221 Itgc Jobs - Page 9

Role & responsibilities Strong understanding of ITGC, ITAC, SOC reports, and working knowledge of Audit tools & ServiceNow (SNOW) • Exposure to SOX, NIST 800-53, ISO 27000 series standards. Ability to support and document audit findings including action plans, remediation timelines, and closure tracking. Comfortable working from office/client location and in shift-based schedules Strong communication, stakeholder management, and project management skills Candidates holding CISA, CISM, ISO 27001 certifications will have an added advantage Preferred candidate profile Educational Background: Graduation / B.E. / B. Tech in any specialization Required Experience: 1-7 years in IT Audits, including ITGC, SOX / ICFR / IFC / SAS 70 / SSAE / SOC. Experience with IT Financial Audit, Business Automated Controls, and IT Risk Consulting or other compliance/regulatory audits. Perks and benefits How you'll grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there is always room to learn. We offer opportunities to help build world-class skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their careers Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you

Hi, Greeting for the Day!!! We found your profile suitable for the below opening, kindly go through the JD and reach out to us if you are interested. About Us Incorporated in 2006, We are an 18 year old recruitment and staffing company, we are a provider of manpower for some of the fortune 500 companies for junior/ Middle/ Executive talent. About Client Hiring for One of the Most Prestigious Multinational Corporations! Job Description Job Title : ITGC Trainer/Manger Qualification : Any Graduate or Above Relevant Experience : 10-15yrs Essential Duties and Responsibilities : Serve as an IT General Controls (ITGC), IT Application Controls (ITAC), Interfaces and Key Reports trainer, providing high-quality training sessions to users. Must have experience in conducting IT Audits and fundamentals training covering Domains such as Access Management, Change Management, SDLC, IT Operations, Interfaces, and Application Controls (Configurable, Non-configurable), Interfaces, IPEs, Data Migration and Platform. Must have experience in conducting Advanced Technology based IT Audit trainings (SAP, Oracle, Cloud and Dev-Ops). Must have experience in SOC1/ SOC2. Must have hands on experience working on at least ITGC, ITAC, IPE and experience in the following modules will be an added advantage: IT Service Management, IT Asset Management, Physical Security. Design, create, edit, and publish engaging learning content in various formats. Develop and maintain knowledge content within the team for easy consumption by end users. Ensure training aligns with the best practices in the industry and PCAOB guidelines. Ability to create visually appealing slides with clear, concise, and relevant information, using appropriate graphics and animations. Use interactive elements such as Q&A, polls, or discussions to maintain audience interest and participation. Location : Kolkata/Bangalore/Hyderabad CTC Range : 25 to 35LPA (Lakhs Per Annum) Notice period : Immediate/serving Notice period/60 days Mode of Interview : VIRTUAL Mode of Work : Hybrid Prerna IT Staffing Analyst Black and White Business solutions PVT Ltd Bangalore, Karnataka, INDIA 8067432409 I prerna@blackwhite.in I www.blackwhite.in

Our Service Offerings include External Audit, Financial Accounting Advisory Services (FAAS), IFRS & US GAAP conversion, IPO and other public offering, Corporate Treasury - IFRS 9 accounting & implementation support etc. Your key responsibilities Technical Excellence Experience of working on FS clients is preferred IT audits including statutory and internal audits IT General Controls (ITGC) testing IT Application Controls (ITAC) testing / IT Automated Business Controls testing IT Infrastructure risks and control assessments IT SOX 404 SOC1, SOC2 audits and reporting IT Compliance and regulatory reporting Risk and control assessments considering emerging technologies such as cloud, RPA, AI/ML, Blockchain etc Certifications preferred: CISA, CISSP, CISM, CRISC, CCSK and others (if relevant). Skills and attributes To qualify for the role you must have Qualification BE/ B.Tech,or MSC in Computer Science/Statistics or M.C.A or MBA in Finance or IT Experience 5+ years of relevant experience in field of IT Audits Should have played client facing role in managing audits Experience of working on FS clients is preferred IT audits including statutory and internal audits IT General Controls (ITGC) testing IT Application Controls (ITAC) testing / IT Automated Business Controls testing IT Infrastructure risks and control assessments IT SOX 404 SOC1, SOC2 audits and reporting IT Compliance and regulatory reporting Risk and control assessments considering emerging technologies such as cloud, RPA, AI/ML, Blockchain etc What we look for People with the ability to work in a collaborative manner to provide services across multiple client departments while following the commercial and legal requirements. You will need a practical approach to solving issues and complex problems with the ability to deliver insightful and practical solutions. We look for people who are agile, curious, mindful and able to sustain postivie energy, while being adaptable and creative in their approach.

