44 Certified Safety Professional jobs in India

• Develop and sustain meaningful relationships through building Trust and rapport with internal Santander stakeholders
• Partners with Business stakeholders to report on risks from third parties related to information security and business continuity.
• Provides leadership to other analysts and assists management in validating the quality and timely delivery of assessments
• Represent Santander's position in front of suppliers, and act as the communication link between Santander and suppliers as needed
• Management of issue resolution falling within the scope of the department

About KPMG in India

KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across India in Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara and Vijayawada.

KPMG entities in India offer services to national and international clients in India across sectors. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment.

Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related fields.

A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments.

Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/2000 LI/LA or equivalent are highly valued.

Profound knowledge of cybersecurity frameworks, industry standards, and best practices.

Proficiency in using various security assessment and techniques.

Strong analytical and problem-solving skills, with the ability to think critically and strategically.

Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences.

Demonstrated experience in project management and handling multiple assessments simultaneously.

A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development.

Network Security, infrastructure assessment and network architecture design review.

Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

Equal employment opportunity information

KPMG India has a policy of providing equal opportunity for all applicants and employees regardless of their color, caste, religion, age, sex/gender, national origin, citizenship, sexual orientation, gender identity or expression, disability or other legally protected status. KPMG India values diversity and we request you to submit the details below to support us in our endeavor for diversity. Providing the below information is voluntary and refusal to submit such information will not be prejudicial to you.• Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls.
• Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments.
• Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation.
• Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments.
• Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders.
• Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies.
• Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments.

• Permanent full time position available
• Predominantly remote working
• Practising legal role - with no billable hours

DISCOVER  more opportunities to DEVELOP  your talents and THRIVE  in a dynamic legal landscape.

About the role

Our global Conflicts and new Business Intake department is seeking a Conflicts Risk Assessment Lawyer to join our global team. This role will be permanent full time role with the opportunity to work in a hybrid or predominantly remote work environment (with the occasional in office meeting and social events). This global department, part of the Firm wide Office of the General Counsel function, is responsible for the critical tasks of handling new business intake requests and associated conflict checks, client due-diligence and compliance work.

 What does the role involve?

This is a great role which involves exposure to a variety of matters with daily interactions with colleagues all around the world. On a daily basis you will be:

• Analysing and evaluating conflict search requests;
• Conducting extensive corporate affiliation and client quality research;
• Applying relevant professional rules of conduct, firm policies, regulations, and risk guidelines;
• Identifying and resolving potential conflict issues and providing a concise and complete summary report for relevant stakeholders such as partners, senior management and the General Counsel;
• Reviewing, drafting and providing advice on client engagement agreements, conflict waivers, external publications and outside counsel guidelines; and
• Vetting all new business intake requests to ensure compliance with the Firm's business direction.

What are we looking for?

We value our culture at K&L Gates and are proud of our friendly and respectful reputation. We are looking for a likeminded individual who, in addition to possessing technical excellence, is able to work collaboratively in a team and support their colleagues.  In addition to this we are looking for:

• Qualified lawyers with a current practising certificate and a minimum of 2 years PQE;
• Experience in a risk management or compliance role is highly desirable, but not essential. (Candidates who have been practising law for 2 or more years will be considered); 
• Excellent people skills with the ability to communicate concisely, influence stakeholders and build strong business relationships;
• Strong research skills and knowledge of corporate affiliations;
• High level computer skills with the ability to learn new systems quickly; and
• A desire to work in a legal compliance role.

To be successful in this role, you will exhibit a high degree of professionalism and confidentiality while maintaining a good rapport with the firm’s partners, lawyers and staff.  We seek exceptional employees who want to become a part of our practice on all levels, to help us expand, challenge our limits, and push us to grow into the future. If you are motivated by job challenges and personal growth, then K&L Gates could be the right place for you.

The extras

K&L Gates promotes equal opportunities for all employees to progress in their careers. 

Initiatives include:

• Regular social events and an active social club;
• Salary continuance insurance;
• Pro-bono programs and community involvement via our payroll giving program, Global Day of Service and charitable fundraisers;
• Generous leave options as well as a broad range of flexible working options;
• 26 weeks paid parental leave;
• An extensive range of learning and professional development programs; and
• Committees that tackle the big issues including diversity and inclusion, Women in the Profession and work/life balance.

