615 Cobit Jobs - Page 7

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Technology Career Framework - Role Details Role Rank:Manager Career Framework Role Description Evaluates business models, processes and operations to develop a good understanding of business needs and requirements. Analyses and evaluates business requirements and translates these into technical requirements and specifications, providing insights on system and technical components to incorporate into the technical design. Interacts with business stakeholders to gather, understand, document, and analyse business requirements. Analyses reports and assessments to provide insights on whether a solution/technology being implemented is meeting business requirements. Responsibilities Reviews materials and supports in meetings and workshops with business stakeholders to understand and gather business / functional requirements, undertaking client assessments and building relationships with business stakeholder. Builds relationships and collaborates with the wider team to understand business requirements and translates these into complex technical requirements. Produces technical specifications to guide system architectural design and development and conducts quality assurance tasks to ensure completeness of requirements, peer reviewing the work of more junior members of the team. Monitors and reports on potential risks/opportunities of emerging technologies, and forms recommendations for system and technical components based on understanding of business requirements, reviewing and supporting with process modelling and improvement. Contributes to the design and review of test cases to ensure tests adequately meet the requirements and coordinates with infrastructure and operations teams to resolve system issues, contributing to moderately complex aspects of a project. Provides insights on whether solutions and technologies being implemented are meeting business requirements. Contributes to business case development and completes RFP responses, exploring and experimenting with new and existing data to tackle defined business problems . Technical Skills & Knowledge Proven experience gathering and interpreting business requirements. Proven experience developing technical requirements and specifications, including knowledge of software engineering methodologies, reporting tools, modelling and testing. Proven understanding of Lean Six Sigma and Business Process Modelling and Notation. Knowledge on application building using Python would be an added advantage. Experience Sound relevant experience in either an internal or external business analysis role and/or software / technical analysis role or similar, evidenced by adding business value through identifying, analysing and articulating problems and solutions . Developed technical knowledge and experience in delivering IT solutions, providing technical advice and understanding user requirements. Some stakeholder management experience. Typical Education Business Administration Business Management Computer Science Data Science Engineering IT Statistics Mathematics Typical Certifications Similar Titles in the Market Oracle Functional Consultant Oracle GRC Consultant Oracle Risk Management Consultant Business Analyst – Oracle ERP Senior Business Analyst - Oracle ERP Leadership Capabilities LEAD: Gold Standard Definitions Available Technical Learning Business Analysis Skills And Capabilities Preferably CA/MBA/B.E/B.Tech with 7 to 11 years of implementation and advisory experience on Oracle Cloud ERP/EBS security and controls. Ability to drive risk and control programs for Oracle EBS/ERP Cloud, with a focus on the following: Segregation of duty concerns in an ERP environment along with an ability to design SoD (Segregation of Duties) risk libraries, and preparation of remediation roadmaps. System role-design, build security and troubleshoot security defects. Design risk control matrices by conducting workshops with business process owners. Review Oracle ERP IT Application Controls (ITAC) for test of design and test of effectiveness. Identify potential opportunities to automate current ITDM/manual controls leveraging Oracle EBS/ERP Cloud. Deep understanding of regulatory frameworks like COSO, COBIT. Knowledge and audit experience across regulations like SOX, GDPR, CCPA. Functional knowledge on Oracle EBS/ERP Cloud Financials, Procurement, Supply chain management, Projects and HRMS is a pre-requisite. Ability to simplify data and explain trends through Excel spreadsheets, dashboards, power-point presentations is highly desirable. Knowledge of Oracle GRC (Governance, Risk & Compliance) & Oracle Risk Management Cloud (RMC) is highly desirable. Working knowledge on Peoplesoft, NetSuite, MS Dynamics and Workday would be an added advantage. Willing to learn and work on different ERPs and CRM solutions. Technologies and Tools Oracle Fusion Cloud Financials, SCM modules, Projects and HCM. Oracle EBS Financials, SCM modules, Projects and HRMS. SQL /PLSQL, Python. SpotFire/ PowerBI. PeopleSoft, NetSuite, MS Dynamics and Workday. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At PwC, our people in risk and compliance focus on maintaining regulatory compliance and managing risks for clients, providing advice, and solutions. They help organisations navigate complex regulatory landscapes and enhance their internal controls to mitigate risks effectively. As a risk management generalist at PwC, you will provide advisory and practical support to teams across a wide range of specialist risk and compliance areas. Focused on relationships, you are building meaningful client connections, and learning how to manage and inspire others. Navigating increasingly complex situations, you are growing your personal brand, deepening technical expertise and awareness of your strengths. You are expected to anticipate the needs of your teams and clients, and to deliver quality. Embracing increased ambiguity, you are comfortable when the path forward isn’t clear, you ask questions, and you use these moments as opportunities to grow. Skills Examples of the skills, knowledge, and experiences you need to lead and deliver value at this level include but are not limited to: Respond effectively to the diverse perspectives, needs, and feelings of others. Use a broad range of tools, methodologies and techniques to generate new ideas and solve problems. Use critical thinking to break down complex concepts. Understand the broader objectives of your project or role and how your work fits into the overall strategy. Develop a deeper understanding of the business context and how it is changing. Use reflection to develop self awareness, enhance strengths and address development areas. Interpret data to inform insights and recommendations. Uphold and reinforce professional and technical standards (e.g. refer to specific PwC tax and audit guidance), the Firm's code of conduct, and independence requirements. As a Senior Associate, you will be aligned to our Strategy, Risk, & Compliance team which is focused on helping clients with their cybersecurity risk, compliance and governance efforts. You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans. you'll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. Position Requirements Security strategy and governance projects (security strategy, operating model, org structure etc.) Assessments: Maturity assessment, Audit readiness, planning and framework assessment, cloud migration requirements, business case development, comparisons and vendor evaluation Frameworks: Design framework program objectives, first/second/third line of defense, vision and mission statements, current state assessment and gap analysis, roadmap planning and estimation for the program, program governance and target operating model for NIST, PCI-DSS, HIPAA, HITRUST, ISO, COBIT etc. and vendor evaluation. Good experience in performing Organization Standard/Policy GAP assessment and Maturity assessments with Industry best practices (NIST/ISO/PCI...etc.). Policy management (policy writing, policy review, policy lifecycle) projects Cloud architecture definition and assessment: development of cloud reference architecture, target state cloud architecture definition, compliance requirements, migration strategies. Must have hands on experience and well proficient in Cybersecurity standard creation, policy writing and maintenance Good understanding of Legal, Regulatory and Privacy requirements to integrate within the Cybersecurity Program. Good understanding of various components of an enterprise Cybersecurity program, including governance structures, Risk and Threat Management, key controls, key processes, Security architecture and Security training program Recommending Cybersecurity action plans for organizations to achieve their overall cybersecurity objective Good Knowledge and experience with GRC tools such as MetricStream, Open Pages, Archer and data analytics & \visualization tools used in the Industry such as PowerBI, Alteryx and Tableau. Experience in partnering with various functions within the Cybersecurity organization to capture and document the services and associated core processes, work instructions, and templates. Analyze the security posture of the organizations by assessing the design and implementation of security controls. Experience in Vendor risk management, Outsourcing risk management, Technology Risk, Information Security. Strong understanding of Cybersecurity and Risk Control frameworks and their adoption in the Supplier management domain. Experience in implementing effective and innovative technology solutions. Desired Knowledge Excellent written and oral communication skills, can express thoughts clearly, knows how to listen and is able to contribute in a team environment. Must communicate consistently and drive objectives, relying on fact-based decisions about risk that optimize the trade-off between risk mitigation and business performance. Demonstrates proven extensive abilities with leveraging creative thinking and problem-solving skills, individual initiative, and utilizing Office 365, MS Office (Word, Excel, Access, PowerPoint) and Google Docs. Ability to create domain specific training content and deliver trainings effectively Good presentation, project management, facilitation and delivery skills as well as strong analytical and problem-solving capabilities. Develop/implement automation solutions and capabilities that are clearly aligned to client business, technology and threat posture. Demonstrates ability to track developments and changes in the digital business and threat environments to ensure that they're adequately addressed in client’s security strategy plans and architecture artifacts. Professional & Educational Background MCA / BE / B Tech / MS (Field of Study: Computer and Information Science, Information Cybersecurity, Information Technology, Management Information Systems). Certification(s) Preferred: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC) Additional Information Travel Requirements: Not Applicable Line of Service: Advisory Industry: Consulting Must be ready to work on-site full-time (timings will be 2 pm or sooner until 11 pm IST) Minimum Years Of Experience 3 - 8 years Show more Show less

