615 Cobit Jobs - Page 15

TransUnion works with businesses and consumers to gather, analyze, and deliver critical information needed to build strong economies around the world. Protection of that information is critical to our customers and business. As part of our 2020 transformation journey, we became Global Audit & Advisory (GAA), formerly Internal Audit. As a Specialist III you will be part of the GAA team and be responsible for conducting Cybersecurity and IT audit engagements throughout the organization that support business objectives, best practices, and regulatory requirements. The incumbent will be responsible for the planning, execution, reporting, and follow-up on all audit engagements by participating on an audit team or at times independently leading engagements under the direction of GAA Management. This position will report directly to the Senior Lead and will work closely with other GAA Team Associates on key projects and initiatives as well as coordinate closely with our external auditors. The Global Audit & Advisory team is an independent and objective assurance and consulting activity that is guided by a philosophy of adding value to improve the operations of TU. GAA assists the organization in accomplishing its objectives by bringing a systematic and disciplined approach to evaluate and improve the effectiveness of the organizations risk management, control and governance processes. GAA collaborates with the Business Units, Functional leadership and their Associates in developing strong, professional and independent relationships to ensure a comprehensive understanding of the business to enable value added recommendations that improve efficiency and effectiveness. Perform detailed examinations of cybersecurity and IT practices and controls throughout the organization using an established assessment process and framework. The essential duties are as follows: Independently perform Information technology (IT) security reviews. Initiate, scope, plan, research and conduct IT controls assessments and audits. Lead and coordinate with process owners to initiate, scope, plan, and execute periodic controls assessments as part of the internal audit function, focusing on identifying risks by evaluating the design and operating effectiveness of internal controls. Actively support security audit initiatives by aligning audit procedures with cybersecurity frameworks (e. g. , NIST, ISO 27001 etc. ), conducting control walkthroughs, testing IT security and IT general and application controls, and assessing compliance with internal security policies. Document the results of audit procedures performed that support the conclusions reached. Prepare audit reports based on the adequacy and effectiveness of controls evaluated. Support external audits and regulatory examinations as needed. Analyze information security areas including ( but not limited to these ) governance and risk management, access and password controls, cloud security, cybersecurity, physical security, system security architecture and design, BCP and Disaster Recovery, network security, application and operations security, Incident Management, data migrations and system implementations etc. Lead engagement and communicate issues to process owners, ensuring understanding of risks and actions needed to remediate risks and subsequently track remediation activities. Cross train members of the Global Audit Team, including new hires and mentor junior IT staff. Continuously monitor emerging security trends and evolving threat landscapes through ongoing research and professional development. Insights gained are integrated into the audit universe to ensure risk assessments and audit planning remain current and aligned with the organization s security posture. Perform risk assessments and assist in the development of the annual audit plan. Participate in departmental initiatives, administrative matters, and special projects. Assist with other audit engagements as needed to broaden exposure across various risk areas and support the timely execution of the overall audit plan. Impact Youll Make: 6 - 10 years of experience in an IT/Security Audit and Assessment, or Information Security Technical, Management and/or Governance role. Bachelor s or Master s degree in computer science/information technology, management information systems or related field. Industry certification such as CISSP, CISA, CISM, CEH and/or CIA required. Experience with Cloud Security audits (AWS, Azure, GCP). Knowledge of data protection laws and industry standards. Familiarity with GRC platforms (e. g. , AuditBoard, Onspring, Archer). Demonstrated in-depth knowledge of concepts, best practices and controls in a breadth of Information Security areas/domains. These include governance & risk management, access control, cybersecurity, physical security, security architecture and design, business continuity/disaster recovery, network security, application and operations security and compliance/incident management. Demonstrated ability to understand complex technologies, business processes, regulations and emerging risks. Strong technical and/or IT and Security audit background with practical knowledge of a wide variety of technologies including server infrastructure and operating systems, network and web infrastructures, database architecture, vulnerability and penetration testing assessment and Intrusion Detection/Prevention Systems. Good understanding of SOX legislation and IT and Security frameworks including COSO and COBIT. Self-starter with the ability to manage and prioritize responsibilities. Team player with proven skills in influencing people without having direct management authority. Self-driven performer with established skills in tracking self and project performance, anticipating and recognizing problems and escalating issues appropriately. Strong ability to interact and communicate both written and verbally with people at all levels, both technical and non-technical, in a dynamic environment where interactions are not always in person. Strong risk analysis and problem solving skills. Must be flexible to ensure assessments are performed timely and manage multiple assessments simultaneously. This is a hybrid position and involves regular performance of job responsibilities virtually as well as in-person at an assigned TU office location for a minimum of two days a week. TransUnion Job Title Consultant, Audit and Advisory

Job Description TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full-service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers’ compensation insurance. TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET. If you’re passionate about innovation and making an impact on the large SMB market, come join us as we power our clients’ business success with extraordinary HR. Don't meet every single requirement? Studies have shown that many potential applicants discourage themselves from applying to jobs unless they meet every single requirement. TriNet always strives to hire the most qualified candidate for a particular role, ensuring we deliver outstanding results for our small and medium-size customers. So if you're excited about this role but your past experience doesn't align perfectly with every single qualification in the job description, nobody’s perfect – and we encourage you to apply. You may just be the right candidate for this or other roles. Job Summary Under the direction of an Internal Audit Leader, the Senior, IT Internal Auditor will assist in the company's Sarbanes-Oxley (SOX) 404 process including documentation, testing and coordination with finance and IT. This role will also be responsible for performing individual internal audit projects, as part of the internal audit plan. Work performed will include coverage of functional and operating units with focus on IT operational processes. Assisting with internal audit management, periodic reporting to the audit committee, development of the annual internal audit plan, and championing internal control and corporate governance concepts throughout the business are additional functions. Essential Duties/Responsibilities Assist in the Company’s (SOX) 404 process by documenting and testing Information Technology General Controls Collaborate with department personnel to ensure SOX 404 objectives, deliverables and timelines are met Assist in the coordination and tracking of internal/external testing of controls and track the status of gaps and remediation actions Assist in the coordination process to obtain management assessments of internal controls, including the identification of weaknesses and opportunities for improvement Provide an objective, independent, risk-based evaluation of the adequacy and effectiveness of the company’s technology, operational and financial controls Perform all phases of the audit process including planning, fieldwork, closeout, report writing, wrap-up and follow-up with little supervision Develop and execute test procedures / audit programs to ensure that controls are operating as intended Participate in special projects such as risk assessments, providing assistance to external auditors (including performing testing, gathering requested documentation, etc.), system implementations and upgrades Maintain comprehensive working papers to support and substantiate audit observations Required For All Jobs Performs other duties as assigned Complies with all policies and standards Qualifications Education: Bachelor's Degree in Accounting, Finance, MIS, Computer Science or other relevant degree desired, or equivalent education and/or related work experience required. Experience Work Experience Typically 5+ years of prior relevant audit experience, preferably including SOX ITGCs and IT audits (ITGC, cybersecurity, data privacy, system implementation and security risk management, DB, etc.) required Typically 2+ years experience in public accounting required Experience as an in-charge auditor required Licenses and Certifications CIA, CISA, CRISC, CISSP, CFE or equivalent Upon Hire preferred Knowledge, Skills And Abilities Solid understanding of internal auditing standards, Internal Control Over Financial Reporting (ICFR), Committee of Sponsoring Organization (COSO), Control Objectives for Information and Related Technologies (COBIT) and risk assessment practices Broad understanding across various areas of IT, including databases, operating systems, and applications Strong proficiency and skills with database applications, including Access and SQL, Microsoft Office and other related technologies Experience with PeopleSoft, Salesforce, Oracle, Linux Proven experience with SOC1 & 2 audits Demonstrated experience with the following frameworks: COSO, COBIT, NIST, ISO Ability to work independently with limited required direction and guidance Strong verbal and written communication skills to effectively present to peers and management Excellent interpersonal and teamwork skills Ability to build solid working relationships across cross-functional teams Experience in performing multiple projects and working with varying team members Ability to convey a strong presence, work under pressure, and deal confidently with complex business problem Work Environment Work in a clean, pleasant, and comfortable office work setting. The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable persons with disabilities to perform the essential functions. This position is 100% in office. Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity. TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact recruiting@trinet.com to request such an accommodation Show more Show less

