, and intergovernmental organizations. Main Purpose of Job: We have an exciting opportunity for a Service Management professional in our Group IT Operations team. You will be responsible for managing and improving ITIL disciplines such as Incident, problem and change at a global level, and assisting the IT Service Management team in maturing and policing these processes This is a great opportunity to work with a technology portfolio that’s modern and constantly developing furthering your knowledge of AI, Cloud, Big Data and other emerging technologies. You will be joining a business where collaboration, knowledge sharing, and growth are valued, and your inputs will be listened to. This is an exciting, dynamic role that requires agility of thought, adaptability with the ability to turn technical solutions and jargon into plain language for staff and communications. Key Accountabilities Analyse, plan, monitor, and enhance the availability of IT services in accordance with the established service standards. In an ITIL-derived framework, accountable for providing excellence in all facets of the service delivery function. Provide good-quality knowledge and information about services and service assets. Change and Incident Management Change Management Manage Requests for Change, to ensure that these meet quality and conformance standards; co-ordinate IT staff and Customers to ensure accurate and appropriate risk assessments and communications during changes. Producing detailed Post Implementation Reviews establishing lessons learnt and preventive actions to avoid repeat change failures. Chair weekly CAB meetings, ensuring changes are appropriately risk managed, prioritised, and have no adverse effect on the business. Working collaboratively with the team, analysing historic data to identify underlying trends and initiating proactive problem management activity. Implement and improve Incident and Major incident response/Problem and Change Management processes. (This role requires out of hours on-call for incident management) Supporting weekly Service Forum meetings: Provide reports for agreed KPIs and review these during the meeting, discuss Any Other Business, and agree next steps where relevant. Working in conjunction with IT in analysing historic data to identify underlying trends and initiate proactive problem management activity, across teams, to drive improvements and reduce incident volumes Ensure proactive and reactive Problem Tasks are actioned in a timely manner following a Major Incident or ongoing Problem. Major Incident This role is responsible and accountable for the overall ownership of the Incident until resolution. Co-ordinating MI timeline, update calls and escalations where necessary. Chairing Major Incident Review meetings: Review timeline of events, including 3rd party involvement / statements, agree potential and reported impact to Business, understand root cause or details around root cause investigation, preventative monitoring or event alerting, review relevant existing or outstanding risks, identify new risks, and agree preventive or corrective actions. Ensuring notification of Major Incidents are provided to the Senior IT stakeholders, including producing post incident reports and timelines for the stakeholders Providing Post Incident Reports to Leadership Service Reporting & Governance Supporting the implementation of best practice processes, service reporting and tools in order to consistently meet Service Level Targets Producing weekly and ad-hoc reports for all levels of management. Operational Efficiency Delivering products or services in the most value driven and cost-effective way possible Service Quality Ensuring the highest quality service with positive feedback and minimal escalations Performance Manage service components to ensure they meet business needs and performance targets. Preventative Contribute to the implementation of remedies and preventative measures. Investigative problems in systems, processes and services, with an understanding of the level of a problem (for example, strategic, tactical or operational) Optimisation Identify process opportunities with guidance and contribute to the implementation of proposed solutions Essential Knowledge, Experience & Skills ITIL – Foundation certification 5+ years of experience in IT Service Management/Service delivery Excellent written and verbal communication and negotiation skills, including the ability to relate effectively to users at all levels and careful attention to detail. Experience in implementing and running IT ticketing system and ITSM dashboards for KPI’s, SLAs. Understanding compliance standards in the Cyber Essentials, Data and Information Security and PCI requirements. Innovative and creative in providing solutions. Flexible in meeting the demands of the role, as the role may involve some evening and occasional weekend work, as well as being on call for incident management Excellent analysis and problem-solving skills Desirable Knowledge of shipping / port agency domain. Experience in global organisation and services IT partner / vendor management. Experience of running an IT helpdesk, hybrid or remote service using a recognised framework e.g. ITIL. Experience in Zoho Service desk. Accreditation or qualification in a computing discipline. Have demonstrable experience and aptitude in working in a matrix organisation where effective and robust negotiating and influencing skills are used successfully while maintaining good working relationships with members of that organisation Sufficient technical background to understand the different architectures of the core systems, and to understand the impact of new technologies; experience of enterprise level applications will be an advantage Essential Education and Professional Qualifications Education to degree level or able to offer the equivalent in terms of professional training and experience. ITIL Foundation certified Desirable Six Sigma/Lean Green Belt. COBIT certified

Strategic Leadership Define and implement the global ITSM strategy in alignment with organizational goals. Lead the adoption and maturity of ITIL-based processes across Sandoz. ITSM Process Ownership & Execution Monitor, manage, and control the implementation of core ITSM processes: Incident Management, Event Management, Problem Management, Change Management, Configuration & Asset Management and Request Management etc from process lifecycle management perspective. Also be responsible to define and setup KPI targets of all processes. Be directly own operations of Change Management, Problem Management and Request management processes. Establish enterprise CAB and ensure to improve effectiveness measured by KPIs. Establish Forward Schedule of Changes daily calls. Establish correlation between Change Management and related processes such as Incident Management, Knowledge Management, and Business Calendars. Ensure Change Requests are validated from all perspectives to prevent disruptions in service availability. Maintain proper artifacts and records for Change Implementations to support compliance and regulatory requirements. Ensure Change Requests are approved and implemented on time, raising risks proactively when necessary. Monitor Change Management using KPI-based dashboards and reports to ensure control and transparency. Ensure problem management process is governed with KPI centric and RCA quality approach. Ensure continual service improvement in all processes in scope demonstrated by improved KPIs. Request Management should meet CSAT and fulfillment targets. Setup practitioners forums with identified process champions from each tech function with an aim of enhancing process awareness, drive understanding and improvements. Governance & Compliance Establish and operate a Governance Framework for SLA and performance management across all ITSM processes. Lead effective KPI based governance across all ITSM processes. Be accountable for maintaining the compliance posture of all ITSM processes, ensuring alignment with internal policies and external regulations. Ensure proper documentation and audit readiness for all ITSM activities. Continuous Improvement & Stakeholder Engagement Interlock with internal and external stakeholders to continuously improve ITSM processes and performance. Ensure Service Improvement Plans (SIPs) are in place and actively demonstrate continuous improvement. Coordinate process implementation across external parties, application owners, business owners, and internal teams. Mentor teams to ensure clear and effective communication around ITSM processes. Ensure customer satisfaction with process execution, including coordination and governance with the service desk. Reporting & Operational Oversight Be responsible for maintaining and presenting dashboards and reports that provide up-to-date status of ITSM operations. Ensure timely and accurate dissemination of information related to service performance and change approvals. Availability & Emergency Support Be available during shifts if required for emergency situations, ensuring continuity and responsiveness in critical scenarios. People Management Be seen as a Service Management thought leader by both direct reports and larger team of supplier resources Key Performance Indicators Change Success Rate – Percentage of changes implemented without causing incidents or requiring rollback. Effectiveness of CAB and Forward Schedule of Changes calls . Problem tickets associated with failed and rolled back changes Reduction of unauthorized changes to zero. Strong Process Lifecycle Management – Average time taken to resolve incidents across all regions. Process Compliance Rate – Percentage of ITSM processes executed in line with defined standards and policies. Customer Satisfaction Score (CSAT) – User feedback on ITSM process execution and support experience. Service Improvement Plan (SIP) Completion Rate – Number of SIPs initiated and successfully completed Ideal Background Education: Bachelor’s Degree in one of the following fields: Information Technology, Computer Science & Engineering, Information Systems Preferred/Advanced Education: Master’s Degree in Information Technology Management, or a related discipline is highly desirable, especially for strategic and global leadership roles. ITIL Intermediate Level or above Languages: Fluent English required (oral and written) Experience: +12 years experience in IT operations, system management, and global service portfolio ownership across geographies and business domains. Proven expertise in IT Service Management, including hands-on experience with Incident, Change, Problem, Asset, and Request Management processes. Strong working knowledge of ITSM platforms, preferably ServiceNow, and ticketing systems. Proficient in automation tools for dashboards and reporting, with experience in KPI tracking, scorecards, and performance analytics. Demonstrated ability to report to both technical and non-technical audiences, translating complex data into actionable insights. Experience in contract governance, compliance management, and regulatory alignment. Skilled in process improvement and automation, with a track record of waste reduction and operational efficiency. Ideally ITIL v4 Certified, with additional certifications such as PMP, PRINCE2, or COBIT considered a plus. Excellent leadership, stakeholder management, and communication skills, with the ability to mentor teams and drive cross-functional collaboration. Familiarity with project management tools and methodologies. Demonstrated ability to manage and mentor a dispersed project management team. History of successful collaboration and relationship management. High level of analytical skills and ability to manage complexity