IT Internal Audit Associate Manager We Are: Accenture is helping transform leading organizations and communities around the world. Choose Accenture and make delivering innovative work part of your extraordinary career. Accenture works at the intersection of business and technology to help clients improve their performance and create sustainable value for their stakeholders. Accenture is consistently recognized on FORTUNE's 100 Best Companies to Work For and DiversityInc's Top 50 Companies for Diversity lists. The Internal Audit Department provides the Audit Committee of the Board of Directors with an independent and objective assessment of the reliability and integrity of financial and select operating information, the effectiveness and efficiency of Accenture plc and its consolidated subsidiaries' (the "Company") systems and internal controls, and compliance with the Company's policies and procedures. Internal Audit Services also provides advisory services designed to add value and improve the Company's operations through bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, controls, operations, and governance processes. You Are: An agile, highly-motivated, innovative thinker with a background in audit, risk, or compliance looking to join a fast-paced, global internal audit organization that has embraced transformative capabilities including advanced analytics, dynamic risk assessment processes, and automation to retain its role as a trusted advisor to the business. The Work: Participate in the execution of the risk-based audit plan, reporting results to Accenture Leadership and the Audit Committee of the Board of Directors Conduct a wide-ranging scope of audits with an emphasis on assessing emerging areas of risk including cyber security, artificial intelligence, cloud computing, robotic process automation, and the Internet of Things. Through advisory services, work with our business partners to help them proactively identify and manage risk in new technologies, new go-to-market offerings, and critical corporate initiatives. Shape the future of the Accenture Internal Audit through involvement in departmental initiatives that enable us to become more efficient and effective in everything we do. Ensure your technical skill set and business acumen stay current and relevant through participation in our robust training program. Support the departmental annual risk assessment and audit planning efforts Why Should I Join the Accenture Team? You are looking for an internal audit role that provides you with exposure to senior levels of leadership, enables you to work with emerging technologies, provides opportunities for international travel and flexible work arrangements (work from home), requires little to no SOX testing, and offers a competitive salary and benefits package. Qualification Desired Skills & Qualifications Undergraduate degree in Computer Science, Information Systems, Electronics, or Business Administration. Minimum of 6 years of experience in IT auditing, information security, or related technical role focusing on compliance activities. Experience conducting IT external and internal audits or assessments, preferably for a global organization. Strong IT knowledge in infrastructure technologies (networking, data centers and hosting, virtualization, cloud etc.), application development and support, and emerging technologies. Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, PCI DSS, HIPAA, GDPR Experience leveraging predictive models and custom analytics in audit planning and execution is preferred. Technical knowledge and familiarity with control requirements in areas including ERP applications, Windows and Unix operating systems, cyber security, cloud security and vendor management. Strong verbal and written communication skills and proficiency with the English language. Demonstrated leadership, teamwork, and collaboration skills. Possession of a relevant professional certification (CISA, CISSP, CIA, CPA, CCSK) is preferred. Ability to adopt flexible work hours to collaborate with global teams and travel (up to 20%).

