497 It Audit Jobs - Page 4

Role & responsibilities To manage cyber threats and ensure that risks are controlled as per Organisation Risk appetite Manage security projects and day-day operations that involves security activities planned and BAU Manage vendors providing security products and services. Track vendor performance as per deliverables and committed SLAs/ TAT Manage technology / IT risks ensuring that critical security issues and risks are prioritized and fixed as per TAT/ SLA Manage the Vulnerability Management domain in CISO team to ensure that all identified vulnerabilities are fixed in time Manage advanced cyber threat intel tools/ services to ensure that all reported risks are addressed in time Support Business and other functions in audits/ assessments / advisory / implementation of security controls and processes to be implemented Preferred candidate profile Technical and hands on experience in Vulnerability & Risk management using security tools and solutions Technical knowledge on security fundamentals and emerging cyber threats

Apply Experience in privacy compliance and management. Understanding of data protection laws and regulations such as GDPR, CCPA, DPDPA, PDPL etc. Drafting general corporate and commercial contracts experience is must. Strong interpersonal skills & high degree of attention to detail. Certifications in Privacy would be an added advantage.

Responsibilities for Internal Candidates Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster RecoveryPerform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits.Performing planning and executing audits, including - SOX, Internal Audits, External AuditsConducting controls assessment in manual/ automated environmentPrepare/Review of Policies, Procedures, SOPsMaintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables.Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the clients business/industry to identify technological developments and evaluate impacts on the work to be performed.Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project s progress. Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status.

Position Purpose A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications (if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certification: in IT Audit - CISA (Certified Information System Audit) required other IT certification: Cybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential Behavioural Skills : Communication skills - oral written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical Ability Ability to manage a project Ability to manage / facilitate a meeting, seminar, committee, training Ability to understand, explain and support change Ability to anticipate business / strategic evolution Education Level: Master Degree or equivalent Experience Level At least 10 years

: Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology. About the role: As a Vendor Risk Operations team member, you will play a critical role in safeguarding Paytm from potential risks associated with our vendor ecosystem. You will be responsible for conducting comprehensive vendor risk assessments, ensuring compliance with internal policies and regulatory requirements, and actively contributing to the continuous improvement of our vendor risk management framework. This role requires a keen eye for detail, strong analytical skills, and the ability to collaborate effectively with various stakeholders. Conduct end-to-end vendor risk assessments across various risk domains (e.g., Vendor deduplication, information security, financial stability, business continuity, regulatory compliance, data privacy). Collaborate with business units to understand their vendor requirements and associated risks. Review vendor-provided documentation, certifications, and audit reports to identify potential vulnerabilities. Conduct Mystery-shopping wherever required Track and monitor vendor remediation efforts to ensure timely closure of identified risks. Maintain accurate and up-to-date vendor risk profiles and assessment records. Assist in the development and enhancement of vendor risk assessment methodologies, tools, and processes. Contribute to the ongoing development and implementation of Paytm's vendor risk management framework. Generate regular reports on vendor risk posture and assessment progress for internal stakeholders. Participate in ad-hoc projects and initiatives related to vendor risk management as required. Expectations/: Educational QualificationBachelor's degree in Business Administration, Finance, IT, Risk Management, or a related field. Experience2-5 years of experience in vendor risk management, third-party risk management, internal audit, compliance, or a similar risk-focused role. Domain KnowledgeStrong understanding of various risk domains, including information security, data privacy (e.g., GDPR, local data protection laws), financial risk, operational risk, and regulatory compliance. Understanding of Technology and User ExperienceAn appreciation for how technology solutions are built and how they impact user experience will be valuable in assessing vendor capabilities and potential risks. Analytical & Problem-Solving Skills: Excellent analytical and problem-solving skills with the ability to conduct deep dives, identify, assess, and mitigate risks effectively. Advanced Knowledge of Excel is required for data analysis and reporting. Basic knowledge of MySQL would be an added advantage for data retrieval and manipulation. Communication & Interpersonal Skills: Good communication and interpersonal skills, with the ability to present complex information clearly and concisely to diverse audiences. Strong written communication for documentation and reporting. High level of drive, initiative, and self-motivation. Ability to work independently, prioritize tasks, and manage multiple assessments simultaneously in a fast-paced environment. A willingness to experiment, learn quickly, and continuously improve processes and personal skills. Certifications (Preferred but not mandatory)CISA, CRISC, CISM, or other relevant certifications in risk management or information security. Why join us: A collaborative output driven program that brings cohesiveness across businesses through technology Improve the average revenue per use by increasing the cross-sell opportunities A solid 360 feedbacks from your peer teams on your support of their goals CompensationIf you are the right fit, we believe in creating wealth for you with enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it