Senior Manager EXL/SM/1437614 Information & Cyber Security, Data Privacy, BCM Noida Posted On 05 Aug 2025 End Date 19 Sep 2025 Required Experience 8 - 12 Years Basic Section Number Of Positions 1 Band C2 Band Name Senior Manager Cost Code G070401 Campus/Non Campus NON CAMPUS Employment Type Permanent Requisition Type New Max CTC 2000000.0000 - 3500000.0000 Complexity Level Not Applicable Work Type Hybrid – Working Partly From Home And Partly From Office Organisational Group Enabling Sub Group Information & Cyber Security, Data Privacy, BCM Organization Information & Cyber Security, Data Privacy, BCM LOB Information & Cyber Security, Data Privacy, BCM SBU Information & Cyber Security, Data Privacy Country India City Noida Center Noida - Centre 59 Skills Skill RISK & COMPLIANCE CYBERSECURITY RISK MANAGEMENT POLICIES & PROCEDURES DEVELOPMENT GRC CLOUD SECURITY Minimum Qualification BCA Certification No data available Job Description Minimum 8 years of experience in conducting cyber risk assessments in domains such as enterprise security, access management, VAPT, SOC, Endpoint Security, Cloud Security (IaaS, SaaS, PaaS), Data Privacy, Data Leakage, Network and Communication Security, SDLC, AI risks etc. Should have working knowledge of security standards such as ISO 27001, NIST, COBIT, PCIDSS and other relevant standards. Should have worked in creating policies and procedures across cyber and data privacy. Should also have working knowledge of managing security awareness and training programs for the organization. Should have experience in creating and managing risk registers, evaluating risk and its methodologies, articulating risk and communicating. Should also have exposure to working in identifying and handling supplier risks related to cybersecurity. Working knowledge of Risk Based Standard like ISO 31000, COBIT is preferred. Should also have conceptual knowledge of advance cyber solutions such as ZTNA, CASB, DLP, Micro segmentation, CNAPP. LLM. Secure AI etc. Should have worked in IT/ ITeS environment and have led small to mid-size teams preferably in a GRC role. Should also have knowledge about cloud security, secure AI Technical certifications can include a. CISA/ CISM/CRISC or equivalent (Desired) Workflow Workflow Type L&S-DA-Consulting

Summary Position Summary USI Cyber Security BISO Manager Location: India Job Summary This Manager role operates in the Business Information Security Officer (BISO) function within the Cyber organization while directly supporting the Consulting Service line of business. The role involves close integration with various business leaders, technical and non-technical stakeholders to drive widespread cyber security program adoption.In this role, you will utilize a deep understanding of the business to facilitate specialized information security risk-based discussions. You will drive alignment with Deloitte policies, industry accepted standards, and security best practices. This fast-paced multi-faceted environment requires a highly motivated, self-driven, strong team player who demonstrates an intrinsic desire for continuous personal and professional growth. Key Responsibilities: Contribute to the ongoing development, implementation, and maintenance of information security initiatives. Manage vulnerability assessments, remediation tracking, and reporting for business-critical applications and platforms. Provide expert guidance on risk mitigation, security best practices, and emerging threats. Collaborate with IT and security teams to develop and implement remediation plans. Ensure compliance with relevant regulations, standards, and policies related to vulnerability management. Conduct hands-on security architecture reviews for new and existing systems, enforce adherence to cyber security standards, and manage exceptions as needed. Provide guidance on cloud security controls, guardrails, architecture, and risk management across all major cloud service providers (AWS, Azure, GCP, etc.). Identify solutions that balance business requirements and cyber security requirements. Qualifications Bachelor’s degree in Computer Science/Engineering, Management Information Systems, Cyber Security, or a related field (Master’s preferred). 12+ years of relevant professional experience to include at least 6 years of progressive experience in cyber security with at least 3 years in a leadership or advisory role. Superior communication (written and verbal), problem solving, collaboration, interpersonal, and stakeholder management skills. Experience reviewing security architecture and experience evaluating secure cloud-based solutions in AWS, Azure, and/or GCP. Knowledge of application security, SSDLC, and vulnerability management including experience evaluating the likelihood and impact of application vulnerabilities. Knowledge of cyber security practices and technologies such as identity and access management (IAM), multi-factor authentication, encryption, IDS/IPS, firewalls, end-point protection (AV, EDR), DLP, CASB, vulnerability management, and security information and event management (SIEM). Knowledge of information security regulatory requirements such as General Data Protection Regulation (GDPR), Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standards. Knowledge of common information security management frameworks, such as ISO/IEC 27001, COBIT, and NIST, including 800-53 and the Cybersecurity Framework. Certifications: Relevant certifications such as CompTIA Security+, CISSP, CISM, CEH, GIAC, or similar are preferred. The team Information Technology Services (ITS) helps power Deloitte’s success. ITS is the engine that helps to drive Deloitte, which serves many of the world’s largest organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence. The ~2,200 professionals in ITS deliver services internally including: Cyber Security Technology support Technology & Infrastructure Application development and management Relationship management group Strategy Deployment PMO Financials Communications Areas of focus include: Cyber design Risk & Compliance Technology Risk Management Identity & Access Management Data Protection Incident Response and Architecture For more information on ITS, you can visit our dedicated recruitment page at https://usrecruiting.deloitte.com/-its-recruiting-for-experienced-hires . Cyber Security The Cyber Security team is responsible for vigilantly protecting Deloitte and client data. The team is responsible for a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 306538

