551 Cobit Jobs - Page 2

In our Assurance (A&A) Team youll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Leading / execution of Internal Audit / Advisory engagements Ability to effectively perform the technical components of risk assessments to provide an accurate view of the clients current risk state Ability to perform end-to-end business process analyses and design Ability to gather, synthesize, and analyze data using appropriate tools and technologies Ability to assess and design internal controls by applying an understanding of internal control design frameworks and regulatory requirements Ability to understand the client’s business, interpret sector trends, and learn leading practices Ability to effectively interact with colleagues and clients of varying backgrounds to effectively serve clients Ability to enhance quality and efficiency of recommended conduct risk solutions by applying relevant frameworks, conducting research, and performing analyses Ability to conduct internal audits by leveraging approved processes and methodologies Ability to set the stage for a successful assessment of client’s internal audit processes and controls by collecting and organizing data Ability to enhance quality of assurance engagements by identifying risks, performing testing, researching governing regulations, and developing reports Ability to leverage industry leading frameworks, methods, and tools to increase effectiveness of technology and data risk solutions Desired qualifications Must have 5 – 7 years’ experience post qualification experience in Internal Audit CA/MBA/CIA/CISA Certifications/Qualifications Project Management • Decision making with engagement management and seek to understand the broader impact of current decisions • Lead engagement planning. economics, and billing • Generate innovative ideas and challenge the status quo • Participate in proposal development efforts Audit & Assurance/Assurance (A&A) Assurance (A&A) • Assist in pre-sales activities • Manage relationships with clients with the intention to exceed client expectations Well versed with Internal Audit requirement Managed end-to-end engagements for support on Internal Audit from planning to conclusion. Managed engagements with a team size of 6-10 members Experience in preparation of Business Development presentations, proposals Must be open to travel Location and way of working. • Base location: Chennai • Must have 5 – 7 years’ experience post qualification experience in Internal Audit • Well versed with Internal Audit requirement • This profile involves frequent travelling to client locations. • Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs.

1. Job Details Supervisory Organization* IT Reports to position* Lead Enterprise Architect Job Title* Enterprise Architect Job Profile Primary Location* Additional Location(s) Role Purpose & Scope* (why does this job exist and what scope does it cover?) The Enterprise Architect (EA) is responsible for assessing IT solutions that align with the organization's business goals and architectural principles. This role involves defining enterprise architecture frameworks, ensuring seamless integration of systems, and supporting strategic initiatives. The EA works closely with executives, business leaders, and IT teams to develop technology roadmaps that optimize efficiency, security, and scalability. Key Responsibilities* (define specific short & long-term work duties starting with the most frequent and impactful) 1. Manage EA Framework Definition, implementation, and execution of the processes for the Corporate-wide definition, maintenance, and conformance management of the Enterprise Architecture. • Business Capability Management • Application and Platform Portfolio Management • Standards Management • Interface Portfolio Management Maintenance of the key Enterprise Architecture deliverables, including IT Project Reviews and Software Review Board reports. 2. Technology & System Integration Standardize and govern IT applications, integration, infrastructure and security to ensure seamless and scalable IT Solutions Support and review IT Solution Design for all IT Projects. Review, interpret and respond to regular and complex business requirement specifications to ensure alignment between customer expectations and current or future IT standards and capabilities Architect for cross-program, and cross-project architecture strategies and direction for problem resolutions. Enterprise Architect for complex development, data and integration projects 3. Collaboration and Stakeholder Management Work with business leaders, Business Capability Councils, Business Partners, IT Site Leads, CoE for delivery and project teams. Ensuring clear communication and presenting high level concepts and designs. Train and explain Enterprise Architecture to IT and Non-IT stakeholders 4. Governance and Compliance • Perform EA Assessments • Ensure the Enterprise Architecture standards, principles and strategies are adhered to in all IT programs and projects. • Ensure that systems are implemented and documented in compliance with Lonzas EA Principles and standards Key Metrics* Organization Size (# of direct/indirect reports) Financial responsibility (e.g. budget, Revenue) N/A N/A KPI Targets (in addition to abiding relevant quality systems standards (ISO 9001, ISO 13485) & where relevant complying to applicable pharmaceutical GMP standards (US and European) / 21CFR820 as well as abiding & role modelling for all Health, Safety and Environmental rules and guidelines) Key Stakeholders* Please specify the stakeholder positions the role will interact with • Head of Strategy & Architecture • IT PPM Team and IT COE • Business Partners and Business Capability Council Members Required Skills & Competencies* (e.g. technical, interpersonal, problem solving) General / Management / Business Knowledge & Experience: • Passion to work in an international and diverse environment, broad Corporate work experience • Experience in directing working groups and projects • Strong background in the context of development of complex solutions • Strong interpersonal skills and team focus • At ease with working on different parallel tasks and conceptual projects • Quick to learn and fast to adapt to changing requirements IT Knowledge: • Deep knowledge in the main IT solution domains, such as business applications, IT infrastructure, mobile environments, IT security standards, data management, emerging digital technologies and Cloud environments • Ideation, conceptualization, planning, proof-of-concepts of Enterprise Architecture designs • Sound experience with conceptual IT architecture designs and implementation thereof • Broad knowledge of IT innovation approaches and processes • Knowledge of major IT conceptual frameworks, such as TOGAF, Zachman, FEAF • CoBIT, ITIL, SAFe, SDLC • Modeling in Archimate • GxP and IT system validation base concepts

Position Overview Job Title: Divisional Risk and Control Location: Pune, India Corporate Title: AVP Role Description The 1st line Tech Risk and controls function at Deutsche sits within the Group Technology Infrastructure (GTI) for Deutsche Bank Group. GTI has the largest footprint within the Technology, Data and Innovation division and is joined by other business-aligned CIO IT divisions. The Tech Risk and Controls is a dynamic team, consistently in demand, for providing guidance and challenge to deliver change and maintain systems in a secure and resilient manner. As part of the team, you will join the Bank’s journey and contribute towards our strategic goal of cloud enabled solutions as well as activities that improve our operational resilience and risk reduction. Specifically, you will bring expertise to Control definition and assessments capability across IT Infrastructure, SDLC and Architecture domains supporting a proactive risk management function. It will therefore also include providing change risk advisory services for transformational change programs undertaken by or impacting GTI. You will liaise with other risk and control functions, on a management level to assure the integration of risk initiatives and projects. You will also support Regulatory Adherence and Policy Management function within TDI Risk Management. Its purpose is to provide oversight and supervision of new & changed material regulation impacting TDI, including full traceability to derived DB-specific Policies, Procedures, Key Operating Documents and Supporting Documents. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Risk & Control Management Identify and evaluate potential areas of non-compliance or risk, assessing impact, probability and present findings and proposals for risk mitigation measures. Support the delivery of the risk and control initiatives. This includes participation in risk and control activities, risk-based control reporting of key issues, performance and validation of cyclical activities such as annual control self-assessments. Work closely with teams in and out of the division to understand risks impacting the group. Align internal Deutsche Bank policies/procedures against industry recognized framework to strengthen the control framework and its implementation for both within the Bank and our 3rd party vendor relationships Ensure management transparency by way of timely risk reporting and proactive engagement and representing controls team at different governing forums Regulatory Adherence and Policy Management Coordination of regulatory adherence assessments across sub-divisions within TDI and management and review of Policies, Procedures, Key Operating Documents, Supporting Documents within TDI. Engage with stakeholders across TDI and other (e.g. 2nd line of defence) divisions in reviewing, assessing, and documenting the impact of regulations and ensuring remedial actions are established and monitored. Steer and support the publication of a consistent set of global and local Policies, Procedures, Key Operating Documents and Supporting Documents relating to Information Technology from laws, rules, and regulations. Risk remediation and Change Risk Advisory Support the Head of TDI GTI Risk Management in assessing risks related to strategic changes within the GTI Organization Proactively monitor risk landscape shift within the industry to identify transformation project opportunities to insulate Deutsche Bank from any potential risk exposure e.g., Production design life cycle, application and infrastructure architecture and its resilience Stakeholder Management – Identify, Partner and Collaborate Work with relevant stakeholders to identify and assess controls gaps related to technology risk - measure and mitigate them in a timely manner Align with COO Division Control Office (DCO) team and NFRM (2nd LoD) ensuring successful and consistent implementation of the established control framework. Promote and support proactive IT risk culture at the Bank. Desired Experience Your skills and experience Minimum 5 years of experience as Risk and Control Lead in designing and implementation of Technology risk framework or IT Audit in a global organization. Experience in a regulatory oversight, assurance, or policy management function within technology. Or have suitable compliance or audit background within infrastructure (and preferably IT & Information Security). Extensive experience regarding development, training and implementation of IT Policies, Procedures, Key Operating Documents and Supporting Documents. Good understanding of Industry best practices such as NIST, COBIT, ITIL and ISO 27001 Other professional qualifications and certifications in Technology risk management Desired behaviors A strong team player comfortable in a cross-cultural and diverse operating environment Result oriented and ability to deliver under tight timelines Ability to successfully resolve conflicts in a globally matrix driven organization Excellent communication and collaboration skills Desire to learn about new and emerging technologies and continuous upskilling Must be comfortable with navigating ambiguity to extract meaningful risk insights How We’ll Support You Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