Position Purpose RISK Operational Risk Management (RISK ORM), created early 2021 to oversee operational risks within the mandate of the RISK function, is organised, under the responsibility of the Group Chief Operational Risk Officer (Group CORO), around 3 PolesRISK ORM Framework, RISK ORM Technology & Transversal Risks and RISK ORM Network. Under the authority of the Poles Manager, RISK ORM Network is made up of all the Operational Risk Officers (OROs) acting as the second line of defence (LoD2) within the Groups operational entities (Poles, Business Lines, Functions, Transversal Activities). The below requirement is for Operational Risk Officer- ICT Controls Testing role which part of the Common ICT LoD2 Controls Execution Platform (CICEP) under Group RISK ORM Network team. The candidate will be part of The Banks 2nd line of defense function, and they will be responsible for testing the deployment, and effectiveness of the IT and Cyber controls globally. The position is based in India Solutions Pvt. Ltd. (ISPL), Mumbai and reports to the Head of CICEP (India CoE), plus functionally to Group Head of ICT Controls Testing. Key success of the CICEP relies on building trusted partnerships with stakeholders and particularly with the ORM Network community and globally, with all entities of the Group. Responsibilities Direct Responsibilities Perform the independent testing of ICT controls (ITGC controls testing) to determine the design effectiveness, and operating effectiveness of IT and Cyber controls. Contribute to the industrialization and automation of RISK ORM ICT control testing services by development of methodologies / tools for the achievement of assignments. Draft high-quality reports containing the assessors opinion on the ICT control gaps, and recommendations for improvement, post completion of an assignment. Review and assist with the evaluation of control deficiencies and provide practical recommendations for remediation. Identify areas of improvement for ICT control testing and assist with the enhancement of the methodologies / tools for carrying out the ICT controls testing assignments. Ensure completion of the testing and adherence to the internal timelines. Provide IT and cyber risk management consultancy (specific to ICT controls) to business and IT stakeholders. Work in collaboration with other stakeholders from business and RISK ORM teams to contribute towards influencing the ICT risk culture of The Bank. Improve the effectiveness of the Internal Controls programme by reviewing the control environment, risk assessment process, control activities, information and communication and monitoring activities Contributing Responsibilities Collaboration at the India CoE level with Head of India CoE, including but not limited to the CoE level reporting requirements Effectively contribute to the CoE, RISK India Hub and ISPL on Group mandates, Objectives and priorities Help and contribute to build the CoE as a positive place to work Technical & Behavioral Competencies S, EXPERIENCE AND COMPETENCIES Skills Required 3-6 years of experience in IT audit / ITGC controls testing / technical assessments, preferably in the areas of Cyber and Technology domains in a financial institution. Must be able to interface and coordinate work efficiently, and effectively with business partners. Excellent analytical skills being able to come to a thoughtful and business focused conclusion quickly. Good communication, listening and influencing skills, including ability to articulate complex issues and incorporate feedback. Ability to manage their workload independently to meet their targets, and priorities set in conjunction with management. Demonstrating a calm professional approach, with a good understanding of delivery within time constraints and the need to escalate/inform departmental management as appropriate. Adapting personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done. Being rigorous and thorough especially when logging and tracking issues through to conclusion. Demonstrating a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business. Ability to express views clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate. Works iteratively, delivering quickly and frequently to produce high quality documents and outputs which require little to no rework. Team player focus on the success of the whole team. Working well both with others, as well as individually. Ability to work under strict timelines and at pressure situations to manage the delivery. Open to work under global time zones as required for workshops or stakeholder discussions. Skills Preferred Has the proven ability to think outside of the box, challenge industry norms and adapt quickly to evolving requirements. Is self-aware, anticipates problems, adapts and meets them head on. Strong stakeholder management, relationship building, influencing, facilitating and presenting skills. Is solutions focused measures their output on whether issues, problems or challenges are resolved as a criteria for success. Competencies: University degree (technical), and/or certification such as ISO27001, CISA. Professional qualifications/trainings relevant to technology and/or cyber risk (e.g. change management, outsourcing, vulnerability management, cloud security etc.). Conduct: Consider the implications of your actions on colleagues, partners and clients before making decisions, and escalate issues to your manager when unsure. Specific Qualifications (if required) University degree (technical), and/or certification on Risk Management Skills Referential Behavioural Skills(Please select up to 4 skills) Attention to detail / rigor Ability to deliver / Results driven Ability to synthetize / simplify Ability to collaborate / Teamwork Transversal Skills: (Please select up to 5 skills)Ability to anticipate business / strategic evolutionAbility to develop and adapt a processAbility to set up relevant performance indicatorsAnalytical AbilityAbility to develop and leverage networksEducation Level:Bachelor Degree or equivalentExperience LevelAt least 3 years Other/Specific Qualifications (if required) Professional qualifications/trainings relevant to Information Security, Risk Management (ISO 27001, ISO 3100, CISA) preferred

Position Purpose A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical & Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications (if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certification: in IT Audit - CISA (Certified Information System Audit) required other IT certification: Cybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential Behavioural Skills : Communication skills - oral & written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical Ability Ability to manage a project Ability to manage / facilitate a meeting, seminar, committee, training Ability to understand, explain and support change Ability to anticipate business / strategic evolution Education Level: Master Degree or equivalent Experience Level At least 10 years

Evaluate IT risks from SOX perspective Experience in performing multiple full round of internal auditing and proficient with SOX regulation. Perform Design and operating effectiveness test of ITGCs as well as application controls Leverages industry knowledge from prior experience. Performs, and is responsible for, reviewing the audit evidences, validating them for completeness and accuracy and documenting the work-papers. A good understanding of IT data center operations and a variety of technology platforms. Perform Design and operating effectiveness test of ITGCs as well as application controls Evaluate Design and performance of automated/configuration controls Liaise with client as well as external auditors for requirements and questions Finalize Issues noted and discuss it with the required stakeholders to bring it to closure Document Test work papers with precision and detail Holds industry certifications such as CISA, CISSP, CISM, CEH, ISO 27001 LA, IA etc.

