531 It Audit Jobs - Page 20

About The Role We are seeking a highly skilled and experienced Business Continuity and Disaster Recovery (BCDR) Specialist to join our team. The ideal candidate will be responsible for developing; implementing; and maintaining business continuity and disaster recovery plans to ensure the organization's resilience in the face of disruptions. This role requires a strategic thinker with strong analytical skills and the ability to work collaboratively across departments. Key ResponsibilitiesDevelop and maintain comprehensive business continuity and disaster recovery plans. Conduct risk assessments and business impact analyses to identify critical business functions and processes. Collaborate with various departments to ensure BCD R plans are integrated and aligned with organizational goals. Coordinate and conduct regular BCDR training and awareness programs for employees. Lead and participate in BCDR testing and simulation exercises to evaluate the effectiveness of plans. Monitor and report on the status of BCDR plans and activities to senior management. Stay current with industry best practices and regulatory requirements related to business continuity and disaster recovery. Provide guidance and support during actual disaster recovery efforts. Primary Skills Business Continuity Disaster Recovery Monitor and report BCDR plans BCDR Testing Secondary Skills Ability to work under pressure and manage multiple projects simultaneously. Excellent communication and interpersonal skills, with the ability to influence and collaborate with cross-functional teams and senior executives.

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Asst. Manager- Governance & Enablement Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Implements IT governance strategy and guidelines, and develops/defines functional specific policies, processes and/or methods for general services for organizational units and the business in responsibility from a technical and governance perspective. SPOC, respectively Bridge Head to central IT, CYS and LC for all general Service-related topics. SPOC for GBS ASP community reg. all IT and CYS related governance and standardization topics. Coordinates resources and monitors and reports progress and milestones regularly to all stakeholders. Offer Governance related trainings for GBS BLs focusing relevant rules and regulations. Management & support of ISO topics for DS services & Products. Represent GCI ASP Lead in the various regional bodies and communities. Qualification: Bachelor"™s degree in information technology or a related field. Strong knowledge of ITIL, COBIT or other IT governance standards and Cybersecurity standards. Bais understanding in the CYS (IT) and identify potential threads Strong organizational and program management skills. 8-12 years of experience in Information technology with at least 5 years in IT governance or related area. Good communication and networking skills in an intercultural environment and across all management levels. Certified Lead auditor/Implementor in ISO 9001, ISO 27001 will be an advantage Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Information Security Professional (ISMS/InfoSec) Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Maintain and manage the ISO27001 certification and related processes. Oversee the Information Security Management System (ISMS) ensuring compliance with ISO27001 standards. Manage and coordinate internal audits, identifying areas for improvement and implementing necessary changes. Facilitate external audits, acting as the primary point of contact with external auditors. Engage with internal stakeholders to ensure information security policies and practices are effectively communicated and implemented. Develop, implement, and manage information security programs to enhance organizational security posture. Stay updated with the latest developments in information security standards and best practices. Qualifications: Bachelor"™s degree in Information Security, Computer Science, or a related field. 5-7 years of experience in information security with at least 5 years in direct ISMS. Strong knowledge of ISO27001 standards and requirements. Experience in managing and maintaining an Information Security Management System (ISMS). Excellent stakeholder management skills and the ability to communicate effectively with various levels of the organization. Strong organizational and program management skills. Certifications such as ISO27001 Lead Auditor (LA) and Certified Information Systems Auditor (CISA) are preferred. Preferred Certifications: ISO27001 Lead Auditor (LA) Certified Information Systems Auditor (CISA) Skills: Excellent analytical and problem-solving abilities. Strong communication and interpersonal skills. Ability to work independently and as part of a team. High attention to detail and a commitment to maintaining high standards of work. Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