Performing work on SOC1, SOC2, SOC2+, HITRUST/ RegAB engagements: conducting control design and operating effectiveness tests, ensuring high-quality work through complete and accurate testing documentation. Manage a portfolio of engagements by leading a team of Assistant Managers, Senior Associates, and Associates/Analysts. Ensure the work delivered is high quality through spot checks, periodic reviews, and quality review/assurance processes. Ensure established turnaround times and the allotted budget are met. Ideal to have client-facing role experience, ability to conduct walkthroughs, perform observations at client sites, design & test controls effectiveness. Acting as the firm representative for key accounts or functional areas; and striving to ensure effective integration of high-quality services to clients within clients and firm strategy. Ability to establish expectations and clear direction to meet goals and objectives of the engagements. Develop plans for employees to gain necessary knowledge, skills, and abilities to successfully perform their duties. Proactively engage with stakeholders to identify, develop, and implement new work areas and enable growth of existing client work, in alignment with the firm's growth strategy (e.g., alignment with key industries and clients) by seeking and leading opportunities. Demonstrate industry expertise (detailed understanding of the industry, trends, issues/challenges, and leading practices). Preparation of reports/deliverables/status updates/audit committee presentations, etc. Actively establish & strengthen client (functional heads & key influencers) and internal relationships. Assist Associate Directors and Directors in developing new methodologies, internal initiatives, marketing collaterals, and business proposals, etc. Should have good written communication and excellent interpersonal skills. People Responsibilities: Manage larger teams by motivating, coaching, and developing junior colleagues. Conceptualize and translate lessons learned from client engagements into training sessions. Provide real-time constructive feedback and facilitate timely completion of engagements. Define performance expectations, evaluate performance of team members, and provide guidance to CLEARR Career Continuum. Support knowledge sharing efforts and continually improve processes so that the work team can capture and leverage knowledge. Demonstrate the ability to mentor, coach, and manage the total competencies of staff in multiple engagements or for a region. Support talent acquisition by participating in or leading university/entry-level and/or experienced recruiting; building a talent pipeline, conducting interviews; and seeking and providing referrals. Skills: Candidates should have proficient knowledge (both in leading and performing including reviewing work) in the areas of IT General Controls testing (ITGC), in support of SOC audits with proficient understanding in the information technology architecture including applications, Operating Systems, ERPs and databases (from Information Security perspective). Performing Test of Design & Operating Effectiveness testing by applying the components of relevant frameworks (e.g., COSO, ERM, COBIT, ISO). SSAE 18/ SOC 1 testing and reporting - for IT as well as Business Process controls. SOC 2 and SOC 2+ testing and reporting - for various trust principles including HITRUST engagements. Moderate understanding in Cloud Security Audit (hands-on experience is preferred but not mandatory) in leading Cloud Services Providers such as AWS, Azure, GCP. Education UG: Any Graduate PG: Any Postgraduate

Strategic Leadership Define and implement the global ITSM strategy in alignment with organizational goals. Lead the adoption and maturity of ITIL-based processes across Sandoz. ITSM Process Ownership & Execution Monitor, manage, and control the implementation of core ITSM processes: Incident Management, Event Management, Problem Management, Change Management, Configuration & Asset Management and Request Management etc from process lifecycle management perspective. Also be responsible to define and setup KPI targets of all processes. Be directly own operations of Change Management, Problem Management and Request management processes. Establish enterprise CAB and ensure to improve effectiveness measured by KPIs. Establish Forward Schedule of Changes daily calls. Establish correlation between Change Management and related processes such as Incident Management, Knowledge Management, and Business Calendars. Ensure Change Requests are validated from all perspectives to prevent disruptions in service availability. Maintain proper artifacts and records for Change Implementations to support compliance and regulatory requirements. Ensure Change Requests are approved and implemented on time, raising risks proactively when necessary. Monitor Change Management using KPI-based dashboards and reports to ensure control and transparency. Ensure problem management process is governed with KPI centric and RCA quality approach. Ensure continual service improvement in all processes in scope demonstrated by improved KPIs. Request Management should meet CSAT and fulfillment targets. Setup practitioners forums with identified process champions from each tech function with an aim of enhancing process awareness, drive understanding and improvements. Governance & Compliance Establish and operate a Governance Framework for SLA and performance management across all ITSM processes. Lead effective KPI based governance across all ITSM processes. Be accountable for maintaining the compliance posture of all ITSM processes, ensuring alignment with internal policies and external regulations. Ensure proper documentation and audit readiness for all ITSM activities. Continuous Improvement & Stakeholder Engagement Interlock with internal and external stakeholders to continuously improve ITSM processes and performance. Ensure Service Improvement Plans (SIPs) are in place and actively demonstrate continuous improvement. Coordinate process implementation across external parties, application owners, business owners, and internal teams. Mentor teams to ensure clear and effective communication around ITSM processes. Ensure customer satisfaction with process execution, including coordination and governance with the service desk. Reporting & Operational Oversight Be responsible for maintaining and presenting dashboards and reports that provide up-to-date status of ITSM operations. Ensure timely and accurate dissemination of information related to service performance and change approvals. Availability & Emergency Support Be available during shifts if required for emergency situations, ensuring continuity and responsiveness in critical scenarios. People Management Be seen as a Service Management thought leader by both direct reports and larger team of supplier resources Key Performance Indicators Change Success Rate – Percentage of changes implemented without causing incidents or requiring rollback. Effectiveness of CAB and Forward Schedule of Changes calls. Problem tickets associated with failed and rolled back changes Reduction of unauthorized changes to zero. Strong Process Lifecycle Management – Average time taken to resolve incidents across all regions. Process Compliance Rate – Percentage of ITSM processes executed in line with defined standards and policies. Customer Satisfaction Score (CSAT) – User feedback on ITSM process execution and support experience. Service Improvement Plan (SIP) Completion Rate – Number of SIPs initiated and successfully completed Ideal Background Education Bachelor’s Degree in one of the following fields: Information Technology, Computer Science & Engineering, Information Systems Preferred/Advanced Education: Master’s Degree in Information Technology Management, or a related discipline is highly desirable, especially for strategic and global leadership roles. ITIL Intermediate Level or above Languages Fluent English required (oral and written) Experience +12 years experience in IT operations, system management, and global service portfolio ownership across geographies and business domains. Proven expertise in IT Service Management, including hands-on experience with Incident, Change, Problem, Asset, and Request Management processes. Strong working knowledge of ITSM platforms, preferably ServiceNow, and ticketing systems. Proficient in automation tools for dashboards and reporting, with experience in KPI tracking, scorecards, and performance analytics. Demonstrated ability to report to both technical and non-technical audiences, translating complex data into actionable insights. Experience in contract governance, compliance management, and regulatory alignment. Skilled in process improvement and automation, with a track record of waste reduction and operational efficiency. Ideally ITIL v4 Certified, with additional certifications such as PMP, PRINCE2, or COBIT considered a plus. Excellent leadership, stakeholder management, and communication skills, with the ability to mentor teams and drive cross-functional collaboration. Familiarity with project management tools and methodologies. Demonstrated ability to manage and mentor a dispersed project management team. History of successful collaboration and relationship management. High level of analytical skills and ability to manage complexity

About Deutsche Börse Group: Headquartered in Frankfurt, Germany, Deutsche Börse Group is a leading international exchange organization and market infrastructure provider. They empower investors, financial institutions, and companies by facilitating access to global capital markets. Their India center is located in Hyderabad, serves as a key strategic hub and comprises India’s top-tier tech talent. They focus on crafting advanced IT solutions that elevate market infrastructure and services. Deutsche Börse Group in India is composed of a team of capital market engineers forming the backbone of financial markets worldwide. Lead Security Compliance Specialist Information Security is of very high priority for supporting DBG’s business. The department Group Security uses the ISO 27000 framework and fulfils the relevant requirements for financial service providers. In this way it is possible to protect the information assets in terms of confidentiality, integrity, authenticity, and availability. Your area of work: The Information Security Compliance Specialist plays a critical role in ensuring our Security Teams and in turn our organization’s adherence to security compliance requirements with internal and external stakeholders. This individual will action, implement and further improve a diverse set of topics as described below. Due to the nature of interacting with a variety of teams within the security department, compliance and regulatory functions as well as external stakeholders you will gain broad exposure to different areas of the business, contributing to a constantly evolving security landscape and enhancing your professional development. Responsibilities include: Coordinate and support the department on ongoing internal and external audits and findings remediation and perform regular reporting internally Support Security Management on tasks and issues related to security regulation and compliance, including Internal Control System (ICS) processes, risks and controls Manage and support in written-rules initiatives and reporting Provide input and feedback on security topics with our second Line of Defense (LoD) Consult, advice and coordinate between various stakeholders on security standards & information security regulatory matters Provide regular update on due-diligence questions and maintenance on our internal security services and capabilities Represent the organization in matters related to information security Involvement and consulting in projects around cloud security, DORA and ICS Qualifications / Required skills Bachelor / Master's degree in information security or technology or equivalent Proven experience in information security policies and standards, regulatory compliance Experience with security audits and audit management ideally within the financial services industry Knowledge of relevant legal and regulatory frameworks in the financial industry (e.g., MaRisk BAIT, EU DORA, NIS 2, CSSF circulars) and industry standards (e.g. ISO 2700x, NIST, COBIT) is desired Understanding of internal control systems (ICS) and security compliance Minimum of 4 years’ experience in Information Security with a focus on above Experience in structuring options and presenting these to senior management Proactive thinking and self-paced work on solutions Strong analytical skills, creativity, critical thinking, ability to identify problems and propose solutions Excellent presentation and interpersonal skills Fluent in English. Good to have: CISSP, CISM and any technical training.