Administration and further development of the PI Germany Software Asset Portfolio as well as integration and harmonization of SAM processes with global BNPP SOAM team.PI Germany SPOC with regards to SAM topics. Responsibilities Direct Responsibilities Coordination for all questions of License Management / Software Asset Management (SAM) Controlling in the management of license and user agreements, monitoring of license agreements and preparation of license balance sheets (legal conformity & compliance) Ensuring, auditing and developing compliance in the implementation of the BNP Paribas Group's SAM requirements, as well as participation in software audits and relevant internal audits Participation in the analysis and identification of cost reduction and optimization potentials at the level of the German branch of BNP Paribas SA with a focus on IT technology (services, software, etc.) Maintaining and monitoring of the PI Germany Software Asset Portfolio Interact with internal departments and stakeholders offering guidance on SAM topics like Responsible for the introduction process of new Software product into the Software portfolio of PI Germany, this includes the introduction of new software products, reviewing business cases clarifying questions with regards to EULA / ETLA and licensing research Counterpart for the Open Source Owner for all relevant topics in case an OSS Oversee and handling of incoming tickets dealing with SAM topics (incidents, problems, changes, requests) Monitor renewals and new software purchases Coordinate and contribute to SAM audits and SAM inventories (driven by SOAM) with the internal departments and stakeholders Participate in ITIL-SAM improvement initiatives Establish and maintain processes associated with long-term SAM goals, including acquisition, documentation, deployment and usage of software Contact person for contractual sand license specific questions regarding the existing software products Contributing Responsibilities Act as an ambassador of SAM topics for PI Germany Support the local PI team in all topics related to SAM Interacting with corporate security, IAM and risk practices to ensure that the software is compliant Provide license reports on requested applications Support and guidance counterpart for the responsible Application Owners Counterpart for all Software product related questions internally and externally Technical & Behavioral Competencies Profound knowledge of ITSM & ITAM ticketing solutions (ServiceNow SAM Pro, USU) Deep architectural and conceptual knowledge of the SAM lifecycle Extensive Software Asset Management reporting skills working with CMDB, Excel and Power BI Strong customer service orientation Specific Qualifications (if required) ITIL Foundation (or higher) mandatory ITAM / CSAM certifications at plus Agile certification at plus Skills Referential Behavioural Skills: (Please select up to 4 skills) Ability to collaborate / Teamwork Ability to deliver / Results driven Communication skills - oral & written Client focused Transversal Skills: (Please select up to 5 skills) Ability to understand, explain and support change Analytical Ability Ability to manage a project Ability to develop and adapt a process Ability to set up relevant performance indicators Education Level: Bachelor Degree or equivalent Experience Level At least 5 years Basic understanding of IT architecture is an advantage (TOGAF, Eagle, Zachman Framework) Basic understanding of the IT frameworks like DevOps, COBIT, CMMI, PRINCE2, PMBOK

Position Overview Job Title: Divisional Risk and Control Analyst Location: Pune, India Corporate Title: Associate Role Description The 1st line Tech Risk and controls function at Deutsche sits within the Group Technology Infrastructure (GTI) for Deutsche Bank Group. GTI has the largest footprint within the Technology, Data and Innovation division and is joined by other business-aligned CIO IT divisions. The Tech Risk and Controls is a dynamic team, consistently in demand, for providing guidance and challenge to deliver change and maintain systems in a secure and resilient manner. As part of the team, you will join the Bank’s journey and contribute towards our strategic goal of cloud enabled solutions as well as activities that improve our operational resilience and risk reduction. Specifically, you will bring expertise to Control definition and assessments capability across IT Infrastructure, SDLC and Architecture domains supporting a proactive risk management function. It will therefore also include providing change risk advisory services for transformational change programs undertaken by or impacting GTI. You will liaise with other risk and control functions, on a management level to assure the integration of risk initiatives and projects. You will also support Regulatory Adherence and Policy Management function within TDI Risk Management. Its purpose is to provide oversight and supervision of new & changed material regulation impacting TDI, including full traceability to derived DB-specific Policies, Procedures, Key Operating Documents and Supporting Documents. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Risk & Control Management Identify and evaluate potential areas of non-compliance or risk, assessing impact, probability and present findings and proposals for risk mitigation measures. Support the delivery of the risk and control initiatives. This includes participation in risk and control activities, risk-based control reporting of key issues, performance and validation of cyclical activities such as annual control self-assessments. Work closely with teams in and out of the division to understand risks impacting the group. Align internal Deutsche Bank policies/procedures against industry recognized framework to strengthen the control framework and its implementation for both within the Bank and our 3rd party vendor relationships Ensure management transparency by way of timely risk reporting and proactive engagement and representing controls team at different governing forums Regulatory Adherence and Policy Management Coordination of regulatory adherence assessments across sub-divisions within TDI and management and review of Policies, Procedures, Key Operating Documents, Supporting Documents within TDI. Engage with stakeholders across TDI and other (e.g. 2nd line of defence) divisions in reviewing, assessing, and documenting the impact of regulations and planning remedial actions. Steer and support the publication of a consistent set of global and local Policies, Procedures, Key Operating Documents and Supporting Documents relating to Information Technology from laws, rules, and regulations. Risk remediation and Change Risk Advisory Support the Head of TDI GTI Risk Management in assessing risks related to strategic changes within the GTI Organization Proactively monitor risk landscape shift within the industry to identify transformation project opportunities to insulate Deutsche Bank from any potential risk exposure e.g., Production design life cycle, application and infrastructure architecture and its resilience Stakeholder Management – Identify, Partner and Collaborate Work with relevant stakeholders to identify and assess controls gaps related to technology risk - measure and mitigate them in a timely manner Align with COO Division Control Office (DCO) team and NFRM (2nd LoD) ensuring successful and consistent implementation of the established control framework. Promote and support proactive IT risk culture at the Bank. Desired Experience Your skills and experience Minimum 5 years of experience as Risk and Control Lead in designing and implementation of Technology risk framework or IT Audit in a global organization. Experience in a regulatory oversight, assurance, or policy management function within technology. Or have suitable compliance or audit background within infrastructure (and preferably IT & Information Security). Extensive experience regarding development, training and implementation of IT Policies, Procedures, Key Operating Documents and Supporting Documents. Good understanding of Industry best practices such as NIST, COBIT, ITIL and ISO 27001 Other professional qualifications and certifications in Technology risk management Desired behaviors A strong team player comfortable in a cross-cultural and diverse operating environment Result oriented and ability to deliver under tight timelines Ability to successfully resolve conflicts in a globally matrix driven organization Excellent communication and collaboration skills Desire to learn about new and emerging technologies and continuous upskilling Must be comfortable with navigating ambiguity to extract meaningful risk insights How We’ll Support You Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