Skill required: Risk & Compliance - Risk Management Designation: Risk and Compliance Senior Analyst Qualifications: Any Graduation Years of Experience: 5 to 8 years What would you do? We are seeking a highly skilled and motivated Risk & Compliance Specialist to join our dynamic team at Accenture. The ideal candidate will be responsible for executing risk-based audits, focusing on information technology global processes and controls. This role involves planning and developing audit work programs, executing audit test procedures, and identifying recommendations for continuous improvement of our Third-Party Risk Management (TPRM) program. The specialist will play a crucial role in third-party risk assessment, ensuring that our vendors and partners adhere to our stringent compliance standards. What are we looking for? Qualifications & Certifications: Bachelor's degree in information technology, computer science, or a related field. ISO 27001 LA/LI certificate is a must. Professional certifications such as CISSP, CISM, CISA, or CRISC certification preferred. Minimum of 4-7 years of experience in risk management, compliance, or a related field. Experience in conducting third-party risk assessments is essential. Experience in Big 4, global internal audit functions, or cybersecurity is a plus. Demonstrated experience in third-party risk management, operational risk, or other risk management roles with knowledge of third-party regulatory requirements.Technical Skill Requirements: Expertise in IT internal audit, information security/cybersecurity, third-party risk assessment reporting (e.g.,SOC1, SOC 2). Relevant expertise on CSA STAR requirements, ISO control, NIST standards, PCI DSS, and GDPR requirements. Experience in performing control testing, IT/infosec risk assessments, network security, and infrastructure assessments. Knowledge of technical domains such as cloud security and application security. Certification:CISA, CISSP, CEH, ISO, PCI DSS, NIST. Strong understanding of risk management and compliance principles. Roles and Responsibilities: Ensure third-party risk management policy and procedures, and third-party management software are implemented and completed according to Accenture requirements. Complete vetting on incoming third-party engagements and work with business partners to ensure data and due diligence is complete and accurate, and inherent risks are identified and mitigated in accordance with risk appetite. Coordinate the distribution of due diligence questionnaires to third parties, review submitted questionnaires for completeness, ensure risk stakeholders finalize reviews, and determine overall residual risk rating. Act as a strong liaison to ensure that risk stakeholder questions are answered by the business, or third party as required. Conduct certain aspects of third-party due diligence not covered by risk stakeholders. Store the artifacts of the third-party oversight process in the system of record. Contribute to the development of detailed procedural documents and ensure alignment of TPRM with regulatory requirements. Identify, prioritize, and pursue opportunities to enhance Accenture's third-party risk management processes and introduce innovative approaches and solutions to optimize efficiency and effectiveness. Support the company's commitment to protect the integrity and confidentiality of systems and data. Conduct comprehensive third-party risk assessments to evaluate the compliance and risk posture of vendors and partners. Execute risk-based audits and communicate specific elements of the risk-based work plan as per stakeholder requirements. Perform audit projects in accordance with Accenture s audit methodology, focusing on IT global processes and controls, and computerized information systems. Plan and develop audit work programs, execute audit test procedures, identify recommendations for continuous improvement, communicate results, and follow up on reported issues. Prepare audit reports and work papers to ensure adequate documentation exists to support the completed audit and conclusions. Verify the adequacy of IT operating procedures through systematic audits. Conduct IT integrated audits with operational, compliance, financial, and investigative audit teams. Support Information Security, Business Continuity, and GDPR initiatives. Contribute to internal business growth and development. Qualification Any Graduation

Role & responsibilities : • Responsible for delivering IT Risk & Controls Assessments/Audits, and Compliance Security Assessments around IT and Business processes. Working with the KPMG onshore counterparts as part of project/engagement delivery. • Supporting client service delivery by consistently meeting quality standards within the established turnaround time and allotted budget for the project. • Ensuring personal and the team's compliance with the applicable KPMG Risk Management policies & KPMG proprietary tools. Preferred candidate profile : Control assurance and Risk Management • Compliance- Security Assessments • IT Internal/External Audit engagements • Experience on Control testing of IT Application Controls (ITAC), IT General Controls (ITGC), and Business process controls. • Must have significant experience, in depth knowledge and expertise in atleast one of the SAP functional modules (SAP PTP, RTR, MM, SD, FICO, etc.) , SAP HANA dB, SAP S/4 Hana ERP. • Must have a strong Business process understanding and have the ability to identify risks and control weaknesses and gaps. • Experience on Functional testing, Control gap analysis and SDLC reviews. • Knowledge of security measures and auditing practices within various operating systems, Applications, and databases. • Personal drive and positive work ethic to deliver results within tight deadlines and in demanding situations • Flexibility to adapt to a variety of engagement types, working hours and work environments and locations

