143 Technology Risk Jobs in Kolkata

As a professional services firm affiliated with KPMG International Limited, you will aim to provide industry-focused and technology-enabled services to national and international clients across various sectors. With offices located in multiple cities across India, you and your team will leverage the global network of firms while remaining well-versed in local laws, regulations, markets, and competition. **Key Responsibilities:** - Offer services to national and international clients in India across sectors - Strive to provide rapid, performance-based, industry-focused, and technology-enabled services - Reflect a shared knowledge of global and local industries and experience of the Indian business environment **Qualifications Required:** - Graduation,

As a Database Developer, you will leverage your proven work experience to design and develop web-based applications, architectures, and frameworks. Your responsibilities will include ensuring efficient data management, encompassing permissions, recovery, security, and monitoring. You will utilize your in-depth knowledge of software development and user interface web applications, alongside your hands-on experience with SQL, to contribute to the success of the projects. - Design and develop web-based applications, architectures, and frameworks - Ensure efficient data management including permissions, recovery, security, and monitoring - Utilize knowledge of software development and user interface web applications - Contribute to project success with hands-on experience in SQL Having excellent analytical and organizational skills, you will play a crucial role in understanding front-end users" requirements and approaching problem-solving with a proactive attitude. Your ability to communicate effectively, both verbally and in writing, will be essential in collaborating with team members and stakeholders. A Bachelor's degree in Computer Science or a relevant field will serve as the foundation for your expertise in enterprise-level security concepts and methodologies. Your extensive experience in designing and maintaining web-based applications, along with proficiency in React, Java, Node.js, and micro front-end technologies, will be key in driving innovation and solutions. - Bachelor's degree in Computer Science or a related field - Expertise in enterprise-level security concepts and methodologies - Proficiency in React, Java, Node.js, and micro front-end technologies - Drive innovation and solutions with extensive experience in web-based applications Additionally, you will bring valuable insights into the realm of enterprise-level security, encompassing SSO, SSL, APIGEE, encryption, authentication, and entitlements, to ensure the integrity and protection of the systems. Your background in development with Java, REST API/Microservices, Spring framework, Spring Boot, JSON, MQ, Hibernate, SQL, and Mongo will further enhance the technological landscape. Desirable qualifications include experience as a development lead and technical specialist in a team setting, familiarity with Digital Banking, and exposure to cloud-native solutions and DevOps technologies. Your proficiency in various testing tools, design techniques, risk assessment, and quantification methodologies will contribute to the overall success of the projects. Your success in this role will be driven by your results-oriented mindset, attention to detail, problem-solving abilities, self-motivation, teamwork skills, and service-oriented approach. By demonstrating a desire to achieve results, maintaining a keen eye for detail, and collaborating effectively with others, you will thrive in this dynamic and challenging environment.,

Role Overview: As an Open Source Technology Application Security Specialist, you will be a crucial part of the team, leveraging your expertise in open-source technologies and modern web development frameworks like React, Node.js, Python, and Angular. Your primary focus will be on identifying, mitigating, and preventing security risks across both front-end and back-end applications. Collaboration with engineering, DevOps, and infrastructure teams will be key to enhancing the overall security posture of applications hosted across cloud and on-premise environments. Key Responsibilities: - **Secure Coding Governance:** Establish, enforce, and monitor secure coding standards across all open-source technology stacks (React, Node.js, Python, Angular, etc.) to minimize application security risks. - **Vulnerability Management:** Identify, analyze, and remediate security vulnerabilities within codebases, APIs, and cloud applications. Focus areas include injection attacks, cross-site scripting (XSS), insecure deserialization, and related OWASP Top 10 issues. - **Penetration Testing:** Plan and execute penetration tests and dynamic security assessments to uncover application weaknesses and work with development teams to implement corrective measures. - **Web Application Firewalls (WAF) And Cloud Security:** Configure, tune, and monitor WAFs, API gateways, and cloud-native security tools (AWS/Azure/GCP) to protect open-source applications and services. - **Technical Leadership:** Provide technical guidance on secure design and implementation for open-source frameworks and tools. Leverage expertise in React, Node.js, Python, Angular, and related libraries to support secure architecture decisions. - **Collaboration And Training:** Work closely with product engineering, QA, and operations teams to embed security best practices across all stages of development. Conduct developer training and knowledge sessions to strengthen security awareness. - **Continuous Improvement:** Perform threat modeling and design reviews for new and existing applications. Develop and automate security validation tools and scripts to identify vulnerabilities early in the SDLC. Monitor and respond to application-level security incidents and provide root-cause analysis. Continuously research emerging security threats, tools, and frameworks relevant to open-source ecosystems. Qualification Required: - **Technical Proficiency:** Strong hands-on experience in React, Node.js, Python, Angular, and related open-source technologies. Solid understanding of RESTful APIs, OAuth2/OpenID Connect, JWT, and microservices architectures. - **Security Expertise:** Comprehensive understanding of application security principles, OWASP Top 10, and secure SDLC methodologies. Experience performing static and dynamic code analysis (SAST/DAST) and API security testing. - **Security Tools Experience:** Proficient in open-source and commercial security tools such as Burp Suite, OWASP ZAP, SonarQube, Checkmarx, or similar vulnerability scanners. - **Analytical Abilities:** Strong analytical and problem-solving skills to assess complex application security issues and implement effective mitigation strategies. - **Communication:** Excellent interpersonal and communication skills with the ability to collaborate effectively with engineering teams and key stakeholders.,

