615 Cobit Jobs - Page 16

Line of Service Advisory Industry/Sector Not Applicable Specialism Operations Management Level Manager Job Description & Summary A career in our Government and Public Sector Transformation Management practice, within General Consulting services, will provide you with the opportunity to help clients seize essential advantages by working alongside business leaders to solve their toughest problems and capture their greatest opportunities. We work with some of the world’s largest and most complex companies to understand their unique business issues and opportunities in an ever changing environment. We help create sustainable change by stimulating innovation, unlocking data possibilities, navigating risk and regulatory complexity, optimising deals, and aligning costs with business strategy to create a competitive advantage. In joining, you’ll help federal, state and local government clients solve complex business issues and manage jurisdiction related risk. You’ll help our clients assess their operational and security and data management strategies so they can continue to operate more efficiently and effectively, both today and tomorrow. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary: At PwC, our purpose is to build trust in society and solve important problems. We’re a network of firms in 157 countries with more than 300,000 people who are committed to delivering quality in Assurance, Advisory and Tax services. Within Advisory, PwC has a large team that focus on transformation in Government through Digital inclusion. The open position is for a candidate who desires to work with government clients and bring about a change in society. A successful candidate will be expected to work pro-actively and effectively on multiple client engagements over the period of time and take ownership of the entire project delivery he/she entrusted with. Job Position Title Level: Manager Skil l: e-governance / Technology Consulting Competency: Cities LOS: Advisory Location – Mumbai Responsibilities Developing project Charter Define project scope and deliverables that support business goals Develop project plans and schedule Set and continually manage project expectations with team members and customers Draft and submit budget proposals, and recommend subsequent budget changes where necessary Prepare proposals, RfP/bid submission documents and presentations Plan and schedule project timelines and milestones using appropriate tools (Microsoft Project Management) Develop and deliver progress reports, proposals, requirements documentation and presentations Issue status reports to the project team, analyse results, and troubleshoot problem areas Proactively manage changes in project scope, identify potential crises, and devise contingency plans Define project success criteria and disseminate them to involved parties throughout project life cycle. Build, develop, and grow business relationships vital to the success of the project. Conduct project “lessons learned” meetings and create a recommendations report in order to identify successful and unsuccessful project elements Develop best practices and tools for project execution and management Mandatory Skill Sets Expertise in Technology Consulting / Implementation: IT Consulting resource (generalist) - experience in govt sector consulting/ private sector consulting, eGov transformation, Smart city, ULB projects Business Analyst/ Project management experience in Technology Implementation/ consulting projects The candidate should possess post-qualification relevant work experience of 10+ years in Consulting /IT/ITES firm. Preferred Skill Sets eGov Expertise: having experience in govt consulting, eGov transformation, Smart city, ULB projects Exposure to international projects Exposure to Large Transformation programs in the Public Services domain Years Of Experience Required 10+ years Education Qualification Post-Graduation: MBA (preferable) from a top-tier college with a very good academic record. Graduation: BE/BTech/MCA/MSc (Computer Science, Information Technology, Electronics). Certifications Having one or more of the following certifications will be an added advantage: PMP / Prince-2 / TOGAF / ITIL / COBIT Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Master of Science, Master of Business Administration, Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills eGovernance Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Business Case Development, Business Process Improvement, Change Control Processes, Coaching and Feedback, Communication, Costing, Creativity, Embracing Change, Emotional Regulation, Empathy, Inclusion, Intellectual Curiosity, IT Project Lifecycle, Kanban (Project Management), Learning Agility, Optimism, Plan of Action and Milestones (POA&M), Process Mapping, Process Standardization, Professional Courage {+ 28 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

At PwC, our people in audit and assurance focus on providing independent and objective assessments of financial statements, internal controls, and other assurable information enhancing the credibility and reliability of this information with a variety of stakeholders. They evaluate compliance with regulations including assessing governance and risk management processes and related controls. In digital assurance at PwC, you will focus on providing assurance services over clients' digital environment, including processes and controls, cyber security measures, data and AI systems, and their associated governance, to help organisations and their stakeholders build trust in their technology while complying with relevant regulations. Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities. Skills Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: Apply a learning mindset and take ownership for your own development. Appreciate diverse perspectives, needs, and feelings of others. Adopt habits to sustain high performance and develop your potential. Actively listen, ask questions to check understanding, and clearly express ideas. Seek, reflect, act on, and give feedback. Gather information from a range of sources to analyse facts and discern patterns. Commit to understanding how the business works and building commercial awareness. Learn and apply professional and technical standards (e.g. refer to specific PwC tax and audit guidance), uphold the Firm's code of conduct and independence requirements. The Opportunity When you join PwC Acceleration Centers (ACs), you step into a pivotal role focused on actively supporting various Acceleration Center services, from Advisory to Assurance, Tax and Business Services. In our innovative hubs, you’ll engage in challenging projects and provide distinctive services to support client engagements through enhanced quality and innovation. You’ll also participate in dynamic and digitally enabled training that is designed to grow your technical and professional skills. As part of the Digital Assurance and Transparency - AC India team you are expected to provide services related to controls around the financial reporting, compliance, and operational processes. As an Associate you are expected to focus on learning and contributing to client engagement and projects while developing your skills and knowledge to deliver quality work. You are expected to be responsible for identifying key risks and controls, applying internal control principles and business/technical knowledge, and leading the execution of a work program and practice aid. Responsibilities Providing services related to controls around financial reporting, compliance, and operational processes Identifying key risks and controls Applying internal control principles and business/technical knowledge Leading the execution of a work program and practice aid Contributing to client engagement and projects Developing skills and knowledge to deliver quality work Supporting senior staff in various tasks Engaging in research and learning opportunities What You Must Have Bachelor's Degree in one of the following fields of study: Accounting, Finance, Management Information Systems, Computer and Information Science, Information Technology, Economics, Business Administration/Management, Engineering, Statistics, Management Information Systems & Accounting, Computer and Information Science & Accounting, Economics and Finance, Economics and Finance & Technology, Accounting & Technology, Mathematical Statistics, or Technology Mathematics In lieu of Bachelor Degree, Chartered Accountant 1 year of IT auditing, auditing, consulting and/or implementing experience- Oral and written proficiency in English required What Sets You Apart Knowledge of financial reporting and IT risks, processes, and controls Familiarity with Oracle, SAP, Oracle Database, web development tools Understanding of COSO Framework, CoBIT, and other IT control frameworks Proficiency in IT general controls, including change management Experience in Sarbanes Oxley readiness and controls optimization Significant project management skills, including developing project plans Creating a positive environment and monitoring team workloads Interacting with clients and forming client relationships Although a credential is not required to be hired at this level, it is required to progress to Manager Show more Show less