About Us

The firm’s Australian operations provide vast knowledge of the Australian legal marketplace across a wide spectrum of industries.  With lawyers located in four established offices in Australia’s leading financial and commercial centres and possessing substantial experience.

At K&L Gates, we foster an inclusive and collaborative environment across our fully integrated global platform that enables us to diligently combine the knowledge and expertise of our people to create teams that provide exceptional client solutions. We marry process with vision, success with dedication, method with passion, and innovation with creativity. The outcome: The K&L Gates Experience.

Located across five continents, we represent a broad array of leading global corporations in every major industry, capital markets participants, and ambitious middle-market and emerging growth companies. We also serve public sector entities, educational institutions, philanthropic organisations, and individuals. Our lawyers counsel clients on their most sophisticated legal challenges in all areas of corporate and regulatory law as well as litigation.

We are leaders in legal issues relating to industries critical to the economies of both the developed and developing worlds—technology, manufacturing, energy, transportation, telecommunications, financial services, and life sciences, among others.

Do you like what you see?

Please apply via our Careers page at

For more information, please contact Tania Brierley, Recruitment Consultant at

For more information about K&L Gates please see our website

Referrals from agencies are not accepted at this time.

K&L Gates reserve the right to close advertising earlier at our discretion.

K&L Gates is an equal opportunity employer and promotes the safety, wellbeing and inclusion of those with a disability. We welcome applications from people who have an indigenous and/or culturally and linguistically diverse background.

Stay safe when applying on-line and be aware of jobs and employment related scams via scamwatch.gov.au   

Attachments:
- K&L Gates Employee Benefits.pdf

IT Advisory Risk Consulting—IT Audit & Assurance 

Our client’s IT Advisory – Risk Consulting team is looking for Associate Consultants/ Consultants/ Assistant Managers to join their IT Audit & Assurance team in Bengaluru. Team provides Independent assurance on controls in place across client’s IT environment and ways to mitigate Technology risks. 

Following are some of our key solution offerings

• Risk Based IT Internal Audit
• IT SOX 404 Controls Testing, Quality Assurance
• Internal Financial Controls related to IT General Controls 
• IT General Controls as part of Financial Statements Audits
• IT Risk & Control Self-Assessment 
• Business Systems Controls / IT Application Controls 
• Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc.
• IT Attestation (SOC1/SOC2/ISAE 3402, ISAE 3000 etc.)
• Third Party/Vendor Risk Assessments 

Position: Associate Consultants/ Consultants/ Assistant Managers

Location: Bengaluru  

Requirements

Industry Experience:

• Plan, budget and execute the day-to-day activities of infrastructure audit engagements for clients
• Assess client's security landscape, assess, evaluate and recommend most suitable security solution, tools & techniques to create a threat resilient landscape using our client's differentiated approach and methodologies. Provide security concept, framework & standards for development & support client teams for the solution design, customization build and roll out to end users. 
• Perform a holistic security risk assessment of the client’s IT landscape taking various assets, threats, vulnerabilities, business impact & legal aspects into consideration. Designing and implementing controls to mitigate identified risks by lucid communication to client stakeholders. Effective persuasive/convincing abilities while communicating gaps detected during audits, risk assessments, attestation engagements.   
• Collaborate with other practice groups to review the effects of new threats and vulnerabilities in the security space to assess, remediate, test and protect client application artefacts, data and enterprise ecosystems from threat vectors as they emerge. 
• Work with other technology groups to provide cohesive solutions in Risk assessments, Financial statement audits, Attestation engagements encompassing network architecture, application, database, , standards and implementation related mandates for development, deployment and maintenance. 
• Manage teams delivering co-working discovery workshops & support delivery teams to provide assessment, remediation, testing and standards refresh for the application security practice. 
• Present and distill complex Security solutions into simple, easy to understand concepts for both technical and non-technical audiences especially in the context of opportunity pursuit. 
• Drive Innovation through Offerings: — Drive profitable growth through the execution of the strategy and the strengthening of the audit and assurance practice 
• Building innovative & collaborative solutions to bring combined offerings such as security related combinations with J2C, API, Data security as advisory & execution footprint to capture opportunities & illustrate convergence 
• Bring the audit and assurance practice to life to achieve sales and commercial opportunities in a collaborative ecosystem and follow through with support for cost effective high quality execution. 