Role description About Information Systems Security: Information Systems Security (ISS) team ensures that Cyber Security Risk and Threats are managed through an risk management framework comprising of Information Systems Security Policies, Standards and Guidelines. The bank’s Information Security and Cyber Security Policy and Standards based on various regulatory requirements / guidelines from RBI Gopal Krishna report, cyber security framework, NPCI, IT Act, MAS, HKMA, Aadhaar etc., International regulations and standards such MAS, HKMA, PCI-DSS etc. The policies and standards approved by the Board of Directors encompassing independent identification, measurement and management of risks across the various businesses of the Bank. All compliance related requirements emanating from various regulators and stipulations like legal, regulatory and other standards adopted by the bank are periodically communicated to various stakeholders by way of circulars, office notes, workshops, etc. The bank has developed a comprehensive set of metrics like key performance indicators and key risk indicators for review by Business units, Subsidiaries and Top Management on a regular basis. Quarterly monitoring and reviews are undertaken by the top management for review and necessary action. About the Role: The Security Officer serves as a subject matter expert for governance and compliance frameworks and regulations, policy development, Identify and monitor non- compliance and escalate when appropriate, Act as the champion for achievement of GRC capabilities, Manage monthly, Quarterly Information Security KRI, Develop, implement, and manage policies specific to GRC capabilities. Key Responsibilities Defining and implementing IT policies / IS Security Policies Identify risks in the IT processes Define controls and analyze implications of making process changes Draw up Risk Control Matrices Plan and conduct process audits within IT Facilitate issue resolution with the IS Auditors. Evaluate IT Security related products Understand, implement, monitor and review of various regulatory / compliance frameworks like SOX, COBIT, ITIL, ISO 27001, ISO 22301, ISO 31000 Basel etc. Conduct training programmes on Information Security, Risk, compliance and regulatory aspects. Analysis of various system generated reports, logs, audit reports and VAPT reports. Qualifications: Optimal qualification for success on the job is: First class Graduate/Post Graduate in Science or Engineering from a reputed University with exposure to information systems. Qualifications like CISA, CISM or CGEIT, CISSP, CEH, BCM, LA in ISO 27001, LA in ISO 22301 or any other recognized qualification in IT Risk Assessment will be preferred. Thorough knowledge and experience in networking along with certifications like CCNA will also be preferred. 7 to 9 Years of Experience Experience in: Identification, evaluation and documentation of process flows, risks and controls. Information systems management, IT service management as well as process development and design. IT Security - in areas like network security, remote access etc. IT Governance, IT Audits, Projects Execution, IT Planning, etc. Handling various security products/solutions like DLP, Third party vendor assessment PCI DSS implementation Role Proficiencies: For successful execution of the job, the candidate should possess the following: Current Information Technology management standards in the industry as a whole such as COBIT, ITIL, ISO 27001, ISO 31000, PCIDSS, RBI guidelines on Information Security and best practices in BFSI. Formulating IT Governance objectives and goals and developing effective techniques for deriving these objectives from IT initiatives. Good understanding and working experience in IT Services management and use of maturity and process improvement models #ComeAsYouAre "We are dil se open. Women, LGBTQIA+ and PwD candidates of all ages are encouraged to apply"

Minimum 8 years of experience in conducting cyber risk assessments in domains such as enterprise security, access management, VAPT, SOC, Endpoint Security, Cloud Security (IaaS, SaaS, PaaS), Data Privacy, Data Leakage, Network and Communication Security, SDLC, AI risks etc. Should have working knowledge of security standards such as ISO 27001, NIST, COBIT, PCIDSS and other relevant standards. Should have worked in creating policies and procedures across cyber and data privacy. Should also have working knowledge of managing security awareness and training programs for the organization. Should have experience in creating and managing risk registers, evaluating risk and its methodologies, articulating risk and communicating. Should also have exposure to working in identifying and handling supplier risks related to cybersecurity. Working knowledge of Risk Based Standard like ISO 31000, COBIT is preferred. Should also have conceptual knowledge of advance cyber solutions such as ZTNA, CASB, DLP, Micro segmentation, CNAPP. LLM. Secure AI etc. Should have worked in IT/ ITeS environment and have led small to mid-size teams preferably in a GRC role. Should also have knowledge about cloud security, secure AI Technical certifications can include CISA/ CISM/CRISC or equivalent (Desired)

Category: Cyber Security Main location: India, Karnataka, Bangalore Position ID: J0725-2092 Employment Type: Full Time Position Description: Title: Security Governance Manager Location: Bangalore, Hyderabad, Chennai, Pune and Mumbai Shift: UK Shift Experience: 5+ years in cybersecurity governance, policy management As a CGI Partner within the Global Security Corporate team, the Security Governance Manager will support the design, implementation, and continuous improvement of CGI’s Enterprise Security Management Framework and CGI’s Security Program. This role plays a critical part in protecting CGI by ensuring that our security policies, controls, and frameworks align with evolving business needs and strategic goals, industry standards, regulatory requirements, and client expectations. The successful candidate will be responsible for managing the Enterprise Security Management Framework lifecycle, including security processes, policies and standards, guidelines, and tools ensuring that security is integrated in all aspects of CGI’s operations and that the organization is protected against security threats with appropriate controls while fostering a strong security culture. This is a high-impact role with visibility across global corporate functions and regional business units. Your future duties and responsibilities Own the lifecycle of CGI Enterprise Security Management Framework, Security Policies, Standards, and Controls: development, review, approval, publication, and maintenance. Govern and operationalize the Enterprise Security Management Framework (ESMF), ensuring alignment with CGI’s business objectives and external standards (e.g., ISO 27001, ISO 223011, NIST, ITIL, COBIT, SOC). Define and implement governance processes related to the evolution of the ESMF, policies, standards and controls, exception handling, and compliance tracking. Analyze security operational data and trends (e.g. incidents, exceptions, findings, vulnerabilities, reports) to identify opportunities for improvement. Partner with internal stakeholders (e.g., Internal Audit, Legal, Privacy, Risk, CIO, Architecture, HR, etc.) to interpret and implement governance requirements. Develop and maintain tactical and executive-level dashboards to report on governance KPIs and control effectiveness. Contribute to the evolution of CGI’s global security strategy by aligning with business objectives, supporting program maturity assessments, and recommending improvements to the Security Program Roadmap and the ESMF. Contribute to internal risk and compliance initiatives (e.g., assessments, audits, controls testing) by providing framework, policy and control guidance. Organize, lead and support ESMF and Security program related meetings and forums including presentations, meeting minutes and follow-up activities. Participate in security awareness and training initiatives by providing input to help to integrate security into CGI Partner’s culture. Maintain awareness of emerging threats, technologies, and regulatory developments to ensure the ESMF evolves accordingly. Support Global Security-led initiatives as a subject matter expert in security governance and ESMF requirements. Required qualifications to be successful in this role Education / Certifications Bachelor’s degree in Computer Science or related field and/or equivalent experience. One or more security certifications such as CISSP, CISA, CISM, CRISC (preferred). Experience Minimum 5+ years in cybersecurity governance, policy management, or compliance-related roles within a large organization. Experience in managing or maintaining security frameworks, policies and security management system (e.g. ISMS). Demonstrated familiarity with key security standards and technical security controls (e.g., ISO 27001/2, NIST CSF, COBIT, SOC 2) and governance/maturity models (e.g., NIST CSF, CMMI) Familiarity with GRC or policy management platforms, risk register tools, and dashboarding/reporting tools (e.g. Archer, Power BI) is an asset Experience supporting security audits, assessments, or risk governance activities is an asset Exposure to global organizations and multicultural environments is an asset Skills Strong understanding of information security principles, governance structures, and compliance methodologies. Ability to analyze security issues and translate them into governance requirements, policy updates, and measurable outcomes. Strong written and verbal communication skills; able to prepare governance documentation and present to stakeholders at various levels. Excellent interpersonal and stakeholder engagement skills with a collaborative mindset. Strong organizational skills and the ability to manage multiple projects in parallel. Proficiency in English is required; French is a strong asset. Other requirements Able to work in alignment with Eastern Standard Time (EST) business hours.Able to work in alignment with Eastern Standard Time (EST) business hours.Able to work in alignment with Eastern Standard Time (EST) business hours. This role can be located in a CGI office in one of the following locations: Canada, India, Philippines Skills: Incident Management IT Service Management Security Operations Center What you can expect from us: Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.