A career within Internal Audit services, will provide you with an opportunity to gain an understanding of an organisation’s objectives, regulatory and risk management environment, and the diverse needs of their critical stakeholders. We focus on helping organisations look deeper and see further considering areas like culture and behaviours to help improve and embed controls. In short, we seek to address the right risks and ultimately add value to their organisation. To really stand out and make us fit for the future in a constantly changing world, each and every one of us at PwC needs to be a purpose-led and values-driven leader at every level. To help us achieve this we have the PwC Professional; our global leadership development framework. It gives us a single set of expectations across our lines, geographies and career paths, and provides transparency on the skills we need as individuals to be successful and progress in our careers, now and in the future. Responsibilities As a Senior Associate, you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. PwC Professional skills and responsibilities for this management level include but are not limited to: Invite and give in the moment feedback in a constructive manner. Share and collaborate effectively with others. Identify and make suggestions for improvements when problems and/or opportunities arise. Handle, manipulate and analyse data and information responsibly. Follow risk management and compliance procedures. Keep up-to-date with developments in area of specialism. Communicate confidently in a clear, concise and articulate manner - verbally and in the materials I produce. Build and maintain an internal and external network. Seek opportunities to learn about how PwC works as a global network of firms. Uphold the firm's code of ethics and business conduct. Essential Duties And Responsibilities Manage the work streams related to IT SOX compliance covering ITGC and IT Dependencies (ITAC, Interfaces, IPE’s). Thorough understanding around ITGC domains such as Logical Access, Change Management, SDLC and Computer Operations. Exposure of testing IT Application Controls (Configurable, Non-configurable), Interfaces, IPE’s, Data Migration and Platform Reviews. Provide technical support in the assessment, design, and implementation of ITGC requirements. Review control evidence for adherence to accuracy, completeness, and precision of control execution for all ITGC. Develop, implement, and test controls for new acquisitions and in-scope entities Work with control owners and operators to ensure quality, consistency, and operability of new and existing controls. Collaborate and build long-term relationships with key stakeholders in a fast-paced and matrixed work environment. Review test findings, facilitate the remediation of ITGC control gaps, and escalate possible critical issues to senior management within IT. Mentors and develops peer and Associates, monitors their work, and takes corrective action when necessary Builds and maintains strong peer relationships within the team and across the organization Coordinates work with External Auditors. Interpersonal Skills Ability to work independently under general supervision with latitude for initiative and independent judgment Effective verbal and written communications, including active listening skills Ability to establish and maintain effective working relationships with co-workers and external contactors/auditors Detail-oriented Comfortable working on multiple projects simultaneously Individuals would be expected to cultivate a strong team environment and promote a positive working relationship amongst their team. Excellent Communication, written and verbal would be expected. In addition to being an exceptional individual contributor, manage engagements and relevant Teams allocated for the same. Managing predominantly offshore engagements and relevant PwC Territory teams. Ensure client service delivery in accordance with the quality guidelines & methodologies. Build and maintain client relationships by understanding and being responsive to client needs and ensuring high quality of deliverables. Demonstrate strong analytical thinking and communication skills including the ability to research and understand complex processes and effectively communicate them to interested parties Client Management Develop strong working relationships with the client and onshore client teams. Maintain excellent rapport and proactive communication with the stakeholders and client. Operational Excellence Suggest ideas on improving engagement productivity and identify opportunities for improving client service. Ensure compliance with engagement plans and internal quality & risk management procedures. People Related Display teamwork, integrity, and leadership. Work with team members to set goals and responsibilities for specific engagements. Foster teamwork and innovation. Utilize technology & tools to continually learn and innovate, share knowledge with team members and enhance service delivery. Conduct workshops and technical training sessions for team members. Contribute to the learning & development agenda and knowledge harnessing initiatives Minimum Qualifications Bachelor’s degree in Information Systems, Computer Science Engineering, or Finance Preferred B.E., B. TECH, M. TECH, MCA, BCA, CA, MBA Experience in technology audit, risk management, compliance, consulting, or information security Excellent knowledge of IT General Controls, automated and security controls. Knowledge of security measures and auditing practices within various operating systems, databases, and applications Experience in auditing financial applications, cyber security practices, privacy, and various infrastructure platforms such as Unix, Linus, Windows, SQL Server, Oracle Databases Knowledge and concepts of auditing of cloud platforms (AWS, Azure and Google Cloud) Experience designing continuous auditing and monitoring tools and techniques is a plus. Good understanding of CoBIT 5 Domains of Access Management, SLDC & Change and Computer Operations and Control Design and Testing of SOX IT General Controls (ITGC) and/or IT Application Controls (ITAC) Experience in identifying control gaps and communicating audit findings and control redesign recommendations to Management/Clients Knowledge of regulations impacting privacy, integrity, and availability of clients PII. Functional knowledge of major ERP suites (like SAP, Dynamics, Oracle EBS) Understanding of audit concepts and regulations Required overall experience in testing/reviewing and implementation of ITGC controls, CoBit 5 and developing COSO framework Candidates with 3-5 years of relevant experience in similar role, preferably with a “Big 4” or equivalent Chartered Accountant (would be added advantage) Certification(s) Preferred CISA / CISM / CRISC / CISSP / ISO 27001 LA certifications Show more Show less

KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities for Internal Candidates • Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery • Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. • Perform business process walkthrough and controls testing for IT Audits. • Performing planning and executing audits, including - SOX, Internal Audits, External Audits • Conducting controls assessment in manual/ automated environment • Prepare/Review of Policies, Procedures, SOPs • Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. • Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. • Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. • Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications for Internal Candidates • IT Audit + SAP experience with knowledge of IT governance practices • Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits • Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) • Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology • Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage • Exposure to ERP systems will be added advantage • Strong project management, communication (written and verbal) and presentation skills • Knowledge of security measures and auditing practices within various applications, operating systems, and databases. • Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism • Preferred Certifications – CISA/CISSP//CISM • Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage • Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal employment opportunity information: KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you. Show more Show less

