615 Cobit Jobs - Page 25

Your Role in Shaping Trust & Resilience What You’ll Drive Consultant/ Senior Consultant(s) - (2–5 Years Experience) Key Responsibilities: Execute end-to-end IT audits and assurance engagements across IT General Controls (ITGC), Application Controls, Cloud & Cybersecurity reviews, cloud assessments, and digital control reviews Support assurance projects across frameworks like NIST, ISO 27001, SOC 1, and SOC 2 through control evaluation and evidence analysis. Perform walkthroughs, control testing, and documentation of IT and business process controls Contribute to audit documentation, risk assessments, and walkthroughs with clients. Learn and apply industry best practices across cloud, cybersecurity, and governance domains Role: Deputy Manager (5–7 Years) Key Responsibilities: Execute and manage medium to large-scale SOC Attestation and digital risk assurance engagements with oversight. Conduct risk assessments and design controls aligned with regulations (SSAE 18, ISAE3402, HIPAA, ISO 27001). Evaluate and implement controls across cloud platforms, DevSecOps environments, SaaS, and APIs. Support on cybersecurity assessments, cloud risk and third-party risk engagements. Perform compliance reviews and control testing aligned to regulatory frameworks. Perform maturity assessments, prepare remediation plans, and support clients through audit readiness and attestations. Lead client workshops, prepare deliverables, and coordinate with stakeholders for effective engagement delivery. Collaborate on proposal development and client solutioning efforts. What Were Looking For Regardless of your level, we value: Experience in digital risk, IT audit, cybersecurity, and compliance assurance. Passion for technology, risk, and assurance with a problem-solving mindset Strong understanding of IT control regulatory frameworks and standards (COBIT, NIST, ISO, ITIL, HIPPA etc.) Proficiency in control testing, risk evaluation, and reporting Excellent communication skills—able to bridge technical insights with business need. Certifications like CISA, ISO 27001 LA, CISSP, or cloud security certifications (a plus) Comfort with ambiguity and ability to thrive in fast-paced, client-facing environments.

About Us Booking Holdings India is a Center of Excellence based in Bangalore, India and was created to support the increasing business demands of the Booking Holdings Brands. The Center of Excellence provides access to specialized and highly skilled talent, leading industry best practices, and collaboration opportunities across all of our Brands. As part of our Booking Holdings India team, you will have the opportunity to be a part of the worlds leading provider of online travel, with a mission of making it easier for everyone to experience the world through six-primary consumer facing brands: Booking.com, Priceline, Agoda, KAYAK, OpenTable and Rentalcars.com. About the Role We are now looking for an IT SOx Analyst, Risk & Control (R&C) in our CoE to support R&C with SOx testing of IT Controls. You will be directly working on testing internal controls to support SOX302 attestation. The R&C IT SOx Analyst is also a subject matter expert, responsible for advising the Risk team on controls design, deficiencies evaluation and improvements across multiple processes from SOx testing standpoint. A successful risk professional requires a dynamic personality and ability to adapt in a rapidly changing environment. B. responsible: key areas of responsibility will include, but are not limited to: - Execute and lead testing end to end for the assigned areas: - Design and execute the day-to-day testing activities of IT controls, with a focus on regulatory/compliance (SOx) related risks - Collect, analyze, and interpret information to assess and conclude on each assigned testing area with clear concise documentation - Identify gaps in design and execution, and communicate issues and recommendations to R&C team and control owners - Develop and maintain comprehensive documentation including process walkthrough documentation, control testing documentation and any others required - Collaborate and partner with R&C by providing guidance and ensuring that critical SOx controls are adequately designed and documented, in order to strengthen the control environment, mitigate the company risks and support the business in achieving objectives - Collaborate & participate within R&C to continuously improve the R&Cs capabilities and governance from SOx testing standpoint B. skilled: - The ideal candidate will have a strong background in IT risk management, IT frameworks, governance and controls, Segregation of Duties, and ERP audits. - 4+ years of experience gained within IT compliance, internal controls, internal/external audit, including experience working with teams in an international environment o Strong understanding of design assessment and operating effectiveness assessment of IT controls, and interface controls. o Experience in technology-based product development / DevOps processes, cloud security and other modern day technologies o Understanding of different architecture (SOA and micro services), and ability to review source codes is an added advantage. - Understanding of and experience with risk management relevant fields and frameworks, including SOx, COSO, and COBIT - Strong working knowledge of SOx - Ability to multitask and successfully manage multiple priorities and projects - Strong work ethic, enthusiastic, self-starting, adaptable and enjoys change in a super engaged team - Excellent communication skills to interact with audit teams, management and other stakeholders effectively - Ability to work effectively in a virtual environment - Fully comfortable working in English, both written and spoken - Professional certification, such as CISA/CRISC/CIA (or similar), would be an advantage - Relevant bachelors degree required - Experience working with a Big4 is preferred

Sr. Enterprise Business Analyst responsible for process mapping, data flow analysis, and system integration documentation to support IT portfolio management. Requires 5+ years’ experience and expertise in enterprise modeling tools.