About The Role : Job TitleIT Application Owner Lead, Risk & Control Specialist - VP LocationPune, India Role Description The ITAO Lead is a critical IT role with overall accountability and ownership of the applications and infrastructure instances. The role's key responsibility is to ensure applications IT Governance is in line with the banks policies, procedures and standards. The ITAO Lead must manage and maintain the applications, ensuring compliance with applicable IT policies & procedures with specific consideration to Information Security guidelines/policies. The Risk and Control Specialist supports all aspects of the Audit lifecycle. This includes Ensuring all identified risks (Audit Findings) are proactively managed and closed on time and Identifying and assessing risks (Self-identified issues) and their impact, planning remediation actions, and monitoring and reporting their progress. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Supports the ITAO function across foundational platform portfolio. Has a good understanding of development methodologies and IT policies and procedures, with a focus on IT management and information security. Ensures the compliance with Deutsche Bank IT policies & procedures of all the applications in foundational platform. Implements the processes to improve safety and security of the applications, compliance with regulations, policies and standards and enhance operational readiness. Assists the banks audit function in the remediation of audit points and self-identified issues to reduce risk. On-boards the applications onto Deutsche Banks IT Risk and control related tools. Interface with Internal and External Auditors for IT Audits. Applications and infrastructure offboarding Controls IT assets ensuring that administration of the acquisition, storage and disposal of the assets is carried out as per the banks processes. Remediates IT related Audit Findings and IT Risk and control related issues. Facilitates open communications and discussions among the stakeholders with the stakeholder engagement strategies and plans. Manages the technical roadmap of the application Plans/conducts/supports the disaster recovery tests. Provides the trainings and facilitate the knowledge sharing within the ITAO function. Coordinates with external vendors and service providers to ensure seamless support and maintenance. Manages findings life-cycle events (e.g. closures, risk downgrades, risk acceptances) with finding owners/ risk leads to ensure they are addressed, appropriately documented within agreed timelines. Collaborates with internal teams to educate and promote Risk and Controls standards, Finding Management Procedure and Central Function checkliststo ensure successful handling oflife cycle events Understands and advocates DB Policies, Procedures, Controls and standards, Finding Management Procedure and Central Function checkliststo ensure successful remediation and handling oflife cycle events with stakeholder Coordinates with Portfolio Owners/risk leads for the upcoming audit schedule and request if any potential SIIs are to be raised for the audit scope. Participates in Risk and Control meetings with Portfolio owners / CIO-1 totrack and review the status of remediationagainst risk topics Ensures management transparency by way of timely risk reporting and proactive engagement and representing controls team at different governing forums. Identifies and evaluates potential areas of non-compliance or risk, assessing impact, probability and present self-identified findings and proposals for risk mitigation Your skills and experience Desirable experience at least 12-14+ plus years in the IT industry Strong people management, mentoring to other peers also leadership skills who also can work under pressure, independently and proactively while balancing competing priorities to achieve results on complex new development and integrations. Prior ITAO experience is preferrable. Strong understanding of the SDLC and current IT trends in managing Projects. IT Risk Frameworks experience is needed. Banking / Financial industry Exposure is a plus. Business Risk audits experience is needed. Project/Development/ Release/Support Management and Technology Infrastructure management would be a plus. Strong people management and mentoring skills, along with leadership abilities. Capable of working under pressure, independently, and proactively while balancing competing priorities to achieve results in complex new development and integrations. Experience of working together with Agile/Scrum teams and their methods. Tools UsedJira, Confluence & other server monitoring tools. Experience in working in IT Risk, IT Service Management, Run the Bank and Support domains. How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

About The Role : Job TitleInformation Security Analyst, AS LocationMumbai, India Role Description CRO DCO Resilience team Manages and Governs various risk types for Chief Risk Office (CRO) including but not limited to Information Security, Data Protection, Records Management, Business Continuity, Vendor / Third Party Risk Management (TPRM) The Resilience team in India is a part of CRO's Divisional Control Office (DCO) responsible for Governance on various risk types Information Security Analyst will be responsible for ensuring governance on information security and other risk types for various CRO Functions Information Security Analyst will support CRO DCOs efforts to identify, analyse and report the non-financial risks of the CRO Function, thereby ensuring that Group and Functional standards are consistently applied. The candidate is required to demonstrate very good understanding of risk management activities, paired with strong stakeholder management and Microsoft office skills. The role will have full exposure to all areas within CRO and requires working closely with a variety of stakeholders. The role has considerable scope for professional development across the Risk Management domain What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities As the Information Security & Technology Analyst your responsibilities will include (but not be limited to): Assume ISO ownership for assigned Risk applications Ensure execution of Information Security risk assessments and compliance evaluation Ensure implementation of controls for identified Information Security and Technology risks for designated business applications and functions Ensure implementation and maintenance of Identity and Access Management processes, as well as execution of periodical recertification of User Access Rights Ensure annual validation of key application documentation, including KOP and User access matrix for each assigned application and activities Provide timely updates to the DBISO and/or Risk Chief BISO regarding afore mentioned tasks Ensure accuracy of application entries regarding Information Security in the Group inventory of applications (NAR) Engage and create a positive network across external teams like Technology, respective functions, Chief BISOs, Risk type managers etc. Treatment of escalation questions regarding problems as well as assessments of potential violations of regulatory or internal guidelines regarding Information Security Cooperation in improving existing processes and workflows as well as independent implementation of new processes Regular attendance at scheduled meetings and telephone conferences, e.g., presentations of work results to senior decision-makers/workgroups, processing of meetings and telephone conferences (preparation of agendas, if needed, keeping the minutes) Management of urgent activities at short notice Management of enquiries from auditors and regulators Your skills and experience Core understanding of non-financial risk. Good understanding of risk management activities and internal control frameworks. Strong analytical skills to interpret and analyse data. The ability to successfully navigate a complex organisation, build strong relationships and work collaboratively with diverse stakeholders across the bank Very good Microsoft Office skills, particularly Excel and PowerPoint A sound knowledge of Information Security would be preferred along with Information Security Certifications / skills How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