Description AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we’re the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain — and we’re looking for talented people who want to help. You’ll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You’ll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our customers. And you’ll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion. We at Amazon Data Services India Private Limited (‘ADSIPL’), are looking to hire a highly motivated, best-in-class Network Technician to join our growing team within its infrastructure operations. The candidate will work with minimum supervision in a dynamic environment to drive the stability and sustainability of our next-generation networks and to develop innovative ways to automate and scale our network as we expand. The position responsibilities will include scaling support of several data center locations of ADSIPL in India and be responsible for day-to-day assistance with capacity management. The Network Technician will work closely with both internal customers of ADSIPL and external vendors to facilitate smooth project execution as directed by Technical Program Managers. The ideal candidate should be highly autonomous, very detail oriented, possesses strong written and verbal communication skills and has significant experience in supporting large scale, enterprise class networks. Excellent network implementation and troubleshooting skills combined with a proven documentation methodology is also required. Strong written and verbal communication skills and an ability to interact efficiently with peers and customers are required. The desire and ability to work in a fast paced, collaborative environment is essential. In addition to providing top-tier management and support of Amazons vast network infrastructure, Network Technicians are expected to build or enhance tools, develop best practices, refine operational procedure and constantly think proactively and innovatively Key job responsibilities Infrastructure Delivery (ID) Network Technicians are part of the Infrastructure Operations Team, the backbone of AWS that supports our customers and their rapidly growing businesses by operating world-class data centers. Network Technicians lead projects to deploy, maintain, and expand the physical network infrastructure at AWS data centers. At Amazon, we always aim to exceed the expectations of our customers, and we continuously raise the standards for operational performance in safety, security, availability, productivity, capacity, efficiency, and cost. As ID Network Technician key responsibilities will include following : Leads multiple concurrent projects by coordinating project activities, communicating with project execution team and project stakeholders, and resolving unmet dependencies through engaging with external stakeholders. Estimate project requirements in terms of time, cost and resources Participate in the installation, migration, basic configuration and rollout of new or upgraded hardware. Follow change management guidelines during the execution of projects work with vendors as needed for the projects and monitor their work collaborate with cross functional teams Troubleshoot network or physical component issues as needed during deployment. Communicate with stakeholders and share regular updates. Up to 20% travel may be required application interaction About The Team Diverse Experiences Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why AWS Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses. Work/Life Balance We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there’s nothing we can’t achieve. Inclusive Team Culture AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do. Mentorship and Career Growth We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional. Basic Qualifications 7-10yrs experience in delivering network projects Experience with medium to large, complex project scopes and ambiguous details within work environment. Experience managing work and priorities through ticketing system and workflows.. Preferred Qualifications Excellent analytical skills and Project management skills, Knowledge or awareness of IT best practice frameworks (ITIL, COBIT) and Operational Excellence concepts or methodologies is a plus Familiarity with major Internet routing protocols, BGP, OSPF. Ethernet and IP networking knowledge and experience in the application of IP protocols and working in virtualized enterprise-networking environments. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner. Company - ADSIPL - Maharashtra Job ID: A2974005 Show more Show less

Exp : 8yrs to 12yrs Job Overview: We are seeking a seasoned IT Governance professional to join our team and play a pivotal role in strengthening the bank's IT governance structure. This role is responsible for defining and driving IT governance strategies that ensure regulatory compliance, risk management, operational efficiency, and alignment of IT initiatives with business goals. The ideal candidate will bring deep expertise in IT governance frameworks, regulatory mandates (including RBI, SEBI, PCI DSS etc), and cross-functional leadership—particularly within the banking or financial services sector. Key Responsibilities: Design and maintain IT governance frameworks aligned with strategy and regulations. Establish IT policies, standards, and procedures across all domains (cybersecurity, infrastructure, applications, vendor management). Ensure adherence to RBI guidelines, PCI DSS, ISO 27001, DPDP Act, and related laws. Coordinate audits and regulatory inspections; oversee closure of compliance findings. Conduct IT risk assessments; manage risk registers and KRIs. Monitor control testing and implement risk mitigation plans, including vendor IT compliance. Develop governance dashboards and reports for CXOs and Board Committees. Lead IT assurance activities, audits, self-assessments, and certification efforts. Serve as liaison among business units, risk teams, and regulators. Lead cross-functional governance initiatives and drive awareness programs. Oversee IT compliance programs, regulatory submissions, and third-party risk management. Track emerging regulations and evaluate their impact on IT governance. Qualifications: Bachelor’s or Master’s degree in Information Technology, Computer Science, Information Systems, or related field. 8–12 years of relevant experience, with at least 5 years in a IT governance or compliance role in the banking/financial services industry. In-depth understanding of IT governance and compliance frameworks including: COBIT, ISO 27001, ISO/IEC 38500, NIST CSF, ITIL Regulatory guidelines: RBI, SEBI, DPDP Payment card industry standards (PCI DSS) and associated audit requirements Proven ability to interface with senior stakeholders and regulatory bodies. Experience in implementing IT governance tools and automation for policy enforcement, reporting, and risk assessments. Show more Show less

Roles and Responsibilities Conduct tests of design and operating effectiveness for IT general controls and IT dependent controls. Business control knowledge is a plus. Participate in walkthrough meetings and conduct interviews with control executers / owners for evaluation of control design. Prepare comprehensive, accurate, and high-quality audit documentation evidencing procedures performed and conclusion reached. Work collaboratively with IT and business teams to provide guidance and consultation on controls and risk management. Qualifications : Bachelor's degree in Information Systems, Computer Science, Accounting or related field. At least 3-5 years of experience in IT audit, internal controls, or risk management, with a focus on SOX compliance. Experience working in a public accounting firm is preferred. Strong knowledge of control frameworks such as COSO, COBIT, or ITIL. Strong understanding of IT processes such as access management, change management, SDLC, Computer operations. Experience in auditing ERP applications such as SAP, Non-ERP applications such as Salesforce, Workday and various infrastructure platforms such as Unix, Linux, Windows, SQL. Strong verbal and written communication skills Professional certification such as CISA or equivalent is a plus. Good analytical and critical thinking skills Ability to work both independently and as a team member.