About This Role Internal Audit Internal Audit’s primary mission is to provide assurance to the Board of Directors and Executive Management that BlackRock’s businesses are well managed and meeting strategic, operational and risk management objectives. The team engages with senior leaders and all of BlackRock’s individual business units globally to understand and advise on the risks in their business, evaluate the effectiveness of key processes and assist in the design of best practices that can improve their results. Internal Audit reports directly to the Audit Committee of the Board of Directors, and our work builds confidence that BlackRock will meet its obligations to clients, shareholders, employees, and other stakeholders. Technology Audit The Technology Audit Team, also in the US, Europe, and Asia, performs design review and testing related to technology controls across application systems and infrastructure components such as databases, operating systems, data centers and messaging platforms. India BlackRock India is a microcosm of the firm’s global operating platform that brings scaled capabilities in technology and investment management operations to support various functions, provide business continuity for critical operations, and drive innovation and operational excellence. Role Responsibilities & Qualifications This role supports the global Internal Audit team. Specific Responsibilities Include Engaging BlackRock stakeholders to understand and identify key processes and risks within a specific business unit or technology. Contribute to the risk-based decision making of audit scope. Reviewing, testing, and assessing the effectiveness of technology controls in business-integrated audits in which there is close interaction between business and technology partners. This role also includes technology-led audits across all aspects of information technology including cybersecurity, software, hardware, database, messaging, network, and cloud. Identifying and escalating issues identified during testing. Overseeing issue remediation Identifying emerging firm-wide and business risks, understanding organizational changes through periodic engagements with business units, and completing risk assessments of these areas Contributing to global department-wide initiatives Education And Experience Undergraduate or graduate degree in management information systems, engineering, technology, computer science or a related field is preferred. 2-3 years in a technology audit and/or technology risk management function, preferably within the Finance Industry. Familiarity with financial instruments and asset management processes. Knowledge of regional and global regulatory requirements Technology Skills Relevant professional certifications are a plus (e.g., CISA, CISM, CRISC, CEH). Strong understanding of application development, databases, operating systems, networking, and other key technology infrastructure components. Knowledge of ISO, ITIL and COBIT Knowledge of technology controls including application security management, system architecture and design, technology operations, and technology governance. Analytical mindset: Experience in utilizing business intelligence, and analytical methods and language (e.g., SQL, Python) and adopting a data driven approach to perform audit testing will be a plus. Soft Skills Intellectual curiosity, critical thinking and problem solving. Commitment and strong work ethic. Excellent communication (verbal, written, listening) and interpersonal skills. Our Benefits To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about. Our hybrid work model BlackRock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock. About BlackRock At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress. This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive. For additional information on BlackRock, please visit @blackrock | Twitter: @blackrock | LinkedIn: www.linkedin.com/company/blackrock BlackRock is proud to be an Equal Opportunity Employer. We evaluate qualified applicants without regard to age, disability, family status, gender identity, race, religion, sex, sexual orientation and other protected attributes at law. Show more Show less

A career within Internal Audit services, will provide you with an opportunity to gain an understanding of an organisation’s objectives, regulatory and risk management environment, and the diverse needs of their critical stakeholders. We focus on helping organisations look deeper and see further considering areas like culture and behaviours to help improve and embed controls. In short, we seek to address the right risks and ultimately add value to their organisation. To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. Responsibilities As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: Invite and give in the moment feedback in a constructive manner. Share and collaborate effectively with others. Identify and make suggestions for improvements when problems and/or opportunities arise. Handle, manipulate and analyse data and information responsibly. Follow risk management and compliance procedures. Keep up-to-date with developments in area of specialism. Communicate confidently in a clear, concise and articulate manner - verbally and in the materials I produce. Build and maintain an internal and external network. Seek opportunities to learn about how PwC works as a global network of firms. Uphold the firm's code of ethics and business conduct. Essential Duties And Responsibilities Manage the work streams related to IT SOX compliance covering ITGC and IT Dependencies (ITAC, Interfaces, IPE’s). Thorough understanding around ITGC domains such as Logical Access, Change Management, SDLC and Computer Operations. Exposure of testing IT Application Controls (Configurable, Non-configurable), Interfaces, IPE’s, Data Migration and Platform Reviews. Provide technical support in the assessment, design, and implementation of ITGC requirements. Review control evidence for adherence to accuracy, completeness, and precision of control execution for all ITGC. Develop, implement, and test controls for new acquisitions and in-scope entities Work with control owners and operators to ensure quality, consistency, and operability of new and existing controls. Collaborate and build long-term relationships with key stakeholders in a fast-paced and matrixed work environment. Review test findings, facilitate the remediation of ITGC control gaps, and escalate possible critical issues to senior management within IT. Mentors and develops peer and Associates, monitors their work, and takes corrective action when necessary Builds and maintains strong peer relationships within the team and across the organization Coordinates work with External Auditors. Interpersonal Skills Ability to work independently under general supervision with latitude for initiative and independent judgment Effective verbal and written communications, including active listening skills Ability to establish and maintain effective working relationships with co-workers and external contactors/auditors Detail-oriented Comfortable working on multiple projects simultaneously Individuals would be expected to cultivate a strong team environment and promote a positive working relationship amongst their team. Excellent Communication, written and verbal would be expected. In addition to being an exceptional individual contributor, manage engagements and relevant Teams allocated for the same. Managing predominantly offshore engagements and relevant PwC Territory teams. Ensure client service delivery in accordance with the quality guidelines & methodologies. Build and maintain client relationships by understanding and being responsive to client needs and ensuring high quality of deliverables. Demonstrate strong analytical thinking and communication skills including the ability to research and understand complex processes and effectively communicate them to interested parties Client Management Develop strong working relationships with the client and onshore client teams. Maintain excellent rapport and proactive communication with the stakeholders and client. Operational Excellence Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Ensure compliance with engagement plans and internal quality & risk management procedures. People Related Display teamwork, integrity, and leadership. Work with team members to set goals and responsibilities for specific engagements. Foster teamwork and innovation. Utilize technology & tools to continually learn and innovate, share knowledge with team members and enhance service delivery. Conduct workshops and technical training sessions for team members. Contribute to the learning & development agenda and knowledge harnessing initiatives Minimum Qualifications Bachelor’s degree in Information Systems, Computer Science Engineering, or Finance Preferred B.E., B. TECH, M. TECH, MCA, BCA, CA, MBA Experience in technology audit, risk management, compliance, consulting, or information security Excellent knowledge of IT General Controls, automated and security controls. Knowledge of security measures and auditing practices within various operating systems, databases, and applications Experience in auditing financial applications, cyber security practices, privacy, and various infrastructure platforms such as Unix, Linus, Windows, SQL Server, Oracle Databases Knowledge and concepts of auditing of cloud platforms (AWS, Azure and Google Cloud) Experience designing continuous auditing and monitoring tools and techniques is a plus. Good understanding of CoBIT 5 Domains of Access Management, SLDC & Change and Computer Operations and Control Design and Testing of SOX IT General Controls (ITGC) and/or IT Application Controls (ITAC) Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Management/Clients Knowledge of regulations impacting privacy, integrity, and availability of clients PII. Functional knowledge of major ERP suites (like SAP, Dynamics, Oracle EBS) Understanding of audit concepts and regulations Required overall experience in testing/reviewing and implementation of ITGC controls, CoBit 5 and developing COSO framework Candidates with 3-5 years of relevant experience in similar role, preferably with a “Big 4” or equivalent Chartered Accountant (would be added advantage) Certification(s) Preferred CISA / CISM / CRISC / CISSP / ISO 27001 LA certifications Show more Show less