IT Internal Audit Manager Organization:Corporate Functions/Finance Location: Bangalore, India Level:7 - Manager People in the Corporate Function career track contribute to the running of Accenture as a high- performance business through specialization within a specific functional area and grow into internally focused roles by deepening their skills and/or developing new skills within an internal functional area. Finance professionals prepare and interpret financial plans and reports, ensuring accuracy and compliance with applicable financial rules and regulations, including internal financial controls, to mitigate risk for the company. Finance professionals may also shape and execute client deals to maximize the use of Accenture's capital and resources, manage cash and/or liaise with the investor community. Job Description: The Internal Auditor performs audit projects in accordance with Accenture's audit methodology and The Institute of Internal Auditors' (IIA) International Standards for the Professional Practice of Internal Auditing. The Internal Auditor-Information Technology focuses on audit projects that involve cyber/data security, computer operations, and IT compliance. The Internal Auditor effectively executes a wide range of Internal Audit activities in a high quality and timely manner. In their role, they perform activities that include planning and developing work programs, identifying recommendations for continuous improvement in global processes and controls, communicating results, and following up on issues reported. They are also responsible for audit strategy development, organization risk assessment/planning, and completion of special requests for Accenture Management and the Audit Committee. Key Responsibilities Depending on the role/organization the Internal Auditor-Information Technology belongs to and their career level, some or all of the following key responsibilities will apply: Participates in the detailed execution and communication of the risk-based work plan, including Accenture Management and Audit Committee special project requests. Verifies the adequacy of information technology (IT) operating procedures of the company through a systemic program of audits. Assists in development of the Company's annual audit plan and schedule. Manages audit work, including audit work plan, work papers, findings, and associated reports. Prepares and oversees the preparation of audit reports and work papers to ensure adequate documentation exists to support the completed audit and conclusions. Conducts IT integrated audits with operational, compliance, financial, and investigative audit teams, as assigned. Manages cyber/data security, IT operations, IT service delivery, and compliance audits, as assigned on a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things Identifies, recommends, and reports improvement opportunities for global processes and controls. As appropriate, identifies opportunities for continuous improvement of technology, security, financial, and other processes and evaluation of organization-driven risk. Manages auditee relationship, including facilitating meetings, discussions of findings, and presenting draft and final reports in a professional manner. Prepares well-written and timely audit reports and high quality presentations for leadership and board level reporting. Develops audit skills and establishes/maintains relationships related to the risk areas assigned. Contributes to appropriate skilling of the IA team (e.g., recruiting, training and development, coaching/mentoring, providing career growth opportunities). Keeps abreast of company policies and procedures, current developments in technology and auditing professions, and changes in local, state, and federal laws. Qualification Basic Qualifications: Bachelors Degree (Undergraduate degree in Computer Science/ Electronics/ IT Engineering, Information Systems, Business Administration) Certifications on Auditing and Information Security Domains (i.e. CIA, CISA, CISSP, CCSK) Cloud Security Azure Security (AZ500), AWS Certified Solutions Architect Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Minimum of 12 years experience in information technology auditing, combined audit/IT audit, or relevant information security or information technology roles. Preferred Qualifications: Big 4 experience Experience working in a global Internal Audit function Cyber security experience Strong working knowledge of operational, compliance and IT auditing techniques Broad IT knowledge in infrastructure technologies (networking, data centers, servers, etc.), application development and support, and emerging technologies. Experience with Windows and UNIX operating systems and Microsoft Office 365 Sarbanes-Oxley project experience, familiarity with COSO/COBIT framework Professional Skills: Excellent verbal and written communication skills; interpersonal and presentation skills Proven management and organizational skills Ability to train, develop, and motivate team members Demonstrated leadership in professional setting; either military or civilian Demonstrated teamwork and collaboration in a professional setting; either military or civilian Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