Job Summary The Head of Global IT Service Assurance is a senior leadership role responsible for overseeing centralized IT service delivery and assurance functions across the enterprise. This role ensures consistent, high-quality IT services globally by leading global service desk operations, managing service assurance frameworks, optimizing ITSM processes, and ensuring compliance with internal standards and industry regulations. Reporting directly to the CIO, the role fosters a culture of accountability, operational efficiency, and customer centricity across all service touchpoints. Areas Of Responsibility Service Strategy Development: Architect and drive the implementation of a comprehensive service assurance strategy that encompasses all facets of IT service delivery. This involves staying abreast of industry trends and incorporating innovative practices to ensure the service strategy remains relevant and effective in meeting the dynamic needs of the business. The role requires continuous assessment and refinement of service delivery models to enhance operational efficiency and customer satisfaction Service Desk Management: Strategically oversee the global IT service desk operations, ensuring seamless coordination and efficient escalation processes for complex L2 and L3 support issues. This includes maintaining robust communication channels with outsourced L1 support teams, ensuring they are equipped with the necessary tools and knowledge to escalate issues appropriately. The role also involves managing and coordinating the activities of the Lead Global Service Desk for Infrastructure, Enterprise & Business Applications, Manufacturing, Quality & R&D, ensuring consistent service delivery across all domains Quality Assurance: Develop and implement a robust quality assurance framework that sets high standards for service delivery processes. Utilize advanced analytics to continuously monitor service performance, evaluate process efficiency, and identify trends that may indicate underlying issues. This responsibility includes establishing key performance indicators (KPIs), conducting regular performance reviews, and implementing corrective actions to address any service delivery gaps Compliance & Standards: Ensure rigorous adherence to industry regulations and internal standards by establishing comprehensive compliance monitoring systems. This includes developing and implementing procedures that support audit readiness, conducting regular compliance assessments, and proactively managing risks. The role involves collaborating with the Lead - Audit Change & Service Catalogue to ensure compliance with audit requirements and maintaining up-to-date documentation to support regulatory inspections Process Optimization: Conduct thorough process evaluations, identify bottlenecks or inefficiencies, and implement innovative solutions that improve responsiveness, reduce downtime, and enhance user satisfaction. This involves leveraging industry best practices and emerging technologies to streamline service delivery processes and drive continuous improvement. The role requires close collaboration with the Lead - Master Data Management to ensure accurate and efficient data handling processes Team Leadership: Lead and mentor a diverse team of IT service professionals, fostering a collaborative and innovative work environment. Provide guidance and support to team members, ensuring they have the necessary skills and resources to perform their roles effectively. This includes setting performance expectations, offering professional development opportunities, and recognizing and rewarding achievements Key Responsibilities 1. Service Strategy Development Design and implement a global service assurance strategy across all service domains. Integrate industry best practices, innovation, and digital enablers into service delivery models. Continuously assess service maturity and alignment with evolving business needs. 2. Global Service Desk Management Lead the global service desk operations across L1-L3 tiers, including infrastructure, enterprise apps, and manufacturing domains. Govern escalation workflows, SLA adherence, and seamless issue resolution in collaboration with internal and outsourced teams. Ensure 24x7 operational support for business-critical environments. 3. Quality Assurance & Performance Monitoring Build a robust quality assurance framework supported by data analytics. Define, measure, and report KPIs for incident resolution, user satisfaction, and SLA compliance. Implement continual service improvement (CSI) programs. 4. Compliance, Risk & Audit Readiness Ensure audit preparedness and compliance to ITSM, GxP, SOX, and internal governance policies. Collaborate with Change & Audit teams to ensure adherence and documentation. Drive proactive risk identification and mitigation in service operations. 5. Process Optimization & Standardization Conduct end-to-end ITSM process assessments to reduce inefficiencies and enable scalability. Partner with Master Data Management and PMO teams to align service workflows and reporting. Introduce automation, AI/ML, and self-service capabilities to enhance service assurance maturity. 6. Leadership & Talent Development Lead a distributed global team of service delivery managers and specialists. Mentor team members, build 2nd-line leadership depth, and drive a performance-driven culture. Promote cross-functional collaboration and skill development across regions. Specialized Knowledge Requirements ITIL-based IT Service Management Experience in managing 24x7 global service desks Advanced knowledge of service assurance metrics, ITSM tools, and root cause analysis Familiarity with compliance in regulated environments (e.g., GxP, SOX) Strong understanding of continuous improvement methodologies and digital service innovation Nature of Communication Strategic updates to executive stakeholders Formal documentation for audits and compliance SLA discussions, QBRs, and governance meetings with partners and vendors Role Played in Negotiations Lead or co-lead for contract SLAs, penalty clauses, and governance framework definitions Collaborate with Procurement and Legal for MSP and OEM commercial terms Key Decision-Making Areas Service design and delivery frameworks Platform and vendor selection for ITSM tools Performance targets and KPI thresholds Team structure and hiring decisions across service assurance functions Key Challenges for the Role Managing consistent service experience across time zones, regions, and functions Coordinating complex escalations between internal teams and third-party vendors Balancing automation with personalized user support models Scaling service assurance maturity while maintaining agility and cost-effectiveness Extent and Nature of Innovation Required for the Role High: Requires ongoing innovation in automation, observability, and self-service platforms Adoption of AI-based service management and predictive analytics Building a digital-first service culture while maintaining regulatory rigor Job Requirements Educational Qualifications: Master's degree in Information Technology, Computer Science, or related field Certifications: ITIL v4, COBIT (preferred), ServiceNow or equivalent ITSM platform certifications Experience: Minimum 10 years in IT service delivery/assurance leadership roles Proven experience managing global service operations in complex enterprise environments Skills: Service strategy development and KPI-driven operations Process excellence and root cause analysis Vendor governance and stakeholder management Team leadership across geographies Travel Estimate 30% Job Scope Internal Interactions (within the organization) CIO, Lead – IT Infrastructure NAM, ITBPs, PMO, Digital CoE. Internal Stakeholders and Nature of Interaction CIO: Strategic alignment and reporting IT Ops Team: Escalation handling and root cause resolution PMO: Project governance, service transition, and dashboarding IT Business Partners (ITBPs): Demand planning, user experience feedback, and escalation management External Interactions (outside the organization) External Stakeholders and Nature of Interaction MSPs and Support Vendors: Service delivery performance management and governance Tool Vendors and OEMs: Platform updates, escalations, and innovation inputs Auditors and Regulatory Inspectors: ITSM audits, evidence sharing, compliance tracking External Interaction % ~30% of role involves external collaboration, including vendor governance, audits, and technology discussions Geographical Scope Global Financial Accountability (cost/revenue with exclusive authority) IT budget adherence, budget planning, execution and cost reduction accountability Job Requirements Educational Qualification Masters in Information Systems, Engineering, or related field Specific Certification ITIL v4, COBIT (preferred), ServiceNow or equivalent ITSM platform certifications Skills As mentioned above Experience Minimum 15+ years in IT service delivery/assurance leadership roles. Proven experience managing global service operations in complex enterprise environments Show more Show less

Job Title- Head Projects & CoE Job Summary The Head – Projects & CoE is responsible for leading the global project management office (PMO), ensuring high-quality delivery of IT infrastructure, cybersecurity, cloud, and service assurance initiatives across geographies. This role establishes standardized project governance, enforces delivery frameworks, and builds a Center of Excellence (CoE) for project delivery, agile maturity, and tool adoption. The incumbent acts as a strategic advisor to the CIO and IT leadership for project prioritization, cross-functional alignment, risk mitigation, and benefit realization. Areas Of Responsibility Key Responsibilities Project Governance & Delivery Oversight Define, enforce, and monitor global project management standards and delivery frameworks. Set up governance cadence including SteerCos, QBRs, milestone reviews, and benefit realization checkpoints. Drive portfolio-level risk management, timeline assurance, and program visibility. CoE Development & Capability Building Build and manage a Project Management Center of Excellence to provide tools, training, and playbooks for agile and hybrid delivery models. Promote project manager certification programs (PMP, Agile, PRINCE2, etc.) across the IT team. Tooling & Automation Enablement Implement and maintain project portfolio tools (e.g., Smartsheet, MS Project, Jira, ServiceNow PPM). Create real-time dashboards and scorecards for leadership visibility and performance tracking. Program Leadership Oversee strategic initiatives including global infra transformation, AD consolidation, and tool modernization. Act as the program lead for cross-functional and multi-region delivery initiatives. Stakeholder Engagement & Communication Partner with CIO, CFO, PMO, Digital CoE, and regional IT leaders for investment alignment and prioritization. Support ITBPs and Finance with status reporting, budget utilization, and ROI insights. Specialized Knowledge Requirements Deep expertise in enterprise project delivery methodologies (Agile, Waterfall, Hybrid) Program governance and benefit realization tracking PPM tooling (e.g., Smartsheet, ServiceNow, Jira) Resource modeling and agile maturity enablement Familiarity with ITIL, COBIT frameworks for operational alignment Internal Stakeholders and Nature of Interaction Global CIO & Infrastructure Head: Strategy, prioritization, and progress reporting Digital CoE, Cybersecurity & Cloud Leads: Alignment of initiatives and dependencies ITBPs & Finance Controllers: Budget alignment, planning, and investment tracking Regional IT Heads: Local project delivery and risk mitigation support External Stakeholders and Nature of Interaction System Integrators / MSPs: Governance enforcement, timeline tracking, contract milestone validation Technology Partners / OEMs: Joint planning, product implementation coordination Consultants / Advisory Firms: Benchmarking, capability assessment, and best practice sharing External Interaction % ~35% of role includes collaboration with vendors, OEMs, system integrators, and external consultants across countries Nature of Communication Executive summaries, project reviews, dashboard walkthroughs, and escalation briefings Formalized status reports, PMO metrics, and transformation milestones Contracts and SoW alignment meetings with vendors/MSPs Role Played in Negotiations Co-leads vendor contract structuring around delivery timelines, change requests, and penalty clauses Works with Legal, Procurement, and Finance to finalize service agreements and delivery scope Key Decision-Making Expected Portfolio prioritization and project selection PM tool stack adoption and change management strategy Resource deployment decisions across programs Program-level go/no-go recommendations and risk escalations Key Challenges for the Role Aligning diverse delivery models across countries and vendors Driving consistent program governance in a federated operating model Managing transformation scope creep and stakeholder expectation mismatches Standardizing documentation and reporting practices globally Extent and Nature of Innovation Required for the Role High: Championing project automation, agile governance tooling, and predictive analytics for risk management Introduction of modern dashboarding, collaboration tools, and performance scorecards Embedding a digital-first mindset and PM competency uplift across the organization Job Requirements Educational Qualification: Master's in Information Systems, Business Administration, or Engineering Certifications: PMP, PRINCE2, Agile/Scrum Master certifications (mandatory) SAFe or PPM tooling certifications (preferred) Experience: 12+ years in IT project/program delivery roles, with at least 5 years in global leadership Proven experience managing transformation programs across infra/cloud/security domains Skills: PMO operations, risk management, stakeholder engagement Delivery performance benchmarking and reporting Cross-cultural team leadership Travel Requirement: Up to 30% (depending on program deployment and vendor engagements) Travel Estimate 30% Job Scope Internal Interactions (within the organization) Internal Stakeholders and Nature of Interaction Global CIO & Infrastructure Head: Strategy, prioritization, and progress reporting Digital CoE, Cybersecurity & Cloud Leads: Alignment of initiatives and dependencies ITBPs & Finance Controllers: Budget alignment, planning, and investment tracking Regional IT Heads: Local project delivery and risk mitigation support External Interactions (outside the organization) External Stakeholders and Nature of Interaction System Integrators / MSPs: Governance enforcement, timeline tracking, contract milestone validation Technology Partners / OEMs: Joint planning, product implementation coordination Consultants / Advisory Firms: Benchmarking, capability assessment, and best practice sharing External Interaction % ~35% of role includes collaboration with vendors, OEMs, system integrators, and external consultants across countries Geographical Scope Global Financial Accountability (cost/revenue with exclusive authority) Project cost, timelines & budgets, estimates Job Requirements Educational Qualification Masters in Information Systems, Engineering, or related field Specific Certification PMP, PRINCE2, Agile/Scrum Master certifications (mandatory). SAFe or PPM tooling certifications (preferred) Skills PMO operations, risk management, stakeholder engagement. Delivery performance benchmarking and reporting. Cross-cultural team leadership Experience 15+ years of experience in IT audit, risk, and compliance roles. Exposure to global audit environments and regulated industries (pharma/healthcare preferred) Show more Show less