You will have the chance to build a career as unique as you are at EY, with the global scale, support, inclusive culture, and technology to become the best version of yourself. Your unique voice and perspective will help EY become even better. Join EY to build an exceptional experience for yourself and contribute to creating a better working world for all. As a Data Analyst at EY, you will be responsible for liaising with clients and working on all aspects of the project life cycle, including strategy, road-mapping, architecture, implementation, and development. You will collaborate with business and technical stakeholders to gather and analyze business requirements, convert them into technical requirements, and ensure that newly implemented solutions meet business needs. Your outputs will include workshop sessions and documentation like mapping documents. Additionally, you will develop solution proposals detailing project scope, approach, deliverables, and project timeline. - Involved in all aspects of the project life cycle, including strategy, road-mapping, architecture, implementation, and development. - Gather and analyze business requirements, convert them into technical requirements, and collaborate with technical teams to ensure the newly implemented solutions meet business requirements. - Conduct workshop sessions and produce documentation including mapping documents. - Develop solution proposals outlining project scope, approach, deliverables, and project timeline. - Proven working experience with Python, SQL, Power BI, and MS Power Platform. - Hands-on experience with data structures, complex data models, and data governance. - Strong proficiency in Python and demonstrated experience with ETL processes. - Proficient knowledge of Microsoft Power Platform (Power Apps, Power Automate) and Alteryx. - Understanding of SQL and relational database concepts. - Familiarity with cloud technologies, especially Microsoft Azure. - Excellent problem-solving skills and the ability to debug complex systems.,

Role Overview: As a Senior Associate within Actuarial Services at PwC, you will have the opportunity to provide general insurance advice and consulting services to clients in the insurance industry. Your role will involve offering guidance on various aspects such as solvency, economic capital, risk management, mergers and acquisitions, company restructuring, financial modeling, underwriting, and compliance with new legislation. Your analytical skills will be crucial in analyzing the impact of regulatory changes on insurance companies and ensuring they have adequate reserves. Key Responsibilities: - Use feedback and reflection to enhance self-awareness and address development areas - Delegate tasks to provide growth opportunities for team members and coach them for success - Demonstrate critical thinking in solving complex business problems - Utilize a variety of tools to extract insights from industry trends - Review work for quality, accuracy, and relevance - Make informed decisions on tool usage based on the situation - Embrace opportunities for exposure to different environments - Communicate effectively to influence and connect with others - Adapt behavior to build strong relationships - Uphold ethical standards and business conduct set by the firm Qualifications Required: - Bachelor's degree in Finance, Economics, Mathematics, Statistics, or a related field - 1 to 6 years of work experience in advisory agencies and insurance industry - Proficiency in project activities such as process mapping, business requirements preparation, and documentation - Experience in insurance business applications like policy administration and data management systems - Certification or progress towards AICPCU Certifications - Preferred certifications in vendor business applications and business analysis - Preference for membership in Actuarial Institutes - Advanced knowledge of Microsoft Office, especially Excel - Preferred skills in Data Analytics using Python and SQL - Fluent written and verbal communication skills in English - Strong preference for working schedule from 2:00 pm to 10:00 pm IST Additional Company Details: At PwC, we believe that to excel in a rapidly changing world, every individual needs to be a purpose-led and values-driven leader. Our global leadership development framework, PwC Professional, sets clear expectations and provides transparency on the skills required for success and career progression across different geographies and career paths. By joining PwC, you will be part of a team of problem solvers dedicated to solving complex business issues and making a positive impact in the industry.,

As a Cloud Specialist 1 at Hyland Software, you will play a crucial role in responding to and resolving monitoring alerts, requests from customers, partners, and the company services team. Your responsibilities will include working on disaster recovery failover testing, responding to incidents, and managing scheduled maintenance windows within the cloud environment with the support of your team members. **Responsibilities:** - Application Layer Monitoring on Cloud - Monitoring infrastructure, including Servers, Applications & Services, and remediate issues - Documentation, recording, and updating incident details in ITSM tool - Ensuring maximum service availability and performance - Managing escalations within SLAs defined in the team's standard operating procedures - Coordinating with stakeholders and third-party vendors - Supporting and classifying incidents by making an initial assessment of the incident's nature, severity, impact, and risk - Allocating unresolved incidents to appropriate support groups - Monitoring & Tracking, reviewing incident progress, and keeping users informed - Managing requests/incidents assigned by Leads/Manager **Qualifications:** - Must have a bachelor's degree - 0.5 - 3 years of experience in Infrastructure Support or a NOC - Basic Knowledge of Cloud technologies, SQL & CRM based applications - Basic troubleshooting & analytical skills - Basic Knowledge of various monitoring tools like SolarWinds, BMC, etc. - Basic Knowledge of ITIL - Ability to multi-task and prioritize workload - Good oral & written communication skills - Adaptable to a 24/7 rotational shift model, including night shifts - Ability to adapt to continuously changing procedures and environments - Customer handling experience preferred - Freshers with strong knowledge & certification will be preferred At Hyland Software, we take pride in our culture and prioritize employee engagement. We offer various benefits and programs to support our workforce, such as: - Learning & Development opportunities, including a development budget, tuition assistance program, self-paced online courses, instructor-led webinars, mentorship programs, and a structured onboarding experience - R&D focus on cutting-edge technologies, constant modernization efforts, a dynamic and innovative environment, and a dedicated R&D Education Services department - Work-life balance culture with a flexible work environment, possibility to work from home, and a focus on trust and efficiency - Well-being initiatives including private medical healthcare, life insurance, gym reimbursement, and constant well-being programs - Community Engagement with volunteer time off - Diversity & Inclusion programs including employee resource groups and inclusion benefits - Niceties & Events such as snacks and beverages, an employee referral program, birthday gifts, baby gifts, and employee programs If you are passionate about technology, dedicated to your work, and value honesty, integrity, and fairness, we invite you to join us at Hyland Software in the role of Cloud Specialist 1.,