About The Role : Job Title Technology Risk Manager Corporate Title Director Location Pune, India Overview Our Corporate Bank group is a technology centric business, with an increasing move to real-time processing, an increasing appetite from customers for integrated systems and access to supporting data. This means that technology is more important than ever for the business. The CIO Corporate Bank (CB) division sits in the Banks Technology, Data and Innovation (TDI) group. The Risk and Control (R&C) team ensures the Bank's technology control priorities are effectively implemented across CIO - CB. The R&C team offers dedicated support for each Chief Information Officer (CIO) business line, advisory services for control responses, and program management services for broad control uplifts. The team's mission is to reduce the organization's technology risk exposure by implementing key bank controls, ensuring appropriate and timely resolution of audit and regulatory issues, and participating in the Bank's design of control implementations. Therefore, a role on the R&C team is integral in supporting the front-line management in identifying, assessing/measuring risks, developing/implementing remediation actions, and monitoring risks. We are looking for a technology risk manager (also known as embedded risk team lead) to join the Risk & Control team to ensure robust and sustainable control governance across CIO CB, in particular for CB Data and head for India Risk and Control team. You will be responsible for supporting the CB Chief Data Office in managing audit/regulatory/self-identified findings, participating in regulatory and audit exams, monitoring stakeholders compliance with key risk indicators, and ensuring controls are implemented effectively and sustainably. Your role will be integral in supporting the front-line management in identifying and assessing/measuring risks, determining remediation plans, monitoring levels of risk, and implementation of remediation. You will work directly with CIO-1s, the CIO Corporate Bank Risk Leads, senior technology management, business and operations stakeholders, regulatory management, and other embedded risk teams and will represent CB Risk & Control . As a senior member in the region, you will spearhead risk initiatives within the region and will oversee India applications. As a Tech Risk and Controls Director, you will play a pivotal role in shaping and implementing the firms technology risk management strategy. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Flexible working arrangements Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities: Partner with CB CDO, in risk management and control implementation. Create deep and productive relationships with the teams and finding owners for audit/regulatory/self-identified issues to ensure overall risk posture for the area is improved. Support CIO-1 portfolio(s) in managing audit/regulatory/self-identified findings to ensure appropriate and timely resolution of risks/gaps in controls, and resolve non-compliance with Bank policies, procedures and processes and non-compliance with regulations and laws. Review and revise findings lifecycle event documentation. Provide strategic direction on risk management matters to senior leadership including implementation of detailed data driven narratives to inform leadership of risks related to IT and Cybersecurity topics. Provide credible challenge across all information technology and cybersecurity enabling business growth while ensuring that risks remain within appetite. Participate in, and coordinate with technology stakeholders, on internal and external audits and regulatory exams Ensure Risk & Control topics and standards are effectively included in all Change Programs related to CB Data, in particular within the perimeter of the EDM Program. Ensure appropriate senior management awareness/oversight of follow-up on action items to resolve identified technology issues Support application teams in control implementation requirements Ensure risk remediation programs are initiated and executed. Design and implement processes to test effectiveness and sustainability of technical controls. Develop strategies for reducing the risk exposure of CIO CB portfolio(s), including preparedness of critical applications for audit and regulatory exams and working with application owners to address and prevent common risk issues Assist application owners and other technology stakeholders in identifying and documenting risks and developing remediation Tracking and reporting on CIO CB portfolio(s) key risk indicators (KRI) and control uplift programs. Assisting application owners in developing plans to ensure compliance with KRIs. Close control gaps. Ensure risk remediation programs are initiated and executed in line with the Banks policies, procedures and standards. Work with the application teams and control owners to identify and resolve potential issues in control design. Advise on effectiveness metrics, ensure control design includes proper evidence, and provide input to the design and effectiveness of centrally provided tooling. Create risk awareness and positive attitudes through specialized trainings and educate the wider Corporate Bank CDO stakeholders regarding Risk & Control. Develop and guide a culture of talent development to meet business objectives and strategy. Your Skills and Experience: Excellent communication skills, both written and verbal to present ideas and concepts effectively Extensive experience (15-20 years) in technology risk management and risk advisory Strong understanding of three lines of defense model and compliance frameworks, Experience with regulatory environments and financial services technology. Robust knowledge and experience of data risks, in particular data-related technology controls, - policies, - standards and - tools Excellent analytical and investigatory skills to identify underlying technology issues Extensive experience in assessing risk, writing issues, and developing appropriate corrective actions Demonstrate viable solutions and problem solving Relevant experience working with auditors, regulators and external auditors on exams, reports and information requests Prefer experience with designing and testing technology controls and processes Prefer technical background (application development, infrastructure engineering, etc.) How we'll support you Training and development to help you excel in your career Flexible working to assist you balance your personal priorities Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

ROLE AND RESPONSIBILITIES Develop, implement, and manage strategic, comprehensive enterprise information security and IT risk management program. Make a risk assessment of company systems, networks, and data to prevent it from being accessed (viewed by unauthorized personnel, data corrupted, or data lost) Define Risk Management framework and implement across the enterprise business functions. Security assessment, validation & clearance of developed /acquired applications for production launch. Assist with the overall business technology planning, providing a current knowledge and future vision of technology, cloud security and systems aligned to security framework. Managing the daily operation and conducting continuous assessment of current IT security practices and systems and identifying areas for improvement. Implement and maintain compliance of security requirements for new products/services. Devising strategies, solutions and implementing security solutions and minimizing the risk of cyber-attacks. Lead Implementation of security products and solution across organization Implement and comply with best Industrial standards on Security, IT Acts/ISO and other IT statutory requirements. Determines security violations and inefficiencies by conducting periodic audits. Conduct Investigations and forensics for any breaches dealing with those responsible and planning to avoid repeats of the same crisis. Lead the various internal and external IT/Security audits and ensure all compliances are met. Lead various Internal, External IT and security audits. Ensure compliances are met. Preparing Cybersecurity roadmap and assisting for all Cybersecurity compliances requirement. QUALIFICATIONS AND EDUCATION REQUIREMENT Bachelors degree in IT, Computer Science, or a related field. Good to have relevant industry certifications such as CISA, CISM, CISSP, ISO 27001, and others (as relevant) At least 8+ years of working experience in domains related to Information security and with a very strong security mindset. Experience in area of IT Security, IT Audits, Compliance and Risk Management in IT/FMCG Industry Excellent Knowledge of Cyber Security, risks, threats in infrastructure, network, Cloud, Application and Data Centre Technologies Experience of various security solutions such as Firewall / IDS/ IPS / NAC / Email Security/CASB / EDR / WAF / AV / DLP / ATP / PIM / PAM / DAM / SIEM etc. Good understanding of Security technologies for private and public cloud Thorough Knowledge of IT and Security processes implementation and compliances Knowledge of information and network security principles, with a major focus on information, network & application security risks and impact. Good understanding of security frameworks, standards such as ITCG Control, ISO 27001, NIST, CIS etc.