Job requisition ID :: 87078 Date: Aug 5, 2025 Location: Delhi Designation: Deputy Manager Entity: Deloitte Touche Tohmatsu India LLP Your potential, unleashed. India’s impact on the global economy has increased at an exponential rate and Deloitte presents an opportunity to unleash and realize your potential amongst cutting edge leaders, and organizations shaping the future of the region, and indeed, the world beyond. At Deloitte, your whole self to work, every day. Combine that with our drive to propel with purpose and you have the perfect playground to collaborate, innovate, grow, and make an impact that matters. The team Deloitte helps organizations prevent cyberattacks and protect valuable assets. We believe in being secure, vigilant, and resilient—not only by looking at how to prevent and respond to attacks, but at how to manage cyber risk in a way that allows you to unleash new opportunities. Embed cyber risk at the start of strategy development for more effective management of information and technology risks Your work profile As a AM \Consultant professional in our Cyber Team you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Key Responsibilities: As a part of our Cyber strategy team, you will build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Good understanding of NIST CSF and ISO 27001 standard controls. Develop and maintain a comprehensive third-party risk management framework in terms of policies, procedures, checklist, risk profiling methodology Conduct risk-profiling of the vendors depending on the defined criteria Conduct third-party risk assessments for legacy vendors as per the defined assessment checklist Develop and maintain a third-party risk register, monitor and track third-party risk indicators Discuss the risk assessment findings with the relevant stakeholders to define the action plan. Develop and implement risk mitigation strategies Manage relationships with third-party vendors, conduct periodic reviews, and report on third-party risk management activities. Support in post-implementation review to check the remediation status of the findings. Prior experience of working with GRC tools such as OneTrust, ServiceNow etc. Desired qualifications B. E/ B-Tech (Tier 1/2) or master’s degree in information security, Computer Science, or a related field Professional certifications such as CISSP, CISA, CISM, CRISC, ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL or PCI QSA are preferred. 2-5 years of relevant experience in cybersecurity consulting, risk management, and compliance. In-depth knowledge of security frameworks and standards (e.g., NIST, ISO 27001, COBIT). Strong analytical, communication, and stakeholder management skills Location and way of working Base location: Gurgaon Professional is required to work from office. Your role in team We expect our people to embrace and live our purpose by challenging themselves to identify issues that are most important for our clients, our people, and for society. Subject matter specialist in GRC and multiple security domains Extensive experience in leveraging industry standards and frameworks such as ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. Establishing and maintaining risk governance frameworks, facilitating risk identification, evaluation, mitigation, and continuous monitoring Designing and validating secure IT architecture, ensuring integration of application security principles throughout the software development lifecycle. Experience in design, development, and roll-out of security programs, developing IT risk management strategies, compliance programs. Overseeing third-party risk assessments and managing compliance with regulatory frameworks such as RBI, SEBI, IRDA, PCI DSS, and others. Advising on secure cloud architecture and best practices across AWS, Azure, and Google Cloud platforms, ensuring cloud environments meet compliance and security standards. Experience in building vulnerability management programs for organizations. Planning and executing IT and OT security audits alongside IT General Controls (ITGC) testing, identifying gaps, and collaborating with teams to remediate vulnerabilities. Experience in designing Secure Development Lifecycle for organizations (Strategic roadmap and implementation) Assessing the organization’s cybersecurity maturity (using frameworks like NIST CSF) and developing strategic roadmaps to strengthen security posture over time. Cyber Threat and Risk Assessment - Ability to identify business implications and identifying tactical and strategic recommendations to mitigate the risk. Possesses certifications such as ISO27001 LA/ LI, ISO22301 LA/LI, PMP, CISSP, CISA, CISM certification- preferred. Ability to define the business & technical scope of a project. Should be able to independently lead delivery teams to deliver projects according to client specifications after such scope is defined. How you’ll grow Connect for impact Our exceptional team of professionals across the globe are solving some of the world’s most complex business problems, as well as directly supporting our communities, the planet, and each other. Know more in our Global Impact Report and our India Impact Report. Empower to lead You can be a leader irrespective of your career level. Our colleagues are characterized by their ability to inspire, support, and provide opportunities for people to deliver their best and grow both as professionals and human beings. Know more about Deloitte and our One Young World partnership. Inclusion for all At Deloitte, people are valued and respected for who they are and are trusted to add value to their clients, teams and communities in a way that reflects their own unique capabilities. Know more about everyday steps that you can take to be more inclusive. At Deloitte, we believe in the unique skills, attitude, and potential each and every one of us brings to the table to make an impact that matters. Drive your career At Deloitte, you are encouraged to take ownership of your career. We recognize there is no one size fits all career path, and global, cross-business mobility and up / re-skilling are all within the range of possibilities to shape a unique and fulfilling career. Know more about Life at Deloitte. Everyone’s welcome… entrust your happiness to us Our workspaces and initiatives are geared towards your 360-degree happiness. This includes specific needs you may have in terms of accessibility, flexibility, safety and security, and caregiving. Here’s a glimpse of things that are in store for you. Interview tips We want job seekers exploring opportunities at Deloitte to feel prepared, confident, and comfortable. To help you with your interview, we suggest that you do your research, know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. *Caution against fraudulent job offers*: We would like to advise career aspirants to exercise caution against fraudulent job offers or unscrupulous practices. At Deloitte, ethics and integrity are fundamental and not negotiable. We do not charge any fee or seek any deposits, advance, or money from any career aspirant in relation to our recruitment process. We have not authorized any party or person to collect any money from career aspirants in any form whatsoever for promises of getting jobs in Deloitte or for being considered against roles in Deloitte. We follow a professional recruitment process, provide a fair opportunity to eligible applicants, and consider candidates only on merit. No one other than an authorized official of Deloitte is permitted to offer or confirm any job offer from Deloitte. We advise career aspirants to exercise caution. In this regard, you may refer to a more detailed advisory given on our website at: https://www2.deloitte.com/in/en/careers/advisory-for-career-aspirants.html?icid=wn_