ABOUT THE TEAM The RealPage Information Security Operations team monitors and manages risks associated with threats and vulnerabilities faced by our infrastructure, platforms, and systems. We work closely with our teammates from IT, Product Development, and across the business to coordinate and execute our vulnerability management and incident response strategies and capabilities. We work with industry-leading tools and implement creative solutions to complex problems. WHAT YOU'LL DO As an Incident Response Engineer, you will work directly with our security teams and partners across IT and the Application teams to contain and remediate security incidents, as well as designing solutions to improve the overall security architecture for the enterprise. Success in this role will be determined by your deep analytical expertise, including deep packet analysis, malware analysis, de-obfuscation skills, insights into endpoint analytics, and detailed log analysis. You will be called upon to flex your offensive security skills to drive rapid containment and remediation of security incidents, as well as your interpersonal skills to coordinate response with your teammates. Broad experience with security analytics including host logs, endpoint investigations, and network analysis are critical skills for this role. PRIMARY RESPONSIBILITIES Collect and analyze key data and telemetry during a security incident. Coordinate containment and remediation activity with cross-functional teams Complete all required incident documentation and reporting within established time frames. Drive improvements from incident lessons learned. Develop playbook\SOP to improve Incident Response processes to align with industry guidelines and standards. Develop and implement security monitoring use cases driven by threat intelligence. Conduct periodic threat hunting exercises to actively discover suspicious activity across the enterprise. participate in periodic exercises to test the effectiveness of IR\SOC process and controls. QUALIFICATIONS Required Qualification: Bachelor's degree and 2 to 4 years of experience in Incident Response (CSIRT) and SOC. Additional relevant experience and professional certifications will be considered in lieu of a degree. Understanding of host-based and network security logging. Experience in usage of enterprise security solutions. Understanding related to security encompassing end point technologies, applications, application hosting, physical and virtual data center hosting. Experience with security practices such as security incident response and risk management. Excellent verbal and written communication skills with a wide range of audiences including technologists, executives, business stakeholders and IT team members. Must be a critical thinker with strong problem-solving skills. Knowledge of information security management frameworks, such as ISO 27001, ITIL, COBIT or NIST. High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity. Proven ability in security process and organizational design; Current understanding of Industry trends and emerging threats; and knowledge of incident response methodologies and technologies. Desired Qualification: Degree in applicable field Professional information security certification, such as CEH, CHFI etc. Knowledge of common security frameworks and regulations including FFIEC, NYDFS and NIST Cybersecurity Framework In-depth and hands-on experience with Security Analytics and Incident Response Knowledge in Scripting languages (e.g. BASH, Python, etc)

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Risk and Compliance Consultant - Senior The opportunity This is a role where no two days are the same – so you’ll find yourself taking on plenty of new responsibilities as you go. You’ll work alongside clients and colleagues, balancing your time between developing security strategies, designing security and privacy controls, advising client stakeholders, facilitating workshops and supporting business development. Your key responsibilities As a Cyber GRC Professional in our Cyber Security practice, you will be occupied in the following domains: a) Strategy, b) Risk, c) Compliance. As part of our team strategy you will be expected to take on responsibility and initiative early, providing you with real experience working with a wide range of major clients in EY. You will be taking responsibility for the quality of your work, while continually developing your personal and professional skills through formal training, hands-on experience and coaching. Skills and attributes for success To qualify for the role, you must have: Degree, or equivalent, in Information Security, Cyber Security, Information Technology, Informatics, or other similar and technical areas Evidence of self-motivation to continuously develop in the areas of cybersecurity Good organizational and time management skills with the ability to prioritize and complete multiple complex projects under tight deadlines Ability to translate security issues into business risks Excellent interpersonal skills and ability to work effectively within a team at all hierarchical levels Willingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologies Experience, knowledge and strong interest in information and cyber security domains are essential for this role Experience on Cyber Governance, Risk & Compliance (GRC), Cyber risk assessments & management methodologies Experience on assessing, designing and implementing security strategies, governance frameworks over processes and controls, allowing organisations to optimally manage cyber security Experience on design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, such as ISO27001, NIST, SANS etc. Experience in data classification exercises and controls / mechanisms enforcement Working knowledge of control frameworks such as ISO 27001/27002, COBIT, NIST, ITIL, etc. Ability to conduct Security regulatory and compliance assessment independently Hands on with assessment report preparation and presenting to senior technical and business stakeholders Hand on knowledge of excel, PowerPoint and word Articulative and confident in presentation to senior stakeholders Ability to lead workstreams or dedicated portions of projects Cyber maturity assessments, recommendations, roadmap and strategy creation knowledge of use of and risks related to modern and emerging technologies Cybersecurity audit Ability to plan and deliver cyber security training and awareness Ideally, you’ll also have: Security-related qualifications / certifications such as CISSP, SSCP, CISM, ISO27001 lead implementer or auditor, CompTIA Security+, are desirable Experience in Third Party Risk Management (TPRM) and / or vendor risk assessment engagements Experience in design and implementation of Information Security Management Systems (i.e. security policies, procedures and guidelines) according to leading International Standards Security-related vendor / technology certifications are desirable EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Company Profile: Founded in 1976, CGI is among the largest independent IT and business consulting services firms in the world. With 94,000 consultants and professionals across the globe, CGI delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. CGI Fiscal 2024 reported revenue is CA$14.68 billion and CGI shares are listed on the TSX (GIB.A) and the NYSE (GIB). Learn more at cgi.com. Job Title: Machine Learning Engineer Position: Senior Systems Engineer Experience: 3-8 years Category: Software Development/ Engineering Shift: 12:30 AM IST to 9:30 PM IST Main location: Bangalore Position ID: J0525-1644 Employment Type: Full Time Education Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 3 years of relevant experience. Position Description:. Must have skills : Must have experience in Programming Language (Python, R). Machine learning frameworks: scikit-learn, TensorFlow, PyTorch, or Keras. NLP Libraries : NLTK, spaCy, or Stanford CoreNLP. Data analysis and visualization tools: Pandas, NumPy, Matplotlib, or Seaborn. Experience with cloud-based platforms: AWS, Azure, or Google Cloud. Must have 3+ years of relevant experience in machine learning, NLP, or a related field. Experience with automated process development, deployment, and maintenance. Should be familiar with ticketing systems and auditing processes is a plus. Soft Skills : Excellent communication and collaboration skills. Ability to work in a fast-paced environment and adapt to changing requirements. Strong problem-solving skills and attention to detail. Good to have skills : 1. Experience with containerization: Docker, Kubernetes, or other containerization tools. 2. Familiarity with DevOps practices: Agile development, continuous integration, and continuous deployment. 3. Knowledge of IT service management: ITIL, COBIT, or other IT service management frameworks. 4. Certifications: Certified Data Scientist, Certified Machine Learning Engineer, or other relevant certifications. CGI is an equal opportunity employer. In addition, CGI is committed to providing accommodation for people with disabilities in accordance with provincial legislation. Please let us know if you require reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs. Life at CGI: It is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons Come join our team, one of the largest IT and business consulting services firms in the world Your future duties and responsibilities Required qualifications to be successful in this role Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.

About PhonePe Group: PhonePe is India’s leading digital payments company with 50 crore (500 Million) registered users and 3.7 crore (37 Million) merchants covering over 99% of the postal codes across India. On the back of its leadership in digital payments, PhonePe has expanded into financial services (Insurance, Mutual Funds, Stock Broking, and Lending) as well as adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store which is India's first localized App Store. The PhonePe Group is a portfolio of businesses aligned with the company's vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services. Culture At PhonePe, we take extra care to make sure you give your best at work, Everyday! And creating the right environment for you is just one of the things we do. We empower people and trust them to do the right thing. Here, you own your work from start to finish, right from day one. Being enthusiastic about tech is a big part of being at PhonePe. If you like building technology that impacts millions, ideating with some of the best minds in the country and executing on your dreams with purpose and speed, join us! Job Role / Responsibilities Perform internal audits and process reviews for functions to assess the adequacy, effectiveness and efficiency of the established internal controls and procedures Lead and perform control design assessments; Lead walkthroughs, identifying controls in the processes/ functions/ products/services, etc. Identify key areas of risk within processes and propose appropriate controls with the objective of mitigating the risks and increasing efficiency Responsible for operational testing of the controls (test scripts), including validation procedures. Evaluate the testing scripts on a regular basis to ensure changes are incorporated Evaluate the corrective action plans received from reviewee for appropriateness and/or Sufficiency. Collaborate with relevant functions to ensure timely closure of corrective action plans. Report on status of implementation of management action plans Work with 2nd line of defence Compliance functions to align audit activity Demonstrate skills to lead auditors, remain flexible, prioritize and maintain a strong attention to detail in a fast-paced environment. Strong collaboration and project management skills to complete quality work on the time with budgeted resources. Essential Skills & Qualification Bachelor’s degree with focus on Information Systems required Sound understanding of control environment, compliance and risk frameworks such as CoBIT; COSO; ISO standards, etc. Minimum 4+ years of experience in relevant field Working knowledge and experience in SOX programs / IT systems/ General Computer controls / Cybersecurity. Etc Experience in performing Technology Audits / IT Operations reviews / Integrated Audits Effective Verbal and Written Communication Skills Be able to work in a fast-paced role with competing priorities. Adaptable to project requirements and does what is required to get the job done Demonstrate ability for seamless execution, continuous improvement and problem solving Preferred Skills & Qualification Experience in BFSI / FinTech companies Experience integrating data analytics in audits Big 4 experience Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy Working at PhonePe is a rewarding experience! Great people, a work environment that thrives on creativity, the opportunity to take on roles beyond a defined job description are just some of the reasons you should work with us. Read more about PhonePe on our blog .