Position Purpose A primary focus for this position will be to lead audit execution covering end-to-end processes of auditable entities within the IT and Cybersecurity Inspection Generale APAC team. Responsibilities This individual will work closely with audit assignment team members to complete each phase of the audit. This will entail: assessing the sufficiency and suitability of controls to mitigate risks; and testing the operating effectiveness and sustainability of controls; and documenting walk-throughs of in-scope processes; and documenting the investigations conducted and their results; and drafting findings and associated recommendations to address identified gaps in the control environment; and documenting the final report. This individual will have regular interactions with team members, process / control owners, and management of business units. Based on experience, this role will entail contributing to IT audits. Duties: Demonstrates a strong ability to audit procedures and controls accurately, timely, and with minimal supervision. Executes audit work in accordance with BNPP Inspection Generale policies and procedures. Testing the control design and operating effectiveness of in-scope IT controls Contributes to the completion of continuous monitoring activities for assigned auditable entities and escalates matters that may impact the timing of the next audit assignments. Prepares and updates risk assessments for assigned auditable entities for supervisory review. Validates the sufficiency and suitability of business corrective actions to address audit recommendations. May be asked to direct the work of more junior staff members on the audit assignments. Performs other duties as assigned. Technical & Behavioral Competencies Deep knowledge of IT audit Requires deep knowledge of banking functions typically obtained through advanced education combined with experience. Exhibits effective written and verbal communication skills with all levels of management (in English) Not less than 10 years of experience in IT external auditing / internal auditing / in the financial services industry. Curiosity, rigor, and precision. Outstanding analytical skills High level of initiative, commitment, and drive Ability to work effectively under pressure and within short deadlines Promotes a constructive, cooperative, and participative teamwork environment Specific Qualifications(if required) Possess a Bachelors / Masters Degree in Information Technology/ Management Information System / Computer Science and related discipline; Professional Qualification/Certificationin IT Audit - CISA (Certified Information System Audit) required other IT certificationCybersecurity (e.g CISSP, CISM, CCSP/CCSK, CEH), IT Service Management (ITIL foundation). Skills Referential BehaviouralSkills: Communication skills - oral & written Ability to collaborate / Teamwork Attention to detail / rigor Active listening Adaptability Transversal Skills: Analytical AbilityAbility to manage a projectAbility to manage / facilitate a meeting, seminar, committee, trainingAbility to understand, explain and support changeAbility to anticipate business / strategic evolutionEducation Level:Master Degree or equivalentExperience LevelAt least 10 years

Your scope is the entire Maersk. Specific Job RequirementsYou will be responsible for identifying, assessing, and mitigating vulnerabilities within our eco systems and networks. This role requires a deep understanding of security principles, threat landscapes, and vulnerability management processes. The ideal candidate will have a proactive approach to security, excellent problem-solving skills, and the ability to work collaboratively with cross-functional teams. Responsibilities will include but not be limited to: Conduct regular vulnerability assessments and penetration testing on IT systems, networks, and applications. Identify and prioritize vulnerabilities based on risk and potential impact. Develop and implement remediation plans to address identified vulnerabilities. Collaborate with extended cyber teams to ensure timely resolution of issues. Monitor and analyse security alerts and threat intelligence to stay informed about emerging threats. Maintain and update vulnerability management tools and systems. Prepare and present reports on vulnerability status, trends, and remediation progress to stakeholders. Develop and maintain security policies, procedures, and best practices. Provide guidance and training if required on vulnerability management and security awareness. The Candidate A passionate security professional keen to use their technical skills to make a difference in a global, complex and challenging environment. You are not expected to be an expert, but the role requires technical insight (CompTIA Security/CASP+ or equivalent an advantage) Experience of working effectively in an agile environment, confidence with tools such as Confluence and JiraPersonal Profile: Able to think creatively in order to analyse vulnerabilities and provide insights on remediation. Excellent organisation, time management, problem-solving skills and attention to detail Resilient, can-do attitude and ability to work as part of a team Good written and verbal communication skills and able to be understood by both technical and nontechnicalpersonnel Ability to manage conflicting priorities and multiple tasks

Responsibilities: Lead risk-based audits, process & IT audits Ensure compliance with regulatory standards Collaborate with stakeholders on remediation plans Oversee information system audits

Role & responsibilities Professional responsibilities for this manager position include but are not limited to: Applying internal control principles and technical knowledge, including Application Controls and IT General Controls; Developing and/or supervising the execution of detailed audit work plans for the IT audit component of the IA team through resource allocation, stakeholder coordination and quality review; Managing the identification of key risks and controls, including evaluation of control design; Evaluation of operational effectiveness of IT System Controls, utilizing appropriate testing techniques and professional skepticism; Providing regular status reports to IA management and internal clients/stakeholders, when necessary, to keep relevant parties informed of progress and potential issues; Assessing audit results, translating findings into level of risk, to produce meaningful insights and recommendations; Communicating risk findings, verbally and written, to clients in a pragmatic and helpful manner; Driving follow up and remediation of reported issues in a timely manner; Building meaningful relationships with clients through client engagements and networking; Managing and delivering against deadlines while working on multiple projects; Participating in development and delivery of training curriculum; and Coaching team members and reviewing their work. Minimum years of experience: 5+ year(s) of external/ internal audit experience (big four experience is preferred) Minimum Degree Required: Bachelors or master’s degree in accounting, Management Information Systems, Computer Science, Engineering or business related field Preferred Certifications: CISA, CISM, CISSP, CA and/or CIA Preferred Knowledge/ skills: Demonstrates extensive knowledge and/or proven record of success in the following areas: Security and controls for various on-premise and cloud-based technologies; Control standards (COSO, COBIT), control testing strategies; Public accounting practices and internal audit processes i.e., technology and tools for planning, testing and reporting; IT general controls concepts in the areas of system development, change management, computer operations and access to programs; Identifying and assessing business process controls and linkage to IT systems; and, IT security fundamentals across multiple domains including security management, security architecture, access control, application development, operations security, physical security, cryptography, telecommunications and networking, business continuity planning, investigations and ethics. Additionally, candidates should have excellent communication (written and verbal) skills and should be able to work with global teams independently with minimal supervision. Flexible work hours are required to align with US and UK hours as agreed upon. SHift-2pm-11pm

Company: Marsh Description: Same as above Guy Carpenter, a business of Marsh McLennan (NYSE: MMC), is a leading global risk advisory and reinsurance specialist and broker. Marsh McLennan is a global leader in risk, strategy and people, advising clients in 130 countries across four businesses: Marsh, Guy Carpenter, Mercer and Oliver Wyman. With annual revenue of $24 billion and more than 90,000 colleagues, Marsh McLennan helps build the confidence to thrive through the power of perspective. For more information, visit guycarp.com, or follow on LinkedIn and X.