We are looking for a highly skilled and experienced Digital Risk Manager to join our team in Mumbai. The ideal candidate will have 3-5 years of experience in IT Audit, with a strong background in SAP business processes and excellent communication skills. ### Roles and Responsibility Understand client challenges and industry-related issues, offering solutions in IT risk management. Participate in go-to-market strategies, create proposals, and respond to RFPs and client orals. Identify opportunities for cross-selling to current clients and introduce colleagues from other service lines. Travel to client locations (India and abroad) for meetings, conduct workshops, and knowledge-sharing sessions. Jointly lead global account relationships with onshore teams, manage engagement deliveries, quality, and drive growth. Consistently deliver high-quality client services within expected timeframes and budget. Manage a team of Seniors and Staff (across geographies) for delivery of engagements across clients. Foster an innovative and inclusive team-oriented work environment, actively counseling and mentoring junior consultants. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues, communicating this information to the engagement team and client management through written correspondence and verbal presentations. Foster relationships with client personnel to analyze, evaluate, and enhance information systems, developing and improving security at procedural and technology levels. Assist with cultivating and managing business development opportunities, understanding EY and its service lines to assess and present ways to serve clients. ### Job Requirements Bachelor’s or master’s degree and approximately 3-5 years of related work experience in IT Audit. Deep understanding of SAP business processes (e.g., purchase-to-pay, record-to-report, order-to-cash). Excellent communication, documentation, and report writing skills. Strong leadership and teaming skills, with the ability to train, coach, and mentor. A willingness to travel (India and abroad) for client needs. Preferred: SAP certification; additional Industry-related certifications such as CISA or CISM are a plus.

We are looking for a skilled SAP GRC Consultant with 3 to 7 years of experience to join our team in Bengaluru. The ideal candidate will have a strong background in IT governance practices and excellent project management skills. ### Roles and Responsibility Lead SAP Risk and Controls projects, ensuring high-quality delivery and client satisfaction. Conduct SAP pre- and post-implementation reviews to identify and mitigate potential risks. Perform SAP audits, focusing on system integrity and data accuracy. Implement continuous controls monitoring to ensure ongoing compliance and risk management. Design and assess SAP S4 controls, identifying gaps and recommending improvements. Collaborate with cross-functional teams to integrate risk and control considerations into broader project objectives. Interact with business stakeholders to gather, understand, document, and analyze business requirements. Analyze reports and assessments to provide insights on whether a solution/technology being implemented is meeting business requirements. Evaluate business models, processes, and operations to develop a good understanding of business needs and requirements. ### Job Requirements Minimum 3-7 years of experience in SAP IT Audit with knowledge of IT governance practices. Strong experience in performing test of design and effectiveness for internal controls related to SOD, ITAC, ITDM, ICFR, and IFRS along with the ability to suggest best practice recommendations. Proven experience in SAP Risk and Controls projects. Strong understanding of SAP ECC & S4 HANA environments. Familiarity with key business processes (Order To Cash, Procure To Pay, Record To Report). Excellent project management and leadership skills. Ability to communicate complex ideas effectively, both verbally and in writing. Relevant professional certifications (e.g., CISA, CRISC, CIA) are desirable. Good to have exposure in SAP Basis testing & SAP ITGC testing will be preferable. Candidate with professional consulting experience in technology risk management ideally with a Big 4 or similar large consulting firm will be preferred. Possess good written and verbal communication skills. Demonstrate the ability to conduct and drive workshops with client stakeholders on understanding client’s process & system landscape. Work effectively as a team member and drive the delivery of IT audit documents independently. Demonstrate a sound technical understanding of IT Audits (ITGC & ITACs) for SAP environment.