Responsibilities: Manage a team of application supports to handle service request from users and resolve incidents / problems on investment applications Communicate with and manage expectations of stakeholders on team performance Act as application owner to deliver support services according to agreed thresholds and service levels (20%) Drive and coordinate with subject matter experts / service providers to handle service requests and resolve incidents / problems (30%) Learn new application functionalities and draft standard operation manual accordingly Lead, manage, coach and develop team member on application knowledge and support functions Requirements: 5-year experience in leading a support team on investment trading platforms is a must. Working experience in Blackrock Aladdin Knowledge in Service Now is a plus Understand investment workflow and terminology Conversant with SDLC methodology and COBIT framework Microsoft Office & Visio Good communication and presentation skills Fluent spoken and written English is a must Willing to work in Malaysia Job Type: Full-time Pay: Up to ₹500,000.00 per month Benefits: Health insurance Life insurance Paid sick time Schedule: Monday to Friday Supplemental Pay: Performance bonus Experience: Blackrock Aladdin: 3 years (Preferred) Application Deadline: 30/07/2025

Senior Analyst IT Risk Senior Analyst - IT Risk You will be part of the Global Asset Management Technology Risk team that oversees control operation across the Asset Management technology team. The role will require subject matter expert in technology controls to engage with technology, compliance, and audit partners to implement and maintain an integrated operating model that effectively drives technology performance while meeting stakeholder needs. Key responsibilities: Partnering with technology, business, compliance, and audit partners to operationalize technology risk framework. Lead and participate in IT focused audits demonstrating a solid working understanding of IT Controls Assurance process end-to-end. Acting as a liaison between audit owners and technology teams to facilitate ongoing audits including SOX, SOC2, and ISAE. Producing reporting packs for all levels of management to increase awareness of the status of core workstreams. Developing training and awareness materials to facilitate the inclusion of risk principles across the technology organization. Reviewing the setup of complex systems and technology governance frameworks in line with industry leading practices (e.g. ITIL, COBIT, NIST, ISO, etc.) Contribute by providing insights and recommendations to further improve overall technology risk management. Be responsible for the successful end-to-end delivery of multiple engagements including supporting team members. Develop strong relationships with stakeholders and potentially identify new risks and suggesting mitigating controls. Required qualifications: Bachelor’s or master’s degree preferably in computer science/ engineering. Minimum 5 to 7 years of experience in IT, project management/ service delivery, IT risk management or consulting. Expertise in ITGC, SOC, SOx, 3rd party risk management, project management. Excellent communication and writing skills. Good people, analytical and reporting skills with positive and problem-solving mindset. Ability to work autonomously with a focus on getting things done. CISA certification preferred. Other professional certifications such as CISM, COBIT, ISO27001 are a plus. Knowledge and experience of emerging technology, FinTech, Cloud Services and Cybersecurity will be preferred. About Our Company Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 130 years. We are a U.S. based financial planning company headquartered in Minneapolis with a global presence. The firm’s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection. Be part of an inclusive, collaborative culture that rewards you for your contributions and work with other talented individuals who share your passion for doing great work. You’ll also have plenty of opportunities to make your mark at the office and a difference in your community. So if you're talented, driven and want to work for a strong ethical company that cares, take the next step and create a career at Ameriprise India LLP. Ameriprise India LLP is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, genetic information, age, sexual orientation, gender identity, disability, veteran status, marital status, family status or any other basis prohibited by law. About Our Company Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 125 years. We are a U.S. based financial planning company headquartered in Minneapolis with a global presence. The firm’s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection. Be part of an inclusive, collaborative culture that rewards you for your contributions and work with other talented individuals who share your passion for doing great work. You’ll also have plenty of opportunities to make your mark at the office and a difference in your community. So if you're talented, driven and want to work for a strong ethical company that cares, take the next step and create a career at Ameriprise India LLP. Ameriprise India LLP is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, genetic information, age, sexual orientation, gender identity, disability, veteran status, marital status, family status or any other basis prohibited by law. Full-Time/Part-Time Full time Timings (2:00p-10:30p) India Business Unit AWMPO AWMP&S President's Office Job Family Group Technology

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills and attributes for success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

About Madison Logic: Our team is reshaping B2B marketing and having fun in the process! When joining Madison Logic, you are committing to giving 100% and always striving for more. As a truly global company, we take pride in a diverse culture free from gender, racial, and other forms of bias. Our Vision: We empower B2B organizations globally to convert their best accounts faster Our Values: URGENCY Lead with Action. Prioritize Follow-up. ACCOUNTABILITY Don't Point Fingers. Take Responsibility. INNOVATION Think Big. Innovate. RESPECT Respect Customers. Respect Each Other. INTEGRITY Act Ethically. Lead by Example. At ML you will work with & learn from an incredible group of people who care about your success as much as they care about their own. Our team is at the heart of what we do and our success starts with you! About the Role: The Compliance Manager will support our information security and compliance programs. This role maintains, monitors, and improves our SOC 2 controls, helping drive security and privacy initiatives, and supports audits and customer compliance inquiries. The ideal candidate has hands-on experience in compliance frameworks, strong organizational skills, and a collaborative mindset to work cross-functionally with IT, Legal, and Sales teams. This is an Individual Contributor (non-management) position. Responsibilities: Coordinate and maintain activities to support SOC 2 compliance across the organization Manage day-to-day compliance operations, including monitoring control effectiveness, collecting evidence, and documenting processes Support responses to customer security questionnaires and due diligence requests Assist with internal audits and external assessments related to SOC 2 and related frameworks (e.g., GDPR, CCPA) Track and help remediate compliance and security risks Collaborate with Sales and Legal to review security-related contract terms and data processing agreements Assist in vendor risk assessments and third-party security reviews Maintain internal documentation for security practices, policies, and compliance initiatives Contribute to security awareness efforts and training initiatives across the organization Basic Qualifications: On-site working at the ML physical office, 5-days per week is required through the end of probation (6 months), transitioning to 2-day WFH post-probation. B.S. Degree in Computer Science or Computer Information Systems desired 5+ years of experience with the implementation and support of an IT Security program Prior experience developing IT Security and Data Governance policies 5+ years auditing experience in any of the following certification standards: GDPR / CCPA, SOC 2, ISO 27001, PCI, COBIT, NIST, CIS, HIPPA. Working knowledge of penetration testing tools, AWS network security and IAM, perimeter security, application firewalls, single sign-on, active directory policy, SIEM, anti-malware, VPN, email security, key management, incident management, risk assessment, log management, change management, backup, and disaster recovery, highly available and distributed infrastructures Working knowledge of data subject privacy rights, PII data handling, data protection and cookie laws, data transmission and encryption requirements, data access controls, data retention and destruction, vendor assessment questionnaires, data privacy impact assessments, data breach, and other cyber incident response Other Characteristics: Strong analytical skills Excellent organizational and time management skills, possessing the ability to prioritize work under pressure of time constraints Superior written and verbal communication skills Excellent presentation skills with prior experience presenting to executives to achieve buy-in Highly productive and resourceful with a “Can do” attitude Strong technical skills Team members are encouraged to work collaboratively with an emphasis on results, not on hierarchy or titles Expected Compensation: (Dependent upon Experience) Fixed CTC: 17 LPA - 20 LPA Work Environment: We offer a mix of in-office and hybrid working. Hybrid remote work arrangements are not available for all positions. Please refer to the job posting detail to determine what in-office requirements apply. Where applicable , hybrid WFH days work must be conducted from your home office located in a jurisdiction in which Madison Logic has the legal right to operate. WFH requires availability and responsiveness on a full-time basis from a distraction free environment with access to high-speed internet. Please inquire for more details. Pay Transparency/Equity: We are committed to paying our team equitably for their work, commensurate with their individual skills and experience . Salary Range and additional compensation, including discretionary bonuses and incentive pay, are determined by a rigorous review process taking into account the experience, education, certifications and skills required for the specific role, equity with similarly situated team members, as well as employer-verified region-specific market data provided by an independent 3rd party partner. We will provide more information about our perks & benefits upon request. Our Commitment to Diversity & Inclusion: Madison Logic is proud to be an equal opportunity employer. We are committed to equal employment opportunity regardless of sex, race, color, religion, national origin, sexual orientation, age, marital status, disability, gender identity or Veteran status. Privacy Disclosure: All of the information collected in this form and/or by your application by submission of your online profile is necessary and relevant to the performance of the job applied for. We will process the information provided by you in this form, your CV (including physical and online resume profiles), by the referees you have noted, and by the educational institutions with whom we may undertake to verify your qualifications with, in accordance with our privacy policy and for recruitment purposes only. For more information on how we process the information you have provided including relevant lawful bases (where relevant) please see our privacy policy which is available on our website ( https://www.madisonlogic.com/privacy/ ). Show more Show less