Position Overview Job Title: Divisional Risk and Control Specialist Location: Pune, India Corporate Title: VP Role Description The 1st line Tech Risk and controls function at Deutsche sits within the Group Technology Infrastructure (GTI) for Deutsche Bank Group. GTI has the largest footprint within the Technology, Data and Innovation division and is joined by other business-aligned CIO IT divisions. The Tech Risk and Controls is a dynamic team, consistently in demand, for providing guidance and challenge to deliver change and maintain systems in a secure and resilient manner. As part of the team, you will join the Bank’s journey and contribute towards our strategic goal of cloud enabled solutions as well as activities that improve our operational resilience and risk reduction. Specifically, you will bring expertise to Control definition and assessments capability across IT Infrastructure, SDLC and Architecture domains supporting a proactive risk management function. It will therefore also include providing change risk advisory services for transformational change programs undertaken by or impacting GTI. You will liaise with other risk and control functions, on a management level to assure the integration of risk initiatives and projects. You will also support Regulatory Adherence and Policy Management function within TDI Risk Management. Its purpose is to provide oversight and supervision of new & changed material regulation impacting TDI, including full traceability to derived DB-specific Policies, Procedures, Key Operating Documents and Supporting Documents. This role will report to the Head of Reg. Adherence & Policy Management and ultimately to the Global Head of TDI Risk Management. What We’ll Offer You As part of our flexible scheme, here are just some of the benefits that you’ll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Risk & Control Management Identify and evaluate potential areas of non-compliance or risk, assessing impact, probability and present findings and proposals for risk mitigation measures. Support the delivery of the risk and control initiatives. This includes participation in risk and control activities, risk-based control reporting of key issues, performance and validation of cyclical activities such as annual control self-assessments. Work closely with teams in and out of the division to understand risks impacting the group. Align internal Deutsche Bank policies/procedures against industry recognized framework to strengthen the control framework and its implementation for both within the Bank and our 3rd party vendor relationships Ensure management transparency by way of timely risk reporting and proactive engagement and representing controls team at different governing forums Regulatory Adherence and Policy Management Coordination of regulatory adherence assessments across sub-divisions within TDI and management and review of Policies, Procedures, Key Operating Documents, Supporting Documents within TDI. Engage with stakeholders across TDI and other (e.g. 2nd line of defence) divisions in reviewing, assessing, and documenting the impact of regulations and planning remedial actions. Steer and support the publication of a consistent set of global and local Policies, Procedures, Key Operating Documents and Supporting Documents relating to Information Technology from laws, rules, and regulations. Risk remediation and Change Risk Advisory Support the Head of TDI GTI Risk Management in assessing risks related to strategic changes within the GTI Organization Proactively monitor risk landscape shift within the industry to identify transformation project opportunities to insulate Deutsche Bank from any potential risk exposure e.g., Production design life cycle, application and infrastructure architecture and its resilience Stakeholder Management – Identify, Partner and Collaborate Work with relevant stakeholders to identify and assess controls gaps related to technology risk - measure and mitigate them in a timely manner Align with COO Division Control Office (DCO) team and NFRM (2nd LoD) ensuring successful and consistent implementation of the established control framework. Promote and support proactive IT risk culture at the Bank. People Responsibility - Identify, Develop, Retain Talent Develop a team of AVPs as the team size grows to deliver the risk and control mandate Ensure best practices are leveraged across teams, performance is closely monitored and that issues are dealt with within the team or escalated to senior management Establish an inclusive, open and speak up culture wherein team members are encouraged to express views and raise their concerns without fear Your Skills And Experience Desired experience Overall experience in similar roles for 12+ years in a Technology company or in a Banking Technology division or IT audit Minimum 6 years of experience as Risk and Control Lead in designing and implementation of Technology risk framework in a global organization Good understanding of Industry best practices such as NIST, COBIT, ITIL and ISO 27001 and ServiceNow GRC/IRM tooling. Deeper understanding of industry wide risk landscape and regulatory expectations Knowledge of Agile change delivery methodology, DevOps and Shift left concepts Cloud Computing Technology (GCP, AWS, Azure etc.) certifications or similar domains Other professional qualifications and certifications in Technology risk management Desired behaviors A strong team player comfortable in a cross-cultural and diverse operating environment Result oriented and ability to deliver under tight timelines Ability to successfully resolve conflicts in a globally matrix driven organization Excellent communication and collaboration skills Desire to learn about new and emerging technologies and continuous upskilling Must be comfortable with navigating ambiguity to extract meaningful risk insights How We’ll Support You Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About Us And Our Teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

SYX Services Pvt ltd SYX Services Private Limited is a subsidiary of a US based company called Company (NYSE: GIC). We are registered under the Companies Act, 1956, and provide information technology services solely to Company and its subsidiaries located in the United States and Canada. Our operations started in July, 2011 and we are now a 70-member team comprised of Java developers, SAP professionals, .net developers, Oracle developers, a creative team and a Web Chat team. For over 70 years Company through its operating subsidiaries has been an industry leader providing private label and brand name industrial equipment and supplies to businesses throughout North America Key Responsibilities Work with the IA manager to plan IT audits and develop work programs, timelines, risk assessments, and other planning documents. Work with IT leadership to document the IT processes and identify and test controls. Participate in recurring SOX testing activities and Internal Audit programs. Serve as a fieldwork leader by directing daily progress of IT fieldwork, informing the Management of audit status and issues. Demonstrate and apply a thorough understanding of complex information systems. Use knowledge of the current IT environment and IT risks, identifying potential audit issues and communicating this information to management through written correspondence and verbal presentations. Maintain through a continuing commitment to personal development, including an understanding of technology trends as well as statutory and legislative changes impacting IT throughout North America and Europe. To demonstrate and apply strong project management skills, collaborate with other audit team members, and use current technology and tools to enhance the effectiveness of deliverables. Competencies and skills Audit / risk experience in a $1B+ business. Experience with PCI-DSS Proficiency with ERP controls and security preferably SAP Knowledge and experience of COBIT and Sarbanes-Oxley One or more of the following certifications: CPA, CA, CISA, CISSP, CISM, CBCP, CIA or CFE Qualifications A degree in business, accounting, finance, computer science, information systems, engineering, or a related discipline. Two to five years experience working as an auditor or risk adviser for a public accounting firm, professional services firm or within industry. Strong understanding of IT processes, risks, technologies and controls. Strong presentation abilities underpinned by effective verbal communication and report writing skills. Solid project management, teamwork and relationship skills. Important Facts Job Segment: Systems Engineer, Engineer, Engineering

