94 Risk Governance Jobs - Page 4

End Date Thursday 30 October 2025 We Support Flexible Working - Click here for more information on flexible working options Flexible Working Options Hybrid Working Job Description Summary Provide insightful, high quality analysis, advice and guidance in a specific area of risk, executing control and tailored to senior stakeholder needs. May lead a team of risk specialists and deputise for more senior colleagues Job Description Analyses key themes using data from a wide range of sources and identifies possible impacts on the business. Organises and prepares complex documents by using multiple computer applications (such as Microsoft Office), while also gathering and summarising data for special reports. Takes responsibility for implementing a teams formal development framework with guidance from senior colleagues, while informally coaching others throughout the organisation in area of expertise and pursuing and investing in opportunities for own personal development. Identifies shortcomings, then suggests and implements improvements to existing business practices, while developing and delivering projects or a workstream within the organisations change management programme with guidance from senior colleagues. Provides primary supervision to a team performing transactional work or supervises a small group performing junior professional tasks. Uncovers emerging issues and/or needs and identifies potential causes, related issues, key stakeholders and barriers. Develops procedures and interprets and applies policy for area of expertise to achieve specified outputs, or advises the wider business on application of policy, then monitors implementation of those procedures within the organisation. Plans and coordinates testing and inspection of products and processes, then implements and monitors the effectiveness of corrective actions and/or continuous improvement initiatives. Recommends ways to improve support for operations by changing policies, processes, standards and practices. Assists in the design and implementation of a compliance programme while ensuring adherence to regulatory and compliance standards by liaising with the regulator and/or supervises the activities of a regulatory/compliance team. Develops and/or delivers a contingency plan for significant aspects of the risk management and/or control process. Navigates a wide variety of existing processes, procedures and precedents to interpret data and identify possible answers. Assigns short-term work schedules to a team of subordinates in order to achieve expectations and follow established timelines. Manages important client relationships with guidance from senior colleagues or oversees relationship management with a group of more transactional clients and customers. Identifies shortcomings, suggests improvements and implements approved revisions to current compliance processes, systems and procedures within assigned unit and/or discipline.

Hiring GRC Consultant : MNC Client : Mumbai (Powai Location). Required Experience: 3+Years Notice Period: Immediate -1week Skills Required: Strong in GRC (Governance, Risk, and Compliance). Strong in ISO 27001, NIST, and Indian regulatory frameworks.

Experience with the following Process and Control areas: Governance, controls and regulation Governance, Risk & Compliance Process and Control Process reviews Standard Operating Procedures Enterprise Risk Management Revenue Assurance SOX Internal Control over Financial Reporting (ICFR) Design and Implementation testing Process walkthroughs and testing effectiveness of controls Strong problem solving and analytical skills Good listening skills, inquisitive nature, intellectual curiosity and self-starter qualities

Role & responsibilities About the job At Sanofi we chase the miracles of science to improve peoples lives. We are dedicated to making a positive impact on the lives of the patients and families we serve, and we accomplish our goals through world-class research and with the compassion and commitment of our employees. As we continue to transform the practice of medicine, the next chapter of Sanofis Play to Win strategy will require a focus on delivering transformation and simplification of our core processes, optimizing resource allocation and deployment to fuel business growth and investment in science. To facilitate this transformation, a new Business Operations Business Unit is being established, bringing together existing business service activities, and driving further expansion of centralized services at scale into a global unit, with a focus on driving simplification, efficiency, and productivity. This new Business Unit will enable the delivery of best-in-class business support capabilities across the organization, incorporating and engaging disparate teams from across areas such as R&D, M&S, the Corporate Functions and GBUs into new global Service Delivery Towers with initial services spanning Commercial, Finance, Procurement and People & Culture. Reporting to the Head of Procurement Risk Assurance, the Risk Assurance Analyst plays a critical role in assessing and managing risks. The incumbent supports the development and execution of strategies to ensure sustainable supplier relationships align with Sanofi's business objectives. Responsibilities: Risk Assessment : Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies. Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary. Compliance : Collaborating with procurement teams to drive adherence and enhance controls across the E2E Procurement lifecycle. Ensure compliance with relevant industry standards and regulatory requirements. Reporting and Data Visualization: Generate regular reports and dashboards for TPRM process and Supplier risk factors, compliance metrics, and key performance indicators for stakeholders and leadership. (Power BI, COUPA Analytics preferred) Collaboration: Work closely with Procurement, GBUs and Risk Domain Experts to integrate risk management practices into the supplier relationship lifecycle. Continuous Improvement: Identify opportunities for enhancing risk management processes, implementing best practices to drive positive outcomes. share resume to nedunuri.saikumar@manpower.co.in IT ISA CONTRACTUAL ROLE FOR 1 YEAR AND WILL BE RENEWED YEARLY