Hydro Global Business Services (GBS) is an organizational area that operates as an internal service provider for the Hydro group. Its ultimate purpose is to deliver relevant IT, financial and HR business services to all business areas within the company. What We Offer You A culture that champions bold ideas and values behind every pixel. Picture an environment where your input shapes real-world campaigns and your efforts are met with recognition and respect. We invest in your growth, offering mentorship, skill-building workshops and access to cutting-edge tools. As a valued member of our executive team, you will also enjoy a comprehensive benefits package, including: Equity opportunities Performance bonuses Health, dental, and vision insurance Retirement plans with company matching Generous paid time off and flexible work arrangements Professional development opportunities and ongoing training Your Qualifications And Skills Expertise in IT governance frameworks, such as ITIL or COBIT. Proficiency in cloud platforms (AWS, Azure, Google Cloud) and emerging technologies. Strong understanding of data privacy regulations and compliance standards. You would also ideally have A mindset for creative problem-solving Curiosity that drives you to explore the latest tech trends Confidence in writing, testing, optimizing, debugging and deploying complex code A collaborative spirit Your potential future opportunities IT/Applications Team Lead Hydro values diverse skills and perspectives among employees. We encourage all qualified candidates to apply. Qualified applicants will be considered regardless of race, religion, nationality, ethnicity, age, gender, sexual orientation, gender identity or expression, protected veteran status, or disability. We strive to provide equal opportunities for all to contribute and succeed with us. Applications from severely disabled and equally disabled people will be considered with equal suitability. Please apply online in ONE with your CV and optionally a cover letter until: 07/02/2025 If you have any questions, please contact: Badugu Prasanth Raju Badugu.Raju@hydro.com Show more Show less

Role Description About The Role We are now looking for a Specialist, Risk & Control (R&C) in our CoE to support R&C with SOx testing of IT Application controls and IT Dependent Manual Controls. You will be directly working on testing internal controls to support SOX302 attestation. The R&C ITAC SOx Specialist is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from SOx testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. Responsible: key areas of responsibility will include, but are not limited to : Support testing end to end: Design and execute the day-to-day testing activities of IT application controls and Business controls, with a focus on regulatory/compliance (SOX) related risks Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation Identify gaps in design and execution, and communicate issues and recommendations to R&C team and control owners Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required Collaborate and partner with R&C by providing guidance and ensuring that critical SOx controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives Collaborate & participate within R&C to continuously improve the R&Cs capabilities and governance from SOX testing standpoint 2. Skilled: The ideal candidate should have a strong background in IT risk management, and perform ERP audits with a good understanding of IT application controls and IT dependent manual controls / business process controls. 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment Strong understanding of design assessment and operating effectiveness assessment of IT automated process controls, IT dependent manual controls, and interface controls. Experience in technology-based product development / DevOps processes, cloud security and other modern day technologies Understanding of different architecture (SOA and microservices), and ability to review source codes is an added advantage. Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT Strong working knowledge of SOX Ability to multitask and successfully manage multiple priorities and projects Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team Able to work independently & autonomously, while still being a strong team player Fully comfortable working in English, both written and spoken Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage Relevant Bachelors degree required.

Job Description Role Profile: The Cyber and IT Audit Manager will oversee IT and cybersecurity audits, managing a team of auditors to assess IT processes and Operational Technology (OT) environments. The manager will ensure audits are aligned with the company’s strategic objectives and regulatory requirements, with a focus on delivering value and identifying critical risks in IT and cybersecurity. This role includes responsibility for overseeing security assessments and implementing audit methodologies that support continuous improvement. Responsibilities ' Manage and execute a portfolio of IT and cybersecurity audits, focusing on complex audits related to IT general controls, cybersecurity frameworks, and OT environments. Oversee medium complexity security assessments for IT and OT systems, ensuring comprehensive audit coverage. Collaborate with the CAE, IT audit Director and IT stakeholders to build an audit pipeline, addressing emerging risks and identifying areas for process improvement. Lead the development of audit programs and methodologies, ensuring alignment with industry best practices and regulatory frameworks (e.g., NIST, COBIT, IEC 62443). Manage audit staff, providing guidance and ensuring adherence to professional standards (IIA, ITGC). Present audit findings to senior management, communicating risks, recommendations, and opportunities for improvement. Qualifications ' 7+ years of experience in IT auditing, cybersecurity, and OT systems. Proven experience managing audits and teams, with a focus on IT governance, cybersecurity, and risk management. Expertise with security assessment tools (e.g., Nmap, Nessus, Kali Linux, Metasploit, Burp Suite) and audit methodologies for IT and OT systems. Strong understanding of industry frameworks (NIST, COBIT, ISO 27001, MITRE ATT&CK) and IEC 62443 for OT environments. OT knowledge and experience is highly desirable. Certifications such as CISSP, CISA, CISM, OSCP, OSWP, CRTP, CEH, HTB CPTS, HTB CBBH, HTB CWEE are preferred. Bachelor’s or Master’s degree in Information Technology, Cybersecurity, or related disciplines. Strong leadership, project management, and communication skills, with the ability to influence stakeholders at all levels. At Nextracker, we are leading in the energy transition, providing the most comprehensive portfolio of intelligent solar tracker and software solutions for solar power plants, as well as strategic services to capture the full value of solar power plants for our customers. Our talented worldwide teams are transforming PV plant performance every day with smart technology, data monitoring and analysis services. For us at Nextracker, sustainability is not just a word. It's a core part of our business, values and our operations. Our sustainability efforts are based on five cornerstones: People, Community, Environment, Innovation, and Integrity. We are creative, collaborative and passionate problem-solvers from diverse backgrounds, driven by our shared mission to provide smart solar and software solutions for our customers and to mitigate climate change for future generations. Culture is our Passion Show more Show less

About Us: MUFG Bank, Ltd. is Japan’s premier bank, with a global network spanning in more than 40markets. Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to businesses, governments, and individuals worldwide. MUFG Bank’s parent, Mitsubishi UFJ Financial Group, Inc. (MUFG) is one of the world’s leading financial groups. Headquartered in Tokyo and with over 360 years of history, the Group has about 120,000 employees and offers services including commercial banking, trust banking, securities, credit cards, consumer finance, asset management, and leasing. The Group aims to be the world’s most trusted financial group through close collaboration among our operating companies and flexibly respond to all the financial needs of our customers, serving society, and fostering shared and sustainable growth for a better world. MUFG’s shares trade on the Tokyo, Nagoya, and New York stock exchanges. MUFG Global Service Private Limited: Established in 2020, MUFG Global Service Private Limited (MGS) is 100% subsidiary of MUFG having offices in Bengaluru and Mumbai. MGS India has been set up as a Global Capability Centre / Centre of Excellence to provide support services across various functions such as IT, KYC/ AML, Credit, Operations etc. to MUFG Bank offices globally. MGS India has plans to significantly ramp-up its growth over the next 18-24 months while servicing MUFG’s global network across Americas, EMEA and Asia Pacific Job Requirements: Bachelor’s degree in information technology, computer science, cybersecurity, risk management, or a related field. 1-3 years of experience in risk management, IT controls, cybersecurity or a related area. Certifications such as Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) are advantageous but not mandatory. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills to work effectively with internal and external stakeholders. Ability to manage multiple projects and prioritize tasks in a fast-paced environment. Knowledge of MAS regulations, particularly TPRM and technology risk management; Knowledge of other regulatory requirements related to Outsourcing and Third-Party Management in other APAC countries will be a strong advantage. understanding of IT controls, cybersecurity, and data protection; familiarity with audit processes or frameworks like COBIT is a plus. A “can do” attitude, passion for challenges, ability to build relationships with stakeholders, and commitment to staying updated on regulatory changes. Roles and Responsibilities: Assist in conducting due diligence on third-party service providers, focusing on their IT controls and risk management practices. Review and analyze documentation related to third-party arrangements to ensure compliance with regulatory guidelines on outsourcing and non-outsourcing arrangements. Identify potential risks and gaps in third-party IT controls and recommend mitigation strategies. Support the executions of TPRM frameworks and other policies related to IT Outsourcing and Third Party Management, particularly those related to IT controls. Collaborate with internal teams and third-party vendors to ensure ongoing compliance and effective risk management. Stay informed about updates to regulations and industry best practices in TPRM and IT controls. Prepare reports and presentations on TPRM assessments and findings. Show more Show less

