2 Itgcs Jobs

Genpact (NYSE: G) is a global professional services and solutions firm delivering outcomes that shape the future. Our 125,000+ people across 30+ countries are driven by our innate curiosity, entrepreneurial agility, and desire to create lasting value for clients. Powered by our purpose - the relentless pursuit of a world that works better for people - we serve and transform leading enterprises, including the Fortune Global 500, with our deep business and industry knowledge, digital operations services, and expertise in data, technology, and AI. Inviting applications for the role of Principal Consultant, IT Risk and Controls The IT Risk and Controls Analyst/Manager is responsible for identifying, assessing, monitoring, and reporting on IT-related risks and ensuring that appropriate internal controls are in place and operating effectively. This role supports the development and implementation of IT risk management frameworks and works closely with internal audit, cybersecurity, compliance, and IT operations teams. Responsibilities . Perform risk assessments on IT systems, processes, and vendors. . Develop and maintain IT risk registers and control matrices. . Evaluate and enhance the effectiveness of IT general controls (ITGCs) and application controls. . Support audit readiness and coordinate responses to internal/external audit findings. . Implement and monitor controls aligned with regulatory and compliance frameworks (e.g., SOX, ISO 27001, NIST, COBIT). . Partner with business and IT stakeholders to design and implement risk mitigation strategies. . Manage and report on key risk indicators (KRIs) and control metrics. . Conduct IT control testing and support risk-based control reviews. . Assist with third-party/vendor risk assessments and due diligence processes. Support business continuity and disaster recovery planning from a risk perspective. Qualifications we seek in you! Minimum Qualifications / Skills B.Tech/B.E/ MCA Excellent written and verbal communication skills Preferred Qualifications/ Skills Solid understanding of IT risk frameworks (e.g., NIST, COBIT, ISO 27001). Experience with SOX compliance and ITGCs. Strong analytical, communication, and stakeholder management skills. Proficiency in tools such as GRC platforms (e.g., Archer, ServiceNow GRC) and Excel. Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation. Get to know us at and on , , , and . Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training.

GRC professional with good understanding of industry frameworks and standards 2. In-depth experience on Third-Party Risk Management a. Evaluating third party's cybersecurity control and ensuring they are in compliance with organizations standards and industry best practices b. Track and monitor the status of each due diligence review and communicate the status with management and key stakeholders on a regular basis c. Articulate risks and potential options for remediation or compensating controls d. Understand inherent risk assessment e. Perform new and recurring third party security risk assessments, develop mitigation plans, and work with internal stakeholders to assign remediation tracking responsibility 3. Strong business and communication skills 4. Experience in driving meetings with stakeholders 5. Provide advisory and consulting to client on new trends and challenges in enterprise risk management area 6. Experience in design and development of information security policies, standards, and guidelines 7. Experience on SIG (shared assessments), ISO 27001, NIST framework, SOC 1, SOC2, ISO 27001 and HIPAA 8. Lead and drive meeting with top management 9. Design / modify Contract security language / security clauses 10. Co-ordinate and negotiate security clauses with Procurement team and Supplier 11. Experience on GRC platforms 12. Client interface for understanding the IT Governance, IT Risk & Compliance Management Controls as applicable to Infrastructure operations 13. Well versed and hands-on experience for establishing processes, controls and audits of compliances like HIPAA, CFR, PCI DSS & SOX ITGCs. 14. Documentation of as-is IT & Risk management Controls as they are currently being executed in client environment and ensuring that the same controls are followed and implemented in service delivery operations 15. Work with the client & technical teams for change request on any risk or control implementation as well as governance process 16. Participate in internal as well as external regulatory as well as IT security audits. Understand IT Risks and define audit & governance mechanisms for assets, processes & physical security