Job Description Summary The Role holder will be a member of the team responsible for the execution of overall IT SOx program that supports GEHC s SOx certification. The Role holder will work collaboratively with other team members, broader IT organization of CIOs, IT Process/ Control Owners, IT Risk Leader and his team, External Auditors, and with the Business Process SOx team. GE HealthCare is an $18 B publicly traded, healthcare technology company that spun off from General Electric Company in January of 2023. We are expanding the capabilities of the current Internal Controls function by adding roles to support its expanded SOX program and other internal controls monitoring related activities. GEHC SOx team is an integrated team, managing both Business Process & IT Sox. . Job Description Roles and Responsibilities Control Walkthroughs and Testing: Lead and schedule walkthroughs for assigned IT controls to gain a comprehensive understanding of the Company s IT infrastructure and its alignment with key business/ IT processes. Perform detailed control testing and accurately document results in accordance with workpaper standards and audit methodology set by GEHC. Ensure documentation reflects a clear narrative and complete audit trail for both design and operating effectiveness testing. Quality and Accountability: Own the quality and integrity of all deliverables, ensuring they meet or exceed internal standards and regulatory expectations. Maintain accountability for the accuracy, clarity, and completeness of audit documentation and testing artifacts. Issue Identification and Remediation: Proactively identify and escalate control deficiencies or process gaps to the IT SOx Manager in a timely manner. Collaborate with control and process owners to confirm deficiencies, assess associated risks, and agree on appropriate remediation actions and timelines. Evaluate the impact of control deficiencies, including the identification and validation of mitigating controls where applicable. Remediation Testing and Closure: Conduct thorough follow-up testing on remediated controls to evaluate both design adequacy and operational effectiveness. Review and validate remediation efforts before formally closing deficiencies in line with SOx compliance requirements. Reporting and Communication: Support the preparation and delivery of periodic reports to executive and senior leadership teams on the progress of IT SOx activities against the compliance plan. Provide clear and concise updates regarding key risks, open issues, and remediation status. Program Support: Contribute to ongoing enhancements of the IT SOX compliance program by recommending improvements to methodologies, templates, and workflows. Take on ad-hoc assignments or strategic projects as requested by the IT SOX Manager to support program execution and maturity. Required Qualifications Minimum of 5 years of progressive experience in IT audit, IT SOX compliance, risk management, or a related field including at least 2 years with a Big four audit firm preferably. Bachelors degree in Information Systems, Accounting, Finance, Computer Science , or a related discipline from an accredited institution. Strong understanding of IT General Controls (ITGCs), IT Automated Business Controls (ITACs) and SOX 404 compliance , including: Solid working knowledge of risk and control frameworks such as COSO, COBIT, NIST, or ISO 27001 . Proven experience drafting and reviewing IT risks, control descriptions, test plans, exception reports, and remediation recommendations. Demonstrated experience managing end-to-end SOX compliance cycles, including walkthroughs, testing, documentation, control assessments, and remediation tracking. Experience in performing quality assurance reviews of control testing performed by team members or third-party consultants. Reports To: IT SOX Manager Core Competencies Integrity: Consistently demonstrates high ethical standards and sound judgment in handling sensitive issues. Proactive & Self-Driven: Ability to work independently, manage time effectively, and drive tasks to completion with minimal supervision. Analytical Thinking: Strong problem-solving skills with the ability to analyze complex IT environments and identify relevant risks and controls. Communication: Excellent written and verbal communication skills in English, with the ability to interact effectively across technical and non-technical stakeholders. Adaptability: Quick learner who can adjust to shifting priorities and apply new knowledge in dynamic environments. Inclusion and Diversity GE HealthCare is an Equal Opportunity Employer where inclusion matters. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. . Our total rewards are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you d expect from an organization with global strength and scale, and you ll be surrounded by career opportunities in a culture that fosters care, collaboration and support Disclaimer: GE HealthCare will never ask for payment to process documents, refer you to a third party to process applications or visas, or ask you to pay costs. Never send money to anyone suggesting they can provide employment with GE HealthCare. If you suspect you have received a fraudulent call , please fill out the form below: https: / / www.ge.com / careers / fraud Relocation Assistance Provided: Yes

Reference 25000BXB Responsibilities Responsibilities: Preparation of daily/ monthly / Adhoc MIS Follow up and compilation of Balance confirmation certificates Assist in Account Maintenance related activities Perform BOD, EOD checks and day end reconciliation of transactions Handling of basic client queries Preparation of checklists for transactions and raise workflows to back office Respond to queries on documents raised for scrutiny to back office Tracking receipt of documents from clients and filing of soft copies for bank records Assist in preparation of various follow up letters to clients Assist in compilation of regulatory reports, data upload/download from regulatory tools Required Profile required Academic Background (degree and major): Com, MBA Finance Skills & Competencies required: Strong communication skills (written and spoken) Strong interpersonal skills Language Skills: English, Hindi Computer Skill: Good knowledge and experience in using MS tools Experience in IT/systems application will be an added advantage, Business insight Societe Generale is one of the leading financial services groups in Europe Based on a diversified universal banking model, the Group combines financial strength with a strategy of sustainable growth, putting its resources to work to finance the economy and its clientsplans With a solid position in Europe and a presence in countries with strong potential, the Groups 145,700 employees in 66 countries support 31 million individual clients, large corporates and institutional investors worldwide by offering a wide range of advisory services and tailored financial solutions, Societe Generale was established in India in the year 1978 In 1985, Societe Generale Bank commenced operations as a Scheduled Commercial Bank in Mumbai Since then, it has a proud legacy of servicing corporates and clients New branches were added in Delhi (1993) Societe Generale not only offers an extensive product portfolio to different market segments, but customizes solutions in investment bankingl, global finance and global markets Societe Generale is an equal opportunities employer and believes that a diverse and inclusive workforce should be encouraged and recognized, Diversity and Inclusion We are an equal opportunities employer and we are proud to make diversity a strength for our company Societe Generale is committed to recognizing and promoting all talents, regardless of their beliefs, age, disability, parental status, ethnic origin, nationality, gender identity, sexual orientation, membership of a political, religious, trade union or minority organisation, or any other characteristic that could be subject to discrimination,