About This Role Internal Audit Internal Audit’s primary mission is to provide assurance to the Board of Directors and Executive Management that BlackRock’s businesses are well managed and meeting strategic, operational and risk management objectives. The team engages with senior leaders and all of BlackRock’s individual business units globally to understand and advise on the risks in their business, evaluate the effectiveness of key processes and assist in the design of best practices that can improve their results. Internal Audit reports directly to the Audit Committee of the Board of Directors, and our work builds confidence that BlackRock will meet its obligations to clients, shareholders, employees, and other stakeholders. Technology Audit The Technology Audit Team, also in the US, Europe, and Asia, performs design review and testing related to technology controls across application systems and infrastructure components such as databases, operating systems, data centers and messaging platforms. India BlackRock India is a microcosm of the firm’s global operating platform that brings scaled capabilities in technology and investment management operations to support various functions, provide business continuity for critical operations, and drive innovation and operational excellence. Role Responsibilities & Qualifications This role supports the global Internal Audit team. Specific Responsibilities Include Engaging BlackRock stakeholders to understand and identify key processes and risks within a specific business unit or technology. Contribute to the risk-based decision making of audit scope. Reviewing, testing, and assessing the effectiveness of technology controls in business-integrated audits in which there is close interaction between business and technology partners. This role also includes technology-led audits across all aspects of information technology including cybersecurity, software, hardware, database, messaging, network, and cloud. Identifying and escalating issues identified during testing. Overseeing issue remediation Identifying emerging firm-wide and business risks, understanding organizational changes through periodic engagements with business units, and completing risk assessments of these areas Contributing to global department-wide initiatives Education And Experience Undergraduate or graduate degree in management information systems, engineering, technology, computer science or a related field is preferred. 2-3 years in a technology audit and/or technology risk management function, preferably within the Finance Industry. Familiarity with financial instruments and asset management processes. Knowledge of regional and global regulatory requirements Technology Skills Relevant professional certifications are a plus (e.g., CISA, CISM, CRISC, CEH). Strong understanding of application development, databases, operating systems, networking, and other key technology infrastructure components. Knowledge of ISO, ITIL and COBIT Knowledge of technology controls including application security management, system architecture and design, technology operations, and technology governance. Analytical mindset: Experience in utilizing business intelligence, and analytical methods and language (e.g., SQL, Python) and adopting a data driven approach to perform audit testing will be a plus. Soft Skills Intellectual curiosity, critical thinking and problem solving. Commitment and strong work ethic. Excellent communication (verbal, written, listening) and interpersonal skills. Our Benefits To help you stay energized, engaged and inspired, we offer a wide range of benefits including a strong retirement plan, tuition reimbursement, comprehensive healthcare, support for working parents and Flexible Time Off (FTO) so you can relax, recharge and be there for the people you care about. Our hybrid work model BlackRock’s hybrid work model is designed to enable a culture of collaboration and apprenticeship that enriches the experience of our employees, while supporting flexibility for all. Employees are currently required to work at least 4 days in the office per week, with the flexibility to work from home 1 day a week. Some business groups may require more time in the office due to their roles and responsibilities. We remain focused on increasing the impactful moments that arise when we work together in person – aligned with our commitment to performance and innovation. As a new joiner, you can count on this hybrid model to accelerate your learning and onboarding experience here at BlackRock. About BlackRock At BlackRock, we are all connected by one mission: to help more and more people experience financial well-being. Our clients, and the people they serve, are saving for retirement, paying for their children’s educations, buying homes and starting businesses. Their investments also help to strengthen the global economy: support businesses small and large; finance infrastructure projects that connect and power cities; and facilitate innovations that drive progress. This mission would not be possible without our smartest investment – the one we make in our employees. It’s why we’re dedicated to creating an environment where our colleagues feel welcomed, valued and supported with networks, benefits and development opportunities to help them thrive. For additional information on BlackRock, please visit @blackrock | Twitter: @blackrock | LinkedIn: www.linkedin.com/company/blackrock BlackRock is proud to be an Equal Opportunity Employer. We evaluate qualified applicants without regard to age, disability, family status, gender identity, race, religion, sex, sexual orientation and other protected attributes at law. Show more Show less

Your work days are brighter here. At Workday, it all began with a conversation over breakfast. When our founders met at a sunny California diner, they came up with an idea to revolutionize the enterprise software market. And when we began to rise, one thing that really set us apart was our culture. A culture which was driven by our value of putting our people first. And ever since, the happiness, development, and contribution of every Workmate is central to who we are. Our Workmates believe a healthy employee-centric, collaborative culture is the essential mix of ingredients for success in business. That’s why we look after our people, communities and the planet while still being profitable. Feel encouraged to shine, however that manifests: you don’t need to hide who you are. You can feel the energy and the passion, it's what makes us unique. Inspired to make a brighter work day for all and transform with us to the next stage of our growth journey? Bring your brightest version of you and have a brighter work day here. At Workday, we value our candidates’ privacy and data security. Workday will never ask candidates to apply to jobs through websites that are not Workday Careers. Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not. In addition, Workday will never ask candidates to pay a recruiting fee, or pay for consulting or coaching services, in order to apply for a job at Workday. About The Team The Change & Release Enablement team is the engine that powers the reliable delivery of Workday’s software releases and infrastructure updates across our private and public cloud datacenters. We minimize disruption to our customers' operations while simultaneously enabling rapid innovation for our engineering teams. By developing and leveraging industry-leading methodologies and frameworks, we support the resiliency and velocity of Workday's services, directly contributing to customer satisfaction and business agility. About The Role Workday is looking for a strategic, driven, and inspiring individual contributor with proven expertise in managing and automating change and release management practices within a complex, multi-cloud production environment. This role is pivotal in shaping a high-performing team focused on compliance, operational efficiency, and automation. As part of a global team of domain experts and process architects, you will join a community passionate about innovation and collaboration. In this role, you will lead the development, enhancement, and consistent application of gold-standard change and release management practices across Workday’s Product & Technology organization. About You Responsibilities: Lead the design, implementation, and management of ITSM processes, with a strong emphasis on change and release management best practices, ensuring alignment with industry standards and the organization's needs. Provide expert-level support and guidance on Jira/JSM capabilities, including advanced configuration, development, and automation to support change and release workflows. Lead projects to automate and enhance change and release processes, integrating DevOps principles to improve efficiency and speed of delivery. Mentor and guide team members, fostering a collaborative and high-performing environment. Manage process documentation lifecycle, updates, etc.. Support US and Ireland teams in executing critical and strategic programs. Support the US and Ireland team for weekly service updates and CAB governance (including leading CAB meetings). Participate in the global 24x7 operations (aka on-call rotation) to govern emergency releases to address critical customer issues Basic Qualifications: Bachelor's degree in a relevant field (e.g., Computer Science, Information Technology) or equivalent experience. 8+ Years of experience in IT Service Management process frameworks such as ITIL, COBIT etc with strong experience in process improvement. 5+ years of strong, hands-on experience in leading high impact CAB meetings, driving effective decisions and seamless coordination 3+ years of experience working on Change/Release Management process operations and leading Root Cause Analysis as part of a global team. 2+ years of experience with Jira/JSM product capabilities, including advanced configuration, development, and automation for change and release management. Excellent communication, collaboration, and leadership skills. Proactively identifies opportunities to optimize workflows and boost productivity. Other Qualifications: Strong familiarity with software engineering principles, Source Code Management, DevOps, CI/CD pipelines, Infrastructure as Code and Technical Operations ITIL certification is a plus Understanding of data centers, cloud platforms, software deployments, observability tools, and databases. Ability to assert and hold one’s ground in the matters of policy enforcement, industry best practices and compliance Experience in a SaaS environment. An advantage would be: Some foundational knowledge of AI and a curiosity about AI agents, with any hands-on exposure being a significant benefit. Our Approach to Flexible Work With Flex Work, we’re combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter. Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process! Show more Show less