Role Overview: As a Senior Associate at PwC, you will be part of a team focusing on solving complex business issues and adding value to organizations. Your role will involve managing SOX engagements, conducting process discussions with clients, preparing process flows and matrices, identifying process gaps, conducting tests, documenting workpapers, and supporting the Manager in various tasks related to SOX scoping and control rationalization. Key Responsibilities: - Manage a team of Associates or independently deliver SOX engagements for multiple processes across clients. - Participate in process discussions with clients, conduct walkthroughs, and prepare process flows, narratives, and risk & control matrices. - Identify process gaps and provide recommendations for improvement based on clients" business processes and industry practices. - Conduct test of design and operating effectiveness, suggest controls for improving the clients" control framework, and document testing workpapers. - Support the Manager in conducting SOX scoping, control rationalization, and standardization for business processes. - Monitor project progress, manage multiple assignments/related project teams, and meet quality guidelines within established turnaround time. - Provide regular status updates to the Manager on the controls and demonstrate an application and solution-based approach to problem solving during client engagements. Qualifications Required: - Bachelors/Masters Degree in Commerce/B.Com/MBA/BBA - Chartered Accountant certification - 3-5 years of relevant experience in technology audit, risk management, compliance, consulting, or information security, preferably with a Big 4 or equivalent firm. - Functional knowledge of major ERP suites like SAP, Dynamics, Oracle EBS. - Understanding of audit concepts and regulations. Additional Details of the Company: PwC is committed to developing purpose-led and values-driven leaders at every level through the PwC Professional global leadership development framework. The firm emphasizes collaboration, communication, continuous learning, and maintaining effective client relationships. PwC encourages teamwork, integrity, and innovation among its employees and provides opportunities for growth and knowledge sharing within the organization.,

As a GRC BA/ATF Tester at EY, you will be contributing to GRC Technology client engagements and internal projects. Your key responsibilities will include: - Collaborating with Solution Designers/Architects to brainstorm solutions, disseminate business requirements, and implement feasible solutions - Mapping customer requirements to GRC functionality and advising on best practices - Gathering requirements, designing GRC applications, and customizing workflows, entities, policies, and UI elements - Participating in Agile Sprint planning, defining user stories, and configuring GRC solutions - Conducting thorough testing and quality assurance for developed solutions - Developing and executing automated test scripts using tools like Selenium, TestNG, or ServiceNow's ATF - Identifying, documenting, and tracking defects using appropriate tools - Providing testing status updates and participating in project meetings To excel in this role, you must have: - 1-3 years of experience as a Business Analyst cum Tester specializing in GRC Domain with expertise in ServiceNow IRM tool - ServiceNow GRC certifications (Certified Implementation Specialist - GRC, Certified System Administrator) - Hands-on experience with ServiceNow Automated Test Framework (ATF) - Basic understanding of cross GRC domains including Information Security, business continuity, and Risk Management - Team Building skills including knowledge sharing, training, motivating, and developing team members Additionally, having a background in B.E/B.Tech or MBA with exposure to SDLC, STLC, delivery management, and client management will be beneficial. Familiarity with multiple GRC tools like Archer, MetricStream, Enablon, etc., would be an added advantage. In this role, you can expect: - Support, coaching, and feedback from engaging colleagues - Opportunities for skill development and career progression - Freedom and flexibility to handle your role in a way that suits you best Join EY and be a part of a market-leading team with opportunities to work globally and across various industries. EY is dedicated to creating a better working world through innovative solutions and a commitment to personal and professional development.,

In a career at PwC's Cybersecurity, Privacy, and Forensics team, you will have the opportunity to tackle our clients" most crucial business and data protection challenges. You will play a vital role in a dynamic team that drives strategic programs, data analytics, innovation, cyber resilency, response, and technical implementation activities. Working alongside top professionals in the field, you will collaborate with clients and industry analysts globally. Specifically, the Third Party Risk Management (TPRM) team focuses on assisting clients in assessing, designing, implementing, and maintaining effective third-party risk programs. This encompasses pre and post-contract stages, ensuring that controls are in place pre-contracting and monitoring ongoing compliance post-contract. You will engage with third parties worldwide to establish and maintain control environments and provide clients with assurance regarding the effectiveness of controls. The growing demand for TPRM is driven by the increasing trend of outsourcing and cloud transformation, where you will play a critical role in helping clients transform their businesses, manage risks, build trust within their ecosystem, and enhance accountability with third-party connections. Your involvement will include developing TPRM business plans, cost-benefit analyses, target operating models, and long-term strategies to enhance the effectiveness of TPRM programs. Joining the team will expose you to various risk domains, such as cybersecurity, privacy, human resources, legal, technology, financial, fraud, regulatory, and industry-specific business risks, allowing you to contribute to strategy development, program design, operation, and maintenance of TPRM programs. As a Senior Associate at PwC, your responsibilities will include collaborating within a team to solve complex business issues, from strategy to execution. Your role will involve utilizing PwC Professional skills to: - Use feedback and reflection to enhance self-awareness and personal strengths. - Delegate tasks to provide growth opportunities and coach team members for successful outcomes. - Generate innovative solutions to problems and propose new ideas. - Extract insights from current business trends using a variety of tools and techniques. - Review your work and that of others for quality, accuracy, and relevance. - Share relevant thought leadership within the team. - Influence others effectively through clear and structured communication. - Adapt behavior to build diverse and quality relationships. - Uphold the firm's code of ethics and business conduct. In the position, you will assist territory engagement teams in handling vendor management, vendor assessment, and managed services in alignment with territorial reporting guidelines. You will be expected to manage multiple tasks simultaneously, demonstrating attention to detail in your work and effective project management skills to maintain timelines. Qualifications: - Bachelors/Masters in Information Security or Bachelor of Commerce - Certifications: ISO 27001, ISO 31000, CISA, CISSP, CSX, and other relevant qualifications/certifications Knowledge Required: - Profound understanding of information security concepts, risk and controls, and vendor onboarding - Familiarity with IT controls, IT risks, internal controls, and compliance - Good grasp of privacy, governance, and reporting Skills Required: - Proficiency in Microsoft Office suite (Word, Excel, PowerPoint, Visio) - Strong verbal and written communication skills for query resolution and vendor communication - Experience in Vendor Risk Assessments, Internal Audit, and External Audit projects - Client service skills with a focus on relationship building,