Job requisition ID :: 83623 Date: Jun 4, 2025 Location: Delhi Designation: Manager Entity: Job Description- Roles and Responsibilities : At Deloitte, you are expected to contribute to the firm's growth and development in a variety of ways, including: • Assist client in identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement • Assist in the selection and tailoring of approaches, methods, and tools to support service offering or industry projects • Facilitate use of technology-based tools or methodologies to review, design, and/or implement products and services • Understand clients' business environment and basic risk management approaches • Project Management : o Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions o Play substantive/lead role and engagement planning, economics, and billing o Generate innovative ideas and challenge the status quo o Participate in proposal development efforts o Participate in "add-on" sales to client o Membership and visibility in professional & civic organizations o Identify opportunities to cross-sell other services o Build and nurture positive working relationships with clients with the intention to exceed client expectations Eligibility criteria and requirements: • B.E/B.Tech in Computer Science, Information Technology or related fields. Chartered Accountant and/or MBA with Finance/IT • Must have 1 - 8 years of experience in the areas of IT audits, ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC, IT Financial Audit and Business Automated Controls, IT Risk consulting or any other • regulatory / compliance audits • Hands-on experience in the multiple areas of IT audits, SSAE / SOC- 1 and 2, and Business Automated Controls, IT Risk consulting or any other regulatory / compliance audits. • Knowledge of ERP’s like SAP / OFIN / JDE / etc and their native application controls will be • preferred. • Must have hands on experience on regulatory requirements / international standards (SSAE / ISAE / SOX, PCI, ISO 27001) and good practices (COSO, COBIT) relating to information security. • Must have Excellent English skills, excellent presentation skills, excellent soft-skills • Team Management skill is mandatory

KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities for Internal Candidates • Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery • Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. • Perform business process walkthrough and controls testing for IT Audits. • Performing planning and executing audits, including - SOX, Internal Audits, External Audits • Conducting controls assessment in manual/ automated environment • Prepare/Review of Policies, Procedures, SOPs • Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. • Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. • Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. • Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications for Internal Candidates • 7 years of exp in IT Audit + SAP experience with knowledge of IT governance practices • Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits • Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) • Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology • Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage • Exposure to ERP systems will be added advantage • Strong project management, communication (written and verbal) and presentation skills • Knowledge of security measures and auditing practices within various applications, operating systems, and databases. • Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism • Preferred Certifications – CISA/CISSP//CISM • Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage • Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal employment opportunity information: KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you. Show more Show less

KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities for Internal Candidates • Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery • Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. • Perform business process walkthrough and controls testing for IT Audits. • Performing planning and executing audits, including - SOX, Internal Audits, External Audits • Conducting controls assessment in manual/ automated environment • Prepare/Review of Policies, Procedures, SOPs • Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. • Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. • Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. • Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications for Internal Candidates • IT Audit + SAP experience with knowledge of IT governance practices • Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits • Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) • Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology • Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage • Exposure to ERP systems will be added advantage • Strong project management, communication (written and verbal) and presentation skills • Knowledge of security measures and auditing practices within various applications, operating systems, and databases. • Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism • Preferred Certifications – CISA/CISSP//CISM • Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage • Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal employment opportunity information: KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you. Show more Show less

The Team: Digital Solutions (DS) is an enterprise-shared technology service enabling people, functions, and divisions. We drive S&P Global to Power the Markets of the Future by working as trusted partners delivering secure, scalable, resilient, and innovative services and solutions that enable seamless experiences for our people and customers. The Impact: This role rolls up to the Head of Technology Risk and Governance, in the Global Digital Technology Organization . The Head of Technology Risk and Governance drives the Digital Solutions technology risk and governance strategy, partnering with the second line of defense in Information Security, Digital Technology Services, and Corporate Platforms, as well as with Enterprise Risk and Compliance, and Audit. Responsibilities and Impact: This role belongs to First Line of Defense. Support in defining a comprehensive risk inventory, focusing on granular-level risks. Support in development of detailed controls inventory for various technology processes based on various industry frameworks (COBIT, ITIL, ISO, NIST) and DS Technology Standards. Perform self-QA over the controls inventory to ensure key risks and controls are covered. Support in implementation of the Governance, Risk, and Compliance (GRC) tool, focusing on the technology aspects. Support in development of Key Risk Indicators (KRIs) and Key Control Indicators (KCIs) Establish and manage thresholds for risk indicators Coordinate with key stakeholders to ensure alignment and effective communication Develop and operationalize risk scorecards to track and report on risk metrics. Aggregate risk data to provide a holistic view of organizational risk Support in preparing and delivering comprehensive risk reports to measure performance against the organization's Risk Appetite. Prepare presentations for the Management reporting (requires very good PowerPoint presentation skills) Basic Required Qualifications: Bachelor's Degree in a relevant field such as Engineering, Business, or Information Technology. 5+ years of experience in technology risk management and internal controls implementation, including both building and operating a function. Proven ability to convey complex risk topics to varied audiences, including executive leadership and technical teams. Successful track record in a global environment, with strong relationship-building and communication skills. Exceptional analytical skills and problem-solving abilities, with experience in high-pressure environments. Additional Preferred Qualifications: 5+ years of experience in a large global organization in a technology risk function. Master of Business Administration or equivalent advanced degree preferred but not required.

We are seeking a Specialist, Control Tester to join our newly established Centralized 1LoD Control Testing function (1LoD Control Testing). This 1LOD Testing team aims to standardize and enhance our control testing practices across all Business Units and Corporate Functions. As a key member of this team, you will play a pivotal role in supporting risk management activities across the organization. This includes the opportunity to be immersed across multiple operational and compliance areas, with opportunities to specialize in specific areas of interest. This role will operate under general supervision; however, will primarily work independently to actively execute control test plans and support Testers within the team with their respective execution. Regular activities include a risk-based control review, effective test execution, and an in-depth analysis of control test results to identify key trends and solutions. Major Duties: Leads controls testing execution including walkthroughs, design, and operating effectiveness testing. Performs quality review over testing workpapers (produced by other testers) to ensure execution and documentation meet First Line of Defense Control Testing Methodology and testing quality expectations. Lead representative to ensure relevant stakeholders are appropriately engaged in all critical testing phases. Provides support to Tester(s) to ensure testing is being performed effectively and efficiently. Responsible for monitoring all testing phases including escalation of significant deficiencies and/or testing delays. Compile, manage, submit and socialize required monthly, quarterly or annual reporting including test results, dashboards and/or testing issue remediation status. Responsible for assisting in the identification and escalation of follow-ups and potential deficiencies. Work closely with the business partners to obtain issue remediation action plans, track and report status of remediation actions, including maintaining dialogue with the business to ensure timely remediation of issues. Assist with control projects, operational and/or corporate risk initiatives, where directed. Skills & Experience: 14+ years of risk and control experience Experience managing teams across multiple jurisdictions Bachelor’s degree in computer science, information technology, IT/Cyber security, and/or risk management Current working knowledge of risks related to information technology, cyber security, IT General Controls (ITGCs), application controls, IT platforms and related technologies. Strong understanding of IT risk frameworks (ITIL, COSO, COBIT, NIST, ISO, etc) and Technology testing methodologies Understanding of assurance-based activities including Technology controls monitoring and compliance testing Professional certifications a plus (e.g., CISA, CRISC, CISM, CISSP) Shift Coverage: EMEA - 3:30PM to 12:30AM IST Show more Show less