Your work days are brighter here. At Workday, it all began with a conversation over breakfast. When our founders met at a sunny California diner, they came up with an idea to revolutionize the enterprise software market. And when we began to rise, one thing that really set us apart was our culture. A culture which was driven by our value of putting our people first. And ever since, the happiness, development, and contribution of every Workmate is central to who we are. Our Workmates believe a healthy employee-centric, collaborative culture is the essential mix of ingredients for success in business. That’s why we look after our people, communities and the planet while still being profitable. Feel encouraged to shine, however that manifests: you don’t need to hide who you are. You can feel the energy and the passion, it's what makes us unique. Inspired to make a brighter work day for all and transform with us to the next stage of our growth journey? Bring your brightest version of you and have a brighter work day here. At Workday, we value our candidates’ privacy and data security. Workday will never ask candidates to apply to jobs through websites that are not Workday Careers. Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not. In addition, Workday will never ask candidates to pay a recruiting fee, or pay for consulting or coaching services, in order to apply for a job at Workday. About The Team The Change & Release Enablement team is the engine that powers the reliable delivery of Workday’s software releases and infrastructure updates across our private and public cloud datacenters. We minimize disruption to our customers' operations while simultaneously enabling rapid innovation for our engineering teams. By developing and leveraging industry-leading methodologies and frameworks, we support the resiliency and velocity of Workday's services, directly contributing to customer satisfaction and business agility. About The Role Workday is seeking a motivated and detail-oriented individual contributor to support and contribute to our change and release management practices within a complex, multi-cloud production environment. This is an exciting opportunity to join a growing team focused on ensuring compliance, operational efficiency, and increasing automation. As part of a global team of domain experts and process architects, you will be part of a collaborative and innovative community. In this role, you will contribute to the development, implementation, and consistent application of effective change and release management practices across Workday’s Product & Technology organization. About You Responsibilities: Contribute to the design, implementation, and management of specific ITSM processes, with a strong focus on change and release management best practices, ensuring alignment with industry standards and organizational needs within their scope of responsibility. Collaborate with the team to provide support and contribute expertise in Jira/JSM capabilities, including advanced configuration, development, and automation, to enhance change and release workflows.. Participate in and execute tasks within projects focused on automating and enhancing change and release processes, applying DevOps principles to improve efficiency and speed of delivery. Contribute to the management of process documentation lifecycle, including updates and maintenance, ensuring accuracy and accessibility. Support US and Ireland teams in executing critical and strategic programs. Support the US and Ireland team for weekly service updates and CAB governance. Participate in the global 24x7 operations (aka on-call rotation) to govern emergency releases to address critical customer issues. Basic Qualifications: Bachelor's degree in a relevant field (e.g., Computer Science, Information Technology) or equivalent experience. 5+ Years of experience in IT Service Management process frameworks such as ITIL, COBIT etc with strong experience in process improvement. 2+ years of strong, hands-on experience in leading high impact CAB meetings, driving effective decisions and seamless coordination 2+ years of experience working on Change/Release Management process operations and leading Root Cause Analysis as part of a global team. 2+ years of experience with ITSM tools capabilities (preferablyJira/JSM), including advanced configuration, development, and automation for change and release management. Excellent communication, collaboration, and leadership skills. Proactively identifies opportunities to optimize workflows and boost productivity. Other Qualifications: Familiarity with software engineering principles, Source Code Management, DevOps, CI/CD pipelines, Infrastructure as Code and Technical Operations ITIL certification is a plus Ability to assert and hold one’s ground in the matters of policy enforcement, industry best practices and compliance Understanding of data centers, cloud platforms, software deployments, observability tools, and databases. Experience in a SaaS environment. An advantage would be: Some foundational knowledge of AI and a curiosity about AI agents, with any hands-on exposure being a significant benefit. Our Approach to Flexible Work With Flex Work, we’re combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter. Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process! Show more Show less

NIKE, Inc. does more than outfit the world's best athletes. It is a place to explore potential, obliterate boundaries and push out the edges of what can be. The company looks for people who can grow, think, dream and create. Its culture thrives by embracing diversity and rewarding imagination. The brand seeks achievers, leaders and visionaries. At NIKE, Inc. it's about each person bringing skills and passion to a challenging and constantly evolving game. NIKE is a technology company. From our flagship website and five-star mobile apps to developing products, managing big data and providing leading edge engineering and systems support, our teams at NIKE Global Technology exist to revolutionize the future at the confluence of tech and sport. We invest and develop advances in technology and employ the most creative people in the world, and then give them the support to constantly innovate, iterate and serve consumers more directly and personally. Our teams are innovative, diverse, multidisciplinary and collaborative, taking technology into the future and bringing the world with it. Who Are We Looking For We're looking for an Information Security Analyst to join Nike's Corporate Information Security Governance, Risk, and Compliance (GRC) team, which is responsible for enterprise wide GRC ensuring Nike leadership has the information needed to make strategic risk-based decisions and maintain compliance with international regulations while enabling the achievement of Nike business objectives globally. This role will meet with business and technology teams across Nike and consult with them on their security and compliance requirements. We are looking for an individual who is passionate about GRC, someone with a good working knowledge of industry best practice frameworks, such as ISO, NIST and CoBIT. What Will You Work On If this is you, you'll be working with the GRC team and performing these key tasks: Assess moderately complex platforms against Nike security and configuration standards Evaluate and process exceptions to information security policies and standards Participate in complex internal risk assessments, identifying information security risks through analysis of threats and vulnerabilities, and reporting on those risks to Nike business and technology owners Perform risk assessments of critical third-party vendors and ensure the business objectives align with the type and volume of data used in maintaining a "need to know/use" mindset Utilize your thorough understanding of ITGC's to consult with Technology units on compliance matters Champion information security policies, standards, controls, and processes so that compliance requirements are addressed as part of "business as usual" operations Lead Nike business units in control design and control operations related in support of compliance requirements Perform Compliance control validation testing to determine the operating effectiveness of IT controls for scoped systems Provide analysis and insights into data supporting the effectiveness of technical and process-based cyber security controls and establish automated data pipelines that feed data visualization tools, such as Tableau Collaborate effectively with NIKE leaders, managers, employees, and partners to provide deliberate and thoughtful engagement throughout NIKE Help drive execution of the Information Security training programs. Ensure the workforce stays fully informed on information security through formal trainings and oversee the development and delivery of security training and awareness campaigns Effective, positive verbal and written communication skills and experienced creating and developing high-quality PowerPoint presentations Who Will You Work With You will report into the Governance, Risk and Compliance - India Technology Center Director , in support of global GRC processes and procedures, and will work cross-functionally within the Corporate Information Security (CIS) teams and across Nike. You will regularly meet with Nike business and technology teams. What You Bring Knowledge of information security principles and practices, general procedures and guidelines A general understanding of technology use, trends and risks as it applies in a business context and environment Experience reviewing third party SOC reports Experience/working knowledge with PCI DSS (Former QSA is a benefit). Knowledge of information security principles, frameworks, and best practices (e.g., PCI DSS, COBIT, COSO, NIST and ISO 27000) Excellent collaboration skills - must be eager to work as part of a cohesive team and work as a partner to others within Nike, Inc. both at WHQ and globally Experience with ServiceNow, Confluence or JIRA Show more Show less