Job Summary The Deputy Manager - IT GRC (Governance, Risk, and Compliance) role at ENGIE India is crucial in ensuring the organization's Digital & IT landscape is secure, compliant, and aligned with business objectives. This role involves developing, implementing, and managing IT GRC, risk management, and ensuring compliance with regulations and internal controls. This is an individual contributor role based in Pune, India, with occasional onsite travel to support Digital & IT audits. Main Objectives The primary objective is to ensure the IT landscape is secure, compliant, and aligned with business goals. This involves: Implementing comprehensive IT GRC strategies. Implementing INCOME framework for D&IT function Implement and Manage - Risk management processes. Ensuring adherence to regulations and standards. Maintain Digital &IT internal control requirements Lead the Digital & IT Internal Control and Compliance Key Responsibilities Audit Preparation and Management: Prepare processes, teams, and documents for internal and external audits. Track and remediate audit observations with corrective and preventive actions. Risk Management: Manage and track all technology-related risks for timely closure. Oversee formal risk analysis and self-assessment programs for various systems and processes. Compliance : Ensure compliance with privilege access management processes and relevant IT regulations and standards, such as ISO 27001 and NIST CSF. Documentation and Communication: Maintain strong documentation and communication skills. Ensure clear communication with stakeholders and effective conflict resolution. Implementing Initiatives: Coordinate with various departments to ensure smooth execution and monitor progress. Continuous Improvement: Foster a culture of continuous improvement within the IT GRC team. Stakeholder Engagement: Engage with key stakeholders, including management and department heads, to ensure IT GRC strategies are well-supported and integrated. Conducting Risk Assessments: Oversee comprehensive risk assessments to identify potential risks. Developing Mitigation Strategies: Implement controls and safeguards to reduce the likelihood and impact of risks. Monitoring and Reporting: Establish effective monitoring mechanisms and regularly report on risk status to management. Collaboration with Departments: Work closely with various departments to ensure effective implementation of risk management strategies. Adhering to Regulations: Ensure compliance with all relevant IT regulations and standards. Implementing Best Practices: Promote the adoption of industry best practices within the organization. Internal and External Audits: Conduct regular internal audits and manage relationships with external auditors and regulatory bodies. Policy Development: Develop and maintain comprehensive IT GRC policies. Coordination and Collaboration Cross-Departmental Collaboration: Collaborate with various departments to ensure effective implementation of GRC initiatives. Stakeholder Communication: Ensure stakeholders are informed about the progress and impact of GRC activities. Conflict Resolution: Resolve conflicts that arise during the implementation of GRC initiatives. Internal Audits: Conduct internal audits to assess the effectiveness of IT GRC controls and processes. Managing External Audits: Ensure the organization is well-prepared for external audits and address any findings promptly. Audit Preparation: lead the preparation for audits to ensure a smooth process. Addressing Audit Findings: Develop and implement action plans to resolve audit findings and prevent recurrence. Continuous Improvement: Use audit insights to drive continuous improvement in GRC practices. Regular Reporting: Provide regular reports on IT GRC activities to management and the board. Clear Communication: Ensure GRC-related information is communicated clearly and consistently. Training and Awareness: Promote awareness of GRC policies and practices within the organization through training sessions and resources. Technical Knowledge and Skills Understanding IT Systems: Strong understanding of IT systems, including Cloud services, IT-OT convergence, hardware, software, networks, and data management practices. Security Principles: Deep understanding of security principles, including encryption and access control. Risk Management Frameworks: Familiarity with frameworks such as ISO 31000 and NIST RMF. Emerging Technologies: Stay updated on emerging technologies and their impact on IT GRC practices. Technical Certifications: Relevant certifications such as CRISC are valuable. Compliance Knowledge Regulatory Requirements: Deep knowledge of relevant regulatory requirements, such as CEA guidelines, Internal Controls (ITGC), IT Act, Indian and global Energy sector compliance, GDPR, HIPAA, and SOX. Industry Standards: Familiarity with industry standards like ISO 27001 and NIST CSF. Compliance Assessment: Conduct regular compliance assessments and develop comprehensive compliance policies. Training and Awareness: Promote awareness of compliance requirements within the organization. Analytical and Problem-Solving Risk Analysis: Conduct formal risk analysis to identify potential vulnerabilities. Problem-Solving : Develop and implement effective solutions to mitigate risks. Data Analysis: Analyze data to identify trends, assess risks, and make informed decisions. Decision-Making: Make informed decisions based on risk and compliance analysis. Continuous Improvement: Promote a culture of continuous improvement in GRC practices. Qualifications and Experience Strong background in Information Technology, Cybersecurity, or a related discipline. Knowledge of frameworks like ISO 27001, NIST, GDPR, and HIPAA. 5-8 years in IT GRC, preferably in the Energy sector. Hands-On Experience: Identifying, assessing, and mitigating risks.