Additional Responsibilities for Assistant Managers:

• Supervise associates and interns on engagements
• Serve as a liaison between financial services clients and upper management
• Establish and sustain long-term profitable client relationships that drive value creation, delivery excellence and a positive client work environment
• Works with the client to minimize delivery disruptions and effectively manages client urgencies.
  Qualifications
• Engineering / MBAs with atleast 6+ years of experience 
• 3+ years of experience with hands on exposure to Infrastructure / Mobile/ Web application security spanning across various technologies. 
• Working level familiarity of advanced security assessment concepts, including but not limited to –, Malware analysis, OT/ICS security, Cloud security, security in IoT, Blockchain, RPA and emerging technologies, etc. 
• Working level familiarity with Static and Dynamic Analysis tools (SAST, DAST, IAST). Ability to manage deployment & use of OWASP tools and methodologies. 
• Ability to elucidate vulnerabilities and weaknesses in the OWASP Top10,WASCTCv2, SANS Top-25 and CWE25 to client IT/ISO audiences and discuss effective defensive techniques. 
• Comprehensive understanding and previous oversight of IT hardware, software, networking, databases, API services, J2C storage, licensing and related hosting needs.
• Infrastructural configuration reviews to identify the security related gaps within the IT environment
• Preference would be given to significant experience in relevant technical knowledge: (a) financial statement – IT  Audits; (b) IT internal or IT operations audits; (c) IT SOX engagements (d) Emerging Technology Risks (e) Data Privacy and PCI-DSS risks
• Good to have, add on skills - Working level familiarity with relevant vulnerability scanning tools (e.g., Qualys, Nessus, Nexpose, Saint or any other open source tools). Working level familiarity with web application vulnerability scanning tools (e.g. IBM AppScan, HP Fortify, Accunetix, NTO Spider, Burpsuite Pro or any other open source tools), SIEM tools (SolarWinds, Splunk, LogRhythm, IBM QRadar) 
• Ability to understand/identify best practices for infrastructure process and controls.
• CISA, CISM, CISSP, CRISC, TOGAF certifications would be an added advantage
• Prior experience in client facing / account management roles
• Possess strong domain knowledge, understanding of IT processes supporting business and possible risks in operations of at least two industry sectors
• Demonstrate integrity, values, principles, and work ethic and lead by example

Benefits

Work with one of the Big 4's in India

Healthy work Environment

Work Life Balance

DSM - Bright Science. Brighter Living.

Royal DSM is a global science-based company active in health, nutrition, and materials. By connecting its unique competences in life sciences and materials sciences DSM is driving economic prosperity, environmental progress, and social advances to create sustainable value for all stakeholders simultaneously. DSM delivers innovative solutions that nourish, protect and improve performance in global markets such as food and dietary supplements, personal care, feed, medical devices, automotive, paints, electrical and electronics, life protection, alternative energy and bio-based materials. DSM and its associated companies deliver annual net sales of about €10 billion with approximately 25,000 employees. The company is listed on Euronext Amsterdam.

Are you someone with a strong personality looking for opportunities, thinking out of the box and share your vision and own your point of view?

We are looking for Credit Risk Assessment Officer. The role is based at Hyderabad.

**To assess the creditworthiness of DSM customers and advise credit limits so that the credit risk and working capital for all participating BG/BU/SUs is minimized.**

DSM Business Support (DBS) offers a range of services in the field of Finance, Processes & Systems and HR. Its portfolio is designed to allow its customers within the DSM BG/BU/SUs to focus on what they do best, knowing that key transactional activities are being managed on their behalf in a professional, cost-effective and compliant manner by DBS. DBS consists of a Shared Financial Service Center (SFSC), a Business Support Center HR NL (BSC-HR), a Shared Service Center (SSC), various functional departments and is a key player in Arjuna - Major change project. Since 2010, DBS is growing and undertaking major Organizational change including internationalization. Within the SFSC, the Credit Risk Assessment Center offers services to 17 BG/BUs and 7 SUs, spread globally.