Job Description Overview We are seeking a highly skilled and experienced professional to join our Data & AI team as a Senior ITGC Testing and Audit Engineer. The primary responsibility of this role is to lead and execute IT General Controls (ITGC) and IT Application Controls (ITAC) testing and reporting across cloud and on-premise data platforms including Azure, Power BI, Microsoft Apps, Teradata, Alteryx, and various SaaS/PaaS environments The ideal candidate will bring deep expertise in IT auditing, risk management, and compliance frameworks such as SOX, SOC, and CISA standards. Responsibilities Lead the planning, execution, and documentation of ITGC and ITAC control testing activities. Collaborate with cross-functional teams and Application owners to assess control design and operational effectiveness. Identify control gaps and recommend remediation strategies. Lead onboarding of new platforms (e.g., GCP, AWS) and define respective ITGC and ITAC controls. Support internal and external audits by providing requested documentation and control evidence. Prepare detailed reports and dashboards for control testing results and risk assessments for leadership awareness Design and implement automated control testing procedures where applicable. Contribute to the continuous improvement of control testing methodologies and tools. Provide mentorship and guidance to junior team members on control testing best practices. Evaluate the effectiveness of security and access controls across cloud and on-premises platforms. Ensure timely remediation of control deficiencies and track corrective actions to closure. Participate in risk assessments and control self-assessments for IT systems and new apps. Establish compliance activities and documentation for newly deployed applications and services. Qualifications Minimum 7–8 years of experience in IT auditing, ITGC/ITAC testing, or related compliance roles. Proven Audit experience with cloud-based platforms (Azure, Databricks, Power BI) and enterprise data tools (Teradata, Alteryx, Datalake etc..). Strong understanding of IT control frameworks (SOX, COBIT etc.,). Experience working with SaaS and PaaS platforms in a regulated environment. Professional audit certifications such as CISA, CISM, or equivalent are highly desirable. Education Bachelor’s or Master’s degree in Information Systems, Computer Science, Auditing, or a related field.

POSITION INFORMATION Position Title: Software Lead Developer – India Under general direction, the Senior Software Developer develops strategic solutions for new services and functionality. This role designs software and participates in programming, testing and documentation through the entire Software Development Life Cycle (SDLC). Timely and effective communications to the team, organization and outside vendors are regularly disseminated as part of this job function. Primary Responsibilities Technical Leadership & Mentorship: Lead a team of ServiceNow developers, providing technical direction, code reviews, and mentorship to ensure high-quality, performant, and scalable solutions. Foster a collaborative and innovative team environment, promoting knowledge sharing and continuous improvement. ServiceNow Platform Development Design, develop, and implement complex ServiceNow solutions including custom applications, modules, workflows, and UI components using Flow designer, JavaScript, GlideRecord, GlideForm, Jelly, Angular JS, and other relevant ServiceNow APIs and scripting languages. Develop and maintain robust, secure, and high-performing integrations with external systems using various methods (REST, SOAP, MID Server, IntegrationHub). Ensure adherence to ServiceNow best practices, coding standards, and security guidelines. Manage and execute technical tasks for platform upgrades. Platform knowledge on ITSM modules, CMDB, On-call, Virtual agent etc. GRC Module Expertise Lead the implementation, configuration, and customization of ServiceNow GRC (Governance, Risk, and Compliance) solutions. Develop and optimize GRC workflows, policies, controls, and risk assessments. Ensure GRC solutions meet regulatory requirements and internal compliance standards. Provide technical guidance on GRC best practices and module capabilities. Integrations Lead the design and implementation of complex integrations between ServiceNow and various enterprise systems (e.g., HRIS, CRM, monitoring tools, ITSM tools). Define integration strategies, data mapping, and error handling mechanisms. Leverage IntegrationHub Now Assist & AI/ML Integration Explore, evaluate, and implement solutions leveraging ServiceNow Now Assist capabilities to enhance user experience, automate tasks, and improve efficiency. Required Technical Skills & Experience 7+ years of hands-on development experience with ServiceNow, with at least 2 years in a lead or senior technical role. Deep expertise in ServiceNow platform development: Flow designer, JavaScript, GlideRecord, GlideForm, Script Includes, Business Rules, UI Policies, UI Actions, Client Scripts. Service Portal development (Widgets, Pages, Themes, SCSS, AngularJS). ServiceNow APIs (REST, SOAP). Implementation experience with ServiceNow GRC Module: Implementation, configuration, and customization of Risk Management, Policy & Compliance, Audit Management, and Vendor Risk Management. Understanding of GRC frameworks (e.g., NIST, ISO 27001, COBIT). Proven experience with complex integrations: Designing and implementing integrations using REST, SOAP, MID Server, and IntegrationHub. Experience with various authentication methods (OAuth, Basic Auth, certificates). Familiarity with ServiceNow Now Assist and AI/ML capabilities: Understanding of Natural Language Understanding (NLU), Virtual Agent, and AI search functionalities. Experience in leveraging or implementing AI/ML-driven features within ServiceNow. Preferred Certifications ServiceNow Certified Application Developer – Highly desirable . Multiple ServiceNow Certified Implementation Specialist (CIS) certifications (e.g., CIS-ITSM, CIS-GRC, CIS-Discovery, CIS-Service Mapping). Experience with other ServiceNow modules (ITSM, GRC, NowAssist). Education And Experience Bachelor’s degree in Computer Science with additional coursework in management, information processing or a related field. May also possess a combination of education and relevant work experience from which comparable knowledge and abilities can be drawn.

Vice President - Technology Risk Management II - Chief of Operations (COPS) Officer At BNY, our culture empowers you to grow and succeed. As a leading global financial services company at the center of the world’s financial system we touch nearly 20% of the world’s investible assets. Every day around the globe, our 50,000+ employees bring the power of their perspective to the table to create solutions with our clients that benefit businesses, communities and people everywhere. We continue to be a leader in the industry, awarded as a top home for innovators and for creating an inclusive workplace. Through our unique ideas and talents, together we help make money work for the world. This is what is all about. We’re seeking a future team member for the role of Vice President - Technology Risk Management II to join our Technology Risk Management (2LOD) team. This role is located in Pune, MH Hybrid. In this role, you’ll make an impact in the following ways: Drive consistent, robust, and repeatable independent technology & cybersecurity risk and control management processes with developed centralized process documentation, templates, tooling, dashboarding, reporting and related work products Enable high-quality and consistent delivery of key independent 2LOD risk and control management activities across the broader Technology Risk Management organization to support key stakeholder deliverable work products including risk committee reporting, audit trail submissions, regulatory engagement responses, and 1LOD and Internal Audit reporting transparency Implement appropriate checks and change management capabilities to ensure broader TRM teams are challenged to produce high-quality, risk-based analysis, challenges, issues, and work products to stand-up to audit and regulatory requirements Interface collaboratively with other TRM teams including Reporting, Frameworks, Process, Automation/AI, and Functional SME teams, to ensure process efficiencies are implemented and enhanced over time To be successful in this role, we’re seeking the following: Bachelor’s degree or the equivalent combination of education and experience is required 7+ years of experience required experience with technology or financial services industry is required Sound understanding of Industry wide Technology Controls, Issue Management and Risk Management Framework Expert attention to detail, organizational and executive communication skills and experience are required Relevant professional certifications are a plus (CRISC, CISA, ITIL, ISO27001, COBIT) Technical experience with SharePoint, Tableau, PowerBI, ServiceNow is a plus Consulting and engagement with senior leadership experience is a plus At BNY, our culture speaks for itself. Here’s a few of our awards: America’s Most Innovative Companies, Fortune, 2024 World’s Most Admired Companies, Fortune 2024 Human Rights Campaign Foundation, Corporate Equality Index, 100% score, 2023-2024 Best Places to Work for Disability Inclusion , Disability: IN – 100% score, 2023-2024 “Most Just Companies”, Just Capital and CNBC, 2024 Dow Jones Sustainability Indices, Top performing company for Sustainability, 2024 Bloomberg’s Gender Equality Index (GEI), 2023 Our Benefits And Rewards BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life’s journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter. BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.