Overview Key Responsibiities: Lead the GDPR impementation and compiance efforts across the organization. Conduct thorough GDPR risk assessments and impact anayses. Deveop and impement GDPR compiance poicies and procedures. Train and educate staff on GDPR requirements and best practices. Liaise with interna and externa stakehoders to ensure compiance. Monitor data protection compiance and data processing activities. Manage data breach response and reporting procedures. Perform reguar audits to ensure ongoing GDPR compiance. Stay updated with the atest deveopments in data protection aws and reguations. Coaborate with IT and security teams to ensure the impementation of technica safeguards. Document and maintain records of processing activities. Responsibiities Quaifications: Bacheor’s degree in aw, Information Technoogy, Business, or a reated fied. A master’s degree is preferred. At east 10 years of experience in data protection, privacy aws, or GDPR compiance. Professiona certification such as CIPP/E, CIPM , or simiar is mandatory Strong anaytica and probem-soving skis. Exceent communication and interpersona skis. Abiity to work independenty and manage mutipe projects simutaneousy. Experience with data protection impact assessments, data protection principes, and data breach management. Skis and Competencies: Deep understanding of data protection and privacy reguations aong with Project management skis. Abiity to communicate compex reguatory requirements in a cear and concise manner. Strong ethica standards and commitment to privacy and data protection. Proficiency in using data protection management toos and software. Preferred Experience: Experience working in a simiar roe within a mutinationa organization. Famiiarity with other goba data protection reguations such as CCPA, HIPAA, APPI, DPDPA, POPIA, PIPEDA etc. Experience in a ega advisory roe or as a Data Protection Officer (DPO). Quaifications: Bacheor’s degree in aw, Information Technoogy, Business, or a reated fied. A master’s degree is preferred. At east 10 years of experience in data protection, privacy aws, or GDPR compiance. Professiona certification such as CIPP/E, CIPM , or simiar is mandatory Strong anaytica and probem-soving skis. Exceent communication and interpersona skis. Abiity to work independenty and manage mutipe projects simutaneousy. Experience with data protection impact assessments, data protection principes, and data breach management. Skis and Competencies: Deep understanding of data protection and privacy reguations aong with Project management skis. Abiity to communicate compex reguatory requirements in a cear and concise manner. Strong ethica standards and commitment to privacy and data protection. Proficiency in using data protection management toos and software. Preferred Experience: Experience working in a simiar roe within a mutinationa organization. Famiiarity with other goba data protection reguations such as CCPA, HIPAA, APPI, DPDPA, POPIA, PIPEDA etc. Experience in a ega advisory roe or as a Data Protection Officer (DPO).

As a PC@IBM Windows Engineer, you wi be responsibe for designing, managing, configuring, and maintaining PC@IBM’s M365 tenant for managing IBM empoyee devices. You wi ensure the avaiabiity, security, and reiabiity of PC@IBM services whie coaborating with various teams to meet their technica requirements. Your responsibiities wi incude: Impement and manage poicies required for IBM security compiance. Monitor Microsoft Intune service heath, swifty addressing issues to maintain system integrity. Impement stringent security measures such as muti-factor authentication. Conduct reguar security assessments to strengthen data protection and ensure compiance with reguations. Deveop detaied user documentation to faciitate system navigation and troubeshooting. Design and impement backup strategies and disaster recovery pans to safeguard M365 data. Empoy PowerShe for monitoring system performance and service metrics, proactivey identifying potentia issues. Required education Master's Degree Required technica and professiona expertise Required Professiona and Technica Expertise: Overa 10+ years of experience in security and compiance roes. In-depth knowedge of compiance frameworks such as NIST, CMMC, ITAR/EAR, GDPR, HIPAA, and PCI. Expertise in Intune MDM for device security and management. Strong understanding of Microsoft 365 security and compiance capabiities. Exceent anaytica and probem-soving skis. Abiity to work in a fast-paced, high-stakes environment. Preferred technica and professiona experience Preferred Professiona and Technica Expertise: Mastery in PowerShe for automation and system management. Exceptiona probem-soving skis and the abiity to communicate compex technica concepts ceary.

What You will Do: 1. Identify the affected resources that the vulnerability applies to 2. Identify the validity of vulnerability 3. Communicate the vulnerability to affected stakeholders 4. We work closely with stakeholders to ensure closure/resolution based on SLA 5. We execute necessary retesting to audit/confirm actual closure 6. Monitoring alerts and tickets including generated through multiple security tools 7. Responding to tickets and emails within SLA 8. Delegating tickets to appropriate team members 9. Focus on quality control within the IT security team 10. Co-ordinate with teammates and end users for updates 11. Follow up with stakeholders and team members for ticket closure 12. Feedback or customer satisfaction 13. Complies with the policies and procedures of the organization 14. Communication of security vulnerability process. What You will Need: Minimum 1+ years of experience as IT Security Analyst Graduation is mandatory Ticketing tool knowledge -familiar with ITIL process of closing actions in tickets Understanding of IT security framework like ISO 27001& NIST800sp Knowledge of AWS, Email gateway (Proofpoint)& Antivirus Must be familiar with Windows & application patching process Good team player Excellent communication abilities (verbal & writing). Willing to work in rotation shifts(24x7) Experience from IT audit field will be added advantage Technical requirement Familiar with alerts generated by technologies like AWS Guard Duty, Proofpoint, Sophos AV, OpenVAS, etc.