The role holder will be a part of the Committee Secretariat Team, focussing on secretariat support for Key Risk and Compliance Committees of the bank as well as general governance and policy matters related to committee operations and risk governance tasks. These Committees are attended by senior management of the Bank. The role holder will work in close alignment with a dedicated onshore manager that covers content driven topics and senior stakeholder management, the Chairperson, nominated representatives. RESPONSIBILITIES The role holder should bring the following experience and capabilities: Experience in financial services, preferably with subject matter expertise in risk management Experience in a Committee Secretariat Role, preferably a certified company secretary. Good communicator, in particular written communications in English; able to write meaningful and clear e-mails, ability to interact with Senior stakeholders in the bank. Collaborative: working as part of a broader team to ensure a coordinated and consistent approach. Good organiser of incoming requests within the team including prompt retrieval of information sought from time to time. Ability to work with minimal direction. Practical. Demonstrate understanding of and commitment to the Groups core values. Ownership mindset, able to think creatively and be open to new ideas. Able to work with tight deadlines and multiple demands. Attention to detail. Proactive, problem-solving, helpful. Strong experience in MS Outlook, Word, Excel, Power Point. Key Responsibilities Business The role holder is responsible for: Daily secretariat support for the running of various Committee meetings. This might include: Put together Committee and Chairperson packs. Write to authors for papers/ Chase for papers. Assist with the review of the papers for formatting/ adherence to paper guidelines. Assist with tracking of committee action items. Manage meeting logistics. Transcribe meeting minutes. Schedule Committee meetings for the next year and schedule meetings with Chairperson. Book VC and non-VC rooms for Committee and Chairperson meetings. Confirm and track attendance. Support on general governance and policy matters related to committee operations and risk governance tasks, which could include: Execute operational risk controls. Assist with annual Committee Effectiveness Review (CER). Assist with meeting day logistics. Assist to maintain the Committee Governance Standards, Terms of Reference, and Committee Structure pages on the Bridge/intranet. Provide materials as requested by external and internal parties, subject to approval. Processes Work in close collaboration with the Chairperson and other committee members\invitees, to continuously ensure high quality deliverables. Engage internal and external stakeholders to facilitate the smooth running of committee meetings, such as writing to presenters to ensure that they are on standby to attend the meeting and assisting to put together meeting packs for the Committees and the Chairperson. Skills and Experience Risk Management Carry out short term activities as requested by the Chairperson, and Committee Secretariat Lead. Support the implementation of the Group s Enterprise Risk Management Framework ( ERMF ) activities relevant to Committee Risk Governance. Track the completion of Committee Effectiveness Reviews for respective Committees supported. Governance Ensure that outcomes delivered, including necessary controls are fit for purpose and meet regulatory requirements. Ensure the Bank s risk governance disciplines are adhered with. Regulatory & Business Conduct Display exemplary conduct and live by the Group s Values and Code of Conduct. Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Lead the team to achieve the outcomes set out in the Bank s Conduct Principles. Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters. Key stakeholders Committee Chairpersons and his/her direct reports. Committee members and invites, and their offices. Contributors of the papers to the Committees. Other Colleagues from the Risk and Compliance departments. Group Internal Audit ( GIA ) and other persons who may request meeting materials. Country Regulators, etc. Other Responsibilities* Embed Here for good and Group s brand and values in the team; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; TRAINING, LICENSES, MEMBERSHIPS AND CERTIFICATIONS The role holder will have experience in: Bachelor Degree qualifications and minimum of 10-12 years of experience in financial services, preferably in a Bank with a specialisation in risk management Professional certifications relating to Committee Secretariat. The role holder should comply with all mandatory e-learning as prescribed from time to time. Qualifications Certified Company Secretary Manage Conduct Manage Risk Manage People Results orientated, with attention to detail. Excellent inter-personal skills; comfortable in building relationships, with outstanding written and oral communication skills with high competency in MS Word, Excel, and PowerPoint Confident self-motivated person with a high level of drive and ability to operate in a fast-paced environment Good problem identification skills coupled with an analytical and pragmatic approach to proposing solutions About Standard Chartered Were an international bank, nimble enough to act, big enough for impact. For more than 170 years, weve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If youre looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we cant wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, youll see how we value difference and advocate inclusion. Together we: Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing. Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations. Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum. Flexible working options based around home and office locations, with flexible working patterns. Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning. Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential. www. sc. com/careers 12475