•Control assurance and Risk Management •Compliance- Security Assessments •IT Internal/External Audit engagements •Experience on Control testing of IT Application Controls (ITAC), IT General Controls (ITGC), and Business process controls. •Must have significant experience, in depth knowledge and expertise in atleast one of the SAP functional modules (SAP PTP, RTR, MM, SD, FICO, etc.) , SAP HANA dB, SAP S/4 Hana ERP. •Must have a strong Business process understanding and have the ability to identify risks and control weaknesses and gaps. •Experience on Functional testing, Control gap analysis and SDLC reviews. •Knowledge of security measures and auditing practices within various operating systems, Applications, and databases. •Personal drive and positive work ethic to deliver results within tight deadlines and in demanding situations •Flexibility to adapt to a variety of engagement types, working hours and work environments and locations

Role & responsibilities Responsible for delivering IT Risk & Controls Assessments/Audits, and Compliance Security Assessments around IT and Business processes. Working with the KPMG onshore counterparts as part of project/engagement delivery. Supporting client service delivery by consistently meeting quality standards within the established turnaround time and allotted budget for the project. Preferred candidate profile Control assurance and Risk Management Compliance- Security Assessments IT Internal/External Audit engagements Experience on Control testing of IT Application Controls (ITAC), IT General Controls (ITGC), and Business process controls. Must have significant experience, in depth knowledge and expertise in atleast one of the SAP functional modules (SAP PTP, RTR, MM, SD, FICO, etc.) , SAP HANA dB, SAP S/4 Hana ERP.

About Company BDO India LLP is the India member firm of BDO International. BDO India offers strategic, operational, accounting, tax & regulatory advisory and assistance for both domestic and international organisations across a range of industries. We are led by more than 300 Partners & Directors with a team of over 8500 professionals operating across 12 cities Ahmedabad, Bengaluru, Chandigarh, Coimbatore, Chennai, Hyderabad, Goa, Kochi, Kolkata, Mumbai, New Delhi-Gurugram and Pune. We take pride in our service portfolio on the backing of a rich blend of experience and expertise, bringing to fore a work culture that is both client-centric and knowledge driven. Our focus on delivering exceptional client service is backed by a partner driven approach to offer tailor-made solutions ensuring quality excellence & time efficiencies. About BDO ITRA Leveraging our global expertise and experience, our team of subject matter experts and industry professionals work across sectors and industries to help our clients respond to the changing business environment. With deep analytic skills and state-of-the art technologies, our professionals deliver customised and innovative solutions to clients across geographies. We at BDO, engage in transforming data into insights, our professionals guide clients through a crisis, fraud, regulatory investigations, etc. and advise them on strategies to prevent and mitigate the disruption arising from these complex matters. Details: Position Title Assistant & Senior Assistant Department BAS -IT Risk Assurance Experience At least 1 to 3year of relevant experience into IT Risk Audit, ITGC, etc Qualification CA / B.Tech / MBA (IT) / CISA / DISA Core ITRA Roles & Responsibilities: Responsible for executing client related engagements in the areas ITGC, process reviews, IT Application Controls, standard operating procedures review, SOCR (SOC 1, SOC 2), SOX 404 Audits. Determine that the work delivered is of high quality. Anticipate and identify engagement related risks and escalate issues as appropriate. Actively establish & strengthen client (functional heads & key influencers) and internal relationships. Assist seniors & managers in developing new methodologies and internal initiatives. Create a positive learning culture, coaches, counsels and develops junior team members. Identify & escalate potential business opportunities for the firm on existing client engagements. Should be a team player with a proactive and result oriented approach. Ability to prioritize, work on multiple assignments, and manage ambiguity. Should have good presentation & communication skills. Should also be well versed with MS office tools. Should be open and honest in communication with clients and colleagues. Fluency in written & verbal English High on personal integrity and work ethics and can be trusted without micro-level supervision from seniors Qualified CA, MBA, BTech/BE. (Preferred CISA or equivalent certifications) Competencies: Analytical Thinking Collaboration IT Skills (Excel, PPT, Word, Outlook) Communication Skills Interpersonal Relationship & Respect Innovation