Hydro Global Business Services (GBS) is an organizational area that operates as an internal service provider for the Hydro group. Its ultimate purpose is to deliver relevant IT, financial and HR business services to all business areas within the company.. What We Offer You. A culture that champions bold ideas and values behind every pixel. Picture an environment where your input shapes real-world campaigns and your efforts are met with recognition and respect. We invest in your growth, offering mentorship, skill-building workshops and access to cutting-edge tools.. As a valued member of our executive team, you will also enjoy a comprehensive benefits package, including:. Equity opportunities. Performance bonuses. Health, dental, and vision insurance. Retirement plans with company matching. Generous paid time off and flexible work arrangements. Professional development opportunities and ongoing training. Your Qualifications And Skills. Expertise in IT governance frameworks, such as ITIL or COBIT.. Proficiency in cloud platforms (AWS, Azure, Google Cloud) and emerging technologies.. Strong understanding of data privacy regulations and compliance standards.. You would also ideally have. A mindset for creative problem-solving. Curiosity that drives you to explore the latest tech trends. Confidence in writing, testing, optimizing, debugging and deploying complex code. A collaborative spirit. Your potential future opportunities. IT/Applications Team Lead. Hydro values diverse skills and perspectives among employees. We encourage all qualified candidates to apply. Qualified applicants will be considered regardless of race, religion, nationality, ethnicity, age, gender, sexual orientation, gender identity or expression, protected veteran status, or disability. We strive to provide equal opportunities for all to contribute and succeed with us.. Applications from severely disabled and equally disabled people will be considered with equal suitability.. Please apply online in ONE with your CV and optionally a cover letter until: 07/02/2025. If you have any questions, please contact:. Badugu Prasanth Raju. Badugu.Raju@hydro.com. Show more Show less

Sr. Specialist - Release Management | NKT Login/My profile FAQ Locations Regional Sites DE SV PL DK CZ Sr. Specialist - Release Management Senior Specialist, Release Management Coordinate seamless ERP releases across global platforms Are you ready to play a key role in one of the most ERP transformations in the industry? NKT is unifying three SAP ECC platforms into a single, streamlined S/4HANA system and we re looking for a Senior Specialist, Release Management to ensure smooth, timely, and secure deployments across all phases of this journey. This is a unique opportunity to join a newly established team at the very beginning of a global transformation. You ll be at the heart of coordinating release activities, managing dependencies, and ensuring technical readiness across platforms. Do you want to be part of a team that s building the digital backbone of a greener tomorrow? Plan, coordinate and lead ERP release cycles As Sr. Specialist, Release Management, you will be responsible for planning and coordinating release activities across multiple workstreams and technical platforms. You ll work closely with internal teams and external partners to ensure readiness, mitigate risks, and maintain a clear release calendar. Your role is essential to our One ERP transformation and the long-term stability of our digital infrastructure. Your responsibility will be to: Coordinate release windows and cycles across portfolios and components Plan and execute deployment activities and runbooks Maintain release calendars and documentation for all workstreams Monitor third-party updates, infrastructure changes, and defect backlogs Ensure smooth handover to operational maintenance teams You will report to the Senior Manager, S/4 Architecture and collaborate with global teams and partners. The position is based in Chennai , with approximately 10 20 travel days per year. Organized and collaborative release management professional You are a motivated and structured professional who thrives in environments. You enjoy working with diverse stakeholders, aligning complex schedules, and ensuring that every release is executed with precision. Your effective planning and communication skills help you build trust and clarity across teams. 5+ years of experience in release or operations management in complex enterprise environments. Experience in coordinating large-scale transformation programs. Comprehensive knowledge of release planning, risk mitigation, and deployment processes. Experience with SAP S/4HANA or similar ERP platform. Proficient organizational and documentation skills. Certifications in ITIL, PRINCE2, or COBIT is nice to have. Build the backbone of a greener ERP future NKT is committed to supporting a diverse organization and a culture where people from different backgrounds can thrive and are inspired to perform at their best. We believe that a diverse organization enables sustainable performance, and that an inclusive and welcoming culture makes for a better place to work. At NKT, you ll be part of a collaborative and international team where your skills are valued and your development is supported. This role offers the opportunity to grow your skills in a global setting, contribute to a major digital transformation, and help build a secure foundation for a greener tomorrow. Join us and be part of a company that connects a sustainable energy future. Read more about our offer and listen to some voices of NKT Connectors here! We will review applications continuously, but we recommend you apply no later than 3 1st July 2025. Be aware that personality and cognitive tests might be included in the recruitment process. For inquiries about the recruitment process, please reach out to . Please note that due to the GDPR regulations we cannot accept any applications via e-mail. Be a Connector of the green tomorrow! Chief Enterprise Architect Sapna, speaks about how she and her colleagues within our IT organization are contributing to the overall company strategy and how the collaborative environment lets ideas flourish everyday. Our company culture is created by all of us - everyday. Sign up to our Talent Pool No suitable job for you? Create a profile in our Talent Pool and stay informed about new job offerings.

Assistant Manager – ITRM Risk Analyst - Deloitte Support Services India Private Limited About Deloitte Global: Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization. Work You’ll Do: Assist in conducting technology risk assessments to identify and evaluate potential risks organization-wide, in accordance with the Risk Library. Understanding of Enterprise Risk Framework methodologies with the ability to interpret and apply them effectively. Contribute to the development and definition of key risk indicators (KRIs) to provide comprehensive, organization-wide technology risk reports that support effective governance and risk management. Execute or support processes that ensure risk considerations are integrated into the introduction of strategic initiatives and significant program changes. Gather requirements and develop dashboards that accurately represent Deloitte Technology’s risk exposure. Collaborate with Service Area Risk Champions to identify, assess, and manage technology risks within their respective business areas, while actively promoting a strong risk culture. Work closely with the Control Management and Control Testing team to automate and digitize risk metrics, ensuring accurate and timely representation of all technology risk data. Support Deloitte Technology in documenting technology risks within the Deloitte Technology risk register. Challenge and oversee the adequacy of technology risk responses to ensure effective mitigation. Work with the Emerging Risk Lead to support the execution of processes related to emerging technology risks where required. Required Qualifications: Experience in IT risk management, risk compliance, risk operations and assurance, or IT audit roles. Proven experience in risk identification and evaluation, utilizing GRC tools and established risk mitigation guidance. Hands-on experience with IT risk tools (e.g., ServiceNow GRC, Archer, OneTrust, etc.) Familiarity with risk management frameworks such as COBIT, ISO 27001, and NIST. Experience supporting risk assessments, control testing, and other IT risk-related activities. Skilled in preparing process documentation, knowledge articles, and training manuals. Proficient in Microsoft PowerPoint, with experience building presentations and decks for stakeholder engagement. Proficient in preparing reports and creating dashboards using tools such as Power BI, Excel, or Tableau. Excellent analytical and problem-solving abilities, with strong influence and negotiation skills. Strong data analysis skills, with the ability to identify risk trends and enable informed decision-making. Experience delivering metrics and insights for senior-level audiences. Exceptional written and verbal communication skills, with a strong customer service orientation. Education and Experience: Technology-related degree or suitable industry experience. 5+ years of related experience in IT risk management in organizations of a similar scale. Preferred Qualifications: Experience working in a large global organization. Experience working with the ServiceNow GRC module. Work Timings: 12:30 to 9:30 pm IST Location: Hyderabad The team Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India. Benefits to help you thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304787