Security Policy, Risk and Privacy Analyst Responsibilities: Contributes to the development of policies, standards and guidelines related to personal data regulations and information security. Ensures controls are implemented inline with the approved security policies. Maintain an inventory of all information assets affecting personal data. Identifies security and privacy risks and vulnerabilities, assesses their impact and probability, develops mitigation strategies and reports to the business. Coordinates and works with the IT teams to communicate and mitigate security risks. Adopts governance framework to manage process, technical risks, and compliance of implemented security controls. Ensures key security controls are verified for compliance and deviations communicated and coordinated to closure. Conducts regular technical compliance assessments to verify the effectiveness of implemented security controls. Should manage governance and compliance related projects. Should coordinate with the relevant IT teams and the audit team to manage regular local audits. Requirements: Have worked at least 5 years experience in the information security domain. Should have knowledge of Information security standards (ISO 27001, NIST) and personal data regulations and standards (GDPR, ISO 27018 etc.) Have experience on drafting policies and procedures. Should have knowledge on security solutions. Should have worked on implementing personal data regulations and managing the same. Ability to create and analyze metrics to identify trends, gaps and issues. Have experience on managing end to end security audits. Have an experience on the information security risk management cycle. Understanding of project management and part of a project implementations Should have skills of managing implementation projects on governance and personal data regulations. Good communication skills, problem-solving skills and team player. Preferred Certifications ISO 27001 Lead Auditor/ CISA Certification on Management of Personal data (ISO 27018/GDPR certification/CDPSE/ Product related certification)

Diversity hiring for Cyber Security Engineer - 5 to 10 Years at Bangalore. Position Cyber Security Engineer Experience – 5 to 10 Years Location – Bangalore Job Description: 5-8 years of experience in cybersecurity engineering, preferably in the manufacturing or industrial control systems (ICS) sectors. Strong knowledge of cybersecurity principles, risk management, and threat analysis. Proficiency with cybersecurity tools and technologies used for monitoring, detection, and incident response. Familiarity with cybersecurity standards and regulations such as IEC 62443, ISO 27001, NIST, etc. Relevant certifications such as CISSP, CISM, CEH, or GIAC are preferred. If interested, please share cv on omkar@hrworksindia.com Regards, Omkar 8208497043

Role & responsibilities Understand the security environment, identify security gaps in IT Infrastructure, report to Security and fix the gaps on priority Be the first line of defence against cyber threats, monitoring security systems, analysing alerts, investigating incidents, and responding to security events, while also contributing to improving the organization's security posture Respond to security incidents, including conducting forensic investigation and implementing remediation measures. Stay informed about the latest security threats, vulnerabilities and industry best practices. Proactively search for and identify potential threats and vulnerabilities that may have bypassed existing security controls. Evaluate and recommend security tools and technologies to enhance the organizations security posture. continually identify, assess, report on, manage and remediate vulnerabilities across endpoints, workloads and systems. Conduct ethical hacking activities (CEH) to identify vulnerabilities and weaknesses in systems and applications. Perform Vulnerability Assessment and Penetration testing (Pen Test) to simulate Cyber Attacks and assess the effectiveness of security measures. Maintain and tune information security monitoring tools and systems. Have strong understanding of networking protocols (ex: TCP/IP, DNS, DHCP) and OSI model to work with Network teams. Harden network devices (routers, switches) by applying security best practices and configuring ACLs to limit unauthorized access. Knowledge of cryptographic algorithms and protocols (AES, SSL/TLS, IPSec) for securing data in transit and at rest. Deep understanding of cryptographic principals, key generation, distribution, storage, and rotation along with the ability to develop and implement robust key management policies & procedures. Review Firewall rules, Routers, Switches, IDS, IPS, Servers, Databases and other infrastructure components to identify security gaps in their configuration. Preferred candidate profile B.Tech/M.Sc with computer science or information technology with good communication skills Overall IT experience of 4 to 8 years, with a minimum of 3 to 5 years in IT Security, IT Audit. Strong understanding of Network protocols, VPN, Remote connectivity, Firewall technologies and intrusion detection or prevention systems. Experience in handling SIEM tools, performing VAPT exercises, patch management, AV updates, and security configuration of systems Certifications like CompTIA Security+, or CISSP or CEH or Any One Security Certification (C- Level) Certification is Must Note : Candidate having less than 30 days' notice period or immediate joiners alone please apply Interested Candidates please share the profile to my Email ID - Krishnaprasad.ravishankar@omegahms.com