Location : Vikhroli Experience : 6+ Years Notice Period : Immediate up to 60 days Mandatory Key skills : SAP FICO Consultant, SAP S4/HANA, Accounting (accounts payable, receivable, tax, and treasury systems). We are seeking an accomplished SAP FICO Consultant (Service Manager Finance) to oversee the full lifecycle of finance-related IT service delivery. This role will lead the operational and strategic management of complex SAP environments, including SAP FICO and S/4HANA, while driving seamless global operations and integration across key financial platforms such as accounts payable, receivable, tax, and treasury systems. Required Qualifications Bachelor's degree in Computer Science, Information Technology, or a related engineering discipline. Minimum of 6 years in IT service delivery, with at least 25 years of hands-on experience in SAP Finance (FICO) and S/4HANA. Demonstrated expertise in managing global IT operations and integrating SAP with third-party financial systems (accounts receivable/payable, etc.). Solid understanding of ITSM/ITIL frameworks; certifications such as ITIL, COBIT, or DevOps are advantageous. Awareness of compliance, data security, and governance practices in financial IT ecosystems. Strong capabilities in vendor coordination, stakeholder engagement, and cross-functional collaboration. Key Responsibilities Ensure seamless day-to-day operations of finance IT services through effective monitoring, timely issue resolution, and performance management. Oversee service delivery and system integration of SAP FICO and S/4HANA with modules related to tax compliance, treasury, and vendor invoice management. Lead ongoing service enhancement initiatives to improve quality, compliance, automation, and scalability. Manage incident, change, and request processes to minimize disruptions and maintain continuity across finance operations. Collaborate with global business teams and internal stakeholders to align IT services with evolving financial process requirements. Track and report on SLAs, OLAs, KPIs, and operational metrics while proactively identifying and addressing risks or service gaps. Serve as a subject matter expert in SAP finance operations and ensure adherence to governance and documentation best practices. Maintain updated service documentation, including SOPs, knowledge bases, and support resources to enable operational efficiency. Support budget planning, cost control, and procurement activities related to finance IT services. Facilitate smooth onboarding of new services by coordinating with solution design teams and ensuring readiness for operational integration. Key Competencies Deep functional knowledge of SAP finance modules and integration landscapes. Excellent leadership, interpersonal, and communication skills. Strong analytical and problem-solving mindset, with a proactive approach to risk mitigation. Experience in managing service budgets, performance reporting, and cost optimization. Ability to work effectively under pressure in a global, fast-paced enterprise environment (ref:hirist.tech) Show more Show less

Line of Service Advisory Industry/Sector GPS X-Sector Specialism Operations Management Level Senior Associate Job Description & Summary A career in our Government and Public Sector Transformation Management practice, within General Consulting services, will provide you with the opportunity to help clients seize essential advantages by working alongside business leaders to solve their toughest problems and capture their greatest opportunities. We work with some of the world’s largest and most complex companies to understand their unique business issues and opportunities in an ever changing environment. We help create sustainable change by stimulating innovation, unlocking data possibilities, navigating risk and regulatory complexity, optimising deals, and aligning costs with business strategy to create a competitive advantage. In joining, you’ll help federal, state and local government clients solve complex business issues and manage jurisdiction related risk. You’ll help our clients assess their operational and security and data management strategies so they can continue to operate more efficiently and effectively, both today and tomorrow. Experienced Recruitment Job Description Form Position Title : IT eGov Consulting resource Grade/Level : Consultant/Senior Consultant LoS : Advisory Sub LoS/SBU : Government Technology (GovTech) Vertical Location : Mumbai Position Type : Full time Contact Person : Prajakta Gaikwad. eGov Expertise: IT Consulting resource (generalist) - having experience in govt consulting, eGov transformation, Smart city, ULB projects Job Summary At PwC, our purpose is to build trust in society and solve important problems. We’re a network of firms in 157 countries with more than 284,000 people who are committed to delivering quality in Assurance, Advisory and Tax services. Within Advisory, PwC has a large team (GovTech) that enables government organizations to transform and provide better service to citizens and optimize operations. The open position is for a candidate who desires to work with government clients and bring about a change in society. A successful candidate will be expected to work pro-actively and effectively on multiple client engagements over the period of time and take ownership of the entire project delivery he/she entrusted with. The candidate should strong interpersonal skills, who not only enjoys the challenge of working with other team members but externally with a diverse, senior-Government officials across varied Ministries and PSUs. Recent experience and understanding of the Indian business ecosystem and government initiatives is a must. The candidate will be required to showcase excellent communication skills and will have demonstrated consistently the skill and capability in delivering impactful and insightful projects in the past. He/she will also be required to participate in client meetings and, during the course of a project, will be responsive to client enquiries, eventually leading the delivery engagement. Candidate will also be expected to contribute to Practice or Firm development. This may be adjudged in various ways such as serving as a mentor to other team members, by leading training/development initiatives, contributing to thought leadership papers, assisting other network firms etc. Positions are with PwC’s Government Technology (GovTech) practice, which works with Central & State Governments, PSUs, donor agencies, international government clients etc. The position is based out of Pune . However, the ideal candidate should not have any constraints to travel for work related opportunities, whether domestic or internationally. Roles & Responsibilities : • Developing project Charter • Define project scope and deliverables that support business goals • Develop project plans and schedule • Communicate with stakeholders/customers on an ongoing basis • Set and continually manage project expectations with team members and customers • Draft and submit budget proposals, and recommend subsequent budget changes where necessary • Identify and manage project dependencies and critical path • Plan and schedule project timelines and milestones using appropriate tools (Microsoft Project Management) • Track project milestones and deliverables • Develop and deliver progress reports, proposals, requirements documentation and presentations • Issue status reports to the project team, analyze results, and troubleshoot problem areas • Proactively manage changes in project scope, identify potential crises, and devise contingency plans • Define project success criteria and disseminate them to involved parties throughout project life cycle. • Build, develop, and grow business relationships vital to the success of the project. • Conduct project “lessons learned” meetings and create a recommendations report in order to identify successful and unsuccessful project elements • Develop best practices and tools for project execution and management Educational Qualifications • Post-Graduation: MBA (preferable) • Graduation: BE/BTech/MCA/MSc (Computer Science, Information Technology, Electronics). Certifications Having one or more of the following certifications will be an added advantage: • PMP • Prince-2 • TOGAF • ITIL • COBIT • Six Sigma Green / Black Belt Work Experience • The candidate should possess post-qualification relevant work experience of 3 to 7 years in Consulting /Government Consulting preferred. • Experience of working with Indian Government (Central, State, ULBs)/related agencies is preferred. However, this will not be a mandatory requirement. • Experience in Government Consulting projects (Preferred). However, this will not be a mandatory requirement. Tools & Techniques • Thorough knowledge of MS Excel, Power Point and other project management tools. Required Skill Sets Thorough knowledge of MS Excel, Power Point and other project management tools. PwC Professional leadership development framework focuses on five core attributes: Whole leadership, Business acumen, Technical capabilities, Global acumen and Relationships. We use this framework to recruit, develop and assess our people, at all grades and all areas of our business, helping our people to meet the expectations of our clients, colleagues and communities in today’s changing global marketplace. Mandatory Skill Set- eGov Expertise: IT Consulting resource (generalist) - having experience in govt consulting, eGov transformation, Smart city, ULB projects Preferred Skill Set- eGov Expertise: IT Consulting resource (generalist) - having experience in govt consulting, eGov transformation, Smart city, ULB projects Year of experience required- 5+ Qualifications- BE/BTECH MBA Required Skills Electronic Government, Smart Cities Optional Skills Desired Languages (If blank, desired languages not specified) Travel Requirements Available for Work Visa Sponsorship? Government Clearance Required? Job Posting End Date Show more Show less