We are looking for an experienced Technical Project Manager to lead and manage cross-functional teams in a fast-paced environment. Take ownership of end-to-end account delivery, oversee a team of 4050 members, and drive successful project execution with strong technical leadership.A technical project manager (TPM) is responsible for planning, executing, and overseeing technology-driven projects to ensure they are completed on time, within scope, and budget. Key responsibilities include bridging the gap between technical teams and business objectives, managing project timelines and resources, mitigating risks, and serving as a liaison between stakeholders and the project team. This role requires a strong blend of technical expertise, project management skills, and leadership. Key responsibilities    Project planning and execution: Create detailed project plans, define project scope and objectives, and oversee all phases of the project lifecycle.    Resource management: Allocate resources, including budget, materials, and personnel, to ensure projects stay on track and within financial limits.    Risk management: Identify and mitigate risks to ensure project success, and implement corrective actions when issues arise.    Communication and stakeholder management: Act as the primary liaison between technical teams, other departments, and senior management, communicating project status, progress, and results clearly.    Technical leadership: Leverage subject matter expertise to provide technical guidance, solve problems, and ensure the project's technical feasibility.    Reporting: Prepare progress reports and present project updates to stakeholders and senior management

Petroleum Engineer Responsibilities: Analyzing, interpreting, and monitoring the geological formation data to ascertain the extraction risks and the best methods of extraction. Using surveys, testing, and analysis to evaluate new reservoirs to determine profits and to create low-cost drilling and extraction plans. Generating computer-simulated models for drilling formation and equipment, ensuring and designing the best tools and equipment for extraction, and managing machinery and production costs. Determining the most efficient way to drill through internal divisions for a free-flowing single well. Determining the most efficient way to fracture shale beds to free the gas or oil. Overseeing ongoing production operations, ensuring the efficient extraction and drilling, and ensuring extraction and transportation respect safety and environmental regulations. Maintaining on-site drilling and pumping equipment. Developing and refining methods of extracting more petroleum from existing wells. Overseeing the removal of the company's equipment, the sealing of the reservoir, and the disposal of waste materials once the reservoir has been exhausted.

At PwC, our people in audit and assurance focus on providing independent and objective assessments of financial statements, internal controls, and other assurable information enhancing the credibility and reliability of this information with a variety of stakeholders. They evaluate compliance with regulations including assessing governance and risk management processes and related controls. Those in internal audit at PwC help build, optimize and deliver end-to-end internal audit services to clients in all industries. This includes IA function setup and transformation, co-sourcing, outsourcing and managed services, using AI and other risk technology and delivery models. IA capabilities are combined with other industry and technical expertise, in areas like cyber, forensics and compliance, to address the full spectrum of risks. This helps organizations to harness the power of IA to help the organization protect value and navigate disruption, and obtain confidence to take risks to power growth. Driven by curiosity, you are a reliable, contributing member of a team. In our fast-paced environment, you are expected to adapt to working with a variety of clients and team members, each presenting varying challenges and scope. Every experience is an opportunity to learn and grow. You are expected to take ownership and consistently deliver quality work that drives value for our clients and success as a team. As you navigate through the Firm, you build a brand for yourself, opening doors to more opportunities. ### Key Responsibilities: - Deliver technology-focused Internal audit & SoX reviews in the areas of ITGC, ITAC, IPE & Key Report Testing, IT governance, risk and compliance, and SOC Control Testing. - Build and maintain strong peer relationships within the team and across the organization. - Stay updated on emerging technology risks, trends. Stay informed on industry best practices and regulatory requirements related to technology controls. - Ensure compliance with engagement plans and internal quality & risk management procedures. ### Qualifications Required: - Bachelor's degree in information technology, computer science, or a related field. - Candidates with 1-1.5 years of relevant experience in similar roles, preferably with a Big 4 or equivalent. - Experience in internal audit, external audit, or a related field. - Experience in technology and SOX controls testing. - Experience in 2 or more of the following areas is essential: - IT general controls testing, - IT Automated Control - IPE & Key Report testing - SOX Readiness - SOC Control Testing - Infrastructure assessment (DB and OS) - Experience using industry best practice frameworks (e.g. COSO, COBIT etc.) - Knowledge of any ERP like SAP would be an added advantage. ### Additional Company Details: - Position reports to the Cyber, Risk & Regulatory (Advisory) Manager. - Certification(s) Preferred: CISA / CISM / CRISC / CISSP / ISO 27001 LA certifications.,