We are looking for a skilled IT Risk Consultant with 3 to 6 years of hands-on experience in IT Risk/Audit, Assurance and Advisory to join our FS Technology Risk Team. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. ### Roles and Responsibility Lead and execute IT Audit and Risk Assurance engagements. Perform client walkthroughs, understand key IT processes and risk. Request and review audit evidence, draft control and risk review reports, and documentation. Plan team schedules and utilization, divide tasks amongst staff, and manage final delivery. Develop and maintain productive working relationships with clients and onshore stakeholders. Identify potential business opportunities for EY within existing engagements and facilitate integration as appropriate. ### Job Requirements Preferably B.E/B.Tech (Computers, Electronics, Data Analytics), BCA/MCA, B.Sc/M.Sc. (computers major), MBA, CA. Must Have: 3-6 years of hands-on internal/external IT Audits, Atleast One - IT General Controls, IT Automated Controls, and Service Organization Controls Reporting (SOCR - SSAE 16 / ISAE 3402) SOC 1, 2, & 3 Reporting. Able to perform independent security configuration review of common operating systems and databases - Windows, Unix, DB2, AS400, SAP R3ECC/HANA, Mainframe, SQL, Oracle. Knowledge of documentation and data analysis tools like Word, Excel, Access, Strong English verbal and written communication skills. CISA, CISM, CRISC, ISO27001, Data privacy certifications are a plus. IT audit knowledge for a financial audit - Control frameworks such as COSO, related regulations including SOX and J-SOX. Data analytics/automation tool – SQL, Monarch, BluePrism, Alteryx, PowerBI. German/Dutch/French language is an added advantage.

We are looking for a skilled Digital Risk Manager with 5 to 7 years of experience in IT Audit and strong personal skills to deliver quality results in the assessment, design, and support implementation of controls, security, and IT risk solutions. The ideal candidate will have a deep understanding of SAP business processes and experience in Internal controls within SAP ECC/S4 Applications. ### Roles and Responsibility Supervise delivery and provide technical and project leadership to team members. Build relationships with clients and drive high-value work products within expected timeframes and budget. Monitor progress, manage risks, and ensure key stakeholders are informed about progress and expected outcomes. Understand client challenges and industry-related issues, offering solutions in IT Risk. Participate in go-to-market activities, create proposals, and respond to RFPs and client orals. Travel to client locations (India and abroad) for meetings, conduct workshops, and knowledge-sharing sessions. Jointly lead global account relationships along with onshore teams, managing engagement deliveries, quality, and driving growth. Consistently deliver quality client services, driving high-quality work products within expected timeframes and on budget. Manage a team of Seniors and Staff (across geographies) for delivery of engagements across clients, fostering an innovative and inclusive team-oriented work environment and actively counseling/mentoring junior consultants. Use knowledge of the current IT environment and industry trends to identify engagement and client service issues, communicating this information to the engagement team and client management through written correspondence and verbal presentations. Foster relationships with client personnel to analyze, evaluate, and enhance information systems, developing and improving security at procedural and technology levels. Assist with cultivating and managing business development opportunities, understanding EY and its service lines to assess/present ways to serve clients. ### Job Requirements Bachelor’s or master’s degree and approximately 5-7 years of related work experience. Deep understanding of SAP business processes (e.g., purchase-to-pay, record-to-report, order-to-cash). Experience in Internal controls within SAP ECC/S4 Applications and their integrations. Strong understanding of IT application controls, IT general controls, and interface controls. Excellent communication, documentation, and report writing skills. Excellent leadership and teaming skills, with the ability to train, coach, and mentor. A willingness to travel (India and abroad) for client needs. Preferred: SAP certification; additional Industry-related certifications such as CISA, CISM are a plus.

Your Role in Shaping Trust & Resilience What You’ll Drive Consultant/ Senior Consultant(s) - (2–5 Years Experience) Key Responsibilities: Execute end-to-end IT audits and assurance engagements across IT General Controls (ITGC), Application Controls, Cloud & Cybersecurity reviews, cloud assessments, and digital control reviews Support assurance projects across frameworks like NIST, ISO 27001, SOC 1, and SOC 2 through control evaluation and evidence analysis. Perform walkthroughs, control testing, and documentation of IT and business process controls Contribute to audit documentation, risk assessments, and walkthroughs with clients. Learn and apply industry best practices across cloud, cybersecurity, and governance domains Role: Deputy Manager (5–7 Years) Key Responsibilities: Execute and manage medium to large-scale SOC Attestation and digital risk assurance engagements with oversight. Conduct risk assessments and design controls aligned with regulations (SSAE 18, ISAE3402, HIPAA, ISO 27001). Evaluate and implement controls across cloud platforms, DevSecOps environments, SaaS, and APIs. Support on cybersecurity assessments, cloud risk and third-party risk engagements. Perform compliance reviews and control testing aligned to regulatory frameworks. Perform maturity assessments, prepare remediation plans, and support clients through audit readiness and attestations. Lead client workshops, prepare deliverables, and coordinate with stakeholders for effective engagement delivery. Collaborate on proposal development and client solutioning efforts. What Were Looking For Regardless of your level, we value: Experience in digital risk, IT audit, cybersecurity, and compliance assurance. Passion for technology, risk, and assurance with a problem-solving mindset Strong understanding of IT control regulatory frameworks and standards (COBIT, NIST, ISO, ITIL, HIPPA etc.) Proficiency in control testing, risk evaluation, and reporting Excellent communication skills—able to bridge technical insights with business need. Certifications like CISA, ISO 27001 LA, CISSP, or cloud security certifications (a plus) Comfort with ambiguity and ability to thrive in fast-paced, client-facing environments.