About Company BDO India LLP is the India member firm of BDO International. BDO India offers strategic, operational, accounting, tax & regulatory advisory and assistance for both domestic and international organisations across a range of industries. We are led by more than 300 Partners & Directors with a team of over 8500 professionals operating across 12 cities Ahmedabad, Bengaluru, Chandigarh, Coimbatore, Chennai, Hyderabad, Goa, Kochi, Kolkata, Mumbai, New Delhi-Gurugram and Pune. We take pride in our service portfolio on the backing of a rich blend of experience and expertise, bringing to fore a work culture that is both client-centric and knowledge driven. Our focus on delivering exceptional client service is backed by a partner driven approach to offer tailor-made solutions ensuring quality excellence & time efficiencies. About BDO ITRA Leveraging our global expertise and experience, our team of subject matter experts and industry professionals work across sectors and industries to help our clients respond to the changing business environment. With deep analytic skills and state-of-the art technologies, our professionals deliver customised and innovative solutions to clients across geographies. We at BDO, engage in transforming data into insights, our professionals guide clients through a crisis, fraud, regulatory investigations, etc. and advise them on strategies to prevent and mitigate the disruption arising from these complex matters. Details: Position Title Manager and Assistant Manager Department BAS -IT Risk Assurance Experience At least 3 to 8 year of relevant experience into IT Risk Audit, ITGC, etc Qualification CA / B.Tech / MBA (IT) / CISA / DISA Core ITRA Roles & Responsibilities: Responsible for executing client related engagements in the areas ITGC, process reviews, IT Application Controls, standard operating procedures review, SOCR (SOC 1, SOC 2), SOX 404 Audits. Determine that the work delivered is of high quality. Anticipate and identify engagement related risks and escalate issues as appropriate. Actively establish & strengthen client (functional heads & key influencers) and internal relationships. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coaches, counsels and develops junior team members. Identify & escalate potential business opportunities for the firm on existing client engagements. Should be a team player with a proactive and result oriented approach. Ability to prioritize, work on multiple assignments, and manage ambiguity. Should have good presentation & communication skills. Should also be well versed with MS office tools. Should be open and honest in communication with clients and colleagues. Fluency in written & verbal English High on personal integrity and work ethics and can be trusted without micro-level supervision from seniors Qualified CA, MBA, BTech/BE. (Preferred CISA or equivalent certifications) Competencies: Analytical Thinking Collaboration IT Skills (Excel, PPT, Word, Outlook) Communication Skills Interpersonal Relationship & Respect Innovation

Cyber Security Auditor Location: Mumbai Leading Bank Work From office mail at manjeet.kaur@mounttalent.com whatsap at 8384077438 Roles and Responsibilities 4 years of experience (upto 12 yrs.) in the field of information security operations, Information System Audits encompassing experience into any of the Banking Technologies Domains Application Security, Database management and administration, / Network security and SOC / Payment systems in addition to IT General controls (ITGC). Exposure to the Banking / Finance / Payment industry domains would be preferrable. Hands-on experience in the following areas: Writing Information security policies, procedures, and processes Conducting risk assessment covering Cyber Security domains as noted below: Application Security: Mobile application assessment, OWASP security practices for applications, VA/PT/AppSec, source-code review, black/grey/white box testing, application SDLC, Strong knowledge of programming languages for applications. Database Security: Database administration and management - Oracle, MS SQL etc., Database Activity Monitoring tools, data security and localization. Payments Systems Security: Understand payment systems and architecture such as SWIFT, UPI, IMPS, ATM, Internet Banking, Mobile Banking, Core Banking System, payment gateway, ATM switch and terminal. Experience in PCI DSS implementation/assessment and ATM end-point security and Cards data security and operations. Networks Security: Managing firewalls, routers, proxy, WAF, email filtering, DLP, DDoS protection, data encryption, IPS/IDS, Incident response and investigate security breaches, VA-PT for networks. Security Operations Centre- Implementation and review. IT General Controls: Familiarity with Technical Security controls of Identity & Access Management, Network, Server, Application, Change management, Backup and Restoration etc. and process controls reviews. Understand BCP and DR processes and architecture. Experience in conducting reviews based on ISO standards and regulatory guidelines in banking sector for a medium to large sized organization would be preferred. Experience in conducting Information System Audits Must have experience in preparing quality deliverables such as audit reports, presentations etc. Excellent written, oral communication and presentation skills Excellent organizational and interpersonal skills Ability to work independently or as part of a team Information technology / Banking and Financial services / Auditing / Cyber Security consulting Candidate will have to travel extensively within Mumbai and across the country for performing audits, as per RBI requirements. Conducting audit of Information security policies, procedures, and processes to identify process/design gaps. Conduct audits of information security systems and infrastructure to verify systems are secure and support the related applications/business processes. Conducts audits in different banking technology domains such as Active Directory, WAF, Network access security, End-point security, Application VA/PT/AppSec, SDLC, Database management and security, PCI-DSS, ATM controls, Cards (Debit/Credit) security, Payment-gateway, Cloud and API Security and IT General Controls etc. Additional weightage will be given to candidates with experience in domains such as Cloud Security, API security. Developing project plans, work programs, evaluating system controls, identify risks and audit gaps, documenting results in proper audit report format, making recommendations, and communicating information to stakeholders. Support in maintaining audit checklist and documents, trend analysis, preparing presentations etc. Should be a self-learner and must keep updated with the latest security guidelines issued by regulators, international standards for information security, threats and vulnerabilities researched/discovered. Research public domain to keep up to date knowledge on latest banking applications / technologies and emerging technologies Cloud, Virtualisation, AI-ML, IOT etc. and ensure continuous learning in identified security competencies and new/emerging technologies. Experience into people management / team management will be preferred.