As a Senior GRC Technology professional at EY, you will contribute technically and functionally to client engagements and internal projects related to GRC Technology. Your responsibilities will include identifying business opportunities, anticipating risks, and sharing issues with senior team members. You will be part of a leading firm and play a crucial role in the growth of the service offering. **Key Responsibilities:** - Work with Solution Designers/Architects and BAs to brainstorm solutions, disseminate business requirements, and implement feasible solutions. - Map customer requirements to Auditboard GRC functionality and advise on best practices. - Design and develop custom Auditboard GRC applications to meet client needs and compliance requirements. - Configure and customize Auditboard GRC workflows, policies, forms, and UI elements for user-friendly solutions. - Participate in scrum meetings, drive process optimization, and automation. - Develop and maintain Auditboard GRC scripts to enhance system functionality. - Conduct testing and quality assurance for developed solutions. - Provide technical expertise, guidance to the project team, and stay updated with the latest features and trends. - Collaborate with cross-functional teams, drive customer requirements sessions, and contribute to project phases. - Assist in RFP pursuits, proposals, and maintain relationships with clients. - Ensure on-time delivery of tasks and adherence to quality processes. - Comply with EY policies and procedures, assist Project Lead for project execution. **Skills And Attributes For Success:** - Proficiency in AuditBoard eGRC tool. - Strong communication, presentation, and team-building skills. - Ability to foster teamwork, lead by example, and follow workplace policies. - Training and mentoring project resources. - Participation in organization-wide people initiatives. **Qualifications:** - 3-7 years of relevant experience in a professional services organization. - Experience with Auditboard GRC certifications. - Basic understanding of GRC domains, technical documentation, and team building. - Ideally, a degree in B.E/B.Tech or MBA with additional experience. - Familiarity with program/project management practices and IT systems development life cycle. - Exposure to other GRC tools and data analytics tools would be advantageous. Joining EY offers you the opportunity to work on inspiring projects, receive support, coaching, and feedback from engaging colleagues, and develop new skills to progress your career. You will have the freedom to handle your role in a way that suits you and be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. EY is dedicated to building a better working world by creating new value for clients, people, society, and the planet, while fostering trust in capital markets through data, AI, and advanced technology.,

As the Deputy Chief Information Security Officer (Deputy CISO) in the Banking & Financial Services industry based in Kolkata, India, with over 10 years of experience in Information Security, Cybersecurity, or related fields, your role will encompass a wide range of strategic, risk management, incident response, technology implementation, leadership, and training responsibilities. **Key Responsibilities:** - **Strategic Security Management:** - Assist the CISO in defining and implementing the bank's cybersecurity strategy. - Ensure alignment with regulatory guidelines (RBI, SEBI, CERT-In, etc.) and global security standards (ISO 27001, NIST, PCI-DSS). - Develop and maintain bank-wide security policies, procedures, and frameworks. - **Risk Management & Compliance:** - Conduct risk assessments, vulnerability testing, and penetration testing. - Oversee security audits and regulatory compliance to mitigate cyber threats. - Lead the third-party risk management process for vendor security evaluations. - Ensure adherence to RBI cybersecurity framework and banking industry security regulations. - **Incident Response & Threat Management:** - Lead the Security Operations Center (SOC) team to monitor, detect, and respond to security incidents. - Develop incident response plans and coordinate cyber drills. - Work with law enforcement and regulators in case of security breaches. - **Technology & Security Implementation:** - Deploy and manage firewalls, IDS/IPS, endpoint security, and encryption tools. - Evaluate and implement new security technologies (SIEM, SOAR, Zero Trust Architecture). - Ensure secure cloud computing, mobile banking security, and fraud prevention. - **Leadership & Training:** - Provide cybersecurity awareness training for employees and stakeholders. - Manage and mentor the security team to improve security posture. - Collaborate with IT, risk, compliance, and legal teams to strengthen cybersecurity governance. **Qualifications & Skills:** - **Educational Requirements:** - Bachelors/Masters degree in Cybersecurity, Computer Science, Information Technology, or related fields. - Additional certifications such as CISSP, CISM, CISA, CEH, CRISC are preferred. - **Technical & Functional Expertise:** - Strong understanding of banking security regulations, digital banking risks, and fraud detection. - Experience with SIEM, endpoint security, IAM, DLP, and cloud security solutions. - Knowledge of network security, encryption, and secure software development. - **Soft Skills:** - Strong leadership and stakeholder management skills. - Ability to handle high-pressure security incidents. - Excellent communication and decision-making abilities. As the Deputy Chief Information Security Officer (Deputy CISO) in the Banking & Financial Services industry based in Kolkata, India, with over 10 years of experience in Information Security, Cybersecurity, or related fields, your role will encompass a wide range of strategic, risk management, incident response, technology implementation, leadership, and training responsibilities. **Key Responsibilities:** - **Strategic Security Management:** - Assist the CISO in defining and implementing the bank's cybersecurity strategy. - Ensure alignment with regulatory guidelines (RBI, SEBI, CERT-In, etc.) and global security standards (ISO 27001, NIST, PCI-DSS). - Develop and maintain bank-wide security policies, procedures, and frameworks. - **Risk Management & Compliance:** - Conduct risk assessments, vulnerability testing, and penetration testing. - Oversee security audits and regulatory compliance to mitigate cyber threats. - Lead the third-party risk management process for vendor security evaluations. - Ensure adherence to RBI cybersecurity framework and banking industry security regulations. - **Incident Response & Threat Management:** - Lead the Security Operations Center (SOC) team to monitor, detect, and respond to security incidents. - Develop incident response plans and coordinate cyber drills. - Work with law enforcement and regulators in case of security breaches. - **Technology & Security Implementation:** - Deploy and manage firewalls, IDS/IPS, endpoint security, and encryption tools. - Evaluate and implement new security technologies (SIEM, SOAR, Zero Trust Architecture). - Ensure secure cloud computing, mobile banking security, and fraud prevention. - **Leadership & Training:** - Provide cybersecurity awareness training for employees and stakeholders. - Manage and mentor the security team to improve security posture. - Collaborate with IT, risk, compliance, and legal teams to strengthen cybersecurity governance. **Qualifications & Skills:** - **Educational Requirements:** - Bachelors/Masters degree in Cybersecurity, Computer Science, Information Technology, or related fields. - Additional certifications such as CISSP, CISM, CISA, CEH, CRISC are preferred. - **Technical