We are looking for a visionary Development Manager to lead the definition and continuous evolution of the KTLO (Keep the Lights On) Framework. This role involves building the foundational architecture, governance models, and tooling required to support seamless operations, risk mitigation, and operational efficiency across enterprise banking systems. You will define and evolve KTLO governance frameworks and operating models to standardize production support across all business units. You will establish best practices in service management (ITIL), observability, automation, and performance tracking. You will implement cross-functional workflows, RACI models, and runbooks for consistent operational response. You will drive tooling strategies for monitoring, incident management, logging, and knowledge base automation. You will align SRE and DevOps practices into KTLO operations for better scalability and resilience. You will Partner with assurance, DevOps, and platform teams to ensure traceability, auditability, and SLA adherence. You will lead framework reviews and operational readiness assessments across major technology initiatives. You will drive platform-wide adoption of proactive issue detection, self-healing mechanisms, and AI/ML-based alerting. You will Champion a culture of continuous improvement and operational maturity using KPIs and service metrics. SKILLS You should have 14+ years of experience in IT service delivery, platform operations, or reliability engineering, with 5+ years in leadership roles. You should have strong expertise in service management frameworks (ITIL, COBIT), DevOps, and reliability engineering. You should have proven experience designing and implementing KTLO or enterprise support governance frameworks. You should have a deep understanding of operational toolchains like ServiceNow, AppDynamics, Splunk, Jira, and automated remediation tools. You should have an experience with incident management, problem analysis, postmortems, and RCA processes. You should have a knowledge of enterprise infrastructure, cloud platforms (AWS/Azure/GCP), and CI/CD pipelines. You should have an exceptional cross-functional leadership, communication, and documentation skills. to being part of an exciting culture and product evolving within the financial industry. Collaborate effectively and proactively with teams within or outside Temenos. Challenge yourself to be ambitious and achieve your individual as well as the company targets SOME OF OUR BENEFITS include: Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second month Civil Partnership: 1 week of paid leave if youre getting married. This covers marriages and civil partnerships, including same sex/civil partnership Family care: 4 weeks of paid family care leave Recharge days: 4 days per year to use when you need to physically or mentally needed to recharge Study leave: 2 weeks of paid leave each year for study or personal development

Overview: Roles and Responsibilities: The SOX ITGC Auditor is responsible for ensuring that the SOX processes support compliance of the internal controls for financial reporting. The SOX ITGC Auditor will perform assurance procedures to assess the design and effectiveness of ITGC, perform quality assurance over existing control, and help prepare reporting for business leadership. Education and Experience Bachelors degree or higher in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience. 4+ years large public company internal and external auditing, with emphasis on IT auditing in large public companies with complex IT hybrid environments and/or large accounting firms with experience auditing a complex IT client base. Strong IT audit program and practices experience. Big 4 IT Audit experience required. Strong understanding of the general computer control areas and IT governance frameworks (e.g., COBIT), Sarbanes Oxley, and COSO framework. Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database). Ability to work independently Strong analytical, interpersonal, and leadership skills with orientation toward process improvement Responsibilities: Duties and Responsibilities: Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines. Requirements: Duties and Responsibilities: Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines.