The role holder will be a part of the Committee Secretariat Team, focusing on secretariat support for Key Risk and Compliance Committees of the bank as well as general governance and policy matters related to committee operations and risk governance tasks. These Committees are attended by senior management of the Bank. The role holder will work in close alignment with a dedicated onshore manager that covers content driven topics and senior stakeholder management, the Chairperson, nominated representatives. RESPONSIBILITIES The role holder should bring the following experience and capabilities: Experience in financial services, preferably with subject matter expertise in risk management Experience in a Committee Secretariat Role, preferably a certified company secretary. Good communicator, in particular written communications in English; able to write meaningful and clear e-mails, ability to interact with Senior stakeholders in the bank. Collaborative: working as part of a broader team to ensure a coordinated and consistent approach. Good organiser of incoming requests within the team including prompt retrieval of information sought from time to time. Ability to work with minimal direction. Practical. Demonstrate understanding of and commitment to the Groups core values. Ownership mindset, able to think creatively and be open to new ideas. Able to work with tight deadlines and multiple demands. Attention to detail. Proactive, problem-solving, helpful. Strong experience in MS Outlook, Word, Excel, Power Point. Key Responsibilities Business The role holder is responsible for: Daily secretariat support for the running of various Committee meetings. This might include: Put together Committee and Chairperson packs. Write to authors for papers/ Chase for papers. Assist with the review of the papers for formatting/ adherence to paper guidelines. Assist with tracking of committee action items. Manage meeting logistics. Transcribe meeting minutes. Schedule Committee meetings for the next year and schedule meetings with Chairperson. Book VC and non-VC rooms for Committee and Chairperson meetings. Confirm and track attendance. Support on general governance and policy matters related to committee operations and risk governance tasks, which could include: Execute operational risk controls. Assist with annual Committee Effectiveness Review (CER). Assist with meeting day logistics. Assist to maintain the Committee Governance Standards, Terms of Reference, and Committee Structure pages on the Bridge/intranet. Provide materials as requested by external and internal parties, subject to approval. Processes Work in close collaboration with the Chairperson and other committee members\invitees, to continuously ensure high quality deliverables. Engage internal and external stakeholders to facilitate the smooth running of committee meetings, such as writing to presenters to ensure that they are on standby to attend the meeting and assisting to put together meeting packs for the Committees and the Chairperson. Skills and Experience Risk Management Carry out short term activities as requested by the Chairperson, and Committee Secretariat Lead. Support the implementation of the Group s Enterprise Risk Management Framework ( ERMF ) activities relevant to Committee Risk Governance. Track the completion of Committee Effectiveness Reviews for respective Committees supported. Governance Ensure that outcomes delivered, including necessary controls are fit for purpose and meet regulatory requirements. Ensure the Bank s risk governance disciplines are adhered with. Regulatory Business Conduct Display exemplary conduct and live by the Group s Values and Code of Conduct. Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Lead the team to achieve the outcomes set out in the Bank s Conduct Principles. Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters. Key stakeholders Committee Chairpersons and his/her direct reports. Committee members and invites, and their offices. Contributors of the papers to the Committees. Other Colleagues from the Risk and Compliance departments. Group Internal Audit ( GIA ) and other persons who may request meeting materials. Country Regulators, etc. Other Responsibilities* Embed Here for good and Group s brand and values in the team; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; TRAINING, LICENSES, MEMBERSHIPS AND CERTIFICATIONS The role holder will have experience in: Bachelor Degree qualifications and minimum of 10-12 years of experience in financial services, preferably in a Bank with a specialisation in risk management Professional certifications relating to Committee Secretariat. The role holder should comply with all mandatory e-learning as prescribed from time to time. Qualifications Certified Company Secretary Manage Conduct Manage Risk Manage People Results orientated, with attention to detail. Excellent inter-personal skills; comfortable in building relationships, with outstanding written and oral communication skills with high competency in MS Word, Excel, and PowerPoint Confident self-motivated person with a high level of drive and ability to operate in a fast-paced environment Good problem identification skills coupled with an analytical and pragmatic approach to proposing solutions About Standard Chartered Were an international bank, nimble enough to act, big enough for impact. For more than 170 years, weve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If youre looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we cant wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, youll see how we value difference and advocate inclusion. Together we: Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing. Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations. Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum. Flexible working options based around home and office locations, with flexible working patterns. Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning. Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential. www. sc. com/careers 25232