Greetings of the day ! Our reputed MNC Client is hiring for Senior IT Auditor role: Shift: Shift starts from 11:30 AM, however, due to nature of work and reporting to US , there might be some hours out of normal shift timings. Notice Period: Upto 60 days Roles and Responsibilities Assist the IT Audit manager in audit engagement planning activities for IT SOX Assessment. Lead a team of 2-3 IT auditors for executing tests of design and operating effectiveness. Monitor audit task assignments and drive completion. Lead conversations with stakeholders and auditees during process walkthroughs. Identify control gaps and accordingly provide recommendations in areas requiring improvement based on tests conducted. Conduct reviews of audit workpapers and provide constructive feedback to team members. Monitor status of audit documentation requests and perform timely escalations, as needed. Work closely with stakeholders to communicate audit status, follow-up requests and audit findings. Provide necessary support to external auditors. Qualifications: Bachelor's degree in accounting, Computer Science, Information Systems or related field. Skills Big 4 experience and IT Auditing experience is a must Team management of minimum 4-5 members. Strong communication & stakeholder management. Thanks & Regards, Gayatri Kumari Email id: gayatri@v3staffing.in V3 Staffing Solutions India P. Ltd.

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : Governance Risk & Compliance (GRC) Tools Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Lead, you will lead the effort to design, build, and configure applications, acting as the primary point of contact. Your day will involve overseeing the application development process and ensuring seamless communication among team members. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Provide solutions to problems that apply across multiple teams Lead the application development process effectively Ensure timely delivery of projects Mentor and guide team members for their professional growth Professional & Technical Skills: Must To Have Skills: Proficiency in Governance Risk & Compliance (GRC) Tools Strong understanding of risk management principles Experience in implementing GRC solutions Knowledge of compliance regulations and standards Ability to analyze and mitigate risks effectively Additional Information: The candidate should have a minimum of 12 years of experience in Governance Risk & Compliance (GRC) Tools This position is based at our Pune office A 15 years full-time education is required Qualification 15 years full time education

IT audit experience in Domain like ITGC, Cyber Security, SOC 2, Application and IT security Infrastructure and IT Regulatory compliance Familiarity with IT regulatory requirements related to IS of regulators such as RBI, SEBI and other IT Standards

Role & responsibilities Location: Pune Job Summary: Experience in handling IT Audits like PCI DSS, ISO, HIPPA Resolve problems reported by the end-user Define network policies and procedures and guidelines. Cloud Security and Cloud Monitoring. Job Description: JD for Server and Network administrator (Deputy Manager) Microsoft Active Directory in the enterprise, including creating bulk user accounts, deleting and modifying user accounts, setting up e-mail. FortiGate Firewall Management Ensure network security and connectivity Define network policies and procedures and guidelines. Perform routine network startup and shutdown procedures, and maintain control records Hands-on experience in networking, routing, and switching Re-installation of Windows Servers in the event of system crash/failures Periodic health check of the systems, troubleshooting problems, analyzing and implementing rectification measures Implementation and maintenance of standard operating procedures for maintenance of the infrastructure Resolve problems reported by the end-user. VLANs, TCP/IP, DHCP, DNS Experience in handling IT Audits like PCI DSS, ISO, HIPPA Managing Antivirus in an enterprise like Trend Micro Support and administer third-party applications Microsoft SQL knowledge Compile monthly reports for the IT Manager Execute duties in accordance with ITIL framework guidelines Log calls with external providers where and when necessary Make recommendations to the IT Manager on budget items Make recommendations to the IT Manager for improving systems and processes Stay abreast of latest technology and work with IT Manager on potential upgrades Perform and support other tasks as identified by the Technology Manager In depth understanding of technology systems in the enterprise Virtual clustering and troubleshooting experience with Hyper-V and VMware Excellent business continuity and disaster recovery methodologies and practice PowerShell scripts and commands to automate certain tasks and to change settings in bulk managing Preferred candidate profile

We are hiring for multiple position in IT Dept. Contact person Mr. Srinivasa M, those who are unable to attend the interview are requested to forward their resumes to email id: naveenkumarp@microlabs.in, jonesnaveenrajp@microlabs.in Candidates are requested to carry their copies of Resume, Mark Sheets, Experience Certificates, Latest salary certificate, pay slips of three months and one photographs. Information Technology (IT) Position: Executive/Sr. Executive (Only for male candidates) Qualification: Diploma, B.Sc / M.Sc./ BE / BCA /MCA Experience: 5 to 8 years experience in Pharmaceuticals formulation plant. Job Profile: Proficient in QC & Production related software's both installation and qualification. Well versed in Audit compliance related to IT department.

Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Governance Risk & Compliance (GRC) Platform Operations Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : Degree, Minimum 3 years of experience in IT Security/Information Security Summary :As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth operation of the Governance Risk & Compliance (GRC) Platform. Your typical day will involve accurately defining client issues, interpreting and designing resolutions based on deep product knowledge, and utilizing exceptional communication skills to keep our world-class systems running. Roles & Responsibilities: Provide ongoing support to clients, acting as the interface between the client and the GRC Platform. Accurately define client issues and interpret and design resolutions based on deep product knowledge. Utilize exceptional communication skills to keep our world-class systems running. Collaborate with cross-functional teams to ensure the smooth operation of the GRC Platform. Stay updated with the latest advancements in GRC Platform Operations, integrating innovative approaches for sustained competitive advantage. Professional & Technical Skills: Must To Have Skills:Experience in Governance Risk & Compliance (GRC) Platform Operations. Must To Have Skills:Exceptional communication skills. Good To Have Skills:Experience in Cloud Tech Support. Good To Have Skills:Experience in Application Support. Strong understanding of GRC Platform Operations. Solid grasp of Cloud Tech Support and Application Support. Experience with data analysis and problem-solving. Experience with project management and collaboration tools. Additional Information: The candidate should have a minimum of 2 years of experience in Governance Risk & Compliance (GRC) Platform Operations. The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful solutions. This position is based at our Chennai office. Qualifications Degree, Minimum 3 years of experience in IT Security/Information Security