Location: Gurgaon Sector 58 Preference: Candidates with experience in NBFCs Compensation: Up to 00 LPA Requirements: Strong communication skills, a compelling personality, and relevant profile exposure -----JOB DESCRIPTION--- For a role that encompasses IT GRC (Governance, Risk, and Compliance) along with IT Security Audit responsibilities, especially in the context of NIST, ISO 27001, SOC2, ITGC audit, RBI (Reserve Bank of India) regulatory compliance, IT Security Compliance, Business Continuity Management (BCM), Disaster Recovery (DR), and Vulnerability Assessment (VA), the roles and responsibilities would typically include: Governance, Risk, and Compliance (GRC): Develop and maintain IT governance frameworks aligned with industry standards and regulatory requirements. Establish and enforce policies, procedures, and controls to ensure compliance with applicable laws, regulations, and standards. Coordinate risk assessment and management activities across the organization. Monitor and report on compliance status to senior management and stakeholders. Facilitate audits and assessments to verify adherence to compliance requirements. Implement continuous improvement initiatives to enhance the effectiveness of GRC processes. IT Security Audit: Plan, coordinate, and conduct IT security audits based on regulatory requirements and industry best practices. Perform risk-based assessments of IT systems, networks, and applications to identify security vulnerabilities and weaknesses. Review and evaluate controls related to access management, change management, data protection, and incident response. Document audit findings, including recommendations for remediation and improvement. Collaborate with internal and external auditors to facilitate audit engagements and address audit findings. Track and monitor the implementation of audit recommendations to ensure timely resolution. Regulatory Compliance: Interpret and apply relevant regulatory requirements, including NIST Cybersecurity Framework, ISO 27001, and RBI guidelines. Conduct gap assessments against regulatory requirements to identify areas of non-compliance and develop remediation plans. Coordinate with business units and stakeholders to implement controls and measures to achieve compliance objectives. Prepare documentation and evidence to demonstrate compliance with regulatory requirements. Stay informed about changes in regulations and standards and assess their impact on the organization's compliance posture. IT Security Compliance: Establish and maintain IT security policies, standards, and guidelines in accordance with regulatory requirements and industry best practices. Conduct periodic reviews and assessments to ensure adherence to security policies and standards. Implement controls and measures to mitigate security risks and vulnerabilities. Monitor and analyse security events and incidents to detect and respond to security breaches. Provide guidance and support to business units on security compliance matters. Business Continuity Management (BCM) and Disaster Recovery (DR): Develop and maintain business continuity and disaster recovery plans aligned with organizational objectives and regulatory requirements. Run BCP/DR frameworks Conduct business impact analyses and risk assessments to identify critical business functions and dependencies. Coordinate the development, testing, and maintenance of BCM and DR plans. Ensure alignment between BCM/DR plans and IT systems, applications, and infrastructure. Provide training and awareness programs to ensure effective response and recovery during emergencies. Vulnerability Assessment (VA): Plan and execute vulnerability assessment activities to identify security weaknesses and vulnerabilities in IT infrastructure and applications. Utilize automated scanning tools and manual techniques to identify and prioritize vulnerabilities based on risk. Analyse and interpret scan results to provide actionable recommendations for remediation. Coordinate remediation efforts with IT teams to address identified vulnerabilities in a timely manner. Monitor and track the status of vulnerability remediation efforts and report on progress to stakeholders. In summary, this role involves a comprehensive approach to managing IT governance, risk, and compliance, along with conducting IT security audits, ensuring compliance with regulatory requirements such as NIST, ISO 27001, and RBI guidelines, and overseeing BCM, DR, and VA activities. Effective communication, collaboration, and coordination with various stakeholders are essential for success in this role. Digital Personal Data Protection Act (DPDPA) and GDPR Compliance: Interpret and ensure compliance with the provisions of the Digital Personal Data Protection Act (DPDPA) and the General Data Protection Regulation (GDPR), as applicable. Conduct data protection impact assessments (DPIAs) to identify and mitigate risks associated with the processing of personal data. Develop and maintain data protection policies, procedures, and controls to safeguard the privacy and confidentiality of personal data. Implement measures such as data encryption, pseudonymization, and access controls to protect personal data from unauthorized access and disclosure. Establish mechanisms for obtaining and managing consent for the processing of personal data in accordance with regulatory requirements. Monitor and respond to data subject requests (e.g., access requests, erasure requests) in compliance with GDPR and DPDPA requirements. Facilitate training and awareness programs to ensure compliance with data protection regulations and promote a culture of privacy within the organization. Collaborate with legal and compliance teams to address data protection issues and ensure alignment with regulatory requirements. Maintain records of processing activities and data protection measures to demonstrate compliance with GDPR and DPDPA obligations. Conduct regular audits and assessments to evaluate the effectiveness of data protection controls and identify areas for improvement. Competencies: Proactively contribute to leadership & handle work stress & people skills Strong analytical skills, problem solving skills, and project/program management skills Excellent communication skills working with all levels of management across the entire organization Ability to handle team strength and work cohesively Ability to act in Leadership position Work and stretch as required in corporate scenario Extrovert and Outspoken Experience Needed: 8+ years' demonstrable experience in IT security GRC management, IT security project management, IT & Data security policy management, and other security practices w.r.t Cloud Infra , Basic IT infra design and architecture Hands-on experience with designing, implementing and managing security IT GRC programs Past experience managing a small to mid-sized team Educational Requirements: Bachelor's degree or equivalent business experience in Computer Science, Business Management. Certified training in IT & Data security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, ISO 27K LA or related certification will be added advantage