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Job Description At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Technology Risk– Senior As part of our EY- Technology Risk team you’ll contribute technically to IT Risk and Assurance client engagements and internal projects. An important part of your role will be to actively establish, maintain and strengthen internal and external relationships. You’ll also identify potential business opportunities for Ernst & Young within existing engagements and escalate these as appropriate. Similarly, you’ll anticipate and identify risks within engagements and share any issues with senior members of the team. The opportunity We’re looking for candidates at Senior level to join the leadership group of our EY-Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Are To Participate in IT Risk and Assurance engagements. Work effectively as a team member, sharing responsibility, providing support, maintaining active communication, and updating senior team members on progress. Helping in preparation of the audit reports that will be delivered to clients and other parties. Develop and maintain productive working relationships with onshore and client personnel. Identification and testing of SAP IT security and IT risk (e.g., data systems, network and applications) across the enterprise. Assist with facilitating practice wide training (SAP ITGC/ SAP ITAC /SAP Pre & Post Implementation) curriculum. Work closely with onshore, cross-functional teams and develop strong relationships as project senior across the organisation. Stay updated with and promote awareness of updated ERP versions & its functionalities, industry best practices. Active team member executing project management/ stakeholders management (Client, Assurance, onshore) Planning and Budgeting preparation and perform analysis of budget vs actuals. Provide quality deliverables with value addition on the engagements and is known as SMR across organisation. Skills And Attributes For Success Experience in reviewing and testing of SAP S4 Hana / SAP ECC IT general controls (ITGC) for key domains such as access management, change management, computer operations, SDLC (System Development Life Cycle) Experience in reviewing and testing SAP S4 Hana / SAP ECC security & configurations such as debugging, client settings, etc. Experience in performing pre & post implementation reviews in SAP S4 Hana / SAP ECC environment and have been through S4 Hana/ ECC lifecycle & performing migration testing. Knowledge and understanding of the TCode, tables used to extract the data from SAP S4 Hana / SAP ECC with relation to ITGC and ITAC testing. Knowledge and understanding of SAP S4 Hana / SAP ECC user access security architecture (Roles, profiles, Authorisation objects) Experience in testing of firefighter controls in SAP S4 Hana / SAP ECC and GRC. Experience in reviewing and testing the Operating System (OS) and Hana Database (DB) controls in SAP S4 Hana / SAP ECC environment. Experience of working with other SAP applications such as GRC, Fiori, BW, BI, Ariba, Concur, Success Factor, VIM, Vistex. Experience in evaluation and testing of sensitive access and SOD (Segregation of Duties) across key business and IT process in SAP S4 Hana / SAP ECC and GRC environment. Experience in SAP GRC access control (AC) & process control (PC), financial compliance management (FCM). Experience in performing the walkthrough (Test of design) directly with the client, Operating Effectiveness and have knowledge of the financial statement’s assertions. Knowledge and understanding of the auditing methodology. Experience in reviewing and interpretation the ABAP codes with relation to the control testing for ITGC’s and ITAC’s in SAP S4 Hana / SAP ECC environment. Experience in reviewing and testing the key reports ensuring the risks (completeness & accuracy) related to IPE’s (Information Produced by Entity) are addressed. Knowledge and experience of industry specific SAP S4 Hana / SAP ECC modules. Knowledge of SAP S4 Hana / SAP ECC standard functionalities in relation to business and IT controls. Experience in reviewing and testing the key business process configurations (ITAC’s) in SAP S4 Hana / SAP ECC environment. Having strong knowledge of SAP S4 Hana / SAP ECC configurations (e.g., 3-way match, copy controls) is must. Experience in testing of interface controls between multiple systems and middleware controls. Experience in IT audit in the context of a financial audit & related regulations, auditing standards and guidelines. Knowledge and understanding of control frameworks such as COSO, internal control principles and related regulations including SOX and J-SOX. Knowledge and understanding of common IT governance, control, and assurance industry frameworks, including COBIT and ISACA best practices. Knowledge and understanding of third-party attestation standards (particularly SSAE16/18), other reporting and industry specific standards. To qualify for the role, you must have B.E/B.Tech (CS/ IT)/MBA, CA with at least 3 years of experience. SAP S4 Hana / SAP ECC functional modules/ ABAP/ Security Certification (Preferred) CISA certified (Preferred) ISO 27001:2013 certified (Preferred) Any other relevant certification (Preferred) What We Look For A Team of people with commercial acumen, technical experience, and enthusiasm to learn new things in this fast-moving environment. Opportunities to work with EY technology risk practices globally with leading businesses across a range of industries. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career. The freedom and flexibility to handle your role in a way that’s right for you. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Short Description for Internal Candidates At Atmus, employees are viewed as people first, then colleagues. We give you the freedom and flexibility to do what you are good at and make an impact. Work alongside today’s most innovative thinkers and help shape the future with Atmus. We are looking for a talented AP Analyst to join our team specializing in Finance for our CORPORATE ORGANIZATION in Pune MH. Posting Description for Internal Candidates Short Description for Internal Candidates Your expertise in internal controls will be critical in ensuring compliance with regulatory requirements and promoting a culture of ethical conduct within the company. To be successful in this role, you must possess a bachelor’s degree in accounting, Finance, or a related field, along with at least 3 years of experience in ITGC SOX controls testing, internal controls, Sarbanes Oxley (SOX) compliance, risk management, or audit. Certifications such as CA, CPA, CIA are preferred. • College, university, or equivalent degree in Accounting, Finance or related field required. Certified Public Accountant, Certified Management Accountant, Chartered Accountant or similar certification is preferred. • 3+ years IT SOX audit experience with exposure to manufacturing industry. • Public Accounting experience with Sox Audit/Internal Audit function is a plus. Description for Internal Candidates In this role, you will make an impact in the following ways: Maintaining accurate and organized SOX process documentation including Flowchart and process narratives. Working with control owners to assess and optimize control design and operation, evaluating the design and testing operating effectiveness of IT General Controls & Business Process SOX controls. Identifying, reporting and assisting in the remediation of control deficiencies in IT & Business process. Communicate and coordinate with Site/Corporate SOX Leaders; and interact with external auditors (internal auditors if applicable) as needed. Participate in special projects and initiatives related to internal controls and risk management as needed. Perform testing of IT General Controls (ITGCs) including, Access Controls, Change Management, Backup and Restoration, Incident Management, ERP controls testing. Support Year-end Sox compliance activities including IT General Control’s testing, SOD reviews, SOC 1 Controls Mapping, drafting year-end SOX memos for senior management and/or External Auditors. Stay updated on industry regulations and best practices related to internal controls and make recommendations for implementation. Collaborate with external auditors to provide necessary information and support for audits. Support the implementing training programs to educate employees on internal controls, risk management, and ethical conduct. Utilize the SOX compliance tool (e.g. Audit Board) as needed. Responsibilities for Internal Candidates Knowledge, Skills and Competencies: Understand and apply audit procedures and IIA standards, with minimal supervision. Knowledge of US GAAP, SOX compliance rules (sections 302 and 404 in particular), COSO/COBIT framework and applicable PCAOB/SEC developments. Proficient at intermediate/advanced level in Excel and working knowledge of MS Office applications. Basic knowledge of Oracle Cloud application and reporting and Sox Compliance Tool. Collaborates and works effectively with different stakeholders and in team. Ability to have a big picture and adapt creative solutions quickly. Strong research and investigative skills. Understand and comply with business ethics and fraud concepts. Good analytical, interpersonal, oral, and written communication skills. Strong organizational skills and business partnering. Training and mentoring skills. Ability to work independently and in a team environment. Able to use analysis techniques to identify process gaps, trends, correlations, deviation, and measure the efficiency and effectiveness of business processes. Ability to think creatively in new environments to be able to provide suggestions for the audit approach or applicable business solutions. Experience-5-7 yrs Qualifications for Internal Candidates Qualifications Education, Licenses, Certifications: College, university, or equivalent degree in Accounting, Finance or related field required. Certified Public Accountant, Certified Management Accountant, Chartered Accountant or similar certification is preferred. 3+ years IT SOX audit experience with exposure to manufacturing industry. Public Accounting experience with Sox Audit/Internal Audit function is a plus.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Over the past 15 years, Medanta has created an unrivalled impact in delivering world class multi-specialty care for patients in India. We have hospitals in Gurgaon, Lucknow, Patna, Indore and Ranchi. In addition, we have clinics in Defence Colony (South Delhi), Cybercity & Subhash Chowk (Gurgaon), and at the Delhi Airport. Medanta is constantly growing and has also ventured in Retail vertical through Diagnostics (Laboratory Services) and Pharmacies. We also have also launched homecare services. We further plan to scale up existing facilities and expand into a few more geographical areas and also identify new avenues (Academics - Medical College) within the Healthcare eco-system. As we continue to scale and grow into new geographies, explore innovative methods of healthcare delivery, we are looking to hire exceptional talent to help us achieve our vision and grow in the process to achieve their professional aspiration. Roles & Responsibilities Leverage the existing cybersecurity tools and capable to identify open-source tools to discover threat agent actions. Identify potential threats and mitigation strategies to enable a proactive defense mechanism before an actual security incident. Design and implement a security incident response process. Act as the primary control point during significant information security incidents, manage the development of incident response plans and generate detailed reports. Identify and propose the implementation of the key information security initiatives, plans, practices and tools to the management. Proactive support on the approved information security projects, internal/external security audits, internal audits, application security assessment and reviews and compliance. Identify and understand potential and emerging information security threats and vulnerabilities and implement an effective communication channel across the appropriate teams. Detect and respond to cyber security threats and implement remediation controls. Perform Network vulnerability assessment and penetration testing (automated and manual) of infrastructure and hardening reviews of endpoints, networks and servers. Manage security compliance for end points, networks, servers, databases, etc. Proficient in operating cyber security solutions to protect IT Infrastructure and data it hold What we are looking for Bachelor’s degree specializing in Information Security, Computer Science, Information Management Systems, or relevant work experience. Minimum 10 years of experience in Cyber Security. Individual Contributor and capable of working independently. Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, security operations, cloud security architecture, SEIM, operating system security, network access security, end point protection, vulnerability and threat management. An excellent knowledge and deep understanding of the complex network security principles and concepts such as (Anti-malware/Virus/Ransomware, web secure gateways, email protection gateway, http proxy, VLANs, ACL, DMZ, VPN, firewalls, IDS/IPS etc). Hands-on experience with analysing high volumes of logs, network data (e.g., NetFlow, FPC), and other security breach attacks. Practical knowledge of operating systems (such as: Windows, Linux, Hypervisors). Detailed experience with vulnerability scanning solutions. Ability to identify and mitigate network vulnerabilities and an understanding of their remediation. Required to assist with root cause identification for incident management. Should be acquainted with Information Security Industry standards/best practices and relevant regulations (such as: SSAE16, SOC 2, PCI DSS, HIPAA, GLBA, FISMA, NIST, ISO27000, CobiT, ISF, OWASP, SANS). Must have proficient analytical, technical research and detail-oriented skills Work days: 6 days Location: Gurgaon