Overview We are seeking a highly skilled and experienced professional to join our Data & AI team as a Senior ITGC Testing and Audit Engineer. The primary responsibility of this role is to lead and execute IT General Controls (ITGC) and IT Application Controls (ITAC) testing and reporting across cloud and on-premise data platforms including Azure, Power BI, Microsoft Apps, Teradata, Alteryx, and various SaaS/PaaS environments The ideal candidate will bring deep expertise in IT auditing, risk management, and compliance frameworks such as SOX, SOC, and CISA standards. Responsibilities Lead the planning, execution, and documentation of ITGC and ITAC control testing activities. Collaborate with cross-functional teams and Application owners to assess control design and operational effectiveness. Identify control gaps and recommend remediation strategies. Lead onboarding of new platforms (e.g., GCP, AWS) and define respective ITGC and ITAC controls. Support internal and external audits by providing requested documentation and control evidence. Prepare detailed reports and dashboards for control testing results and risk assessments for leadership awareness Design and implement automated control testing procedures where applicable. Contribute to the continuous improvement of control testing methodologies and tools. Provide mentorship and guidance to junior team members on control testing best practices. Evaluate the effectiveness of security and access controls across cloud and on-premises platforms. Ensure timely remediation of control deficiencies and track corrective actions to closure. Participate in risk assessments and control self-assessments for IT systems and new apps. Establish compliance activities and documentation for newly deployed applications and services. Qualifications Minimum 7-8 years of experience in IT auditing, ITGC/ITAC testing, or related compliance roles. Proven Audit experience with cloud-based platforms (Azure, Databricks, Power BI) and enterprise data tools (Teradata, Alteryx, Datalake etc..). Strong understanding of IT control frameworks (SOX, COBIT etc.,). Experience working with SaaS and PaaS platforms in a regulated environment. Professional audit certifications such as CISA, CISM, or equivalent are highly desirable. Education Bachelor’s or Master’s degree in Information Systems, Computer Science, Auditing, or a related field.

Key Responsibilities : Cyber Security KPI Monitoring: Develop & maintain the detailed plan (including Work plan / Work Breakdown Structure) for all activities which are part of the engagement. Create and maintain the communication plan with AMNSI internal and external stakeholders for all activities which are part of the program to meet the defined timelines. Identify the security KPI’s for Data Leakage Prevention, Intune, Awareness trainings, Information and Operational Technology, BCP and DR strategies etc. and monitor as per the set objectives in place. Assess the effectiveness of the controls and processes defined. Recommending any Improvement suggestion in cybersecurity process (Emergency Incident response, BCP, DR drills and simulation) Schedule weekly, monthly governance meeting with AMNSI management to update on the status and future plans for improvement. Coordinate with internal and external stakeholders Maintain the evidence and documentations for audits for future reference. All Individual KPI target for improvement to 95% which are beyond the target level. (Ex. user awareness training, vulnerabilities, cloud security framework, IT/OT baseline review and suggestions). Audit Management: Develop recommendations to improve business processes, controls, efficiencies, and effectiveness to ensure AMNS is in line with applicable regulations and standards. Internal and external audits compliance process designs, procedure for conducting security audit programs, risk register and audit results templates. Processes for internal and external communication relevant to security audit programs. Responsible for defining the scope of audit, preparing audit calendar, informing relevant stakeholders on audit schedule, providing support during audit, documenting results, report findings to Sun Pharma’s stakeholders for review and develop an action plan for improvement areas with any gaps in compliance. Lead the closure of all cybersecurity-related audit findings from both internal and external audits. Collaborate with various departments (IT, Legal, HR, Admin etc.) to gather necessary evidence, implement corrective actions, and track progress until findings are closed. Provide detailed root cause analysis for all audit findings and ensure remediation plans are aligned with industry standards. Risk Mitigation: Develop and implement remediation plans to address identified risks and vulnerabilities. Ensure all corrective actions are documented and comply with regulatory and policy requirements. Continuously evaluate and improve the effectiveness of risk management, controls, and governance processes. Compliance & Standards Adherence: Ensure the organization meets or exceeds compliance requirements (e.g., ISO 27001, NCIIPC, etc.) by addressing cybersecurity risks identified during audits. Keep up to date with changes in regulatory requirements and cybersecurity best practices. Collaboration and Communication : Work closely with IT, compliance, legal, and operational teams to ensure audit findings are understood, prioritized, and addressed within defined timelines. Report progress and potential roadblocks to senior management and stakeholders. Continuous Improvement: Identify and recommend opportunities for process improvement in cybersecurity audits and the closure of findings. Support in developing and updating cybersecurity policies, procedures, and controls to prevent future non-compliance. Documentation & Reporting: Prepare and maintain documentation related to audit findings, including remediation activities, timelines, and final resolution. Provide detailed audit reports and closure status updates to senior management and relevant stakeholders as required. Required Skills & Qualifications: Experience: Minimum of 5+ years in cybersecurity, IT audit, or related roles with a focus on managing audit findings and compliance. Technical Knowledge: Strong understanding of cybersecurity frameworks such as ISO 27001, NIST, CIS, COBIT, etc. Familiarity with cybersecurity tools (SIEM, vulnerability scanners, firewalls, IDS/IPS). Deep knowledge of risk management, incident response, and security monitoring. Audit and Compliance Knowledge: Experience with audits (internal/external) and audit closure, specifically in IT environments. Proven experience with compliance such as NCIIPC, IT Act 2000/2008, DPDPA. Soft Skills: Strong problem-solving skills and the ability to implement solutions in complex environments. Excellent communication and interpersonal skills to work across departments and with senior management. Attention to detail and a methodical approach to handling multiple audit findings simultaneously. Certifications (Preferred): Certified Information Systems Auditor (CISA) ISO 27001 Lead Auditor / Implementer Any other relevant cybersecurity certifications.