Position Overview Job Title: NFRM Information Security & Technology Risk Specialist Location: Mumbai, India Corporate Title: AVP Role Description An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The team has a global footprint in Frankfurt, Singapore, London, Mumbai and USA. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Provide data and analytics reporting to support the team in monitoring the Information Security and Technology Risk Appetite, breaches and remediation. Where required support the implementation of automated data and analytics reporting process. Support the team delivery of Non-Financial Risk Management (NFRM) priorities such as risk & control assessments, scenario analysis, risk appetite. Monitor and challenge 1LOD Risk and Control Assessments (including results of 1LOD control testing/assurance). Perform 2LOD control assurance through targeted reviews of areas of concern. Gain an understanding and be able to articulate key Information Security and Technology regulatory requirements across APAC/MEA and their impact and implementation into the Information Security and Technology Risk Framework. Your Skills And Experience University degree (Computer Science, Business Administration or equivalent). Majors in Information Security and / or Risk Management are a plus. Experience (8+ years) in Information Security or Information Technology with experience in the Finance industry and/or a major Technology or Consultancy company preferred. Experience in IT Risk Frameworks such COBIT 2019 is ideal 5+ yrs Understanding and experience of technology from either a support, development or business analysis perspective Some level of technical understanding and training either as a data analyst, developer, business analyst or project manager are a plus. Knowledge of Information Security and Technology industry regulatory standards and/or Risk Frameworks (e.g. EBA Guidelines ISO / 27000 Series, COBIT 2019, DORA) are a plus. Experience of technology coding e.g python, java is a plus Understanding of IT controls: SDLC, managing technology obsolescence, disaster recovery is a plus Knowledge of Digital transformation, Private and Public Cloud, AI tooling a plus Relevant professional certifications e.g. CISSP, CISA, CISM, CRISC, ITIL, ISO27001 Lead Auditor or similar are a plus. Experience of working in large global teams yet comfortable working independently without day-to-day oversight and steer. Strong communication skills (English required). How We’ll Support You Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment. Show more Show less

Information Security GxP Specialist What you will do Let’s do this. Let’s change the world. In this lead role you will support the GRC Governance / Policy & Audit team working closely with Technology teams to help ensure that GxP controls are in place, GxP deviations are managed and monitored, and security standards are met. The GxP Specialist will assist in owning and maintaining GxP deviation records, performing GxP assessments, managing controlled documents, and supporting regulatory compliance efforts. Roles & Responsibilities: GxP Governance Leadership: Support the GRC organization in leading a team of GxP and/or policy analysts performing tasks related to governance, GxP deviation management, document management, and policy exception processes. GxP Deviation and CAPA Management : Manage and own technology related GxP deviations, CAPA, and CAPA-EV records Manage GxP reporting and monitoring metrics for Technology/IT records Collaborate with record owners and QA to ensure timely record resolution Assist in the identification and evaluation of risks associated with GxP deviation records. Identify and support new record owners across IT/Technology (e.g. office hours, ad-hoc meetings, document management support). Attend enterprise network meetings as needed to represent the Technology / IT function. GxP Deviation Monitoring and Improvements: Recommend deviation management improvement strategies across Technology/IT. Collaborate with Quality, IT application, cybersecurity, and business teams to supervise and resolve identified risks and vulnerabilities associated with deviations and CAPA’s. Assist in conducting CAPA applicability assessments, time studies, and related initiatives to identify impacts and improvement opportunities in IT systems, processes, and policies. Supervise, monitor, and report on the efficiency of existing GxP records, trends, and recommend improvements as needed. Governance and Regulatory Support: Ensure compliance with relevant industry standards and regulatory requirements (e.g., GxP, GDPR, SOX, NIST). Assist in proactive measures to facilitate compliance, such as collaborating with stakeholders to initiate periodic reviews Assist in the preparation for audits and inspections by internal and external parties, providing documentation and evidence of IT GxP deviation management practices. Support the development and implementation of IT governance, risk, and compliance frameworks and continuous improvements. Support the development and implementation of IT governance, risk, and compliance policies as well as supporting documentation, and their continuous improvements. Track and monitor document reviews, and support document owners to ensure timely periodic review completion. What we expect of you We are all different, yet we all use our unique contributions to serve patients. The GxP security professional we seek is collaborative and action-oriented with these qualifications. Basic Qualifications: 5+ years of experience in IT GxP deviation management, IT quality management, IT auditing, or information security. Hands-on experience with deviation management tools and associated frameworks (e.g., ISO 27001, NIST, COBIT). Master’s degree and 4 to 6 years of information technology, Cybersecurity, Risk Management, or a related field experience OR Bachelor’s degree and 6 to 8 years of information technology, Cybersecurity, Risk Management, or a related field experience OR Diploma and 10 to 12 years of information technology, Cybersecurity, Risk Management, or a related field experience Preferred Qualifications: Good understanding of GxP deviation management, controlled document management, IT infrastructure & systems, and security standard methodologies. Ability to assess technical and business risk related to information systems. Excellent problem-solving, analytical, and communication skills. Ability to communicate complex GxP and risk concepts to non-technical collaborators. Familiarity with regulatory frameworks and compliance standards (e.g., GxP, GDPR, HIPAA, SOX). Technical Knowledge : Proficiency with GxP deviation management tools, GRC (Governance, Risk, and Compliance) software, controlled document management tools, enterprise change management tools, and security incident management tools. Experience with security controls related to networks, databases, and cloud environments. Soft Skills: Excellent analytical and troubleshooting skills Strong verbal and written communication skills Ability to work effectively with global, virtual teams High degree of initiative and self-motivation Ability to manage multiple priorities successfully Team oriented, with a focus on achieving team goals Strong presentation and public speaking skills What you can expect of us As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we’ll support your journey every step of the way. In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards. Apply now and make a lasting impact with the Amgen team. careers.amgen.com As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease. Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Staff (ITGC) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 1-3 years of related work experience At least 2-3 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Staff (ITGC) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 1-3 years of related work experience At least 2-3 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Description: About Us At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! Global Business Services Global Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services. Process Overview* The Incident and Change Management function is responsible for identifying, mitigating/resolving and managing risk and impacts from change, technology and non-technology events and ensures the integrity and stability of service delivery channels through strict adherence and enforcement of incident and change management principles, thereby minimizing the overall impact to our customers and associates. Job Description* The individual needs to work as an Incident manager for Incident and Continuity Management line of business which is engaged in providing contingency management services to its supported LoBs. From an incident management point of view, the primary job requirement is to identify and mitigate impacts and risks for our customers as well as associates arising out of technology and non-technology related events. As a change manager the individual will be acting as a voting member of multiple Change Advisory Boards (CAB) where planned or expedited technology & facility changes are presented for approval. Role of an ICM consultant is to review all change requests concerning our supported LoBs from an impact perspective and accordingly approve/reject the request. Responsibilities* Resource will be responsible for real time incident & change management for all technology and non-technology incidents impacting the production environment Escalate issues impacting multiple users that cannot be easily resolved to technology teams, including creating incident tickets, opening bridge lines, paging support teams, and kicking off triage efforts. Engage in the triage efforts for impacting issues and drive technology teams to provide restoral as quickly as possible. Act as the liaison between contact centers and technology, provided key information about incidents to technology teams to assist with triage as well as providing direction to the business (contact centers) about estimated restoral times and actions that should be taken to minimize impact during the triage. Represent the supported businesses in a CAB (Change Advisory Board) meeting to ensure that planned events do not disrupt or adversely impact their operational stability. Continually assess the severity of an incident with respect to the impacts caused by it and regularly communicate the same to all stakeholders. Monitor, identify, track, report and mitigate impacts (wherever possible) and risks arising from an incident or a change Demonstrates business and/or technical acumen to recommend and implement solutions that protect the bank's assets. Requirements* Education* Graduates / Post-graduates with good track record/academic scores Certifications if any- ITIL V4 foundations, ITIL Intermediate – Service Operations, Business Continuity Planning and Crisis Management, COBIT 5, Industry certification like CCNA, BCP, MCP etc will be highly regarded. Experience Range* 8-10 years Foundational skills* Hands on experience in incident/problem management Excellent communication skills, both written and verbal, is a non-negotiable requirement In depth knowledge of the ITSM processes Desired skills* Familiarity with ITIL/ITSM methodologies Proficient with Remedy, Microsoft Access, SharePoint and contact center applications (IEX, NICE, etc.) Good understanding of the contact center environment Work Timings* 6:30am to 10:30 pm (Rotational) Job Location* Gurugram Show more Show less