Vice President - Cyber Security Operations Job Statement: NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360° platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages, which are each tailored to a client’s needs and budget, and external threat analysis, which provides critical intelligence, help to democratize cybersecurity by making enterprise-grade defenses and security operations available to organizations of all sizes. NopalCyber lowers the barrier to entry while raising the bar for security and service. We are looking for a proven, high energy, results oriented Cybersecurity Operations Leader, where you will be a key advisor for our clients, analyzing business requirements to design and implement ideal security solutions for their needs. As an established SecOps Leader, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security posture. This is an opportunity for you to showcase your strong communication skills and experience in SOC operations, security governance & advisory, security risk management, security architecture, and cyber incident response programs. Job responsibilities: Service Delivery Management: Oversee the end-to-end delivery of Managed XDR, Attack Surface Reduction, and Advisory services to clients, ensuring high-quality outcomes and client satisfaction. SOC Operations Leadership: Lead and manage Security Operations Center (SOC) operations, ensuring effective monitoring, incident management, and response processes are in place. Incident & Escalation Management: Take responsibility for escalations arising from security event monitoring, incident management, and response. Ensure timely resolution and process improvements. SLA & Process Compliance: Ensure that service level agreements (SLAs) are met, while also driving process adherence, continuous improvements, and operational excellence. Governance & Metrics: Establish and refine operational foundations, defining key metrics and KPIs to drive governance, quality, and efficiency. Influence operational change to improve performance. Threat Management & Detection: Lead efforts in threat management, modeling, and hunting. Identify threat vectors and develop use cases and detection rules to enhance security monitoring capabilities. Team Training & Development: Ensure that the team’s skill development and training needs are adequately addressed to maintain cutting-edge security expertise. Cybersecurity Maturity & Resilience: Assist clients in identifying potential threats, vulnerabilities, and deficiencies, advising on measures to enhance their cybersecurity maturity and resilience. Solution Design & Communication: Evaluate client needs, create tailored security solutions, and effectively communicate the value proposition of complex security concepts to both technical and non-technical stakeholders. Security Assessments: Plan and execute IT security assessments of on-premise/cloud IT assets. Understand organizational objectives, policies, and regulations to identify risk areas and prepare comprehensive review programs. Stakeholder Communication: Possess strong communication skills to engage with senior management, board members, technical teams, and key client stakeholders to convey complex security concepts effectively. Sales & Proposal Support: Contribute to sales pursuits, proposals, and the development of security practice eminence. Drive business growth through strategic client relationships. Project Delivery: Lead and deliver complex security projects in a fast-paced, team-driven environment. Knowledge Sharing & Collaboration: Foster a collaborative environment by promoting and participating in forums that enhance the firm’s collective knowledge and assist clients with complex challenges. Enterprise Security Leadership: Provide leadership and strategic direction to the organization’s information security initiatives. Cybersecurity Strategy & Technology Update: Regularly update and refine the cybersecurity strategy to incorporate new technologies and emerging threat information. Client Relationship Management: Establish and maintain strong client relationships to further expand the service portfolio and ensure long-term client success. Job specifications: 1. Qualification: A bachelor’s degree in a related field (e.g., Computer Science, Cybersecurity, or Information Technology) and a minimum of 15 years of relevant work experience. Certifications Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA). Cloud security certifications from major Cloud Service Providers (AWS Certified Solutions Architect, Microsoft Azure Architect, Google Cloud Architect), or Certified Cloud Security Professional (CCSP) / Certificate of Cloud Security Knowledge (CCSK). 2. Desired Skills: Desired Skills & Experience : SOC Expertise: Strong understanding of SOC operations, design, and management. Experience with domain administration, network architecture, and change control procedures. Risk Management Knowledge: Familiarity with IT risk management standards and frameworks, including ISO 31000, NIST Cybersecurity Framework, ISO 27001/27002, GDPR, PCI DSS, SOC 1/SOC 2, COBIT, and HITRUST. Networking & Security Technologies: Knowledge of networking (TCP/IP, OSI model), operating systems (Windows, UNIX, mainframe), security technologies (firewalls, IDS/IPS), and programming languages (C, Java, Perl, Shell). Threat Landscape Awareness: In-depth understanding of cyber-attacks, threat vectors, risk management, and incident response. Security Solutions Proficiency: Hands-on experience with MDR, EDR, XDR, SIEM, Vulnerability Management, IDS/IPS, NTA, UEBA, DLP, and other security technologies. Penetration Testing Tools: Familiarity with penetration testing and application security tools (Kali Linux, Metasploit, Burp Suite, Nessus, NMAP). Security Frameworks & Methodologies: Understanding of OWASP, the MITRE Attack Framework, Cyber Kill Chain, and the SDLC (Software Development Lifecycle). Cloud Security Expertise: Advanced knowledge of cloud security practices and implementations. Vendor/Partner & Client Management: Strong experience in vendor/partner management, client management, and the ability to lead client relationships effectively. Offerings Development: Ability to research and develop innovative security risk-based offerings that meet client needs. Shaping Client Expectations: Expertise in managing and shaping client expectations throughout engagement cycles. #CybersecurityLeadership #VPOfOperations #SecurityOperations #CyberOpsLeadership #OperationsLeadership #CybersecurityVP #SecurityOps #CybersecurityExec #TechOperations #InfoSecLeadership #VPJobs #LeadershipHiring #CybersecurityCareers #OperationsExcellence #SecurityLeadershipRoles #HyderabadJobs #HyderabadHiring #HyderabadCareers #HyderabadTech #HyderabadVP #HyderabadOperations Show more Show less