Client interface for understanding the SOX IT General Controls as applicable to Application &Infrastructure operations Conducting assessment of existing processes and align them to COBiT 2018 standard. Conducting TOE and TOD for ITGCs Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environment. Identify process exceptions and risk with respect to materiality defined by the SOX controller. Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports Create Process Summaries, Compliance runbooks and RCMs. Define RACI for Control owners, executioners etc. Work with Senior Management of the organization and business teams in getting assertions. Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined. Provide strategic guidance& consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation Conducting regular training for technical teams for SOX control implementation & audits Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory) CGEIT, COBiT Experience & COSO ERM execution (preferred) Excellent understand & experience in IT applications &infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc. Excellent understanding of IT Service Management processes. ITIL certified. Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps Should have experience in executing end-to-end SOX ITGC audit life cycle Exposure to other regulatory compliances such as Data Protection Act Candidate should have client facing experience B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: CISA/CGEIT/CISM/CISSP ISO 27001 Implementer, Lead Auditor ITIL V3.0

Job Description KPMG in India, a professional services firm, is the Indian member firm affiliated with KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets, and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, and Vadodara. KPMG in India offers services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused, and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Projects in IT Advisory focus on the assessment and/or evaluation of IT systems and the mitigation of IT-related business risks. They are either IS audit, SOX reviews, Internal audit engagements, IT infrastructure review and/or risk advisory including but not limited to IT audit supports in nature. Responsibilities Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including - SOX, Internal Audits, External Audits Conducting controls assessment in manual/ automated environment Prepare/Review of Policies, Procedures, SOPs Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Qualifications IT Audit + SAP experience with knowledge of IT governance practices Prior IT Audit knowledge in areas of ITGC, ITAC (application/automated controls) SOX 404, SOC-1 and SOC-2 Audits Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security measures and auditing practices within various applications, operating systems, and databases. Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Preferred Certifications – CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Equal Employment Opportunity Information KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cyber Risk and Compliance Consultant - Senior The opportunity This is a role where no two days are the same – so you’ll find yourself taking on plenty of new responsibilities as you go. You’ll work alongside clients and colleagues, balancing your time between developing security strategies, designing security and privacy controls, advising client stakeholders, facilitating workshops and supporting business development. Your Key Responsibilities As a Cyber GRC Professional in our Cyber Security practice, you will be occupied in the following domains: a) Strategy, b) Risk, c) Compliance. As part of our team strategy you will be expected to take on responsibility and initiative early, providing you with real experience working with a wide range of major clients in EY. You will be taking responsibility for the quality of your work, while continually developing your personal and professional skills through formal training, hands-on experience and coaching. Skills And Attributes For Success To qualify for the role, you must have: Degree, or equivalent, in Information Security, Cyber Security, Information Technology, Informatics, or other similar and technical areasEvidence of self-motivation to continuously develop in the areas of cybersecurityGood organizational and time management skills with the ability to prioritize and complete multiple complex projects under tight deadlinesAbility to translate security issues into business risksExcellent interpersonal skills and ability to work effectively within a team at all hierarchical levelsWillingness to research client inquiries and emerging issues, including regulations, industry practices, and new technologiesExperience, knowledge and strong interest in information and cyber security domains are essential for this roleExperience on Cyber Governance, Risk & Compliance (GRC), Cyber risk assessments & management methodologiesExperience on assessing, designing and implementing security strategies, governance frameworks over processes and controls, allowing organisations to optimally manage cyber securityExperience on design and implementation of security policies, procedures, standards and controls in line with regulation and/or current standards, such as ISO27001, NIST, SANS etc.Experience in data classification exercises and controls / mechanisms enforcementWorking knowledge of control frameworks such as ISO 27001/27002, COBIT, NIST, ITIL, etc. Ability to conduct Security regulatory and compliance assessment independently Hands on with assessment