Job Title: ============ Cyber Security Lead - BFSI Domain Job Location: -- Multiple Locations =============== Dubai - UAE Riyadh - Saudi Doha - Qatar Monthly Salary: ============= AED 10,000 - AED 15,000 per month [ Full TAX FREE Salary - Depending on Experience ] Type of job: ========= In office only, NO remote Project Duration: ============= 2 Years Desired Experience Level: ==================== 6- 10 Years Overall 5 Years or above Cyber security Experience Solid 5 Years or above with Cyber Security as Software Consultant Resposibilities ==================== Conducting audits to determine security violations or vulnerabilities Implementing security controls Upgrading networks to cohere with industry best practices Researching, testing, and implementing security technology Developing firewalls for network infrastructure Granting privileges to users based on their needs and use cases Monitoring network traffic for security incidents and events Investigating incidents and responding to events in real time You must be working as Cyber Security Consultant [ mandatory ] Certifications: =========== Any cyber security certificated is added for advantage No.of positions: ============== 03 Benefits: ======= - Long term (18 Months) Project - Good Salary - Full Tax Free Salary Job Ref code: ============ BFSI_CYBER_SEC_0525 Email: ===== spectrumconsulting1977@gmail.com ============================= If you are interested, please email your CV as ATTACHMENT with job ref. code [ BFSI_CYBER_SEC_0525 ] as subject

About The Role Business Risk Manager is responsible for the regular and critical deal review process, with the objective to anticipate, quantify and mitigate risks for Capgemini on business opportunities the organization is pursuing, in line with internal control rules. About The Role - Grade Specific Be responsible for BRM of a medium size unit, can handle moderately complex deal review process, can provide direction and able to influence senior level, have a good understanding in at least one of the various area of expertise (Delivery, Finance, Legal etc.), have a good grasp of the other main areas of expertise (Delivery, Finance, Legal etc.), provide substantiated opinion and recommendations on deals risk profiles, contribute to develop a risk culture among all the stakeholders, assist on structuring and shaping competitive deals that are sound from a risk perspective, ensure timely and proper deal approvals by the required stakeholders in line with the authorization matrix, follows-up the decisions taken by the respective decision-making bodies and the conditions (if any) associated to the deal, can assist in evolving or revising policies, processes and procedures Skills (competencies)

About this role: Wells Fargo is seeking a Operational Risk Manager. In this role, you will: Manage and develop a team of individual contributors with low to moderate complexity and risk in Compensation functional area Engage stakeholders and internal partners associated with Compensation functional area Manage the development, implementation, and monitoring of a risk-based program for a business or large functional area with moderate to high risk to identify, assess, and mitigate operational risk that arises from inadequate or failed internal processes, people, systems, or external events Maintain a balance between risk mitigation and operational efficiency Influence operational risk and business management to identify, formulate, and implement operational risk policies, procedures, and controls for the respective business or functional area to mitigate risk Provide operational risk expertise to business projects and initiatives and participates in the development of risk rating systems Consult with and influence operational risk and business management to identify, formulate, and implement operational risk policies, procedures, and controls for the respective business or functional area to mitigate risk Manage reporting, escalation, and timely remediation of issues, deficiencies, or regulatory matters regarding operational risk to management Lead implementation of complex and strategic initiatives with moderate risk and complexity Collaborate and influence all levels of professionals including more experienced managers Lead team to achieve objectives Manage communication and collaboration with business heads, Legal, Audit, and regulators on risk related topics Manage allocation of people and financial resources for Operational Risk Mentor and guide talent development of direct reports and assist in hiring talent Required Qualifications: 4+ years of Operational Risk experience or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education 2+ years of Leadership experience Desired Qualifications: Knowledge and understanding of continuous monitoring tools/detection tools/controls/processes including technology processes, and ability to identify emerging risks and offer mitigations recommendations Business domain knowledge on Banking business functions processes Experience with Risk Appetite Metric and Key Indicator programs Experience with Risk Control Self-Assessment (RCSA) process Experience with Operational Risk Event (ORE) assessment process Experience with Enterprise Risk Identification (ERID) assessment process Experience with Tableau and other visualization tools, with the ability to incorporate a visual data story into an actionable narrative for executive audience Knowledge of SHRP and other risk systems Experience in establishing and managing training programs Ability to review and develop work plans and effectively summarize results Job Expectations: Work Location: HYD, BLR Shift Timings: 1:30 PM to 10:30 PM IST

We are hiring for ServiceNow IRM Developer role based in Hyderabad, with flexibility for remote work. As a ServiceNow IRM Developer, your responsibilities would include developing and implementing solutions within the ServiceNow platform, collaborating with cross-functional teams to understand business requirements, and ensuring the successful delivery of Information Risk Management (IRM) solutions. Qualifications Proficiency in ServiceNow development and Information Risk Management (IRM). Experience in integrating and configuring ServiceNow modules. Knowledge of GRC (Governance, Risk, and Compliance) processes. Strong understanding of IT security principles and risk management. Excellent problem-solving and analytical skills. Effective communication and collaboration abilities. ServiceNow Developer certification is a plus.