Category: Infrastructure/Cloud Main location: India, Karnataka, Bangalore Position ID: J0525-1644 Employment Type: Full Time Position Description: Company Profile: Founded in 1976, CGI is among the largest independent IT and business consulting services firms in the world. With 94,000 consultants and professionals across the globe, CGI delivers an end-to-end portfolio of capabilities, from strategic IT and business consulting to systems integration, managed IT and business process services and intellectual property solutions. CGI works with clients through a local relationship model complemented by a global delivery network that helps clients digitally transform their organizations and accelerate results. CGI Fiscal 2024 reported revenue is CA$14.68 billion and CGI shares are listed on the TSX (GIB.A) and the NYSE (GIB). Learn more at cgi.com. Job Title: Machine Learning Engineer Position: Senior Systems Engineer Experience: 3-8 years Category: Software Development/ Engineering Shift: 12:30 AM IST to 9:30 PM IST Main location: Bangalore Position ID: J0525-1644 Employment Type: Full Time Education Qualification: Bachelor's degree in Computer Science or related field or higher with minimum 3 years of relevant experience. Position Description:. Must have skills : Must have experience in Programming Language (Python, R). Machine learning frameworks: scikit-learn, TensorFlow, PyTorch, or Keras. NLP Libraries : NLTK, spaCy, or Stanford CoreNLP. Data analysis and visualization tools: Pandas, NumPy, Matplotlib, or Seaborn. Experience with cloud-based platforms: AWS, Azure, or Google Cloud. Must have 3+ years of relevant experience in machine learning, NLP, or a related field. Experience with automated process development, deployment, and maintenance. Should be familiar with ticketing systems and auditing processes is a plus. Soft Skills : Excellent communication and collaboration skills. Ability to work in a fast-paced environment and adapt to changing requirements. Strong problem-solving skills and attention to detail. Good to have skills : 1. Experience with containerization: Docker, Kubernetes, or other containerization tools. 2. Familiarity with DevOps practices: Agile development, continuous integration, and continuous deployment. 3. Knowledge of IT service management: ITIL, COBIT, or other IT service management frameworks. 4. Certifications: Certified Data Scientist, Certified Machine Learning Engineer, or other relevant certifications. CGI is an equal opportunity employer. In addition, CGI is committed to providing accommodation for people with disabilities in accordance with provincial legislation. Please let us know if you require reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs. Life at CGI: It is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons Come join our team, one of the largest IT and business consulting services firms in the world Skills: Artificial Intelligence Cloud Computing Data Analysis English Natural Language Processing Python What you can expect from us: Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.

The IT Business Lead Analyst is a senior-level position responsible for liaising between business users and technologists to exchange information in a concise, logical and understandable way in coordination with the Technology team. The overall objective of this role is to contribute to continuous iterative exploration and investigation of business performance and other measures to gain insight and drive business planning. Responsibilities: Provide input during development and implementation phases, including formulation and definition of systems scope, objectives and necessary system enhancements for complex, high-impact projects Identify and communicate risks and impacts and propose risk mitigation options, considering business implications of the application of technology to the current business environment Consult with business clients to determine system functional specifications and partner with multiple management teams and other units to meet organizational objectives Evaluate new IT developments and evolving business requirements and recommend appropriate systems alternatives and/or enhancements to current systems by analyzing business processes, systems and industry standards Provide in-depth and sophisticated analyses with interpretive thinking to define problems, develop innovative solutions and influence strategic functional decisions Supervise day-to-day staff management issues, including resource management, work allocation, mentoring/coaching and other duties and functions as assigned Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency. Qualifications: 10-15 years of experience Proficiency in MS Office (Word, Excel, Visio, PowerPoint) with extensive experience using Excel for data analysis Experience with all phases of Software Development Life Cycle Comprehensive knowledge of the principles of business analysis Education: Bachelor's degree/University degree or equivalent experience Master's degree preferred This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required. Position Overview: We are seeking an experienced and dynamic IT Business Lead Analyst (Vice President) to lead and manage initiatives related to Data Governance and Control Codification projects. The ideal candidate should have a strong understanding of data quality , control frameworks , and codification processes , along with extensive knowledge of the banking and finance domain . This role requires a blend of technical expertise, business acumen, and leadership skills to ensure the successful delivery of data governance initiatives. Key Responsibilities: Lead and manage Data Governance and Control Codification projects, ensuring alignment with organizational goals and regulatory requirements. Define and implement data quality frameworks, standards, and processes to ensure the accuracy, consistency, and reliability of data. Collaborate with cross-functional teams to identify, document, and codify controls for critical data elements. Work closely with stakeholders to understand business requirements and translate them into actionable technical solutions. Ensure compliance with data governance policies, regulatory standards, and industry best practices. Drive the adoption of data governance tools and technologies to enhance data quality and control processes. Provide subject matter expertise in banking and finance, ensuring that data governance initiatives align with industry-specific requirements. Monitor and report on the effectiveness of data governance and control frameworks, identifying areas for improvement. Mentor and guide team members, fostering a culture of accountability and continuous improvement. Required Skills and Qualifications: 10+ years of experience in IT Business Analysis, with a focus on Data Governance, Data Quality, and Control Codification. Strong understanding of data quality frameworks, data lineage, and metadata management. Experience in the banking and finance domain, with knowledge of regulatory requirements and industry standards. Proficiency in data governance tools (e.g., Collibra, Informatica, or similar) and data quality tools. Strong analytical and problem-solving skills, with the ability to work with large datasets and complex systems. Excellent communication and stakeholder management skills, with the ability to bridge the gap between technical and business teams. Bachelor's or Master's degree in Computer Science, Information Systems, Finance, or a related field. Preferred Qualifications: Experience with control frameworks such as COSO, COBIT, or similar. Knowledge of data privacy regulations (e.g., GDPR, CCPA) and their impact on data governance. Familiarity with data visualization tools (e.g., Tableau, Power BI) for reporting and analysis. Certifications in data governance or related fields (e.g., CDMP, DGSP). ------------------------------------------------------ Job Family Group: Technology ------------------------------------------------------ Job Family: Business Analysis / Client Services ------------------------------------------------------ Time Type: Full time ------------------------------------------------------ Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi. View Citi’s EEO Policy Statement and the Know Your Rights poster. Show more Show less

At GoDaddy the future of work looks different for each team. Some teams work in the office full-time, others have a hybrid arrangement (they work remotely some days and in the office some days) and some work entirely remotely. This is a remote position, so you ll be working remotely from your home. You may occasionally visit a GoDaddy office to meet with your team for events or meetings. Join our Team... At GoDaddy, we are seeking a Manager, SOX Compliance & Risk Management, to join our Finance team! This role will play a key part in driving high-quality execution of our SOX compliance efforts across the full annual SOX cycle leveraging technology, including AI, to optimize execution. We need a diligent and proactive team member to assist in testing controls, identifying gaps, and contributing to the continuous improvement of the SOX program. This role reports to the Senior Manager, SOX Compliance & Risk Management. What youll get to do... Assist in driving the SOX program by supporting SOX compliance activities including performing walkthroughs and testing of business process controls, while and ensuring alignment with regulatory expectations and industry standard processes Assist in the maintenance and improvement of SOX-related documentation, risk assessments, and reporting, bringing to bear automation tools where feasible Identify control deficiencies and trends, and partner with internal teams to support remediation planning Give to ongoing program improvement by recommending updates to testing and documentation standards Maintain strong cross-functional relationships across business and IT collaborators to support program objectives Your experience should include... 4+ years of experience in SOX compliance, internal audit or external audit Bachelors degree or equivalent experience in accounting, finance, computer information systems or related field Recent public accounting background from a Big 4 Firm Strong understanding of SOX 404 and internal control frameworks (e.g., COSO, COBIT) Experience testing SOX business process controls CPA (equivalent), CIA, CISA, or other relevant certifications Weve got your back... We offer a range of total rewards that may include paid time off, retirement savings (e.g., 401k, pension schemes), bonus/incentive eligibility, equity grants, participation in our employee stock purchase plan, competitive health benefits, and other family-friendly benefits including parental leave. GoDaddy s benefits vary based on individual role and location and can be reviewed in more detail during the interview process.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Engineer , you have a pivotal operational role to provide and deprovision system access.You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What you’ll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices.Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM What you’ll bring 2 years of experience in Identity or Access Management Tireless adherence and attention to appropriate IT general computing controls Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