Skill required: Risk & Compliance - Internal Audit Quality Assurance Designation: Risk and Compliance Senior Analyst Qualifications: Bachelor of Pharmacy/Master of Pharmacy/Bachelor in Physiotherapy Years of Experience: 7+ years What would you do? Prepare and Conduct audits, complete the checklists in the eQMS, draft audit reports, approve CAPA responses and track CAPA actions to closure. Perform vendor audit. Provide support and guidance as required during client audit / regulatory inspections. Support in performing annual internal audit plan and quarterly reconciliation of annual audit plan. Comply with QMS procedures as per requirement specified in the Quality Manual, applicable Accenture policies and SOPs/Guidance documents. Develop procedural documents SOP/SWI/Guidance documents for QGO in consultation with the QGO Lead or designee.You will be working as a part of the Quality Governance Organization team which is responsible for performing quality audits.You will be responsible for internal audit and vendor audit majorly for clinical data management. What are we looking for? Clinical Data Management Clinical eTMF Management Clinical EDC Build Quality Assurance (QA) Quality Auditing Ability to meet deadlines Ability to perform under pressure Adaptable and flexible Agility for quick learning Commitment to quality Roles and Responsibilities: Prepare and Conduct audits, complete the checklists in the eQMS, draft audit reports, approve CAPA responses and track CAPA actions to closure. Perform vendor audit. Provide support and guidance as required during client audit / regulatory inspections. Support in performing annual internal audit plan and quarterly reconciliation of annual audit plan. Comply with QMS procedures as per requirement specified in the Quality Manual, applicable Accenture policies and SOPs/Guidance documents. Develop procedural documents SOP/SWI/Guidance documents for QGO in consultation with the QGO Lead or designee. Qualifications Bachelor of Pharmacy,Master of Pharmacy,Bachelor in Physiotherapy

Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Servicenow Tools Administration Minimum 5 year(s) of experience is required Educational Qualification : Engineering with ServiceNow Certification Summary :As an Application Designer with expertise in ServiceNow Governance, Risk, and Compliance (GRC), you will be responsible for assisting in defining requirements and designing applications to meet business process and application requirements. Your typical day will involve working with the ServiceNow platform, collaborating with cross-functional teams, and ensuring compliance with industry standards and regulations. Roles & Responsibilities: Collaborate with cross-functional teams to define requirements and design applications to meet business process and application requirements. Develop and maintain ServiceNow GRC applications, ensuring compliance with industry standards and regulations. Provide technical expertise in ServiceNow GRC, including configuration, customization, and integration with other systems. Ensure the quality and integrity of data within ServiceNow GRC applications, including data migration and data management. Provide technical support and troubleshooting for ServiceNow GRC applications, including incident management and problem resolution. Professional & Technical Skills: Must To Have Skills:Expertise in ServiceNow Governance, Risk, and Compliance (GRC). Good To Have Skills:Experience with ServiceNow Tools Administration. Strong understanding of IT governance, risk, and compliance frameworks and regulations. Experience with ServiceNow platform, including configuration, customization, and integration with other systems. Experience with data migration and data management in ServiceNow platform. Experience with incident management and problem resolution in ServiceNow platform. Additional Information: The candidate should have a minimum of 5 years of experience in ServiceNow Governance, Risk, and Compliance (GRC). The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful solutions in ServiceNow GRC. This position is based at our Gurugram office. Qualifications Engineering with ServiceNow Certification

Skill required: Risk & Compliance - Operational Audit & Compliance Designation: Risk and Compliance Senior Analyst Qualifications: BCom/Master of Business Administration/CA Inter Years of Experience: 5 to 8 years What would you do? You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.The Operational Audit & Compliance team focuses on auditing and managing effective implementation and delivery of functional processes within operations to mitigate risks. The role may require for you to have a good understanding of anti-corruption, BCM and infosec policies, records management and contractor controls. The team is responsible for establishing processes to validate the effectiveness and drive improvements wherever required. What are we looking for? Risk and Compliance Experience Knowledge of Finance & Accounting processAuditing experience Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications BCom,Master of Business Administration,CA Inter

Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Senior Analyst Qualifications: Any Graduation Years of Experience: 5 to 8 years What would you do? Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model – powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints.Automated control testing is required. ITGC What are we looking for? Results orientation Strong analytical skills Written and verbal communication Collaboration and interpersonal skills Process-orientation Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualifications Any Graduation