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : Governance Risk & Compliance (GRC) Tools Good to have skills : NA Minimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Lead, you will lead the effort to design, build, and configure applications, acting as the primary point of contact. Your day will involve overseeing the application development process and ensuring seamless communication among team members. Roles & Responsibilities: Expected to be an SME Collaborate and manage the team to perform Responsible for team decisions Engage with multiple teams and contribute on key decisions Provide solutions to problems that apply across multiple teams Lead the application development process effectively Ensure timely delivery of projects Mentor and guide team members for their professional growth Professional & Technical Skills: Must To Have Skills: Proficiency in Governance Risk & Compliance (GRC) Tools Strong understanding of risk management principles Experience in implementing GRC solutions Knowledge of compliance regulations and standards Ability to analyze and mitigate risks effectively Additional Information: The candidate should have a minimum of 12 years of experience in Governance Risk & Compliance (GRC) Tools This position is based at our Pune office A 15 years full-time education is required Qualification 15 years full time education

Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Governance Risk & Compliance (GRC) Platform Operations Good to have skills : NA Minimum 2 year(s) of experience is required Educational Qualification : Degree, Minimum 3 years of experience in IT Security/Information Security Summary :As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth operation of the Governance Risk & Compliance (GRC) Platform. Your typical day will involve accurately defining client issues, interpreting and designing resolutions based on deep product knowledge, and utilizing exceptional communication skills to keep our world-class systems running. Roles & Responsibilities: Provide ongoing support to clients, acting as the interface between the client and the GRC Platform. Accurately define client issues and interpret and design resolutions based on deep product knowledge. Utilize exceptional communication skills to keep our world-class systems running. Collaborate with cross-functional teams to ensure the smooth operation of the GRC Platform. Stay updated with the latest advancements in GRC Platform Operations, integrating innovative approaches for sustained competitive advantage. Professional & Technical Skills: Must To Have Skills:Experience in Governance Risk & Compliance (GRC) Platform Operations. Must To Have Skills:Exceptional communication skills. Good To Have Skills:Experience in Cloud Tech Support. Good To Have Skills:Experience in Application Support. Strong understanding of GRC Platform Operations. Solid grasp of Cloud Tech Support and Application Support. Experience with data analysis and problem-solving. Experience with project management and collaboration tools. Additional Information: The candidate should have a minimum of 2 years of experience in Governance Risk & Compliance (GRC) Platform Operations. The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful solutions. This position is based at our Chennai office. Qualifications Degree, Minimum 3 years of experience in IT Security/Information Security

About The Role : Job TitleDivisional Risk and Control Analyst LocationJaipur India Role Description The Embedded Risk in India is a 10FTE team and part of a broader team of 30+ covering all aspects of the DB Risk Framework and Regulatory support for KYC Ops, Client Data Management (CDM) and Business Financial Crime Risk (BFCR). This role will report locally into an India based Embedded Risk Team (ERT) Lead and functionally to the Control Testing Lead in UK. The role will work closely with global peers to help provide a complete picture of the risk profile, ensuring that handoffs and dependencies across functions/regions are transparent and understood. Engages regularly with the first line processing teams and in collaboration with Regulatory Management Group, Anti Financial Crime (AFC), Divisional Control Regulatory Office (DCRO), Business & Other 2nd line functions to ensure full transparency and governance of risk. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under child care assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Risk & Control Assessments - Review the design adequacy and performance effectiveness (at a high level/light touch) of controls and their corresponding documentation (Desk Top Procedures) Governance - Ensure that an effective, embedded and consistently applied governance structure is in place Key Risk Indicators - Ensure a complete set of KRI's is in place, has definitions, RAG's (where applicable), has reporting parameters and a subjective assessment of the CATR (complete, accurate, timely and relevance) of those KRI's has been reached. Review and challenge validity of commentary, spot check monitoring by, looking for trend anomalies (spikes/dips) that may risk profile shifts, reporting errors or other issues requiring investigation Audit SII & Incident processes - Ensure compliance to the firm audit policy, firm Self-Identified Issue Guidance and incident escalation process through training, support guidance and challenge. Facilitate management with adequate reporting and governance, to ensure zero overdue items and no last min extensions are required and perform pre-closure submission review and validation. Regulatory Compliance Transparency - Ensure there is a mechanism in place to monitor regulatory compliance and that the mechanism is performing effectively. Risk Culture - Design and deliver a risk culture improvement programme to promote transparency, awareness, engagement with the risk agenda. Work in collaboration with multiple first and second line functions (inc. Regulatory Management Group (RMG), Anti financial Crime (AFC), Divisional Control Regulatory Office (DCRO) and the Business Your skills and experience The successful individual will have diverse experience of the financial sector in any of the following areas; Operations, risk/controls, Control testing, Regulatory teams/processes, quality assurance, compliance or audit and have experience managing deliverables & maintaining effective relationships with global senior management. Substantial and relevant experience in a global banking environment Exposure to Client On boarding, KYC or similar regulatory projects is preferred Strong communication and interpersonal skills Strong analytical and problem solving skills Ability to work under pressure to tight deadlines Strong organisational and administrative skills Client focused approach and ability to react quickly to changing demands How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs

Upkeep awareness of non-financial risk policies and procedure within HSBC in accordance with group Mandatory Procedures (MP/FIM). Assist with the consistent and effective implementation of the Risk and Control strategy and provide guidance to stakeholders to ensure potential issues are identified and reported in time. Identify trends to anticipate future developments in the risk and control environment and advice Risk Owners, Process Owners and Control Owners in risk assessment processes, ensure timely and accurate identification and assessment of risks. Support Risk and Control Owners in identifying anomalies in control effectiveness, guide stakeholders to ensure potential issues can be timely identified, provide advice in terms of remediation actions to achieve effective control environment. Keep transparent communication with Group and Regional teams for local business to get compliant with Control Mandatory Procedure Operating Instructions and provide support on control related queries. Engage in Continuous Monitoring of the control MIs and report deviations to management. Co-ordinate with cross-domain teams and maintain the MIs within acceptable thresholds. Facilitate timely implementation of recommendation made by internal / external auditors and regulator for the control. Complete risk and control responsibilities and tasks assigned by Control Owner. Requirements To be successful in this role, you should meet the following requirements: Minimum 8+ years of relevant experience within IT Service Continuity Management, Risk Management, or Controls Monitoring. Strong understanding of regulatory requirements and risk governance practices. Good knowledge of IT environments related to Data Backup and Recovery. Experience in designing and implementing controls that mitigate identified risks and vulnerabilities. Experience working on complex projects across multiple domains. Ability to distil complex and varied information into useful, insightful and concise recommendations. Strong interpersonal and communication skills with a proven ability to communicate effectively and confidently at all levels across the Group and across different cultures.

GRC Lead will manage and strengthen our Governance, Risk, and Compliance (GRC) initiatives for Managed Security Services (MSS) within the Telecom sector. The GRC Lead will be responsible for ensuring that the services we provide to our telecom clients adhere to industry standards, regulatory requirements, and robust risk management practices. This individual will play a key role in aligning our security services with client business objectives, improving our security posture, and ensuring compliance with telecom-specific regulations and frameworks. You have: 7+ years of experience in Governance, Risk, and Compliance (GRC), with at least 3 years in telecom or Managed Security Services (MSS) with a degree in Telecommunication Engineering, Computer Science, Information Security, or a related field (B.E/B.Tech/M.E/M.Tech/MCA). Expertise in telecom-specific security technologiesFirewalls, IDS/IPS, SIEM, encryption, access management, and incident response platforms. Experience working with security and compliance frameworksISO 27001, NIST CSF, PCI-DSS, GDPR, NIST SP 800-53, ETSI EN 303 645, also telecom infrastructure, including MPLS, 5G, IoT, and SDN/NFV. Familiarity with GRC tools such as RSA Archer, ServiceNow GRC, or MetricStream. Experience in telecom risk management processes, regulatory assessments, and vendor risk governance. It would be nice if you also had: Industry certifications such as CISM, CISA, CISSP, CRISC, ISO 27001 Lead Auditor/Implementer, TOGAF, or ITIL. Experience in stakeholder management, including executive communication, regulatory liaison, and conflict resolution with auditors or vendors. Strong analytical, negotiation, and project management skills in a cross-functional, multicultural telecom environment. Provide security governance leadership tailored to telecom networks, including mobile, 5G, SDN/NFV, and MPLS environments. Lead risk assessment, threat modeling, and management activities for telecom networks and emerging technologies like IoT and cloud. Ensure compliance with global and local telecom regulatory requirements (e.g., TRAI, DoT, GDPR, FCC, ETSI) through audits, reviews, and reporting. Manage and maintain telecom-specific security policies, technical and administrative controls, and compliance frameworks (ISO 27001, NIST, PCI-DSS). Act as the prime security and compliance interface towards customers, internal teams, auditors, subcontractors, and third-party suppliers. Develop and maintain a risk register, tracking treatment plans and mitigation strategies across client environments. Provide proactive consultation and guidance to customers regarding security best practices and compliance requirements. Oversee incident and crisis response activities to minimize business impact and regulatory exposure, ensuring adherence to notification guidelines. Ensure vendor security due diligence, contract compliance, and ongoing third-party risk monitoring within the telecom supply chain.