Location(s): Noida-Greater Noida Expressway, Sector - 129, Plot No. C3-C, Noida, Uttar Pradesh, IN Line Of Business: COR(COR) Job Category Credit Analysis & Research Experience Level: Experienced Hire At Moody's, we unite the brightest minds to turn today’s risks into tomorrow’s opportunities. We do this by striving to create an inclusive environment where everyone feels welcome to be who they are-with the freedom to exchange ideas, think innovatively, and listen to each other and customers in meaningful ways. If you are excited about this opportunity but do not meet every single requirement, please apply! You still may be a great fit for this role or other open roles. We are seeking candidates who model our values: invest in every relationship, lead with curiosity, champion diverse perspectives, turn inputs into actions, and uphold trust through integrity. Senior Risk Management Analyst Job Description The Moody’s Analytics (MA) Risk Management team within the Customer, Operations, and Risk group oversees MA’s enterprise risk management framework and implements its risk management activities, with the objectives of safeguarding sensitive business data, protecting data privacy, addressing information security threats, ensuring legal and regulatory compliance, meeting customer requirements for controls assurance, and promoting risk awareness. The team collaborates with lines of business across MA and Moody’s Shared Services to reduce risk to acceptable levels while enabling business priorities. Role/Responsibilities The Senior Risk Management Analyst role will support our risk management and compliance efforts, with a primary focus on assisting in cybersecurity risk initiatives and SOC1/SOC2, ISO audits of Moody Analytics software products and services. This role will also support technology and cyber risk assessments and monitoring risk remediation activities. Responsibilities include: Support ISO Audits: Assist in ISO compliance initiatives and related audit processes. Assist in the development and maintenance of policies, procedures, and controls in alignment with ISO requirements. Risk Remediation Monitoring: Assist in monitoring and tracking the progress of risk and issue remediation activities. Collaborate with stakeholders to ensure timely and effective remediation of identified risks and issues. Assist in SOC1/SOC2 Audits: Assist in coordinating and supporting SOC 1 and SOC 2 compliance activities, including preparation for and facilitation of audits. This includes gathering relevant documentation from stakeholders and liaising with external auditors. Documentation and Reporting: Maintain accurate and up-to-date documentation through Wiki pages and JIRA, including project status updates. Project Management: Assist in tracking and managing multiple information security, risk management projects and collaborate with cross functional teams to ensure successful implementation of these projects. Provide regular updates and reports on project status, risks and issues to senior management. Training and Awareness: Participate in training sessions related to risk management, compliance, and audit processes. Assist in raising awareness of compliance requirements within the organization. Qualifications Excellent verbal and written communication skills Organized, attentive to detail, and able to prioritize and meet deadlines. Strong analytical, problem-solving, collaboration, and project management skills. Minimum of 5 to 6 years’ experience in cybersecurity, project management, IT audit or information security. Knowledge of IT and cyber controls and frameworks (SOC 1 and SOC 2, NIST, ISO 27001, COBIT). Excellent knowledge of regulatory requirements and industry standards (e.g., GDPR, HIPAA). Proficiency in risk assessment and management methodologies. Experience with project management tools, like JIRA and Wiki Background in audit preparation and coordination Familiarity with software development practices and enterprise technology operations Proficient with Microsoft Office applications; familiarity with GRC platforms. Strong organizational and time management abilities. Moody’s is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law. Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody’s Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary. For more information on the Securities Trading Program, please refer to the STP Quick Reference guide on ComplianceNet Please note: STP categories are assigned by the hiring teams and are subject to change over the course of an employee’s tenure with Moody’s. Show more Show less

Ericsson is seeking an experienced GRC Specialist with 8 to 15 years of expertise in Governance, Risk, and Compliance to join our team in Noida or Bangalore. The ideal candidate will have a strong background in managing risk frameworks, compliance programs, and governance processes within large enterprises, preferably in telecom or IT sectors. Key Responsibilities: Develop, implement, and maintain governance, risk, and compliance frameworks aligned with global standards and Ericsson policies. Perform comprehensive risk assessments and compliance audits to identify gaps and recommend remediation actions. Ensure adherence to regulatory requirements such as ISO 27001, GDPR, NIST, COBIT, and ITIL. Manage and monitor compliance controls and policies to mitigate organizational risks. Collaborate with internal stakeholders and external auditors to facilitate audit readiness and compliance reporting. Drive continuous improvement initiatives for GRC processes and tools. Support incident response and business continuity planning from a GRC perspective. Lead awareness programs and training sessions on governance, risk, and compliance topics. Utilize and optimize GRC platforms (e.g., RSA Archer, MetricStream, ServiceNow GRC) for automated risk management and reporting. Required Skills and Qualifications: Bachelor s or Master s degree in Information Technology, Cybersecurity, Business Administration, or related field. 8 to 15 years of experience in Governance, Risk, and Compliance roles. In-depth knowledge of GRC frameworks and standards (ISO 27001, NIST, COBIT, GDPR, ITIL). Practical experience with GRC tools and platforms. Strong understanding of cybersecurity risk management and control frameworks. Excellent analytical, organizational, and communication skills. Ability to work collaboratively across teams and influence senior stakeholders. Relevant certifications such as CISA, CISM, CRISC, CISSP, or similar preferred. Preferred Qualifications: Experience in the telecommunications or IT industry. Knowledge of cloud security and compliance frameworks. Familiarity with data privacy regulations and telecom-specific compliance requirements. Why join Ericsson? What happens once you apply? Primary country and city: India (IN) || Noida Req ID: 768424