•Understand the current accounting principles and internal control concepts (COSO, COBIT) • auditing processes and methodologies, including flowcharting •Working knowledge of Sarbanes-Oxley Act provisions and methodologies for achieving compliance

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

JoVE is the world-leading producer and provider of science video solutions with the mission to improve scientific research and education. Millions of scientists, educators and students worldwide use JoVE for their research, teaching and learning. Our institutional clients comprise over 1,000 universities, colleges, and biopharma companies, including such leaders as Harvard, MIT, Yale, and Stanford. As a rapidly growing company, with offices in the USA, UK, Australia, and India servicing clients in over 60 countries, we are seeking talented and ambitious individuals to join our company. The Role We are seeking an experienced Customer Support Representative to be on the front lines by answering questions and troubleshooting technical problems. You will assist customers with JoVE’s products and also guide clients through any technical issue they might encounter. If you are an energetic self-starter, problem solver with a basic technical background and excellent communication skills, we want to talk to you. The Support Team here at JoVE is providing support not only to external customers but also to internal JoVE employees on a 24x7 basis. Responsibilities Manage large amounts of incoming tickets. Handle customer inquiries, provide appropriate solutions and alternatives within the time limits; follow up to ensure resolution. Triage tickets to the correct Level 2 teams. Follow communication procedures, guidelines and policies. Provide accurate, valid and complete information by using the right methods/tools. Keep records of customer interactions, process customer accounts and file documents. Requirements: A Bachelor’s in Computer Science or relevant field. Excellent English communication skills. Solid understanding of web page construction (HTML, CSS, JavaScript). Know how to execute standard debugging for website issues. Basic understanding of frameworks such as Agile, ITIL, COBIT. Familiarity with XML and JSON is preferred. Ability to communicate with both technical and non-technical personnel in a clear and concise fashion. Strong attention to detail. Ability to accommodate flexible work schedules based on business needs to provide 24/7 support. Proficient with ticketing tools ( Zendesk, Jira, Salesforce). Moderate skills with Salesforce (ability to search records for details and occasional basic editing) Why JoVE? You will make a direct impact in accelerating science research and in improving student learning in science education. Opportunity to work with a diverse and international team. Our strong promotion from within culture draws a clear path to advance your career with us. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Governance Risk and Compliance Consultant - Senior The opportunity This is a role where no two days are the same – so you’ll find yourself taking on plenty of new responsibilities as you go. You’ll work alongside clients and colleagues, balancing your time between developing security strategies, designing security and privacy controls, advising client stakeholders, facilitating workshops and supporting business development. Your Key Responsibilities As a Cyber GRC Professional in our Cyber Security practice, you will be occupied in the following domains: a) Strategy, b) Risk, c) Compliance. As part of our team strategy you will be expected to take on responsibility and initiative early, providing you with real experience working with a wide range of major clients in EY. You will be taking responsibility for the quality of your work, while continually developing your personal and professional skills through formal training, hands-on experience and coaching. Skills And Attributes For Success To qualify for the role, you must have: Degree, or equivalent, in Information Security, Cyber Security, Information Technology, Informatics, or other similar and technical areas Evidence of self-motivation to continuously develop in the areas of cybersecurity Good organizational and time management skills with the ability to prioritize and complete multiple complex projects under tight deadlines Ability to translate security issues into business risks Excellent interpersonal skills and ability to work effectively within a team at all hierarchical levels Willingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologies Experience, knowledge and strong interest in information and cyber security domains are essential for this role Experience on Cyber Governance, Risk & Compliance (GRC), Cyber risk assessments & management methodologies Experience on assessing, designing and implementing security strategies, governance frameworks over processes and controls, allowing organisations to optimally manage cyber security Experience on design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, such as ISO27001, NIST, SANS etc. Experience in data classification exercises and controls / mechanisms enforcement Working knowledge of control frameworks such as ISO 27001/27002, COBIT, NIST, ITIL, etc. Ability to conduct Security regulatory and compliance assessment independently Hands on with assessment report preparation and presenting to senior technical and business stakeholders Hand on knowledge of excel, PowerPoint and word Articulative and confident in presentation to senior stakeholders Ability to lead workstreams or dedicated portions of projects Cyber maturity assessments, recommendations, roadmap and strategy creation knowledge of use of and risks related to modern and emerging technologies Cybersecurity audit Ability to plan and deliver cyber security training and awareness Ideally, you’ll also have: Security-related qualifications / certifications such as CISSP, SSCP, CISM, ISO27001 lead implementer or auditor, CompTIA Security+, are desirable Experience in Third Party Risk Management (TPRM) and / or vendor risk assessment engagements Experience in design and implementation of Information Security Management Systems (i.e. security policies, procedures and guidelines) according to leading International Standards Security-related vendor / technology certifications are desirable EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (ITGC) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have Chartered accountant (CA) or Master’s degree in management, Information Systems/ Technology, Computer Science, Business Analytics, Cybersecurity, or a related discipline Passion for technology and an ardent desire to work in risk management. Minimum 5 years of a “Big 4” or professional firm or professional industry experience in risks & controls, with more than 5 years of experience in IT Risk Management, IT Regulatory Compliance, IT Audit and IT Transformation Risk areas such as: Identification of strategic, IT & business risks and Identify control gaps, weaknesses and areas of improvements. Design of IT Risk Controls frameworks and RACMs Design and Implementation of IT general controls, IT application controls, Business Process controls, etc Conducting IT internal control reviews, and review of SOC1 or SOC2 reports IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc Understanding of IT regulatory compliances such as IT SOX, GDPR, ISO, PCI DSS etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Risk Compliance and Resilience – Associate Director As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Associate Director who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 18 years of overall experience At least 15 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Bough is a decidedly different kind of advisory, assurance, and transformation solutions firm. Working collaboratively with clients in finance, audit, and compliance organizations, we co-create fully integrated and comprehensive solutions that connect people, processes, and technologies to navigate accounting, reporting, and compliance matters. Our services include finance and accounting advisory, revenue assurance, FP&A advisory and support, risk advisory, and process automation and transformation. We are busy and sometimes crazy busy delivering exceptional results to our clients with trust, quality, and humanness. Our name 'Bough' means the main branch of a tree - a name that keeps us grounded in nature and emphasizes our belief that we wish to be the main branch on which our clients and employees lean with trust. For any position we are hiring, we don’t just want you to be an ambitious, analytical, multi-skilled, risk-taking go-getter for Bough. We want you to be more. More for yourself and for anything you undertake. Socially responsible, intuitive, empathetic, trustworthy, thoughtful, imaginative, creative, and curious are some words that resonate with us. Your skills are a qualifier, and we believe that each of us is much more than the skills we bring to our job - the person we are looking for... Role Description: We are building our Risk Advisory practice to assist clients in addressing their risk management requirements by providing clear perspectives and critical insights to key stakeholders (e.g., CAEs, audit committees). You'll be an integral part of this practice—spanning internal controls support, regulatory compliance, SOX, internal audit, risk transformation, technology risk, and more—and should possess excellent skills in risk management, communication, facilitation, relationship-building, and presentation. You will be responsible for delivering insightful and practical solutions to complex client challenges. Key Responsibilities: Lead SOX 404 financial statement mapping, risk assessment, and scoping processes Ensure the appropriateness of internal control documentation for financial processes, including planning documents, narratives, process maps, walkthroughs, and control testing Assist clients across the internal audit and risk management landscape, including internal audit co-sourcing, governance, regulatory compliance, risk transformation, and audit analytics projects Discuss findings and observations with management, including remediation strategies and optimization opportunities Provide client management support and serve as a liaison between client and project teams Develop client relationships and act as a trusted advisor by understanding their business, listening to their needs, and ensuring responsive service and exceptional quality Own end-to-end delivery of projects, including planning, budgeting, reviewing work papers, and providing feedback, mentorship, and thought leadership Assist clients in audit preparation and coordination with external auditors Identify opportunities to leverage data analytics and automation technologies to drive efficiencies and add value to client engagements Participate in recruiting, business development, and knowledge-sharing initiatives Basic Qualifications: For Business Risk Bachelor’s or Master’s degree in Accounting, Finance, Business, or a related field 5+ years of experience in risk management, internal audit, SOX, or regulatory compliance, preferably in a Big 4 or large professional services firm Certified (CA, CPA, CIA, or CFE — mandatory) Proven track record in leading internal controls, risk reviews, audits, and compliance projects Familiarity with COSO, SOX, and ICFR frameworks For IT Risk Bachelor’s or Master’s degree in Information Systems, Security, Computer Science, Engineering, or a related field 5+ years of experience in IT risk, ITGC, SOX IT controls, cybersecurity, or regulatory compliance, preferably in a Big 4 or large firm Certified (CISA, CISSP, or similar — mandatory) Strong leadership in IT audits, including ITGC, ITACs, ERP (SAP is a plus), SOC 1/2, using frameworks such as COBIT, NIST, and ISO 27001 Preferred Skills: Excellent analytical and problem-solving ability. Strong written and verbal communication; able to explain technical concepts clearly. High energy, enthusiasm, and a commitment to exceeding client expectations. Entrepreneurial mindset with eagerness to learn and grow. Ability to work both independently and in a collaborative team setting. Show more Show less