Looking for an Information Security Consultant with experience in IT audits, SOX, ISO 27001, NIST, PCI DSS, risk assessments, and compliance. Must handle audits, GAP assessments, client meetings, and risk advisory. Required Candidate profile Candidate should have Min. 5 years of experience in IT audits, SOX, ISO 27001, NIST, PCI DSS, and risk assessments. Good communication, client handling, and report writing skills needed.

Client interface for understanding the SOX IT General Controls as applicable to Application &Infrastructure operations Conducting assessment of existing processes and align them to COBiT 2018 standard. Conducting TOE and TOD for ITGCs Documentation of as-is SOX 404 IT General Controls as they are currently being executed in client environment. Identify process exceptions and risk with respect to materiality defined by the SOX controller. Evaluating 3rd parties and their ITGC environments by assessment of SSAE18 reports Create Process Summaries, Compliance runbooks and RCMs. Define RACI for Control owners, executioners etc. Work with Senior Management of the organization and business teams in getting assertions. Point of contact for the client compliance & IT audit team for provisioning SOX audit evidence within the SLAs defined. Provide strategic guidance& consulting support on implementation of SOX controls for Networks, Operating Systems, System Security, Backup & Recovery, Storage, BCP/DR Identify technical remediations for SOX 404 ITGC and create short term and long term roadmap for remediation Conducting regular training for technical teams for SOX control implementation & audits Should have worked on consulting/implementation & audit of SOX IT General Controls associated with IT Operations (Mandatory) CGEIT, COBiT Experience & COSO ERM execution (preferred) Excellent understand & experience in IT applications &infrastructure management which includes SDLC, App Security, DevOps, Networks, Data Centre Operations, Service Management/Service Desk, Server Management etc. Excellent understanding of IT Service Management processes. ITIL certified. Should be able to identify & report risks related to SOX ITGC design effectiveness & operational effectiveness gaps Should have experience in executing end-to-end SOX ITGC audit life cycle Exposure to other regulatory compliances such as Data Protection Act Candidate should have client facing experience B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: CISA/CGEIT/CISM/CISSP ISO 27001 Implementer, Lead Auditor ITIL V3.0

We're Hiring! I am excited to share some amazing career opportunities at Happiest Minds. Take your Security career to the next level with Happiest Minds, ! Join a dynamic team, where Security Meets Innovation, and grow with us. Be recognized in a Great Place to Work Certified environment Interested professionals can directly reach out to me ankita.patari@happiestminds.com or can apply in below post Skills : GRC - Compliance, SOX ITGC, Communication Skills, GRC - Risk management Responsibility: Should have good experience in SOX consulting, process and frameworks - Should be conversant with GRC practices, audits and compliance - Should have excellent communication skills, both verbal and written User access review experience is also require. Experience :3-5 Years Location : Bangalore NP- who can join max by 30 days only Shifts: Rotational Shift(US and UK Shift) Thanks and regards, Ankita Ghosh ankita.patari@happiestminds.com