report preparation and presenting to senior technical and business stakeholdersHand on knowledge of excel, PowerPoint and wordArticulative and confident in presentation to senior stakeholdersAbility to lead workstreams or dedicated portions of projectsCyber maturity assessments, recommendations, roadmap and strategy creationknowledge of use of and risks related to modern and emerging technologies Cybersecurity auditAbility to plan and deliver cyber security training and awareness Ideally, you’ll also have: Security-related qualifications / certifications such as CISSP, SSCP, CISM, ISO27001 lead implementer or auditor, CompTIA Security+, are desirableExperience in Third Party Risk Management (TPRM) and / or vendor risk assessment engagementsExperience in design and implementation of Information Security Management Systems (i.e. security policies, procedures and guidelines) according to leading International StandardsSecurity-related vendor / technology certifications are desirable EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

POSITION SUMMARY: The IT GRC Lead is responsible for establishing and maintaining IT governance frameworks, managing risk and compliance activities, and ensuring alignment with business objectives and regulatory requirements. This role supports audit readiness, drives process improvements, and collaborates across departments to promote a strong GRC culture. It also involves administering GRC tools like RSA Archer and MetricStream and providing training to ensure organizational adherence to best practices. KEY RESPONSIBILITIES:Establish and enforce IT governance frameworks, policies, and procedures that are aligned with industry best practices.Ensure IT governance strategies are in line with the broader business objectives and IT strategy to support organizational growth and operational efficiency.Regularly review and update IT policies and standards to ensure alignment with organizational goals and regulatory requirements.Lead efforts to continuously improve IT governance processes and enhance efficiency across the organization.Conduct comprehensive risk assessments and collaborate with relevant teams to implement effective risk mitigation strategies.Assist in the preparation for and response to internal and external audits, ensuring compliance with relevant standards and regulations.Perform regular audits to assess compliance with internal policies, industry standards, and external regulations.Prepare detailed reports on governance, risk management, compliance status, and audit outcomes for senior management and stakeholders.Maintain comprehensive documentation of IT governance processes, risk assessments, and compliance activities for future reference and audits.Collaborate with IT, legal, InfoSec and other business units to foster a robust culture of governance, risk management, and compliance across the organization.Offer training and guidance to staff on GRC policies, processes, and tools to ensure awareness and adherence to best practices.Administer and optimize GRC tools (RSA Archer, MetricStream) to streamline risk management and compliance activities, improving efficiency and accuracy. DESIRED CANDIDATE PROFILE:10 to 14 years of Experience (Min 6 years in IT Governance)Strong knowledge of IT governance, risk management, and regulatory compliance (BFSI focus)Experience with IT frameworks (COBIT, ITIL, ISO 27001/27002)Skilled in risk assessments, audits, and mitigation strategiesProject management and stakeholder engagement experienceExcellent communication, documentation, and presentation skillsFamiliar with GRC tools and regulatory codes in governance

POSITION DETAILSPosition SummaryAssist CIRCOR in identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for IT SOX related Controls.Assist in the selection and tailoring of approaches, methods, and tools to perform IT AuditsPrincipal ActivitiesManage ITGC and ITACs audit engagements, including planning, scoping, and execution phases, ensuring compliance with audit methodology and professional standards. Conduct risk assessments and design audit programs tailored to clients' ITGC and ITACs control environments.Perform detailed testing of ITGC and ITACs controls, identifying control gaps, weaknesses, and areas for improvement.Evaluate IT systems and processes to identify control deficiencies and recommend practical solutions to mitigate risks.Collaborate with cross-functional teams, including internal audit, IT security, and business stakeholders, to assess control effectiveness and facilitate remediation activities.Have relevant experience in IT audit, ITGC and ITACs controls, preferably in a consulting or professional services firm.Strong knowledge of ITGC and ITACs control frameworks (e.g., COSO, COBIT), IT risk management, and regulatory requirements (e.g., SOX).Experience in performing ITGC and ITACs control assessments, including design effectiveness and operating effectiveness testing.Familiarity with IT systems, applications, and infrastructure, with the ability to understand complex IT environments across different industries.Travel up to 15% may be required (or as needed)RequirementsCANDIDATE REQUIREMENTSKnowledge Skills & AbilitiesCandidate will be able to leverage past experiences and knowledge to provide advice on optimal solutions for implementation of effective IT controls to strengthen our processes, reduce risk and sustain compliance requirements. Maintains effective communication with team members and functional leadership in all activities required to plan, perform, monitor, and support the global IT compliance