**a) Key areas of accountability/responsibility**

1. Assess the creditworthiness of (potential) customers, expressed in risk categories, and advise credit limits per customer.

2. Keep the knowledge updated regarding customers’ creditworthiness by means of periodical reviewing, taking all available and valuable information into account, like financial reports, visit reports from sales, the internet and third parties.

3. Achieve the Key Performance Indicators (KPIs) that has been agreed with the BG/BU/SUs.

4. Keep up with financial developments in the assigned countries. Signal consequences with respect to credit risk issues in a timely way.

**b) Authorities**

1. To grant credit limits in accordance with the authorization rules.

2. To assess the customers’ credit risk category, being of crucial importance in respect to SAP’s blocking system. To establish or modify the credit risk category of customers.

**Educational Qualification**:

- Bachelor in finance or economics as a minimum desirable (any other degree would need to be supported by significant experience) - Fluent in English, written and spoken - Specific country and area knowledge in terms of the financial landscape - Specific BG/BU/SU and DSM products knowledge - Knowledge about DSM systems, like SAP - Specific knowledge about financials, legal aspects and collection.

**Required level of experiences**:
2-5 years of financial & accounting experience, including in credit risk assessment, preferably in a Business to Business (B2B) or Banking (commercial/ corporate lending/ credit appraisal)

Royal DSM is an equal employment opportunity and affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, status as a qualified individual with a disability, or any other characteristic protected by law.

Our client, a leading name in the insurance industry, is seeking a highly experienced and analytical Senior Insurance Underwriter to join their dynamic, fully remote team. This role is critical for evaluating and assessing insurance risks, determining policy terms and conditions, and ensuring profitable underwriting practices. The ideal candidate will possess extensive knowledge of various insurance lines (e.g., property, casualty, life) and a proven track record in complex risk assessment. You will be responsible for analyzing applications, reviewing policy proposals, gathering relevant data from various sources, and making informed decisions on policy acceptance or rejection. This position requires a strong understanding of actuarial principles, financial analysis, and regulatory compliance within the insurance sector. Your duties will include developing underwriting guidelines, collaborating with actuaries and claims departments, and mentoring junior underwriters. The ability to effectively communicate underwriting decisions and rationale to agents, brokers, and internal stakeholders is paramount. This role demands a meticulous attention to detail, strong problem-solving skills, and the ability to manage a high volume of applications while maintaining accuracy and efficiency. As a remote position, exceptional organizational skills and the ability to work autonomously with minimal supervision are essential. You will play a key role in shaping the company's risk appetite and contributing to its long-term success. The focus will be on developing and implementing advanced underwriting strategies that balance risk mitigation with business growth objectives. This position is based out of Mumbai, Maharashtra, IN , but is fully remote.

Key Responsibilities:

• Evaluate insurance applications and assess risk profiles for various insurance products.
• Determine appropriate policy terms, conditions, and pricing based on risk assessment.
• Analyze financial statements, loss history, and other relevant data to make underwriting decisions.
• Develop and implement underwriting guidelines and best practices.
• Collaborate with actuaries to ensure accurate pricing and reserving.
• Provide expert guidance and mentorship to junior underwriting staff.
• Communicate underwriting decisions and rationale clearly to agents, brokers, and clients.
• Monitor market trends and regulatory changes impacting underwriting.
• Identify opportunities for process improvement and efficiency gains in the underwriting function.
• Ensure compliance with all relevant insurance laws and regulations.

Qualifications:

• Bachelor's degree in Finance, Economics, Business Administration, or a related field.
• Professional underwriting designations (e.g., AIC, CPCU) are highly desirable.
• Minimum of 5 years of experience in insurance underwriting, with a focus on complex risks.
• In-depth knowledge of various insurance lines and underwriting principles.
• Strong analytical, quantitative, and problem-solving skills.
• Proficiency in underwriting software and tools.
• Excellent communication, negotiation, and interpersonal skills.
• Ability to work independently and manage a workload effectively in a remote environment.
• Understanding of insurance regulations and compliance requirements.