At EY, you have the opportunity to shape a career tailored to your unique qualities, supported by a global network, inclusive environment, and cutting-edge technology. Your voice and perspective are valued as key assets to contribute to EY's continuous improvement. Join EY to create a fulfilling experience for yourself and contribute to making the world a better place for all. **Key Responsibilities:** - **Technology Implementation & Program Leadership** - Lead the complete implementation of Zycus modules like iRequest, iSupplier, iSource, iContract, eProcurement, and eInvoice. - Supervise the deployment of Zip orchestration tools to enhance workflows across systems such as Coupa, Ironclad, JIRA, and Process Unity. - Manage the integration between procurement platforms and finance systems to ensure smooth data flow and process synchronization. - Hands-on experience with SAP Ariba, Oracle, and other procurement SAAS tools. - **Contract Lifecycle Management (CLM)** - Spearhead CLM transformation initiatives utilizing platforms like Zycus CLM, Icertis, or Sirion, emphasizing clause libraries, approval workflows, and repository integration. - Collaborate with legal and compliance teams to guarantee contract governance, audit readiness, and policy compliance. - **Stakeholder Engagement & Change Management** - Conduct stakeholder workshops, training sessions, and adoption programs to facilitate a seamless transition and achieve high user engagement. - Act as the primary liaison between business users, technology teams, and external vendors. - **Process Optimization & Reporting** - Evaluate current procurement workflows to pinpoint areas for automation and standardization. - Monitor KPIs such as RFx cycle times, contract cycle times, and supplier performance metrics. - Prepare executive-level reports and dashboards to track the progress of implementations and their business impact. **Qualifications:** - Bachelor's degree in business, Supply Chain, or related field; MBA preferred. - Minimum of 7 years of experience in procurement transformation, with practical involvement in Zycus and Zip implementations. - Demonstrated ability in managing cross-functional teams and overseeing large-scale technology deployments. At EY, the focus is on building a better working world by creating long-term value for clients, people, and society while fostering trust in the capital markets. With a foundation in data and technology, diverse EY teams across 150+ countries offer assurance and assist clients in growth, transformation, and operations. Through services spanning assurance, consulting, law, strategy, tax, and transactions, EY teams strive to address complex global challenges with innovative solutions. At EY, you have the opportunity to shape a career tailored to your unique qualities, supported by a global network, inclusive environment, and cutting-edge technology. Your voice and perspective are valued as key assets to contribute to EY's continuous improvement. Join EY to create a fulfilling experience for yourself and contribute to making the world a better place for all. **Key Responsibilities:** - **Technology Implementation & Program Leadership** - Lead the complete implementation of Zycus modules like iRequest, iSupplier, iSource, iContract, eProcurement, and eInvoice. - Supervise the deployment of Zip orchestration tools to enhance workflows across systems such as Coupa, Ironclad, JIRA, and Process Unity. - Manage the integration between procurement platforms and finance systems to ensure smooth data flow and process synchronization. - Hands-on experience with SAP Ariba, Oracle, and other procurement SAAS tools. - **Contract Lifecycle Management (CLM)** - Spearhead CLM transformation initiatives utilizing platforms like Zycus CLM, Icertis, or Sirion, emphasizing clause libraries, approval workflows, and repository integration. - Collaborate with legal and compliance teams to guarantee contract governance, audit readiness, and policy compliance. - **Stakeholder Engagement & Change Management** - Conduct stakeholder workshops, training sessions, and adoption programs to facilitate a seamless transition and achieve high user engagement. - Act as the primary liaison between business users, technology teams, and external vendors. - **Process Optimization & Reporting** - Evaluate current procurement workflows to pinpoint areas for automation and standardization. - Monitor KPIs such as RFx cycle times, contract cycle times, and supplier performance metrics. - Prepare executive-level reports and dashboards to track the progress of implementations and their business impact. **Qualifications:** - Bachelor's degree in business, Supply Chain, or related field; MBA preferred. - Minimum of 7 years of experience in procurement transformation, with practical involvement in Zycus and Zip implementations. - Demonstrated ability in managing cross-functional teams and overseeing lar