and SOX work.Shows effective project management skills, the ability to be a self-starter, and able to effectively manage workload.Familiarity with PCAOB requirements and evolving points of emphasis preferred.Experience with evaluating IT control deficiencies and the development of action plans to remediate control deficiencies, including guiding IT organizations on creating new controls to address design gaps.Understands business processes, particularly information technology related areas, and related master data.Has a working knowledge of SAP, preferably at a super user level.Has knowledge and experience with business processes to understand the business operations and can propose improvements or new alternatives that will assist all locations (US and International) in their efforts to implement the global business process in a controlled manner.Can work well within a complex team environment comprised of a virtual team members located across multiple regions.Ability to effectively partner with business functions as well as a 3rd party service provider team.Understands the value of process-oriented approaches as well as ability to establish and monitor key metrics.Experience in projects accountable for leading change is a definite plus.Preferably has experience with a GRC tool.Knowledge of Information Security Risk is preferred.Big 4 or equivalent experience preferred.Education & ExperienceA bachelor’s degree in a subject related to one of the following functions: Information Technology, Management, Information Security, Finance, or related discipline. CISA, CISM, CRISC, CISSP or other relevant certification preferred7+ years’ experience with IT controls and SOX complianceExperience with managing a team.Advanced knowledge of IT controls and SOX regulationsExperience with testing and reviewing the testing of IT SOX controls. CIRCOR is an EEO Employer of Females / Minorities / Veterans / Individuals with Disabilities

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Analyst , you have a pivotal operational role to provide and deprovision system access. You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What you’ll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access? Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. ?? Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations? Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support? Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices. Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM? What you’ll bring 2 years of experience in Identity or Access Management?? Tireless adherence and attention to appropriate IT general computing controls? Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks? Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube ? Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. Are you a forward-thinking, high-energy, dynamic driver who wants to get directly involved in the daily business with our international teams, develop your own abilities, and manage responsibility? Join us as a Process Expert- Governance & Enablement Key Responsibilities: SPOC respectively Bridge Head to central IT, CYS and LC for all general Service-related topics. Definition of rules and regulations leading to a standard conform operation of GBS offered IT Services Supporting GBS business Lines for contract and technical related topics around Carve Outs/Ins Ensuring wide-spread know-how about existing IT-portfolio Support & monitoring GBS BLs in implementing Governance defined IT rules & regulations Offer IT related trainings for GBS BLs focusing relevant rules and regulations Management & support of ISO topics for DS services & Products Qualification: Bachelor’s degree in information technology or a related field. Knowledge of ITIL, COBIT or other IT governance standards and requirements. Strong organizational and project management skills. Proven but basic knowledge in CYS topics, mainly focusing on IT 5-7 years of experience in Information technology with at least 3 years in IT governance or related area. Good communication and networking skills in an intercultural environment and across all management levels Knowledge of ISO 9001, 27001 principles, DevOps, and Project Management methodologies will be an advantage Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers at: www.siemens.com/careers

Location: Gurugram, Haryana Time type: Full time Job level: Supervisor Job type: Regular Category: Transaction Advisory ID: JR112904 About us We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, inclusive culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM. About the Company: The RSM USI supports RSM U.S. risk consulting, transaction advisory, technical accounting, financial consulting, technology and management consulting, tax and assurance engagement teams by providing access to highly skilled professionals for repeatable business processes over an extended business day. RSM’s vision is to be the first-choice advisor to middle market leaders globally. You will work directly with clients, key decision makers and business owners across various industries and geographies to deliver a top-quality client experience. RSM is a diverse and inclusive place where you will work as part of a team while being valued as an individual, mentored as a future leader, and recognized for your accomplishments. Job Description/What You Will Do: Analyze technology (IT and Cybersecurity) implications for active M&A transactions. Review client investment thesis, company profile and information concerning the business technology environment including but