T he Area: Morningstar is a leading global provider of independent investment insights. Our core competencies are data, research, and design, and we employ each of these to create products that clearly convey complex investment information. Our mission is to empower investor success and everything we do at Morningstar is in the service of the investor. Reporting to the Audit Committee of the Board of Directors, the purpose of the Global Audit and Assurance (GAA) function is to strengthen Morningstar s ability to create, protect, and sustain value by providing the Company with organizationally independent, risk-based, and objective assurance and consulting services to evaluate and improve Morningstar s governance, risk management, and control processes. The Role: Morningstar s GAA function seeks a highly motivated Senior IT Internal Auditor who thrives on new experiences and challenges. As a Senior IT Internal Auditor, you will play an integral role in evaluating the company s information technology and information security processes and effectiveness of internal controls. You will have the opportunity to work on a variety of information technology integrated reviews as well as evaluate the effectiveness of IT general controls over external financial reporting as part of the company s Sarbanes-Oxley Section 404 compliance activities. Based in Mumbai, the Senior IT Internal Auditor may be required to travel to a number of domestic and international locations in support of our IT internal audit plan. You will work closely with all levels of management across the organization, recommending changes to strengthen controls for increased efficiencies and reduced risks. The Senior IT Internal Auditor will have the opportunity to utilize and reference world-class audit tools and audit methodologies in the performance of his or her duties. Key responsibilities: Planning and execution of information technology and integrated audit reviews. Perform walkthroughs of complex information technology and information security processes and test the design and effectiveness of internal controls. Document work and prepare observations and recommendations for corrective action. Supervise audit staff and/or external consultants, review workpapers, and provide appropriate coaching and feedback. Effectively apply the COSO internal control framework, COBIT IT governance framework, NIST Cybersecurity framework and IIA International Professional Practices Framework. Assist audit management with the execution of continuous risk assessment and audit plan development. Serve as a consultant and business partner with management. Requirements: Action-oriented, self-starter with strong verbal and written communication skills. Comfortable working both independently or in teams and working within a complex environment. Ability to diagnose problems, determine root causes, and recommend solutions to complex challenges. Strong understanding of information technology general computer controls, system development life cycle, and IT auditing techniques; including a broad knowledge of IT technologies, operating systems, databases, and application platforms. Knowledge of recognized IT audit and governance frameworks such as COBIT, ITIL, NIST, ISO, etc. Knowledge of General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA). Undergraduate degree in information technology, management information systems, or a related field. Minimum of 7 years of internal or external audit experience assessing information technology/security controls and/or internal controls over financial reporting. Proven ability in performing multiple projects and working with varying team members. Flexibility/ adaptability to work a non-standard schedule as needed to accommodate various time zones where some process owners are located. Willingness to travel to domestic and international offices. Experience in working for a Big 4 or Tier-Two public accounting firm is highly preferred. Experience performing data analytics and using data analysis or automated audit software is highly preferred. Professional accreditation (e.g., CIA, CISA, CPA) is highly preferred . Morningstar is an equal opportunity employer. Morningstar s hybrid work environment gives you the opportunity to work remotely and collaborate in-person each week. We ve found that we re at our best when we re purposely together on a regular basis, at least three days each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you ll have tools and resources to engage meaningfully with your global colleagues.

Job requisition ID :: 75055 Date: Aug 3, 2025 Location: Pune Designation: Manager Entity: Deloitte Touche Tohmatsu India LLP Project Role: Risk and Controls Design and Implementation Responsibilities include: Support the client CISO and CIO function in developing Enhanced Operating Model enabling holistic and efficient governance and management of Risks and Controls Develop High level operating model design blueprint with supporting process flows Support the CISO function in developing Procedures and integration within the Non-Financial Risk Management (“NFRM”) and Operational Risk Management (“ORM”) Framework. Support the CISO and CIO function with the implementation of the methodology for designing, developing, aggregating and reporting key metrics, including key performance indicators (“KPIs”), key control indicators (“KCIs”) and key risk indicators (“KRIs”), which underpins the Reporting and Governance definition & Implementation process. Develop Target Operating Model & Control Lifecycle Management Qualifications: Bachelor’s degree (or equivalent experience) with 7-10 years’ experience in Risk Management, Risk and control designing and implementation Preferably with global banking clients. Proven experience in controls assurance, or internal audit, with strong focus on transformation, establishing new framework, methodology etc. ISO 27001, CRISC or CISA Certified Mandatory, CISSP certification Desirable Information Systems/Network Security knowledge Understanding of Risk Management framework such as NIST, ISO, COBIT or equivalent cyber security framework. Knowledge of Internal control concepts (e.g., Preventive Controls; Detective Controls; Anti-Fraud Controls; etc.) Strong understanding of regulatory requirements and industry best practices related to controls assurance, relevant to global banking risks – such as Information Technology (IT), Information Security (IS), and/ or Data Management Exceptional communication skills, both verbal and written, with the ability to influence and engage stakeholders at all levels. Experience operating in a regulated environment and managing stakeholders across the Three Lines of Defense. Familiarity with cyber security, resilience and related domains preferred.

As a Control Library Manager at LSEG, you will play a key role in maintaining and updating the centralised Technology & Cyber Security control library. Your responsibilities will include ensuring that controls align with industry frameworks such as NIST, ISO, and COBIT, as well as meeting regulatory requirements like DORA. You will be tasked with translating complex framework and regulatory requirements into clear and actionable controls. Your role will also involve conducting Tests of Design Assurance and Operating Effectiveness Assurance for key controls at both group and divisional levels. By documenting test results and identifying areas for improvement, you will provide critical support for Group Engineering, Risk & Control Assessments. Additionally, you will establish and oversee processes for proper documentation, storage, and accessibility of control evidence at required frequencies. As part of your duties, you will plan and coordinate periodic independent assurance activities with internal audit teams and external assessors, preparing documentation and facilitating access to evidence. You will also be responsible for implementing, tracking, and analyzing Key Control Indicators (KCIs) aligned to the control library to identify trends and potential weaknesses. In your role, you will maintain detailed control performance dashboards and metrics to communicate control status to various partners, from technical teams to executive leadership. You will lead a team of GRC analysts, providing mentorship, technical guidance, and career development opportunities while ensuring high-quality results. Moreover, you will collaborate with control/process owners to develop and implement effective remediation strategies for thematic control weaknesses. To qualify for this position, you should have a relevant degree in IT, Cybersecurity, or Risk Management (Desirable) along with at least 5 years of experience in technology controls or compliance. Strong knowledge of control frameworks such as NIST, ISO, and COBIT is essential, as well as demonstrable knowledge of key controls across Technology process areas. Your experience in control implementation, testing, evidence validation, team management, and project delivery will be beneficial. Excellent analytical, communication abilities, and presentation skills are required for this role. Experience with GRC tools and control automation will also be advantageous. Join LSEG, a leading global financial markets infrastructure and data provider, and be part of a dynamic organization that values individuality and encourages new ideas. Together, we aim to drive financial stability, empower economies, and create sustainable growth for communities and economies globally.,

Title: IBMi Senior Systems Administrator (AS400) Location: Remote Duration: 9-12 Months Experience required: Over 12 years Required Skills & Experience Bachelors degree or equivalent computer-related degree from a technical school, or similar training, along with a minimum of five year of experience in system administration related role(s). Good understanding of technical equipment and software packages. Good understanding with: IBM AS/400, IBM iSeries, IBM Power 10 EMC SAN and storage devices, IBM DS8000 Storage VTL backups, BRMS, cluster environment Performance monitoring Apache Servers IBM Web services System maintenance (IPL, PTF, SAVSYS....) IBM i commands, job control, WRKACTJOB, WRKSPLF, DSPMSG, etc. Backup tools (BRMS), job schedulers (Robot or native), system monitoring tools CL programming (basic to intermediate), SQL, and introductory RPG knowledge Knowledge of IT security best practices. An understanding of COBIT, ISACA, SANS Frameworks Self-starter with the demonstrated ability to learn/adapt to new technologies and techniques. Ability to organize and manage multiple priorities simultaneously in a fast-paced, deadline-driven environment. Excellent verbal and communication skills required. Passionate about delivering excellence in customer service within a team environment. Ability to read, analyze, and interpret general business/technological periodicals, procedures, and journals. Ability to write procedure manuals. Ability to be patient and train less experienced team members; respond to questions, build capability. Ethical, with a commitment to company values. Show more Show less