Job Description: Cloud Segment Information Security Officer (SISO GL28) Location Gurgaon Position Overview: The Cloud Segment Information Security Officer (SISO) is responsible for overseeing and implementing security measures to protect the organizations cloud-based data and infrastructure. This role involves developing cloud-specific security strategies, managing risks, ensuring compliance, and leading incident response efforts. A key aspect of this role is fostering strong relationships and partnerships with business leaders and stakeholders to ensure security measures align with business objectives. Primary Responsibilities: Cloud Security Strategy: Develop and implement security strategies tailored to the cloud segment to ensure the protection of cloud-based data and infrastructure Risk Management: Identify, assess, and mitigate security risks associated with cloud operations and technologies Incident Response: Lead incident response efforts for security breaches within the cloud segment, including investigation, containment, and remediation Compliance: Ensure compliance with relevant cloud-specific regulations and standards Collaboration: Work closely with other IT teams and cloud segment leaders to integrate security measures into cloud services and applications Training and Awareness: Support security training and awareness programs for employees within the cloud segment to promote a security-conscious culture Policy Development: Develop and enforce security policies and procedures specific to cloud operations Audit and Assessment: Support security audits and assessments to ensure the effectiveness of security measures within the cloud segment Business Partnership: Foster strong relationships with business leaders and stakeholders to ensure security measures support and enhance business objectives. Collaborate with business units to understand their needs and provide tailored cloud security solutions Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications: Proven experience in developing and implementing cloud security strategies Experience in leading cloud incident response efforts Experience in conducting cloud security audits and assessments Solid knowledge of cloud risk management and security architecture Familiarity with cloud compliance regulations and security monitoring tools Proven excellent collaboration and communication skills Demonstrated ability to conduct training and develop cloud security policies Demonstrated ability to build and maintain relationships with business leaders and stakeholders At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyoneof every race, gender, sexuality, age, location and incomedeserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes an enterprise priority reflected in our mission.

Primary Responsibilities: Perform audits to identify control gaps and implement corrective action plans Ensure alignment of security policies/standards with IT infrastructure frameworks (e.g., ISO 2700x, NIST, ITIL) Monitor compliance with corrective action plans, and address non-compliance issues appropriately Demonstrate understanding of discovery technologies to identify system vulnerabilities (e.g. scanning tools) Establish appropriate security controls based on defined data classifications to align with applicable laws/regulations/standards Facilitate/lead security incident investigation Analyze business requirements and ensure that solutions meet established security policies and controls Maintain metrics and ensure reporting as appropriate Maintain current knowledge on information security topics and their applicability program requirements Communicate professionally with stakeholders/end users through multiple communication Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications: Bachelors degree or higher level of education 6+ years of Information security experience Experience with ISO27001 (ISMS), ISO31000 (Risk management), HITRUST CSF, NIST Cybersecurity Framework, SOC Type1/2 Demonstrated auditing skills and the ability to manage risk assessments / projects independently Demonstrated excellent communication skills both verbal and written Demonstrated good presentation skills particularly ability to present technology elements in manner personnel can follow and act Preferred Qualification: CISSP, CISA or ISO27001 Lead Implementer or Lead Auditor certification At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyoneof every race, gender, sexuality, age, location and incomedeserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes an enterprise priority reflected in our mission.

Job Title: IT Security & Audit Compliance Analyst Location: Mumbai, Thane Experience Required: 1 to 3 Years Employment Type: Full-Time Job Description: We are seeking a highly motivated and detail-oriented IT Security & Audit Compliance Analyst to support end-to-end audit, compliance, and security operations across enterprise systems. The ideal candidate will be responsible for managing audit logs, ensuring policy compliance, generating reports, and supporting internal and external audit requirements. Key Responsibilities: Active Directory Audit Logs Management Manage and analyze audit logs for incident troubleshooting Ensure all log-on, log-off, and failed login attempts are captured #ActiveDirectory #AuditLogs #SecurityMonitoring Audit Journal & Security Compliance Reporting Generate, review, and submit audit reports as per schedule Identify and resolve discrepancies and respond to audit queries Ensure timely support for all audit activities (minimum 16 audits per year) #SecurityCompliance #AuditReporting #IncidentManagement User ID Management & Policy Compliance Maintain audit records for user ID approvals, revalidations Manage exceptions for shared IDs and non-expiring passwords #UserIDManagement #AccessControl #PolicyCompliance System Log Management & Retention Enable and manage logging on servers, network, and storage devices Ensure log retention for a minimum of 90 days within client infrastructure #LogRetention #SystemMonitoring #NetworkSecurity Desired Skills: Experience with Active Directory auditing and compliance Strong understanding of IT audit processes and security controls Ability to handle audit queries independently Familiarity with enterprise infrastructure and log management Strong communication and analytical skills #ITSecurity #InfoSec #AuditCompliance #InfrastructureSecurity #ITGovernance Qualifications: Bachelors degree in Computer Science, Information Technology, or a related field 1+ years of relevant experience in IT Security, Audit, or Compliance roles Application Process: Interested candidates are requested to share their updated resume along with the following details: Total Experience: Relevant Experience: Current CTC: Expected CTC: Notice Period: Current Location: Willing to Relocate to Mumbai (Yes/No):

Job Description: Development and implementation of internal audit plan Manage and guide the Audit Team in execution of Audits Ensure that the internal audit function provides an independent assessment of the adequacy of the companys internal systems and controls, including the systems for appropriate identification and evaluation of risk and compliance with all applicable laws and regulation Ensure objectivity and thoroughness of the data collected and processed Ensure that the appropriate advice is given, for keeping proper financial records and accounts, and for maintaining an effective system of internal financial control Conduct internal audits, pre-audits, and other consulting engagements KNOWLEDGE & SKILLS REQUIRED: Effective Communication and Human Relations skills Good articulation and Report Writing skills Knowledge of a variety of reporting procedures, regulations, and law Knowledge of Internal Auditing Standards/ draft Internal Audit Standards of ICAI Knowledge of Accounting Principles and Practices Critical Thinking and Problem-solving skills Ability to observe and understand business processes Excellent English Language in terms of reading, writing, and speaking Proficiency in Microsoft applications, e.g., Outlook, Word, Excel, PowerPoint, and ability to learn new software’s Excellent verbal and written communication skills Ability to make presentations to Audit Committees of Boards Strong work ethics Data Analytics PREFERRED EXPERIENCE & EDUCATION: Qualified Chartered Accountant, CIA, CFE, CISA, MBA Use of Software’s like IDEA, Tableau, Power BI and other Data Analytics Software Experience of working in ERP environment (SAP, Oracle, MS-Dynamics etc)