About The Role : Job Title Vendor Risk Manager AVP LocationPune, India Role Description Vendor Management is responsible for the service relationship with a vendor on a transactional level and for transactional vendor related support tasks. Work includes Managing or performing strategic sourcing work to manage risk and optimize the value/resilience of materials/services sourcing including Establishing supplier relationship management processes and continuous improvement goals/programs Negotiating contracts and coordinating supplier integration plans with internal clients Monitoring market dynamics that impact materials/services availability and/or pricing Partnering with internal clients to identify sourcing needs, develop buyer/market profiles, identify marketplace trends, and define acceptable service levels What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Y our key responsibilities Vendor Risk Management (VRM) is the framework/process for identifying and managing the risks arising from working with third-party vendors (internal and external). All vendor relationships and transactions are assessed and those carrying higher inherent risks are subject to a more granular assessment. SO (Service Owner) role is responsible for owning the service and providing comprehensive details, responding to tasks in the VRM process when necessary. Your role Taking end-to-end ownership of each assigned Vendor Risk Management (VRM) Engagement Requests for an engagement as SO. Follow-up with Vendors point(s) of contact for responding to all Control questions raised during VRM process for an engagement. Escalations to be triggered as required. Attending all trainings and workshops defined as mandatory by internal Third-Party Risk Management (TPRM) teams. Keeping yourself familiarized and updated on all latest Policies and Procedures published by the various Risk Management Functions within Deutsche Bank. Keeping yourself familiarized and updated on control requirements of the latest Security Control for Third Parties (SCTP 4.0) and explain the same to vendors to ensure that appropriate evidence is shared by the vendors, which satisfy the Control requirement. Ensuring appropriate due diligence before Third Party Management (TPM) review initiation and familiarity with Risk Type Controller (RTC) requirements in advance Providing comprehensive and transparent details about the owned Engagement Request in the TPM platform in a timely manner Ensuring that the data provided about the owned Engagement Request are kept up-to date, in line with the TPM Key Operating Documents Performing VRM Process tasks when prompted by TPM and/or RTCs Notifying the relevant RTCs whenever gaps are closed, deadlines cannot be met or full mitigation is not possible, Remediating gaps identified for the Engagement Request and implementing mitigation plans, Reporting gaps by raising Self-Identified Issues (SII) in an engagement and follow-up for closure/mitigation on a timely basis, in line with the remediation plans shared, Addressing unmitigated risks/gaps in accordance with the Operational Risk Management Policy, TPRM Policy, TPRM Procedure and TPM Key Operating Documents, Ensuring the service does not commence before the VRM review is completed, Ensuring that no contract is signed, or service is delivered to any Deutsche Bank Legal Entity for which Compliance deemed the service prohibited, Ensuring adherence to contractual obligations by Vendor Ensuring compliance to Regulatory guidelines Timely submission of accurate data to Regulators. Liaising with Divisional Vendor Management Office (DVMO) resources for closing any open points related to the engagement requests, Ensuring all strategies and plans eg. Termination Exit Plans, Termination Exit Strategies, etc. related to an engagement are documented, agreed between the relevant stakeholders, and reviewed / updated on defined intervals. Ensuring that Monthly, Quarterly Governance meetings with appropriate stakeholders are conducted and the details documented in line with the SDM requirements, Ensuring monthly feedback / review is completed for all engagements in scope and the details are documented in the designated portals in line with relevant policies. Ensuring annual audits are budgeted, planned, and conducted for the identified vendors and follow-up to ensure all open findings are remediated by vendor. Your skills and experience Excellent skills and experience / technical knowledge in handling data/information security audits in Banking / Financial environments Minimum 10 years Knowledge and experience with handling / responding to controls around IT Security audits, Financial Audits eg. SOX IT (SOC) audits, ISO 27001:2022, PCI-DSS, etc. Working with multiple teams to remediate open findings identified during internal / external audits including regulatory audits, IT Security audits, etc. Familiar with security requirements for Banking applications and environments, A great team player who is comfortable in working and coordinating with diverse people from both internal as well as vendor teams, Excellent communication and mentoring skills, Experience with distributed, multi-locations teams, Able to inspire and motivate people and multi-disciplinary, self-organized teams, Any Certifications in areas of Information Security or Vendor Management is a plus, Professional level of English is mandatory. How we'll support you Training and development to help you excel in your career. Coaching and support from experts in your team A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