As a Manager in the EY GDS GRC Tech Team, you will play a crucial role in IT Risk and SAP S4 transformation client engagements. Your responsibilities will include: - Interacting with business stakeholders to gather, understand, document, and analyze business requirements. - Analyzing reports and assessments to provide insights on whether a solution/technology being implemented is meeting business requirements. - Evaluating business models, processes, and operations to develop a good understanding of business needs and requirements. - Performing control testing for both ITAC & ITGC as per the client scope and requirement. - Working effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on the progress of tasks. - Conducting research and assisting senior team members in preparing client presentations and information memorandums. - Continuously striving towards exceeding client & team expectations and working on increasingly complex assignments. - Developing and maintaining productive working relationships with client/onsite personnel. - Ensuring adherence to quality protocols specified for the project. To excel in this role, you should have: - Minimum 12-16 years of experience in SAP IT Audit with knowledge of IT governance practices. - Led SAP Risk and Controls projects, ensuring high-quality delivery and client satisfaction. - Completed at least 5-6 Risk & Control engagements covering pre-& post-implementation reviews, assessments, control design, and testing for SAP ECC and/or S4 HANA landscape. - Performed SAP audits, focusing on system integrity and data accuracy. - Designed and assessed SAP S4 controls, identifying gaps and recommending improvements. - Collaborated with cross-functional teams to integrate risk and control considerations into broader project objectives. - Provided thought leadership and insights on SAP risk and control trends and best practices. Your qualifications should include: - Good understanding of the COSO framework, Sarbanes-Oxley Act (Sections 302 and 404), GDPR, etc. - Strong experience in performing tests of design and effectiveness for internal controls related to SOD, ITAC, ITDM, ICFR, and IFRS along with the ability to suggest best practice recommendations. - Proven experience in SAP Risk and Controls projects. - Strong understanding of SAP ECC & S4 HANA environments. - Excellent project management and leadership skills. - Ability to communicate complex ideas effectively, both verbally and in writing. - Relevant professional certifications (e.g., CISA, CRISC, CIA) are desirable. - Good to have exposure in SAP Basis testing & SAP ITGC testing will be preferable. - Professional consulting experience in technology risk management ideally with a Big 4 or similar large consulting firm will be preferred. Additionally, you should possess the following skills & capabilities: - Experience in leading implementation/Risk and Controls engagements for various clients. - Experience in drafting proposals, RFP, pursuits, innovations, etc. - Strong communication, presentation, and team-building skills and experience in producing high-quality reports, papers, and presentations. - Ability to conduct and drive workshops with client stakeholders on understanding clients" process & system landscape. - Sound technical understanding of IT Audits (ITGC & ITACs) for SAP environment. - Inculcate a positive learning attitude and the zeal to upskill as well as cross-skill. - Understand and follow workplace policies and procedures. - Participate in organization-wide people initiatives. - Maintain an educational program to continuously upskill. - Foster teamwork, quality culture, and lead by example while training and mentoring juniors. - Inculcate a positive learning culture and support the learning agenda for self and the team. Technologies & Tools you should be familiar with include: - SAP Functional Knowledge. - Knowledge of Business Processes. - SAP ECC & S4 HANA. - MS Office Tools. - Risk and Compliance. Having a brief knowledge of analytical tools and software to support data analysis and visualization engagements, as well as an understanding of tools like Power BI, Blue Prism or UI Path, SAC dashboarding etc., and RPA transformation approach would be ideal. Working at EY offers you: - Support, coaching, and feedback from engaging colleagues. - Opportunities to develop new skills and progress your career. - Freedom and flexibility to handle your role in a way that's right for you. EY is dedicated to building a better working world by creating new value for clients, people, society, and the planet while building trust in capital markets. With a focus on education, coaching, and practical experience, EY values its employees and offers an interdisciplinary environment that emphasizes high quality and knowledge exchange.,

As an individual at EY, you will have the opportunity to shape a career that aligns with your unique strengths, supported by a global network, inclusive environment, and cutting-edge technology. Your journey at EY will empower you to strive towards personal excellence while contributing to a more sustainable and prosperous working world for everyone. Your key responsibilities in this role will include: - Demonstrating profound technical expertise and industry insight into financial products. - Taking the lead in various aspects of both large-scale and smaller client engagements, ensuring consistent delivery of high-quality services. - Keeping abreast of market trends and client challenges within the financial services industry. - Overseeing project progress, mitigating risks, and maintaining effective communication with key stakeholders. - Actively participating in the mentorship of junior consultants within the organization. To qualify for this position, you should meet the following requirements: - Possessing an Undergraduate (4-year degree), Masters (in Computational Finance, Mathematics, Engineering, Statistics, or Physics), or Ph.D. in quantitative fields with 2-10 years of relevant experience. - Demonstrating practical or academic knowledge of statistical and numerical techniques such as Monte-Carlo methods and Finite difference methods. - Understanding mathematical concepts related to derivative pricing across asset classes like fixed income, equities, credit, interest rates, FX, and commodities. - Exhibiting strong expertise in market risk and/or counterparty credit risk management/model development/validation. - Having hands-on experience in model development, validation, monitoring, and audit procedures. - Proficiency in mathematical concepts including Stochastic Calculus, Differential and Integral calculus, Numerical Methods, Linear algebra, and Measure Theory. - Possessing advanced coding skills in Python and R, with a basic understanding of SQL. - Demonstrating exceptional communication and problem-solving abilities, along with project management and report writing experience. Additionally, the following qualifications would be considered advantageous: - Professional certifications such as FRM, CQF, CFA, PRM. - Regulatory knowledge or experience in areas like Basel, CCAR, and FRTB. - Experience with ETRM/CTRM systems and comprehensive understanding of the commodity trade lifecycle. - Knowledge or experience with pricing/risk management systems. - Willingness to travel as needed to meet client requirements. In conclusion, EY is dedicated to fostering a better working world by creating enduring value for clients, individuals, and communities while instilling trust in the financial markets. With a presence in over 150 countries, EY's diverse teams deliver assurance services and innovative solutions across various sectors to address the world's most pressing challenges.,