IT Audit_Delhi NCR_Hybrid Job Title: IT Audit Job Type: Full-Time Location: Delhi NCR Eperience: 2-3 Years Job Description: - Client interface for understanding the SOX IT General Controls as applicable to Application & Infrastructure operations - Conducting assessment of existing processes and align them to COBIT 2018 standard - Conducting TOE and TOD for ITGCs - Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environment - Identify process exceptions and risk with respect to materiality defined by the SOX controller - Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports - Create Process Summaries, Compliance runbooks and RCMs - Define RACI for Control owners, executioners etc. - Work with Senior Management of the organization and business teams in getting assertions - Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined - Provide strategic guidance & consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR - Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation - Conducting regular training for technical teams for SOX control implementation & audits - Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory) - CGEIT, COBiT Experience & COSO ERM execution (preferred) - Excellent understanding & experience in IT applications & infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc. - Excellent understanding of IT Service Management processes. ITIL certified. - Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps - Should have experience in executing end-to-end SOX ITGC audit life cycle - Exposure to other regulatory compliances such as Data Protection Act Candidate should have client facing experience B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: - CISA / CGEIT / CISM / CISSP - ISO 27001 Implementer, Lead Auditor ITIL V3.0

Key Responsibilities Provide strategic thought leadership, architecture expertise (NIST, Zero Trust, Cloud Security Architecture) and build roadmaps to achieve target architecture. Development of Zero Trust based architectural artefacts, including high level, and strategy documents, reviewing current state of security and making recommendations for Zero Trust based initiatives Define/Develop and document the target reference security architecture (including high level capabilities/services) across hybrid IT (Multi-cloud, On-Premises, Industry) as target architecture. Develop and document architecture patterns and blueprints to uplift the coverage of the Security Controls and Capabilities in accordance with the target state architecture. Develop and document Technology Security Strategy and actionable Roadmap Establish and document technical requirements from the business requirements, create enterprise level security architecture and design Architecture assessment and review of solution architecture documentation, high-level and detailed design documentation Architectural Advisory & Review (Assessment SABSA, TOGAF, CoBIT, NIST,ZT) High Level Architecture Design & Technology Solution (Logical & Component Level Architecture) Security Architecture Governance and Management Pattern and Technology Standard Management To qualify for the role, you must have : : Bachelors or Masters Degree in Computer Science, Information Systems, Engineering, a related field, or equivalent experience. Experience 6+ years experience in architecture, design and engineering experience for enterprise security technologies (System & Network Security, Identity & Access Management, Data Security, Cloud Security, Application Security, SIEM & SOAR, Security Automation, Visibility & Analytics) Strong experience in application security and data security 2+ Years on any Cloud Platform (AWS, Azure, Google, others). Good knowledge of professional software engineering practices & best practices for the full software development life cycle, including coding standards, code reviews, source control management, libraries building, build processes, testing, and operations. Deep hands-on experience leading the design, development and deployment of business software at scale. Experience in understanding complex software systems architectures and designs with varied technology stack Experience with service-oriented architectures, private and public clouds and web services security. Experience in or knowledge of Threat Modelling Strong skills in security design principles (such as least privilege access, defense in depth) Good understanding of Infrastructure and Network Security, Data protection, and Incident response. Professional experience and good technical knowledge of application security, system security, network security, authentication/authorization protocols, and cryptography. Knowledge on industry standards such as PCI DSS, ISO 27xxx, SOC, HIPAA, GDPR, and NIST/DoD frameworks. Experience with enterprise risk management methods and techniques to drive successful outcomes in a global enterprise environment. Good understanding of Enterprise Networks, Security and Identity Access Management. Knowledge with agile approaches and Experience in DevOps or DevSecOps, and how they impact risk management and youll also : Hold Or Be Willing To Pursue Related Professional Certifications Such As SC-100, SC-300, AZ-500, Google Professional Cloud Security Engineer, AWS Certified Security Specialty Or We Look For Demonstrated integrity in a professional environment. Ability to work independently. Have a global mindset for working with different cultures and backgrounds. Knowledgeable in business industry standard security incident response process, procedures, and lifecycle. Excellent organizational skills and strong attention to detail. Excellent teaming skills. Excellent social, communication, and writing skills. Excellent customer service skills Working at Deloitte Offers : Standard Deloitte boilerplate (ref:hirist.tech)