About this opportunity: Ericsson is seeking an experienced GRC Specialist with 8 to 15 years of expertise in Governance, Risk, and Compliance to join our team in Noida or Bangalore. The ideal candidate will have a strong background in managing risk frameworks, compliance programs, and governance processes within large enterprises, preferably in telecom or IT sectors. Key Responsibilities: Develop, implement, and maintain governance, risk, and compliance frameworks aligned with global standards and Ericsson policies. Perform comprehensive risk assessments and compliance audits to identify gaps and recommend remediation actions. Ensure adherence to regulatory requirements such as ISO 27001, GDPR, NIST, COBIT, and ITIL. Manage and monitor compliance controls and policies to mitigate organizational risks. Collaborate with internal stakeholders and external auditors to facilitate audit readiness and compliance reporting. Drive continuous improvement initiatives for GRC processes and tools. Support incident response and business continuity planning from a GRC perspective. Lead awareness programs and training sessions on governance, risk, and compliance topics. Utilize and optimize GRC platforms (e.g., RSA Archer, MetricStream, ServiceNow GRC) for automated risk management and reporting. Required Skills and Qualifications: Bachelor s or Master s degree in Information Technology, Cybersecurity, Business Administration, or related field. 8 to 15 years of experience in Governance, Risk, and Compliance roles. In-depth knowledge of GRC frameworks and standards (ISO 27001, NIST, COBIT, GDPR, ITIL). Practical experience with GRC tools and platforms. Strong understanding of cybersecurity risk management and control frameworks. Excellent analytical, organizational, and communication skills. Ability to work collaboratively across teams and influence senior stakeholders. Relevant certifications such as CISA, CISM, CRISC, CISSP, or similar preferred. Preferred Qualifications: Experience in the telecommunications or IT industry. Knowledge of cloud security and compliance frameworks. Familiarity with data privacy regulations and telecom-specific compliance requirements. Primary country and city: India (IN) || Noida Req ID: 768424

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) No. of positions (India): 4 Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) No. of positions (India): 4 Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) No. of positions (India): 4 Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Risk Consulting - Protect Tech – Senior (IT audit – General skills) No. of positions (India): 4 Key Responsibilities Your key responsibilities will include: Consistently deliver quality client services. Drive high-quality work products within expected timeframes and on budget. Monitor progress manage risk and ensure key stakeholders are kept informed about progress and expected outcomes. Foster relationships with client personnel to analyse, evaluate, and enhance information systems to develop and improve security at procedural and technology levels. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues and communicate this information to the engagement team and client management through written correspondence and verbal presentations. Stay abreast of current business and industry trends relevant to the client's business. Demonstrate deep technical capabilities and professional knowledge. Demonstrate ability to quickly assimilate to new knowledge. Skills And Attributes For Success You will leverage your proven track record of IT Audit experience and strong personal skills, to effectively deliver quality results in the assessment, design, and support implementation of controls, security and IT risk solutions. To qualify for the role, you must have A bachelor’s or master’s degree and approximately 3-6 years of related work experience At least 2-4 years of experience in IT Risk and Compliance Design IT Risk Controls framework such as IT SOX Implementation and Testing of internal controls such as IT general controls, IT application controls, IPE related controls, interface controls etc Identify control gaps, weaknesses and areas of improvements. Conducting IT internal control reviews, and review of SOC1 or SOC2 reports Knowledge of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST etc IT Compliance and regulatory assessments – IT Risk and Controls assessment with exposure of any of the technologies such as SAP, Oracle, Workday, MS Dynamics or emerging technologies such as Cloud, RPA, AI/ML IT Infrastructure and Architecture risk assessments including data quality and data migration reviews, data privacy reviews, OS DB reviews etc Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities. Excellent communication, documentation and report writing skills. Good to have relevant industry certifications such as CISA, CISM, CISSP, CRISC, CCSK, ISO 27001, and others (as relevant) EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Description #KGS We are recruiting for Assistant Manager / Manager in the Technology M&A team. In this role you would leading small to medium sized engagements (technology due diligence, post-merger integrations, carve outs) and being the day to day support for clients on these engagements. You will work closely alongside Senior Managers/Directors on delivery of multiple projects simultaneously. Your responsibilities will include Due Diligence Analyzing target data to build up a view on the technology of the business including cost, products and systems, and IT contracts Finding risks in Target’s IT environment, remediations and associated costs Condensing the data and explaining findings to other team members, highlighting the impact of technology on the business strategy, operations, and ultimately, deal valuation Developing an understanding of IT benchmark and qualitative information to provide insights to clients to describe a typical IT function Assisting and leading client communications, calls and meetings Contributing content for sections of IT reports/deliverables Integration and Separation Advising clients and managing all client communications on all technology aspects of integration, separation (carve outs) and optimization initiatives (e.g. synergy analysis) including the development of target operating models, understanding the current IT landscape, defining transitional service agreements, developing detailed plans, and supporting the implementation of such plans. Leading the technology workstream in integrations and separations within a larger team of Integration & Separation colleagues to fulfil their workstream objectives Facilitating and leading key client workshops and meetings Identifying, reviewing, or calculating client synergies for IT within a larger team Wider Responsibilities Business development, ensuring high chargeability of the KGS team Project Management, including work allocations, guiding and reviewing quality of work of junior project team members People management, managing the performance of junior staff members through coaching and mentoring Interacting with senior client stakeholders as well as internal stakeholders (KPMG Partners and Directors) Supporting the growth of the team through development of new propositions and initiatives Ensuring engagement management protocols are followed and kept up to date including quality and risk management When you are not working on a project, you will provide support to senior colleagues in a number of different aspects such as preparation of proposal materials, development of propositions Job Requirements Mandatory Skills MBA / Bachelor’s degree in a related field from an accredited college/university preferably with major in Technology 6 to 10 years of experience in M&A IT Integration and Separation / IT strategy / IT due diligence / solution architecture / IT project management Good overall understanding of the following areas with specialist knowledge of at least one Application Support & Maintenance Network & Data Center Operations Management Software Development Life Cycle Service Management Cyber Security End user computing Disaster Recovery/Business Continuity Cloud-based Deployment Models (e.g., Infrastructure-as-a- Service) Software Asset Management/Compliance Infrastructure Optimization (e.g., consolidation, rationalization, cost savings) Service Level Definition and Agreements / IT Scorecard and Metrics Enterprise Resource Planning Technology certifications such as ITIL, AWS, Azure, GCP, TOGAF, COBIT, CISSP, COMPTIA etc. would be a plus Knowledge about enterprise business applications (e.g. ERP, CRM) Experience in assisting with technology assessment/diligence Preferred Skills A good understanding of, or preferably a background in, an M&A environment IT specialization such as: IT strategy, applications, infrastructure, architecture, cyber security Experience in facilitating client meetings, workshops and interviews Project management experience and track record of successful delivery of projects Comfort with ambiguity, fluid consulting situations and a highly pressured environment as characteristic of transactions Ability to work well under pressure, learn quickly and leverage skills in new situations Ability to travel at a moderate level Show more Show less

Information security standards ISO 27001, ISO 31000 risk management standards, ISO 22301, CISA (certified information systems auditor), CISM/CISSP/CEH/CIPP-E / CIPP -US /CCIE/CCNA/ COBIT/SOX/ SSAE18, CISM etc Advanced Networking principles/ software engineering principles/ information security principles, Additional knowledge and domain expertise specific to the job profile. (knowledge of information security management, auditing skills, network/systems/application security) Strategic Planning, Technology trends, Customer expectations Consolidate and provide inputs regarding activities that have budget/resource in order to help budget decisions Knowledge on Change management, incident management Analytical ability, Good Communication, Networking, Interpersonal Skills, Presentation skills Communication, interpersonal skills, motivation skills, team management, processes and methodologies Customer interfacing and negotiation skills Project management Show more Show less