Bough is a decidedly different kind of advisory, assurance, and transformation solutions firm. Working collaboratively with clients in finance, audit, and compliance organizations, we co-create fully integrated and comprehensive solutions that connect people, processes, and technologies to navigate accounting, reporting, and compliance matters. Our services include finance and accounting advisory, revenue assurance, FP&A advisory and support, risk advisory, and process automation and transformation. We are busy and sometimes crazy busy delivering exceptional results to our clients with trust, quality, and humanness. Our name 'Bough' means the main branch of a tree - a name that keeps us grounded in nature and emphasizes our belief that we wish to be the main branch on which our clients and employees lean with trust. For any position we are hiring, we don’t just want you to be an ambitious, analytical, multi-skilled, risk-taking go-getter for Bough. We want you to be more. More for yourself and for anything you undertake. Socially responsible, intuitive, empathetic, trustworthy, thoughtful, imaginative, creative, and curious are some words that resonate with us. Your skills are a qualifier, and we believe that each of us is much more than the skills we bring to our job - the person we are looking for... Role Description: We are building our Risk Advisory practice to help clients address their risk management requirements by providing clear perspectives and critical insights to key stakeholders (e.g., CAEs, audit committees). You’ll be an integral part of this practice—spanning internal controls support, regulatory compliance, SOX, internal audit, risk transformation, technology risk, and more—and should possess excellent skills in risk management, communication, facilitation, relationship-building, and presentation. You will be responsible for delivering insightful and practical solutions to complex client challenges. Key Responsibilities: Lead SOX 404 financial statement mapping, risk assessment, and scoping processes Ensure the appropriateness of internal control documentation for financial processes, including planning documents, narratives, process maps, walkthroughs, and control testing Assist clients across the internal audit and risk management landscape, including internal audit co-sourcing, governance, regulatory compliance, risk transformation, and audit analytics projects Discuss findings and observations with management, including remediation strategies and optimization opportunities Provide client management support and serve as a liaison between client and project teams Assist clients in audit preparation and coordination with external auditors Identify opportunities to leverage data analytics and automation technologies to drive efficiencies and add value to client engagements Participate in recruiting, business development, and knowledge-sharing initiatives Basic Qualifications: For Business Risk Bachelor’s or Master’s degree in Accounting, Finance, Business, or a related field 3+ years of experience in risk management, internal audit, controls, SOX, or regulatory compliance, preferably in a Big 4 or large professional services firm Strong experience auditing business process controls (e.g., Revenue, P2P, O2C, Inventory, Financial Close & Reporting) Familiarity with COSO, SOX, and ICFR frameworks CA, CPA, CIA, or CFE certifications are a plus For IT Risk Bachelor’s or Master’s degree in Information Systems, Security, Computer Science, Engineering, or a related field 3+ years of experience in IT risk, ITGC reviews, SOX IT controls, cyber risk, or regulatory compliance, preferably in a Big 4 or large firm Hands-on experience auditing IT environments (e.g., OS: Windows, Unix/Linux; Databases: Oracle, SQL; ERP: SAP, Oracle—SAP is a strong plus) Familiarity with COBIT, NIST, ISO 27001, and SOC 1/SOC 2 frameworks CISA, CISSP, or related IT risk/security certifications are a plus Preferred Skills: Proven ability to lead client engagements, manage teams, and deliver high-quality, on-time deliverables. Excellent analytical, problem-solving, communication, and interpersonal skills. Strong project management abilities and comfort working with multiple clients and priorities. High attention to detail, with a commitment to continuous learning and professional development. Show more Show less