About The Role : Job TitleDivisional Risk and Control Analyst LocationJaipur India Role Description The Embedded Risk in India is a 10FTE team and part of a broader team of 30+ covering all aspects of the DB Risk Framework and Regulatory support for KYC Ops, Client Data Management (CDM) and Business Financial Crime Risk (BFCR). This role will report locally into an India based Embedded Risk Team (ERT) Lead and functionally to the Control Testing Lead in UK. The role will work closely with global peers to help provide a complete picture of the risk profile, ensuring that handoffs and dependencies across functions/regions are transparent and understood. Engages regularly with the first line processing teams and in collaboration with Regulatory Management Group, Anti Financial Crime (AFC), Divisional Control Regulatory Office (DCRO), Business & Other 2nd line functions to ensure full transparency and governance of risk. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Risk & Control Assessments - Review the design adequacy and performance effectiveness (at a high level/light touch) of controls and their corresponding documentation (Desk Top Procedures) Governance - Ensure that an effective, embedded and consistently applied governance structure is in place Key Risk Indicators - Ensure a complete set of KRI's is in place, has definitions, RAG's (where applicable), has reporting parameters and a subjective assessment of the CATR (complete, accurate, timely and relevance) of those KRI's has been reached. Review and challenge validity of commentary, spot check monitoring by, looking for trend anomalies (spikes/dips) that may risk profile shifts, reporting errors or other issues requiring investigation Audit SII & Incident processes - Ensure compliance to the firm audit policy, firm Self-Identified Issue Guidance and incident escalation process through training, support guidance and challenge. Facilitate management with adequate reporting and governance, to ensure zero overdue items and no last min extensions are required and perform pre-closure submission review and validation. Regulatory Compliance Transparency - Ensure there is a mechanism in place to monitor regulatory compliance and that the mechanism is performing effectively. Risk Culture - Design and deliver a risk culture improvement programme to promote transparency, awareness, engagement with the risk agenda. Work in collaboration with multiple first and second line functions (inc. Regulatory Management Group (RMG), Anti financial Crime (AFC), Divisional Control Regulatory Office (DCRO) and the Business Your skills and experience The successful individual will have diverse experience of the financial sector in any of the following areas; Operations, risk/controls, Control testing, Regulatory teams/processes, quality assurance, compliance or audit and have experience managing deliverables & maintaining effective relationships with global senior management. Substantial and relevant experience in a global banking environment Exposure to Client On boarding, KYC or similar regulatory projects is preferred Strong communication and interpersonal skills Strong analytical and problem solving skills Ability to work under pressure to tight deadlines Strong organisational and administrative skills Client focused approach and ability to react quickly to changing demands How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

Role & responsibilities: Perform testing of IT Application Controls(ITAC), IPE, and Interface Controls through code reviews, IT General Controls(ITGC) review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including: Information Security reviews Information Technology Infrastructure reviews Application reviews Preferred candidate profile : Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits Business Systems Controls / IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Working knowledge of programming languages(C/C++/Java/SQL)

Qualification and Minimum Entry Requirements B.Tech (IT/CSE) with 8+ Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients. Position and Key Responsibilities As a Manager in RSMs growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization. Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating control’s design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions Review and complete status documents for client delivery Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education

As a part of RSMs growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization.Qualification and Minimum Entry Requirements Job Description B.Tech(CSE/IT)/MCA/MBA/CA with 0-5 Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP) Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as this a client facing role and it requires frequent communications with RSM International clients. Position and Key Responsibilities Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the Industry leading frameworks and methodologies for Sarbanes-Oxley, COBIT, NIST and ITIL Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating controls design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Perform first level review of associates work for accuracy, completeness, and well-reasoned conclusions Review and complete status documents for client delivery Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education Preferred candidate profile

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Analyst , you have a pivotal operational role to provide and deprovision system access. You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What you’ll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access? Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. ?? Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations? Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support? Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices. Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM? What you’ll bring 2 years of experience in Identity or Access Management?? Tireless adherence and attention to appropriate IT general computing controls? Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks? Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube ? Blackbaud is a digital-first company which embraces a flexible remote or hybrid work culture. Blackbaud supports hiring and career development for all roles from the location you are in today! Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.