Closing date:  14 September

We’ve never been ‘just a bank’. Just like you should never be ‘just an employee’. We’re united in our belief that in banking, better can be bigger, and together we’re making it happen.

It starts here. With Bendigo Bank… and you.

Come and be part of our FCR 2LOD team and department.  Beyond your seasoned expertise in the field, collaboration and alignment is key and ability to see the bigger picture.  You’ll bring a solution driven hands on approach applying a pragmatic & practical style to make things happen

As Manager FCR Risk Assessment you’ll make an impact by:

• Manage development of clearly documented methodologies, delivery and oversight of assessments of financial crime risk across the Group, including at enterprise, customer, product, channel and jurisdiction levels.
• Support the delivery of a framework that ensures new and emerging risks and threats are captured, assessed and incorporated into existing assessments.
• Facilitate the ongoing review and model validation of assessment frameworks to ensure adequacy and effectiveness of risk assessments
• Design and deliver a clear framework for the assessment and management of financial crime typology information in order to inform the identification, detection and management of risks in FCR and across the Group.
• This will include assessment of the external environment, industry publications, AUSTRAC notices and other external / internal reports that identify emerging, new or existing financial crime risks in order for FCR and the Group to take action.

Position description:  Manager FCR Risk Assessment Position Description.docx

This is a permanent full-time position. We offer flexible work options that put our people first, and a hybrid model of minimum three days per week based out of our Melbourne, Adelaide, Bendigo, Ballarat, Geelong, Brisbane or Sydney corporate office.

What you’ll bring to the role

To succeed in this role, we’d love you to have:

• Solid knowledge and demonstrated skill in the process of managing the operation of financial crime risk frameworks, including best practice innovative enterprise risk assessments, customer/product/channel/ jurisdiction risk assessments and typology assessments.
• Demonstrated skill at communicating and managing stakeholder relationships and supporting the delivery of change to teams and business processes.
• Demonstrated experience in financial crime governance and/or advisory services at domestic or international financial institution.
• Best practice technical expertise in financial crime risk assessments.
• Experience in delivering financial crime management information and reporting for committees
• Solution driven hands on approach applying a pragmatic & practical style to make things happen
• Structured and organized, whilst navigating through times of ambiguity
• Ability to understand and communicate what is fit for purpose.

While not essential, it would be great if you had:

• Bachelor’s degree or above in relevant field
• Financial Crime Industry Qualification preferred such as ACAMs, AFCS

So, why work for us?

Want big impact that matters?

Here, you’ll know your work directly benefits the customers and communities we all serve.

You’ll also get access to a great range of benefits, including:

• Flexibility means different things for different people. Whether it’s hybrid work, flexible hours, a compressed work week, job-sharing or something different, our flexible work options are designed to put people first
• Health and wellbeing support, including discounted gym memberships, private health insurance options, and our Employee Assistance Program (EAP) for you and your immediate family members
• Opportunities to take your learning to the next level through our corporate university ‘BEN U’ or at an external provider of your choice

We believe a diverse workforce supported by an inclusive culture is central to our success and we actively encourage applications from those who bring diversity of thought to our business. We support candidate requests for adjustment to accommodate an illness, injury, or disability to equitably participate in the selection process.

Still in two minds?

Research suggests 60% of women and underrepresented groups might stop here, even after getting as far as drafting an application. We believe that diversity makes every team stronger, so even if you don’t tick every box we still want to see your application!

We’re making better, bigger. And we’ll get there with you.

Now’s the time to set your sights even higher – on the future you and the future career you deserve.

The opportunity

The Technology Assurance, Risk, and Policy (TARP) function within Information Security strives to create and promote a holistic Governance, Risk, and Compliance (GRC) program by creating a robust, resilient, and proactive governance framework, supported by a strategic risk management approach and stringent compliance structures. It aims to integrate and align its GRC initiatives in line with the global firm's objectives and emerging threats within the cybersecurity landscape.

Furthermore, the Policy, Risk, and Controls (PRC) Enablement & Awareness team aims to establish policies and procedures that reflect the value we place on safeguarding our digital environment, while ensuring that these policies are effectively communicated and enforced across all levels of the organization. The Control & Risk Assessment team sits within PRC Enablement & Awareness and aims to directly enables the GRC program by designing control testing and risk assessment methodology to measure and quantify compliance to policies and control objectives.