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Senior Security Consultant Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value. The opportunity As a Security Consultant, the individual will provide security guidance to internal IT project teams responsible for delivering business solutions, with a focus on end user technology and related solutions. They will identify and prioritize security-related requirements, promote secure-by-default designs and ensure information systems and infrastructure will be secured throughout the system development life cycle (SDLC) in an agile environment. Your Key Responsibilities The successful candidate is expected to perform risk assessments of mobile applications, mobile and desktop end user technology platforms, infrastructure systems and solutions; effectively articulate findings and recommendations to internal customers and management; and they will be expected to work on multiple projects and tasks concurrently. Skills And Attributes For Success Solid understanding of key security and privacy issues, risks and threats, and ability to apply this expertise across business needs via internal consulting and security risk assessment types of activities. Strong written and verbal communication skills are essential Proven background in IT risk assessments, and knowledge of good security practices and controls used in applications and infrastructure. Translate technical vulnerabilities and security risks into business risk terminology for business units and recommend corrective actions to customers and project stakeholders. Ability to document and produce important artefacts on risk assessments, engagement Statements of Work, process, minimum security baselines and presentations on security risks. Manage customer expectations and deliver quality security consulting services while balancing business objectives with security requirements. Ability to partner with technical teams in a practical manner when conflicting interests arise while preserving EY core security principles and policies. Ability to proactively lead, own and research security related subject matters when required to take a position or resolve issues. Ability to collaborate to facilitate and enhance the understanding & compliance to security policies. To qualify for the role, you must have A minimum of 8-10 years of experience in an Information Security or Information Technology subject area. Two or more years of experience with iOS and Android security such as mobile application security analysis, mobile application penetration testing, mobile threat modelling, mobile device forensics, and assessing mobile device security capabilities. Three or more years of experience with understanding and defining good security practices for end user technology platforms (e.g., iOS, Android, macOS, Windows 10), multi-tier information systems, applications (e.g., web, mobile, desktop), and End Point Security solutions. Working experience in performing security risk assessments for information systems and applications such as those for web, desktop, and mobile. Develop appropriate risk treatment and mitigation options to address security risks identified during security reviews or risk assessments. Good interpersonal, communication, organizational and project management skills. Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change. Ideally,you will also have One or more years of experience with iOS and Android mobile application development, Agile Methodology, Continuous Integration / Continuous Delivery, and IoT security. Knowledge or experience with Microsoft Azure cloud technology stack (e.g., M365, SharePoint, OneDrive for Business, Intune, Conditional Access) and Azure cloud applications. Knowledge of common information security standards and risk analysis methodologies, such as: ISO 27001/27002, NIST, PCI, COBIT, ISF IRAM2, and OWASP. What We Look For We look for people who are customer-centric with good interpersonal, communication and organizational skills. The ideal candidate will have flexibility in adjusting to multiple demands, shifting priorities, ambiguity, rapid change, and an ardent desire to learn. What We Offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being. Your recruiter can talk to you about the benefits available in your country. Here is a snapshot of what we offer: Continuous learning: You will develop the mindset and skills to navigate whatever comes next. Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way. Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories. Show more Show less

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Senior Security Consultant Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value. The opportunity As a Security Consultant, the individual will provide security guidance to internal IT project teams responsible for delivering business solutions, with a focus on end user technology and related solutions. They will identify and prioritize security-related requirements, promote secure-by-default designs and ensure information systems and infrastructure will be secured throughout the system development life cycle (SDLC) in an agile environment. Your Key Responsibilities The successful candidate is expected to perform risk assessments of mobile applications, mobile and desktop end user technology platforms, infrastructure systems and solutions; effectively articulate findings and recommendations to internal customers and management; and they will be expected to work on multiple projects and tasks concurrently. Skills And Attributes For Success Solid understanding of key security and privacy issues, risks and threats, and ability to apply this expertise across business needs via internal consulting and security risk assessment types of activities. Strong written and verbal communication skills are essential Proven background in IT risk assessments, and knowledge of good security practices and controls used in applications and infrastructure. Translate technical vulnerabilities and security risks into business risk terminology for business units and recommend corrective actions to customers and project stakeholders. Ability to document and produce important artefacts on risk assessments, engagement Statements of Work, process, minimum security baselines and presentations on security risks. Manage customer expectations and deliver quality security consulting services while balancing business objectives with security requirements. Ability to partner with technical teams in a practical manner when conflicting interests arise while preserving EY core security principles and policies. Ability to proactively lead, own and research security related subject matters when required to take a position or resolve issues. Ability to collaborate to facilitate and enhance the understanding & compliance to security policies. To qualify for the role, you must have A minimum of 8-10 years of experience in an Information Security or Information Technology subject area. Two or more years of experience with iOS and Android security such as mobile application security analysis, mobile application penetration testing, mobile threat modelling, mobile device forensics, and assessing mobile device security capabilities. Three or more years of experience with understanding and defining good security practices for end user technology platforms (e.g., iOS, Android, macOS, Windows 10), multi-tier information systems, applications (e.g., web, mobile, desktop), and End Point Security solutions. Working experience in performing security risk assessments for information systems and applications such as those for web, desktop, and mobile. Develop appropriate risk treatment and mitigation options to address security risks identified during security reviews or risk assessments. Good interpersonal, communication, organizational and project management skills. Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change. Ideally,you will also have One or more years of experience with iOS and Android mobile application development, Agile Methodology, Continuous Integration / Continuous Delivery, and IoT security. Knowledge or experience with Microsoft Azure cloud technology stack (e.g., M365, SharePoint, OneDrive for Business, Intune, Conditional Access) and Azure cloud applications. Knowledge of common information security standards and risk analysis methodologies, such as: ISO 27001/27002, NIST, PCI, COBIT, ISF IRAM2, and OWASP. What We Look For We look for people who are customer-centric with good interpersonal, communication and organizational skills. The ideal candidate will have flexibility in adjusting to multiple demands, shifting priorities, ambiguity, rapid change, and an ardent desire to learn. What We Offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being. Your recruiter can talk to you about the benefits available in your country. Here is a snapshot of what we offer: Continuous learning: You will develop the mindset and skills to navigate whatever comes next. Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way. Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories. Show more Show less

At EY, we’re all in to shape your future with confidence. We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. Senior Security Consultant Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of almost 950 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entire security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting and enabling the business through innovative, secure solutions that provide speed to market and business value. The opportunity As a Security Consultant, the individual will provide security guidance to internal IT project teams responsible for delivering business solutions, with a focus on end user technology and related solutions. They will identify and prioritize security-related requirements, promote secure-by-default designs and ensure information systems and infrastructure will be secured throughout the system development life cycle (SDLC) in an agile environment. Your Key Responsibilities The successful candidate is expected to perform risk assessments of mobile applications, mobile and desktop end user technology platforms, infrastructure systems and solutions; effectively articulate findings and recommendations to internal customers and management; and they will be expected to work on multiple projects and tasks concurrently. Skills And Attributes For Success Solid understanding of key security and privacy issues, risks and threats, and ability to apply this expertise across business needs via internal consulting and security risk assessment types of activities. Strong written and verbal communication skills are essential Proven background in IT risk assessments, and knowledge of good security practices and controls used in applications and infrastructure. Translate technical vulnerabilities and security risks into business risk terminology for business units and recommend corrective actions to customers and project stakeholders. Ability to document and produce important artefacts on risk assessments, engagement Statements of Work, process, minimum security baselines and presentations on security risks. Manage customer expectations and deliver quality security consulting services while balancing business objectives with security requirements. Ability to partner with technical teams in a practical manner when conflicting interests arise while preserving EY core security principles and policies. Ability to proactively lead, own and research security related subject matters when required to take a position or resolve issues. Ability to collaborate to facilitate and enhance the understanding & compliance to security policies. To qualify for the role, you must have A minimum of 8-10 years of experience in an Information Security or Information Technology subject area. Two or more years of experience with iOS and Android security such as mobile application security analysis, mobile application penetration testing, mobile threat modelling, mobile device forensics, and assessing mobile device security capabilities. Three or more years of experience with understanding and defining good security practices for end user technology platforms (e.g., iOS, Android, macOS, Windows 10), multi-tier information systems, applications (e.g., web, mobile, desktop), and End Point Security solutions. Working experience in performing security risk assessments for information systems and applications such as those for web, desktop, and mobile. Develop appropriate risk treatment and mitigation options to address security risks identified during security reviews or risk assessments. Good interpersonal, communication, organizational and project management skills. Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change. Ideally,you will also have One or more years of experience with iOS and Android mobile application development, Agile Methodology, Continuous Integration / Continuous Delivery, and IoT security. Knowledge or experience with Microsoft Azure cloud technology stack (e.g., M365, SharePoint, OneDrive for Business, Intune, Conditional Access) and Azure cloud applications. Knowledge of common information security standards and risk analysis methodologies, such as: ISO 27001/27002, NIST, PCI, COBIT, ISF IRAM2, and OWASP. What We Look For We look for people who are customer-centric with good interpersonal, communication and organizational skills. The ideal candidate will have flexibility in adjusting to multiple demands, shifting priorities, ambiguity, rapid change, and an ardent desire to learn. What We Offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being. Your recruiter can talk to you about the benefits available in your country. Here is a snapshot of what we offer: Continuous learning: You will develop the mindset and skills to navigate whatever comes next. Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way. Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs. EY | Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories. Show more Show less