Job Description Job Summary We are seeking a seasoned Observability Architect to define and lead our end-to-end observability strategy across highly distributed, cloud-native, and hybrid environments. This role requires a visionary leader with deep hands-on experience in New Relic and a strong working knowledge of other modern observability platforms like Datadog, Prometheus/Grafana, Splunk, OpenTelemetry, and more. You will design scalable, resilient, and intelligent observability solutions that empower engineering, SRE, and DevOps teams to proactively detect issues, optimize performance, and ensure system reliability. This is a senior leadership role with significant influence over platform architecture, monitoring practices, and cultural transformation across global teams. Key Responsibilities Architect and implement full-stack observability platforms, covering metrics, logs, traces, synthetics, real user monitoring (RUM), and business-level telemetry using New Relic and other tools like Datadog, Prometheus, ELK, or AppDynamics. Design and enforce observability standards and instrumentation guidelines for microservices, APIs, front-end applications, and legacy systems across hybrid cloud environments. Experience in OpenTelemetry adoption, ensuring vendor-neutral, portable observability implementations where appropriate. Build multi-tool dashboards, health scorecards, SLOs/SLIs, and integrated alerting systems tailored for engineering, operations, and executive consumption. Collaborate with engineering and DevOps teams to integrate observability into CI/CD pipelines, GitOps, and progressive delivery workflows. Partner with platform, cloud, and security teams to provide end-to-end visibility across AWS, Azure, GCP, and on-prem systems. Lead root cause analysis, system-wide incident reviews, and reliability engineering initiatives to reduce MTTR and improve MTBF. Evaluate, pilot, and implement new observability tools/technologies aligned with enterprise architecture and scalability requirements. Deliver technical mentorship and enablement, evangelizing observability best practices and nurturing a culture of ownership and data-driven decision-making. Drive observability governance and maturity models, ensuring compliance, consistency, and alignment with business SLAs and customer experience goals. Required Qualifications 15+ years of overall IT experience, hands-on with application development, system architecture, operations in complex distributed environments, troubleshooting and integration for applications and other cloud technology with observability tools. 5+ years of hands-on experience with observability tools such as New relic, Datadog, Prometeus, etc. including APM, infrastructure monitoring, logs, synthetics, alerting, and dashboard creation. Proven experience and willingness to work with multiple observability stacks, such as: Datadog, Dynatrace, AppDynamics Prometheus, Grafana, etc. Elasticsearch, Fluentd, Kibana (EFK/ELK) Splunk, OpenTelemetry, Solid knowledge of Kubernetes, service mesh (e.g., Istio), containerization (Docker) and orchestration strategies. Strong experience with DevOps and SRE disciplines, including CI/CD, IaC (Terraform, Ansible), and incident response workflows. Fluency in one or more programming/scripting languages: Java, Python, Go, Node.js, Bash. Hands-on expertise in cloud-native observability services (e.g., CloudWatch, Azure Monitor, GCP Operations Suite). Excellent communication and stakeholder management skills, with the ability to align technical strategies with business goals. Preferred Qualifications Architect level Certifications in New Relic, Datadog, Kubernetes, AWS/Azure/GCP, or SRE/DevOps practices. Experience with enterprise observability rollouts, including organizational change management. Understanding of ITIL, TOGAF, or COBIT frameworks as they relate to monitoring and service management. Familiarity with AI/ML-driven observability, anomaly detection, and predictive alerting. Why Join Us? Lead enterprise-scale observability transformations impacting customer experience, reliability, and operational excellence. Work in a tool-diverse environment, solving complex monitoring challenges across multiple platforms. Collaborate with high-performing teams across development, SRE, platform engineering, and security. Influence strategy, tooling, and architecture decisions at the intersection of engineering, operations, and business. Apply Now

Summary Position Summary Assistant Manager – ITRM Risk Analyst - Deloitte Support Services India Private Limited About Deloitte Global: Deloitte Global is the engine of the Deloitte network. Our professionals reach across disciplines and borders to develop and lead global initiatives. We deliver strategic programs and services that unite our organization. Work You’ll Do: Assist in conducting technology risk assessments to identify and evaluate potential risks organization-wide, in accordance with the Risk Library. Understanding of Enterprise Risk Framework methodologies with the ability to interpret and apply them effectively. Contribute to the development and definition of key risk indicators (KRIs) to provide comprehensive, organization-wide technology risk reports that support effective governance and risk management. Execute or support processes that ensure risk considerations are integrated into the introduction of strategic initiatives and significant program changes. Gather requirements and develop dashboards that accurately represent Deloitte Technology’s risk exposure. Collaborate with Service Area Risk Champions to identify, assess, and manage technology risks within their respective business areas, while actively promoting a strong risk culture. Work closely with the Control Management and Control Testing team to automate and digitize risk metrics, ensuring accurate and timely representation of all technology risk data. Support Deloitte Technology in documenting technology risks within the Deloitte Technology risk register. Challenge and oversee the adequacy of technology risk responses to ensure effective mitigation. Work with the Emerging Risk Lead to support the execution of processes related to emerging technology risks where required. Required Qualifications: Experience in IT risk management, risk compliance, risk operations and assurance, or IT audit roles. Proven experience in risk identification and evaluation, utilizing GRC tools and established risk mitigation guidance. Hands-on experience with IT risk tools (e.g., ServiceNow GRC, Archer, OneTrust, etc.) Familiarity with risk management frameworks such as COBIT, ISO 27001, and NIST. Experience supporting risk assessments, control testing, and other IT risk-related activities. Skilled in preparing process documentation, knowledge articles, and training manuals. Proficient in Microsoft PowerPoint, with experience building presentations and decks for stakeholder engagement. Proficient in preparing reports and creating dashboards using tools such as Power BI, Excel, or Tableau. Excellent analytical and problem-solving abilities, with strong influence and negotiation skills. Strong data analysis skills, with the ability to identify risk trends and enable informed decision-making. Experience delivering metrics and insights for senior-level audiences. Exceptional written and verbal communication skills, with a strong customer service orientation. Education and Experience: Technology-related degree or suitable industry experience. 5+ years of related experience in IT risk management in organizations of a similar scale. Preferred Qualifications: Experience working in a large global organization. Experience working with the ServiceNow GRC module. Work Timings: 12:30 to 9:30 pm IST Location: Hyderabad The team Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives.Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities.We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.Learn more about Deloitte’s impact on the world. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 304787

Join the dynamic and innovative team at Hitachi Cyber as a Sr. Governance, Risk & Compliance Specialist, specialized in PCI-DSS and take your career to new heights. As a global leader in information security solutions, we are at the forefront of protecting organizations from evolving cyber threats. By joining our team, you'll have the opportunity to work alongside industry experts, cutting-edge technologies, and prestigious clients from various sectors. What can be your next challenge? Reporting to the Team Lead Governance, Risk & Compliance, as a key member of the Professional Services team, the Senior Governance, Risk, and Compliance (GRC) Consultant provides strategic guidance and support to both customer organizations and internal projects. Here’s an overview of your main responsibilities: Conduct various information security consulting engagements, including: *Designing and implementing security policies, frameworks, and standards. *Developing information security management system initiatives. *Performing cyber security posture and threat assessments. *Establishing Security Risk Management Frameworks and defining Risk Treatment Plans. *Acting as a Virtual CISO for clients, advising on security improvement strategies. *Assessing internal and external information security risks and incidents. *Documenting control failures and providing remediation guidance to stakeholders. Demonstrate operational knowledge and hands-on experience with industry standards such as ISO 27000, COBIT, NIST, PCI DSS, and GDPR. Engage directly with clients to develop work plans and execute consulting engagements. Conduct workshops, interviews, surveys, and data collection to perform assessments. Deliver security awareness projects and training to clients. Apply abstract concepts to develop customized solutions for customers. Work independently on assignments and develop deliverables according to agreed work plans. Contribute to the organization's knowledge and practices by enhancing services for customers. Participate in professional development activities, including obtaining certifications like CISSP, CEH, and PCI QSA. Assist in pre-sales discussions and project scoping, as well as perform technical reviews of proposals and RFP responses. Conduct peer and quality assurance reviews on client deliverables, ensuring high standards of excellence. Collaborate with a diverse and talented team in a supportive and inclusive environment that fosters continuous learning and growth. With our commitment to ongoing professional development, you'll have access to training programs, certifications, and mentorship opportunities to enhance your skills and advance your career. At Hitachi Cyber, we believe in work-life balance and offer flexible work arrangements. Experience the excitement of being part of a company that values innovation, teamwork, and making a real impact in the world of cybersecurity. We would like to meet you if you have: Strong experience in Information Security, IT Governance, Risk & Compliance consulting, or related services, with a strong technical background and proven track record of leading complex GRC initiatives, projects, and implementations. Strong experience with PCI-DSS. Bachelor’s degree in computer science or information systems, Engineering, or a related discipline. Experience of risk management principles and associated methodologies. Excellent communication in English. Hands on experience and thorough understanding with some of the standards such as: ISO 27000, NIST, SOC2, PCI DSS, ITIL, ITSM, COBIT, COSO, SOX, SOC, GXP, AI Governance, standards preferred. Ability to travel. Come join us and be a vital force in securing the digital future. Apply today and embark on a rewarding journey with Hitachi Cyber. We thank all applicants for their interest. However, only those selected for an interview will be contacted.