As part of the Cyber Risk Advisory team at Grant Thornton, your role will involve providing risk management consulting and advisory services to clients. You will have the opportunity to work on a range of cybersecurity projects and engage in various phases of project and engagement management for multiple clients. Your responsibilities will include: - Engaging in planning, directing, and completing Security Framework assessment - Managing GRC using tools like ServiceNow, RSA Archer, Third Party Risk Assessment, and Information Security architectural design - Having basic knowledge of Privacy regulations such as GDPR, CCPA - Developing and supervising other Grant Thornton engagement staff - Assisting in assigned client management and practice development activities To excel in this role, you should have the following qualifications and skills: - Working knowledge of cybersecurity industry best practices and guidance, including NIST Cybersecurity Framework, OWASP, CIS Critical Security Controls, ISO 27001/2 - Understanding of TCP/IP protocol suite (e.g., TCP, SMTP, DNS, HTTP, etc.) - Experience in project management and clear communication of security technology issues to client staff - Excellent client service and communication skills - Ability to work additional or irregular hours based on client requirements - Documentation of technical testing and assessment results in a formal report format - Analytical and organization skills - Ability to manage multiple client engagements and competing priorities in a fast-paced environment - Ability to work well independently or with a team - Experience with intrusion detection systems, firewalls, email/web content filtering, DLP, UBA/UEBA, VPN, and other security technologies Additionally, desired skills for this role include: - Supporting the management of engagements including planning, execution, and reporting - Developing and documenting engagement fieldwork, notes, communications, results, and deliverables - Leading, training, and mentoring other team members on client engagements - Remaining current on cybersecurity trends and risks - Adhering to professional standards and client confidentiality - Conducting cybersecurity control assessments in accordance with industry frameworks and practices Qualifications for this role include a Bachelor's and/or Master's degree in Information Technology, Computer Science, or a Cybersecurity-related field. Experience with Hadoop, Elastic, Kibana, Syslog, Kafka, Perl, Python, MongoDB, MySQL, Cloud computing, etc., is preferred. Certifications such as Certified Ethical Hacker (CeH v9 & above), CISSP, OSCP are also desirable. At Grant Thornton INDUS, you will enjoy benefits such as insurance coverage, wellness programs, work-life effectiveness, parental support, mobility benefits, and retirement benefits. Grant Thornton INDUS is a collaborative and excellence-driven firm that values transparency, competitiveness, and empowers its employees to make a significant impact. (Note: The job description does not contain any additional details about the company.),

As a Sr. Fund Accounting Associate for our esteemed client in Kolkata, you will be responsible for handling financial tasks related to various investment funds such as hedge funds, private equity, venture capital, real estate funds, and digital asset funds. **Key Responsibilities:** - **Fund Accounting:** Maintain accurate records, reconcile transactions, calculate Net Asset Value (NAV), and record income and expenses. - **Financial Reporting:** Prepare financial statements, investor reports, and regulatory filings. - **Performance Measurement:** Analyze fund performance and prepare performance reports. - **Valuation:** Value fund assets and ensure accurate pricing. - **Portfolio Reconciliation:** Reconcile the portfolio with banks and brokers. - **Investor Relations:** Address investor inquiries and assist with onboarding. - **Compliance:** Ensure regulatory compliance and submit required reports. - **Technology and Systems:** Use financial software and assist with system implementations. - **Audits and Taxation:** Prepare for audits and collaborate on tax reporting. - **Process Improvement:** Identify ways to streamline operations. - **Risk Management:** Monitor and report operational and financial risks. - **Team Collaboration:** Work closely with finance and operations teams. **Qualifications:** - Degree in Accounting, Finance, or related field. - Experience in investment or fund accounting. - Strong attention to detail. - Excellent coordination skills with clients and team members. - Knowledge of private equity or hedge fund accounting is a plus.,

In this role at PwC focused on risk and compliance, you will be responsible for maintaining regulatory compliance and managing risks for clients. You will provide advice and solutions to help organizations navigate complex regulatory landscapes and enhance their internal controls effectively. Your key responsibilities will include: - Working as part of a team with extensive consulting and industry experience to assist clients in solving complex business issues - Day-to-day liaison with clients as part of project teams - Identifying the impact of prudential regulatory changes and helping clients adapt to new regulatory challenges - Working on projects related to various components of regulatory calculation and reporting under Pillar 1, such as credit risk, market risk, leverage ratio, liquidity reporting, and more - Conducting regulatory gap assessments and remediation - Preparing regulatory analysis and reports To excel in this role, you will need the following essential skills: - Good written, numerical, and verbal communication skills - Knowledge and experience in retail, commercial, wholesale, and/or investment banking sectors - At least four years of experience in financial services prudential requirements - Hands-on experience in regulatory reporting/COREP - Strong relationship management skills and experience in team management - Problem-solving skills to deliver tailored solutions for clients Additionally, you should have technical skills specific to Pillar 1 reporting requirements, including understanding of COREP, regulatory reporting life cycle, and regulatory requirements for credit risk, market risk, and other areas. Experience with Basel 3.1 regulations and knowledge of Gen AI, Python, or regulatory reporting platforms like Axiom, Regnology, SuadeLabs would be beneficial. As part of your role, you will also be expected to: - Develop strong working relationships with client teams - Suggest ideas for improving engagement productivity and client service - Ensure compliance with engagement plans and internal quality & risk management procedures - Display teamwork, integrity, and leadership - Manage engagements and relevant teams while fostering teamwork and innovation - Utilize technology to enhance service delivery and conduct training sessions for team members - Contribute to team building activities and learning & development initiatives Minimum qualifications for this role include a Bachelor's/Masters Degree in Commerce/Economics/MBA/BBA or Chartered Accountant certification, experience in banking and capital markets, and 4-6 years of relevant experience in a similar role, preferably with a Big 4 or equivalent.,