The Cloud Security Advisor Join our team of Cloud Security professionals to re-imagine technology delivery, business models and revenue streams Practice: Technology Strategy & Advisory, Capability Network I Areas of Work: Cloud Security Advisor | Level: Manager | Location: Bangalore/Mumbai/Gurgaon/Pune | Years of Exp: 10 to 15 years Explore an Exciting Career at Accenture Are you passionate about Tech-driven transformation and problem solving? Do you want to design, build and implement strategies to enhance business architecture performance? Are you passionate about being part of an inclusive, diverse and collaborative culture? Then, this is the right place for you! Welcome to a host of exciting global opportunities in Accenture Technology Strategy & Advisory.. The Practice- A Brief Sketch: The team helps clients achieve growth and efficiency through innovative R&D transformation, aimed at redefining business models using agile methodologies. As part of this high performing team, you will work closely with an ecosystem of partners to help accelerate resilience in the public cloud for fast, frictionless, scalable, proactive and cost effective cloud security. You will work on the following key areas: Business Problem Analysis :Identify and assess current state security capabilities and risk mitigation posture for our clients Technology-driven journey intersection :Define target state security capabilities and design security roadmap that includes cutting edge trends within Applications, APIs, and data Security Transformation: Apply best in class solutions to mitigate known risks and pre-empt unknown threats to safeguard data, networks, people and assets. High Performance Growth and Innovation :Assisting our clients to build the required capabilities for growth and innovation to sustain high performance. Bring your best skills forward to excel at the role: Develop technology solutions and value adding propositions to drive C-suite/senior leadership level discussions Demonstrate good analytical skills coupled with knowledge in cloud security to conduct analysis of present and anticipated threats; define policies, processes, and technology to address gaps Capitalize on in-depth understanding of security guiding principles, design recommendations and architecture, identity, and access management concepts Lead proof of concept and/or pilot implementations and define the plan to scale implementations across multiple technology domains Maximize subject matter expertise on security-led projects and play a key role in pitches where data-based RFP responses are discussed Contribute in presenting security strategy to clients, develop client's maturity in the use of data within various domains Demonstrate ability to work creatively and analytically in a problem-solving environment. Use knowledge of key value drivers of a business , how they impact the scope and approach of the engagement. Read about us. Qualifications Your experience counts! MBA from a tier 1 institute Your prior experience in one or more of the following is important Experience in developing security guiding principles and logical security architecture for Applications, Data, and Infrastructure EA layers. Cloud Security principles and data protection regulations such as GDPR Security Frameworks:Working knowledge of frameworks and standards including ISO 27001, ISO 27002, PCI DSS, SOX, HIPAA Proficient access management concepts as well understanding of tools for PAM / IAM Practical industry expertise across Financial Services, Retail, Consumer Goods, Telecommunications, Life Sciences, Transportation, Hospitality, Automotive / Industrial, Mining and Resources. Certifications:TOGAF/CISSP/CISA/CISM certified preferred Whats in it for you? An opportunity to work on with key G2000 clients Potential to with leaders in strategy, industry experts, enterprise function practitioners and, business intelligence professionals to shape and recommend innovative solutions that leverage emerging technologies. Ability to embed into everythingfrom how you service your clients to how you operate as a responsible professional. Personalized training modules to develop your to grow your skills, industry knowledge and capabilities Opportunity to thrive in a that is committed to accelerate equality for all. Engage in boundaryless collaboration across the entire organization.

Project Role : Application Designer Project Role Description : Assist in defining requirements and designing applications to meet business process and application requirements. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Servicenow Tools Administration Minimum 3 year(s) of experience is required Educational Qualification : Engineering with ServiceNow Certification Summary :As an Application Designer, you will assist in defining requirements and designing applications to meet business process and application requirements. You will play a crucial role in ensuring the successful implementation of ServiceNow Governance, Risk, and Compliance (GRC) solutions. Your typical day will involve collaborating with cross-functional teams, analyzing business needs, and designing innovative solutions to enhance the overall efficiency and effectiveness of the organization's GRC processes. Roles & Responsibilities: Expected to perform independently and become an SME. Required active participation/contribution in team discussions. Contribute in providing solutions to work related problems. Collaborate with cross-functional teams to gather and analyze business requirements. Design and develop ServiceNow GRC applications to meet the organization's needs. Implement best practices and industry standards for ServiceNow GRC solutions. Provide technical guidance and support to the development team. Conduct regular code reviews and ensure adherence to coding standards. Stay updated with the latest ServiceNow GRC features and functionalities. Assist in troubleshooting and resolving technical issues. Create and maintain technical documentation for future reference. Train end-users on the usage of ServiceNow GRC applications. Professional & Technical Skills: Must To Have Skills:Proficiency in ServiceNow Governance, Risk, and Compliance (GRC). Good To Have Skills:Experience with Servicenow Tools Administration. Strong understanding of IT governance, risk management, and compliance principles. Experience in designing and implementing ServiceNow GRC solutions. Knowledge of ServiceNow platform and its various modules. Familiarity with ITIL processes and best practices. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. Additional Information: The candidate should have a minimum of 3 years of experience in ServiceNow Governance, Risk, and Compliance (GRC). This position is based at our Noida office. An Engineering degree with ServiceNow Certification is required. Qualifications Engineering with ServiceNow Certification

IT General Controls testing for Internal Audits (IA) and Sarbanes-Oxley (SOX) 302, 404 audits, Logical access, Change management, Computer operations, Cloud Computing, Network Security, and SDLC, Third party reporting e.g. SOC1, SOC2 etc. Required Candidate profile Must have exp in ITGC, SOC 1, SOC 2, SOX, GRC, IT Audit. Must be CISA Certified. Interested candidates can share their updated CV on sakshi@yeslandmark.com