Role & responsibilities We are seeking enthusiastic & technically savvy professionals to support the current team with the execution and management of engagements in our current and future Client portfolio. Information Security Governance, Privacy and Compliance and Security Assessment experience with a focus on IT and IS Risk Assessments and program reviews / establishment. Understanding on ISO 27001/ NIST 800-53/ PCI-DSS Interacting with onshore engagements and clients directly performing Vendor or Third-party security assessments Business Continuity planning and Disaster Recovery implementation and review experience. Perform remote assessments independently. Independently write reports of the assessments based on the discussions during remote reviews. Perform second level quality review of the reports written by peers/junior resources.

Minimum of 12 years of relevant compliance experience and cybersecurity knowledge 10+ years of security compliance audit experience would be important Ability to utilize working knowledge of information security best practices such asNIST 800 series, ISO 27000 series, GDPR, etc Experience with compliance programs such as SOC2, FFIEC or FedRAMP/ FISMA, HIPAA, GDPR, or PCI Experience in risk assessment processes, policy development, proposals, work statements, product evaluations, and delivery of technology Ability to understand enterprise business computing operations/requirements, and in particular, Cloud Ability to stand firm on issues yet be flexible and creative when working with customers to find effective solutions Ability to understand and interpret laws and regulatory requirements related to information protection, and develop and implement appropriate processes to achieve and maintain compliance and reduce risk Required education Bachelor's Degree Preferred education Doctorate Degree Required technical and professional expertise Minimum of 12 years of relevant compliance experience and cybersecurity knowledge 10+ years of security compliance audit experience would be important Ability to utilize working knowledge of information security best practices such asNIST 800 series, ISO 27000 series, GDPR, etc Experience with compliance programs such as SOC2, FFIEC or FedRAMP/ FISMA, HIPAA, GDPR, or PCI Experience in risk assessment processes, policy development, proposals, work statements, product evaluations, and delivery of technology Ability to understand enterprise business computing operations/requirements, and in particular, Cloud Ability to stand firm on issues yet be flexible and creative when working with customers to find effective solutions Ability to understand and interpret laws and regulatory requirements related to information protection, and develop and implement appropriate processes to achieve and maintain compliance and reduce risk

Job Requirements Design and execute the day-to-day activities of Information Technology (IT) audit engagements, with a focus on strategic, operational and regulatory/compliance related risks Plan activities related to development of audit program, and execution of internal audits and IT control assessments in the following areas: cybersecurity, IT strategy and governance, IT operations, business continuity and disaster recovery, network and infrastructure security, cloud and third party risk, programs and projects, automation, General Information Technology Controls (GITCs) and application controls, and regulatory/compliance requirements Review clients' processes and controls against leading practice and industry frameworks, identify gaps in design and execution, and communicate issues and recommendations to engagement leads and client management Contribute to IT Audit knowledge base and internal practice development initiatives Supervise and provide performance management for IT audit staff working on assigned engagements Write and present clear and concise reports and presentations containing meaningful observations and recommendations to clients, and document procedures performed and conclusions reached related to projects Support proposal and business development activities by assisting in the identification of new target clients, building business relationships with key executives, and developing/presenting proposals Provide oversight and leadership to team members regarding deliverables, project plans, and performance management while contributing to industry and regulatory publications, writing professional and thought leadership articles, and speaking at related conferences and seminars Mandatory technical & functional skills Bachelor's degree in an appropriate field from an accredited college/university; Master's degree from an accredited college/university is preferred Prior knowledge leading and executing risk-based IT-related internal audits and/or risk and control assessments, leveraging IT governance and control frameworks such as COBIT, NIST CSF, NIST 800-53, and ITIL and proficiency in core requirements and methodologies for SOX internal control programs Experience with IT Risk Management and three lines of defense frameworks CISA, PMP, CISSP or CRISC certification is preferred Key behavioral attributes/requirements Ability to work well independently as well as part of a team Driven and enthusiastic with a can-do attitude and a strong sense of ownership to get the job done in a pragmatic fashion