Your key responsibilities

The Control & Risk Assessment Leader will be responsible for building and owning a control testing and risk assessment program, following the model for 1st line and 2nd line testing best-practice strategies, that routinely tests and assesses the effectiveness and efficiency of Information Security controls put in place to mitigate risks to determine if they are supporting the desired business outcomes. They will need to rank and prioritize Information Security and Information Technology controls based on their risk profiles and design testing plans, inclusive of testing procedures, which will be used to measure effectiveness while, simultaneously looking for opportunities to enhance and improve EY’s control landscape. In certain instances, they will need to plan and execute risk assessments to quantify assumptions over the risk profiles.

The Control & Risk Assessment Leader is responsible for building a team of experienced professionals to assist in executing the strategic vision and objectives of the Control & Risk Assessment testing and assessment program. The Control & Risk Assessment team will work collectively to support the Information Security Program in the areas of risk assessment methodology development and execution of risk assessments, control testing design and execution, and identification of gaps and areas of improvement utilizing testing and assessment results.

Collaboration with other Information Security groups and external stakeholders across EY is key to this role. The Control & Risk Assessment Leader will need to build a network of multi-departmental and multi-level stakeholders inclusive of, but not limited to Information Security, Client and Enterprise Technology, Data Protection, Global and Enterprise Risk Management, Internal Audit, Area and Regional Risk & Data teams, Service Line Quality Leaders, etc.

Skills and attributes for success

Own and build multi-year roadmap to establish and mature the Control & Risk Assessment program. This includes development of the team’s charter, identification of resource needs, ongoing monitoring systems and tool requirements, performance metrics, and workstream prioritization.

Build and manage control testing and risk assessment service offerings aimed at identifying potential risks and validates mitigation controls by conducting regular and systematic assessments of the organization's IT infrastructure, including networks, systems, applications, and data processes.

Based on results of assessments and testing, assist control owners with the design and implementation of their controls in the organization's IT environment. Strategize on the appropriate amount of preventive, detective, or corrective controls which will have the most impact on reducing overall risk for the firm.

Create a 1st Line Testing framework that can be shared with control owners that will enhance security culture and support control ownership roles and responsibilities. Conduct training and awareness campaigns to facilitate the adoption of the framework.

Appropriately balance firm security needs with business impact and benefit when recommending advancements in policy and control objectives and directing those efforts to completion.

Think strategically to assist with the development of a long-term vision for Information Security’s Technology Assurance, Risk, and Policy direction inclusive of its program improvement, technology adoption, and integration of security solutions into business objectives.

Act as a thought leader in the firm, staying informed of changes in information security, regulatory requirements, audit standards, and industry trends, adjusting strategies, as necessary.

Build and maintain appropriate relationships with internal and external leaders to ensure awareness and understanding of potential strategic directions. 

Flexibility to adjust to multiple demands, shifting priorities, ambiguity, and rapid change.

Outstanding management, interpersonal, communication, organizational, and decision-making skills.

Ability to understand and integrate cultural differences and motives and to lead cross cultural teams.

Demonstrate integrity and judgment within a professional environment.

Evaluate, counsel, mentor and provide feedback on performance of others.

Plan the training and development of staff to develop their skills and maintain state-of-the-art knowledge in information security.

To qualify for the role you must have

12+ years of experience in the Information Technology, Information Security and/or Risk Management field(s).

Audit experience or a demonstrated ability to design and test technology controls.

5+ years of experience in managing and mentoring junior and senior level staff.

Experience leading global and virtual teams.

High proficiency in technical and general writing skills in English. 

An advanced degree in Computer Science, Information Security, or a related field; equivalent work experience will be considered on a case-by-case basis.

One or more of the following or equivalent certifications preferred: Certified Risk and Information Systems Control (CRISC), Certified Information Systems Security Processional (CISSP), Certified Information Security Manager (CISM), Certified Information System Auditor (CISA), Certified Internal Auditor (CIA), Global Information Assurance Certification (GIAC) in related area, CIPP, CIPT.