hackajob is collaborating with American Express to connect them with exceptional tech professionals for this role. At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, you'll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career. Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express. How will you make an impact in this role? Responsible for contacting clients with overdue accounts to secure the settlement of the account. Also they do preventive work to avoid future over dues with accounts that have a high exposure. The Global Risk & Compliance (GRC) group within American Express is responsible for providing oversight and governance of risks to ensure that the company operates in a safe and sound manner within regulatory expectations. In a world increasingly subject to digitalization and the use of technology, technology risk management has become increasingly significant across organizations, becoming one of the key themes at board meetings. Cyberattacks have become increasingly commonplace and the trend continues to move upward. This individual contributor role is part of the second line technology risk management team within the GRC group, headed by the Chief Risk Officer (CRO) of the company. This is a unique opportunity to work with a team of diverse and talented professionals who are responsible for building the technology risk management program and providing independent risk oversight to the Information Technology (IT), Information Security (IS) and Business Continuity management (BCM) risks. Reporting to the Manager for Cybersecurity, Technology, and Resiliency Risk oversight, this position is responsible for supporting independent assessments and reporting of risks. The risks identified by this team are reported to the Senior Management, Risk Management Committees, Board of Directors, and Regulators. This position will be responsible for effectively collaborating with key stakeholders across lines of business and lines of defense to ensure risks are managed effectively and efficiently in accordance with the Essential Job Functions company policies and applicable regulatory requirements. Assist in identifying and assessing IT and IS risks across applications, infrastructure, and third-party vendors. Support IT and IS risk assessments and recommend mitigation strategies. Monitor IT and IS risk trends and emerging threats to provide proactive recommendations. Assist in the testing and validation of IT and IS controls. Prepare IT and IS risk reports and dashboards for management review. Support internal and external audits related to IT and IS risk. Support the implementation of IT and IS risk management frameworks, policies, standards, and procedures. Maintain IT and IS risk registers and track remediation efforts for identified risks. Support independent, proactive risk management and oversight of information technology, information security and business continuity management risks generated within business processes or that occur due to use of Technology. Support data-driven reviews focused on technology, cyber security, and business continuity management risks. Support development and enhancement of data-driven key risk indicators and key performance indicators that provide real time and meaningful insights into the risk and performance trends. Stay knowledgeable of relevant regulations, guidelines & industry standards. Support the design of independent Information Technology risk oversight program which defines the engagement and integration with various risk management programs, including Risk and Control Self Assessments, Business Continuity Management, New Product Approval, Mergers & Acquisitions etc. Required Qualifications Bachelor’s Degree in related field. 3 + years of experience in IT and IS risk management across any of the three lines of defense. Proven ability to identify risks, analyze issues and derive meaningful insights About Risk Trends. by conducting interviews and analyzing large volumes of data. Excellent analytical skills with high attention to detail and accuracy. Excellent critical thinking and problem-solving skills. Excellent verbal, written and interpersonal communication skills. Willingness to challenge traditional thinking by actively engaging in constructive dialogue. Preferred Educational background: Computer Science or Information Systems. Experience in risk management across cyber security, information technology, third party, business continuity management. Working knowledge of one or more of the data mining tools/technologies (e.g., Microsoft Excel: Pivot Tables SQL, SAS, Python, R). Industry certifications (e.g., CISSP, CISM, CISA, CRISC, ITIL, CBCM, CBCP, CBCI). Understanding of risk assessment methodologies, frameworks, and industry standards (e.g., COSO, COBIT, ISO 27001, ISO/IEC 20000-1, ISO 22301, FAIR or NIST RMF). Knowledge of relevant policies & regulations (e.g., OCC Heightened Standards, FFIEC IT booklets). Experience with Governance, Risk and Compliance tools (e.g., Archer) Compliance Language We back you with benefits that support your holistic well-being so you can be and deliver your best. This means caring for you and your loved ones' physical, financial, and mental health, as well as providing the flexibility you need to thrive personally and professionally: Competitive base salaries Bonus incentives Support for financial-well-being and retirement Comprehensive medical, dental, vision, life insurance, and disability benefits (depending on location) Flexible working model with hybrid, onsite or virtual arrangements depending on role and business need Generous paid parental leave policies (depending on your location) Free access to global on-site wellness centers staffed with nurses and doctors (depending on location) Free and confidential counseling support through our Healthy Minds program Career development and training opportunities American Express is an equal opportunity employer and makes employment decisions without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran status, disability status, age, or any other status protected by law. Offer of employment with American Express is conditioned upon the successful completion of a background verification check, subject to applicable laws and regulations.

Role & responsibilities Professional responsibilities for this manager position include but are not limited to: Applying internal control principles and technical knowledge, including Application Controls and IT General Controls; Developing and/or supervising the execution of detailed audit work plans for the IT audit component of the IA team through resource allocation, stakeholder coordination and quality review; Managing the identification of key risks and controls, including evaluation of control design; Evaluation of operational effectiveness of IT System Controls, utilizing appropriate testing techniques and professional skepticism; Providing regular status reports to IA management and internal clients/stakeholders, when necessary, to keep relevant parties informed of progress and potential issues; Assessing audit results, translating findings into level of risk, to produce meaningful insights and recommendations; Communicating risk findings, verbally and written, to clients in a pragmatic and helpful manner; Driving follow up and remediation of reported issues in a timely manner; Building meaningful relationships with clients through client engagements and networking; Managing and delivering against deadlines while working on multiple projects; Participating in development and delivery of training curriculum; and Coaching team members and reviewing their work. Minimum years of experience: 5+ year(s) of external/ internal audit experience (big four experience is preferred) Minimum Degree Required: Bachelors or master’s degree in accounting, Management Information Systems, Computer Science, Engineering or business related field Preferred Certifications: CISA, CISM, CISSP, CA and/or CIA Preferred Knowledge/ skills: Demonstrates extensive knowledge and/or proven record of success in the following areas: Security and controls for various on-premise and cloud-based technologies; Control standards (COSO, COBIT), control testing strategies; Public accounting practices and internal audit processes i.e., technology and tools for planning, testing and reporting; IT general controls concepts in the areas of system development, change management, computer operations and access to programs; Identifying and assessing business process controls and linkage to IT systems; and, IT security fundamentals across multiple domains including security management, security architecture, access control, application development, operations security, physical security, cryptography, telecommunications and networking, business continuity planning, investigations and ethics. Additionally, candidates should have excellent communication (written and verbal) skills and should be able to work with global teams independently with minimal supervision. Flexible work hours are required to align with US and UK hours as agreed upon. SHift-2pm-11pm

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) Key responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.