Technical Strong experience in review of guideline defined, conducting regulatory assessments for BFSI (E.g. RBI, SEBI, IRDAI). Global guidelines knowledge which includes NIST, ISO27001, PCI-DSS, COBIT, etc. Assisting in remediating gaps on the defined guidelines for the client. Performing System Audit and conducting technology landscape review. Having worked on Information Technology Risk Assessment areas such as NIST, ISO27001, PCI-DSS, COBIT, etc. Experience of handling IT audits and reviews. Good understanding on technology topics related to cyber security, encryption, architecture resiliency , business continuity, disaster recovery, IT Governance, Third party outsourcing risk and information security/technology risk. Certification - CISA, CISSP, ISO27001 Soft Skills Good presentation and report writing skills is mandatory. Excellent communication skills and confident demeanor Experience of working with client stakeholders Good problem-solving skills. Specially for Managers Experience of writing proposal and responding to RFP’s Handling team of 4-5 people Profiles from consulting background to be preferred.

About the Role We are seeking a proactive and detail-oriented Associate GRC (Governance, Risk & Compliance) Consultant to join our growing team in Mumbai . As an Associate Consultant, you will assist in delivering GRC-related services to clients across various industries, supporting risk management, regulatory compliance, and governance frameworks. Key Responsibilities Assist in conducting risk assessments, compliance reviews, and internal control evaluations. Support the implementation and maintenance of GRC tools and platforms. Assist in documenting policies, procedures, and control frameworks (e.g., ISO 27001, SOC 2, GDPR, HIPAA, etc.). Participate in client meetings, gather requirements, and help design and implement effective risk mitigation strategies. Conduct gap assessments and help prepare audit and regulatory readiness documentation. Monitor changes in regulatory and risk landscapes and assist in updating risk registers and compliance matrices accordingly. Collaborate with cross-functional teams, including IT, operations, and legal, to support GRC initiatives. Prepare reports, dashboards, and presentations for internal and client use. Required Qualifications & Skills Bachelor's degree in Information Security, Computer Science, Management, or a related field. 1–3 years of relevant experience in GRC, risk management, audit, compliance, or cybersecurity domains. Familiarity with frameworks such as ISO 27001, NIST, COBIT, SOX, PCI DSS, etc. Understanding of GRC tools (e.g., RSA Archer, MetricStream, ServiceNow GRC, etc.) is a plus. Strong analytical, problem-solving, and communication skills. Ability to handle multiple tasks and adapt in a fast-paced client-facing environment. Relevant certifications (optional but desirable): ISO 27001 LA/LI, CISA, CRISC, or similar. Urgent joining preferred. Show more Show less

Job Description Manager - Data Protection Manager – Data Protection Officer (F/M) Location: Mumbai About Organisation At Worldline, our technology addresses persistent challenges of the payment world. We’ve established ourselves as a leading developer of creative software solutions for enabling the cashless society. If you are an authoritative Delivery Manager, then get ready to join our company. We have many hardworking and dedicated peers that would love for you to work with them. We are committed to continuous improvement. We are always looking for new and innovative ways to improve quality, reduce costs, build excellent solutions, and grow customer satisfaction. We are looking for an organized, creative, process driven colleague to be welcomed to our team. The Opportunity Worldline’s Merchant Services Global Business Line is a major international player in end-to-end Commercial Acquiring, Multichannel Payment Acceptance and Payment Terminal solutions. Merchant Services’ unique combination of payment, digital and transactional expertise allows merchants to boost sales and enhance the customer experience. We cover the full retail value chain, online and in-store, through a complete approach, delivering a real digital journey for retailers and their customers and facilitating consumer engagement, via seamless services, on any device – with payment at the heart of the shopping experience. Such activities require sound IT security practices and are subject to regulatory requirements, such as for example sensitive date protection or monitoring merchant accounts for activity that might be linked to money laundering or terrorist financing More Reasons To Join Us In addition to joining a global leader in digital transformation, you can also expect an excellent range of benefits. These include: a rewarding salary, 25 days’ annual leave, private medical insurance, an attractive pension scheme plus many more. We also operate a flexible benefits scheme, allowing you to purchase discounted products and services. What’s more, we really value your progress and it’s a top priority to engage, encourage and develop you to help you maximise your potential. In fact, we have comprehensive training and development programmes in place demonstrating our commitment to developing your career. Our success comes from strong skills, new ideas, diverse points of view and the energy of all women and men from Worldline. Not only do they represent our Human Capital, but they are also key players in our success. We make leading our talents a major asset in the success of our business. Y Our Day-to-day Responsibilities Include Reporting line: reporting to the Head Compliance MS – India. Must be conversant with DPDP Act, 2023. Knowledge/exposure to GDPR will be added benefit Good understanding of the basic frameworks relating to Information security, IT Risk and Compliance such as COBIT, COSO Frameworks, PCI Frameworks etc will be a strong positive Prepare policies, procedures, checklists and oversight material for Data Protection and Data Privacy management Monitor compliances to various Data protection, Data privacy regulations/statutory requirements at an enterprise level Providing guidance to the 1st line security organization in specific area of data protection and data privacy. Review arrangements entered by business from perspective of Data privacy and Data protection Review internal processes, information assets and databases from perspective of Data privacy and Data protection compliances Skills We’d Like Bachelor/Master in IT, IT Security, Engineering or equivalent Certificate in security (e.g. CISA, CISM, CRISC, CISSP, CIPP) is a strong plus Minimum 5-10 years of experience in information security, security risk management and/or cyber security Proven knowledge of relevant security frameworks (ISO27001, PCI) Knowledge of the payment industry is a plus Excellent analytical skills with eye for detail Excellent communication and presentation skills in English both verbally and written Results driven and persistent Multicultural mindset and flexibility, able to work in an international environment Show more Show less

TCS is conducting in-person interview drive for Hyderabad & Chennai location NOTE: Candidate interested in WALK-IN DRIVE in Hyderabad & Chennai must apply TCS is hosting an In-Person Interview Drive on Saturday, 21st June , we’d like to invite you to join us! This is a great opportunity to explore exciting career opportunities with us and meet our hiring team face-to-face. Role **: GRC Analyst / Consultant Desired Skill Set: C ybersecurity risk assessment, Control testing and Compliance audits Experience Range: 4-10yrs & 10+yrs Joining Location: PAN India Venue : Hyderabad : TCS Synergy Park Phase1 ,Premises No 2-56/1/36, Gachibowli, Opposite IIIT Hyderabad Campus, Seri Lingampally, RR District, Hyderabad, Telangana 500019 Chennai : TCS Siruseri ATL Building- 1/G1, SIPCOT IT Park Navalur, Siruseri, Tamil Nadu 603103 Job Description: Technical: Security Framework Alignment and Related Controls Testing (NIST, CoBIT, ISO 27001) SOX Testing for IT Controls IT Compliance audits Vendor Risk Assessments Contribute to documentation of Information Security Policies, Standards, Processes, and Procedures. Manage and perform cybersecurity assessments on emerging/ongoing business initiatives, third-party services Evaluate third-party products/services by reviewing standardized questionnaires, evidencing their controls Non-Technical: Analytical thinker Collaborative team player Eexcellent written and verbal communication Capable of bridging the gap between business demands and cybersecurity requirements Ability to articulate cybersecurity risks in business terms Demonstrable knowledge of information security standards, data security practices and procedures Understanding of the impact of various data protection and integrity controls, operating systems and network security controls, authentication controls, and security protocols Requires demonstrable knowledge of security principles to a diverse range of risk scenarios to coordinate acceptable solutions between business needs, technology operations, and information security best practices Good-to-Have Familiarity with GRC Tools (RSA Archer, ServiceNow GRC) Certifications like CISA, CISSP, CISM, CRISC etc. Show more Show less