not limited to business applications, IT infrastructure, cybersecurity controls, and privacy related regulatory compliance requirements. Research niche technologies, applicable regulatory obligations and latest technology trends to guide analysis. Participate in discussions with company executives to understand business processes, approach to leveraging technology and strategy to build resiliency against cybersecurity threats. Analyze commercial off the shelf and/or custom developed applications used by a business for sufficiency (e.g., license counts), scalability (e.g., version, implementation model), and maintainability (e.g., support model). Analyze a company’s IT infrastructure to determine adequacy of hosting model, hardware inventory, network architecture and business continuity procedures. Analyse technology vendor contracts and compute IT spend through the review of contracts and other financial documents provided by the Company. Analyze the company’s cybersecurity maturity through review of cybersecurity governance program/procedures, exposure to regulatory compliance requirements and preventative technical controls. Develop workbooks and reports to capture diligence observations/analysis. Manage and develop members of the RSM USI team. Who We Are Looking For: Ability to conceptualize and summarize key findings in a clear and meaningful way with expertise in drafting critical sections of the technology DD report. Expertise and working knowledge of infrastructure management, network architecture, virtualization, application and data hosting architectures (data center, on-premise, public cloud), and business continuity/disaster recovery (BCDR) best practices. Knowledge of and experience with key IT frameworks (e.g. CMMI, ITIL, ISO 27000, SSAE-18 SOC reporting, NIST Cybersecurity Framework). Knowledge of and experience with key cybersecurity frameworks (e.g. COBIT, ISO 27001, NIST). Exposure to various sectors such as financial services, healthcare, life sciences, power and utility, energy, retail and hospitality, business services and technology. An experience across a wide spectrum of IT and security pillars including IT Strategy, Infrastructure, Business Applications, Cybersecurity, Spend Analysis, etc. Highly proficient with Microsoft office Suite (e.g., PowerPoint, Excel, Word, Visio) Strong skills in critical thinking, problem solving, and process improvement. Excellent interpersonal and communication skills in order to interact effectively with internal team members and external clients of the firm. Demonstrates willingness to invest time in cross-time zone communication with U.S. based teams. Ability to be a self-starter and drive successful client delivery. Able to manage deadlines and take ownership of getting the job done in a timely manner. Evaluated as an exceptional performer in current position. Development Opportunity/What’s in It for You: Opportunity to interface with US based private equity and executive level leadership. Develop expertise in technology related M&A disciplines. Grow a strategic mindset and develop executive level perspective on investment towards operational technology. Experience M&A across a variety of industries and option to develop specific industry expertise. Gain an understanding of the approach towards post-acquisition value creation, integration, separation and risk remediation. Minimum Qualifications: Academic Qualification: B.Tech. and MBA from leading technology/business schools. Relevant experience of 4-7 years at a Big 4 or equivalent Advisory Services practice. Knowledge of Microsoft powered AI products such as Microsoft CoPilot or any other GenAI tools is preferred. Preferred Qualifications: Deal experience with onshore team including data room management, document request list preparation, management meeting preparation, workbook analysis, quality of earnings, due diligence reports, client calls and engagement team calls. Experience with post-acquisition/carve-out integration and separation related engagements. Preferred industry experience in one or more of the following: manufacturing, distribution, consumer products, business services, healthcare, financial services, business services, or technology. Knowledge of US based regulatory and compliance frameworks such as FFIEC, NERC CIP, PCI DSS, HIPAA, GLBA, and HITECH is a plus. ERP or supply chain application implementation experience; functional expertise in IT and supporting front/back-office operations preferred IT and cyber related certifications (CISSP, CISM, HITECH, PCI DSS QSA, CEH, Azure, AWS) At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmus.com/careers/india.html. RSM does not tolerate discrimination and/or harassment based on race; colour; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender (including gender identity and/or gender expression); sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the Indian Armed Forces; Indian Armed Forces Veterans, and Indian Armed Forces Personnel status; pre-disposing genetic characteristics or any other characteristic protected under applicable provincial employment legislation. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please send us an email at careers@rsmus.com.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. JD 2 – Risk Consulting - Protect Tech – Senior (IT audit – General skills) No. of positions (India): 4 Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc. Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc. IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc. Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less