Ideally, you’ll also have

A working knowledge of external control standards like ISO 27001, NIST 800-53, COBIT, etc. and regulatory requirements like GDPR and SOX.

Skilled in Microsoft Office and M365 products; primarily Word, Excel, PowerPoint, SharePoint, PowerApps, and PowerBI.

Experience with RSA Archer or other GRC tools.

Flexibility to work outside of normal business hours when engaging with team members and stakeholders in various time zones.

What we offer

As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer:

Continuous learning : You will develop the mindset and skills to navigate whatever comes next.

Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way.

Transformative leadership : We will give you the insights, coaching and confidence to be the leader the world needs.

Diverse and inclusive culture : You will be accepted for who you are and empowered to use your voice to help others find theirs.

We ensure that individuals with disabilities are provided reasonable accommodations to participate in the job application or interview process, to perform essential job functions and to receive other benefits and privileges of employment. Please contact us to request accommodations.

EY is committed to being an inclusive employer, and we are happy to consider flexible working arrangements. We strive to achieve the right balance for our people, enabling us to deliver excellent client service whilst allowing you to build your career without sacrificing your personal priorities. While our client-facing professionals can be required to travel regularly, and at times be based at client sites, our flexible working arrangements can help you to achieve a lifestyle balance.

EY | Building a better working world

EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets.

Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow.

EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.

As part of Risk Management and Compliance, you are at the center of keeping JPMorgan Chase strong and resilient. You help the firm grow its business in a responsible way by anticipating new and emerging risks, and using your expert judgement to solve real-world challenges that impact our company, customers and communities. Our culture in Risk Management and Compliance is all about thinking outside the box, challenging the status quo and striving to be best-in-class.

The firm's Second Line of Defense (2LOD) is the independent risk management area comprised of Risk Management and Compliance (RM & C), responsible for developing and monitoring the execution of the risk governance structure.

This firmwide team within Compliance, Conduct and Operational Risk (CCOR) is responsible for developing the Regulatory Topic framework to assess JPMorgan Chase's risk across all lines of business (consumer, corporate and investment bank, commercial banking, asset and wealth management, and corporate businesses) for specific collections of laws, rules, and/or regulations ("obligations") that require evaluation together to assess the firm's ability to be compliant with these obligations.
**Key Responsibilities
- Drive ongoing initiatives related to the firmwide Regulatory Topic framework, including:

- Development of new and refinement of existing Regulatory Topic program requirements
- Develop and execute a training and communication plan to support the program requirements including policy, standards and other required documentation
- Further integration of the program into Risk and Control frameworks, including data sourcing and reporting
- Partner with Corporate and Line of Business teams to roll out the program framework and oversee the overall execution of the Regulatory Topic Assessments including CCOR Challenges
- Partner with technology to deliver capabilities to execute against requirements for both LOB/CF teams and Compliance/Operational Risk
- Support regulatory, audit, and policy related requests

**Minimum Skills, Experience and Qualifications**
- Minimum Bachelor's degree; 10-12+ years work experience in the financial industry, preferably in Risk, Compliance, Oversight & Control, or Finance
- Strong analytical skills, with ability to harness large data sets and analyses to deliver insights and new features for senior management reviews
- Strong Excel and PowerPoint/PitchPro skills
- Strong communication skills, ability to clearly articulate complex concepts and distill high-level themes from granular information
- High attention to detail and ability to work independently to produce executive-level materials, analyses, presentations
- Ability to work well under pressure and deliver under tight deadlines
- Self-starter who proactively seeks ways to improve processes
- Ability to develop partnerships across multiple business and functional areas
- Working Hours: 1:30pm to 10:30pm India Time (4am to 1pm NY Time)

**About Us**

Across JPMorgan Chase, we serve millions of customers and many of the world's most prominent corporate and government clients. Our mission is to build a stronger, more equitable economy, and we strive to make a positive impact everyday with our customers in their communities. We are proud of our reputation as one of the world's most admired companies and we know that it's our people who make us successful. We are committed to a diverse and inclusive workplace where our employees are welcomed, valued and able to bring their authentic selves and best work forward
JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as any mental health or physical disability needs.