Bough is a decidedly different kind of advisory, assurance, and transformation solutions firm. Working collaboratively with clients in finance, audit, and compliance organizations, we co-create fully integrated and comprehensive solutions that connect people, processes, and technologies to navigate accounting, reporting, and compliance matters. Our services include finance and accounting advisory, revenue assurance, FP&A advisory and support, risk advisory, and process automation and transformation. We are busy and sometimes crazy busy delivering exceptional results to our clients with trust, quality, and humanness. Our name 'Bough' means the main branch of a tree - a name that keeps us grounded in nature and emphasizes our belief that we wish to be the main branch on which our clients and employees lean with trust. For any position we are hiring, we don’t just want you to be an ambitious, analytical, multi-skilled, risk-taking go-getter for Bough. We want you to be more. More for yourself and for anything you undertake. Socially responsible, intuitive, empathetic, trustworthy, thoughtful, imaginative, creative, and curious are some words that resonate with us. Your skills are a qualifier, and we believe that each of us is much more than the skills we bring to our job - the person we are looking for... Role Description: As an Associate on our IT Risk Advisory team at Bough , you will contribute to a variety of client projects focused on IT risk, IT General Controls (ITGC), cybersecurity, and IT compliance. This is an exciting opportunity to build specialized expertise while supporting impactful risk management and transformation initiatives for leading organizations. You will collaborate closely with senior consultants, managers, and client stakeholders, gaining hands-on experience with complex IT challenges and delivering high-quality, practical solutions. Key Responsibilities: Assist in executing IT General Controls (ITGC) testing, including access management, change management, and IT operations controls. Perform IT Application Controls (ITAC) testing, evaluating automated controls within critical applications (e.g., approvals, calculations, segregation of duties). Conduct key reports testing to validate report logic, data accuracy, and reliability for financial and operational use. Assess interface controls to ensure the accuracy and completeness of data flows between systems (e.g., ERP to sub-ledgers, third-party integrations). Support ERP system testing (e.g., SAP, Oracle), including configuration reviews, security roles, and control design assessments. Assist in SOC 1 / SOC 2 reviews, evaluating service organization controls and third-party risk impacts on client environments. Collaborate with client IT teams to understand system landscapes, critical applications, and data flows to map risks and control points. Conduct research on cybersecurity risks, IT compliance standards (e.g., NIST, ISO 27001), and emerging technologies relevant to client industries. Basic Qualifications: Bachelor’s or Master’s degree in Information Systems, Computer Science, Engineering, or a related technical field. 0–2 years of experience in IT risk, IT audit, cybersecurity, or related IT control roles; experience with a Big 4 or similar professional services firm is a plus. Foundational knowledge of key IT risk and control frameworks such as COBIT, NIST, ISO 27001, SOC 1/SOC 2, and general ITGC or ITAC concepts. Basic proficiency with MS Office tools (Excel, Word, PowerPoint); familiarity with audit, analytics, or risk management tools is a plus. Preferred Skills: Excellent analytical and problem-solving ability. Strong written and verbal communication; able to explain technical concepts clearly. High energy, enthusiasm, and a commitment to exceeding client expectations. Entrepreneurial mindset with eagerness to learn and grow. Ability to work both independently and in a collaborative team setting. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Cyber Risk Compliance and Resilience – Associate Director As part of our EY-Cyber Security Risk and Compliance Consulting team, you’ll contribute technically to Cyber Security client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. The opportunity We’re looking for Associate Director who should have Deep technical understanding of risk and compliance solutioning for enterprise including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. In line with EY’s commitment to quality, you’ll confirm that work is of the highest quality as per EY’s quality standards and is reviewed by the next-level reviewer. As an influential member of the team, you’ll help to create a positive learning culture, coach and counsel junior team members and help them to develop. Your Key Responsibilities Reporting to the competency leader for Cyber Risk, Compliance, Resilience and Emerging Technology and will be responsible for: Defining, developing, and implementing strategic go-to-market plans in collaboration with local EY member firms in region. Own end-to-end sales opportunity qualification and pursuit, including drafting RFP responses, proposal defence during Orals, drafting State of Work (SoW) leveraging expertise in scoping, solutioning and costing for Enterprise and Cloud security solutions. Support and drive the overall growth strategy for the Cybersecurity practice as part of the leadership team. Identify and drive development of market differentiators including new products, solutions, automation etc. Support refinement of service approach and service delivery methodology for Enterprise and Cloud security solutions. Identify and pursue strategic opportunities for partnerships and acquisitions. Develop and rollout branding and marketing strategy including items such as solution brochures, sales videos, thought leadership, community engagement etc. Inspire and motivate direct and in-direct reporting professionals while fostering an environment of collaboration and participation. Manage engagements across the client and ensure teams delivers value to the customers and ensure horizontal growth in the accounts. Skills And Attributes For Success Deep knowledge of services and service delivery approach and methodology for Cyber Risk, Compliance and resilience including governance and operating models. Proven track record and success in collaborative sales bringing together internal and external stakeholders across Cyber competencies, Digital & Technology practices (Engineering, Analytics, Automation etc.) and business functions (Branding & Marketing, Legal, HR etc.). Proven track record in building and maintaining trusted relationships with key internal and external stakeholders. Deep technical understanding of architecture and solutioning of risk and compliance including products and capabilities, service competitor landscape, pricing methodologies, brand positioning and management, etc. Willingness to travel and flex work timings as and when required. Ability to change and adapt in a hyper-growth environment. Self-starter and strategic thinker. Cyber Strategy & Governance, Cyber Transformation and co-sourcing, Cyber Cost Optimization, Cyber Operating Model Compliance Management - Regulations/standards such as ISO 27001, PCI DSS, HITRUST, CCPA, FISMA/FEDRAMP, COBIT, OWASP Top 10, NIST 800-53, NIST- CSF, HIPPA, GDPR Cyber Risk management Cyber Resilience, Business Continuity & Disaster Recovery Application security and Threat Modelling Vendor Risk Management/Supplier Security To qualify for the role, you must have At least 18 years of overall experience At least 15 years architecture and solutioning for enterprise and cloud security Bachelor or college degree in related field or equivalent work experience MBA (Good to have) Ideally, you’ll also have Project management skills CISSP/CISA/CISM ITIL of Equivalent What We Look For A Team of people with commercial acumen, technical experience and enthusiasm to learn new things in this fast-moving environment with consulting skills. An opportunity to be a part of market-leading, multi-disciplinary team of 2000 + professionals, in the only integrated global transaction business worldwide. Opportunities to work with EY Consulting practices globally with leading businesses across a range of industries. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less