Careers
Careers
ISACA is a global professional association that provides certification, education, and networking opportunities to information systems professionals. The organization was founded in 1969 as the EDP Auditors Association, and later became known as the Information Systems Audit and Control Association (ISACA). In 2021, the organization rebranded as ISACA to reflect its expanded focus beyond audit and control.
ISACA offers several certifications, including the Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), and Certified in the Governance of Enterprise IT (CGEIT). These certifications are highly regarded in the industry and can help professionals advance their careers.
In terms of career opportunities, ISACA membership and certification can help professionals in a variety of roles related to information systems, including IT audit, IT governance, risk management, cybersecurity, and compliance. Many organizations seek professionals with ISACA certifications and membership when hiring for these types of positions.
ISACA Careers
Northern Trust is committed to providing innovative solutions and exceptional service to their clients, and they believe that their employees are the key to their success. They are looking for individuals who share their passion for excellence and who are eager to grow and develop within their organization.
If you are looking for a challenging and rewarding career, this is an opportunity you won’t want to miss. Northern Trust is recruiting for following roles to join the IT Audit Services function Based in Bangalore.
Role | Experience | CTC |
Associate Auditor | 0 to 2yrs | 8 LPA |
IT Auditor | 2 to 5yrs | 16 LPA |
Sr. IT Auditor | 5 to 9yrs | 24 LPA |
The above role supports the delivery of technology internal audit projects (infrastructure, application, cybersecurity) across business units to conclude on the design and operating effectiveness of the technology internal control environment in order to improve the management of risk in support of regulatory obligations, corporate governance, and reporting requirements. Participants will gain hands-on experience and learn about technology processes and standards supporting Northern Trust’s global operations, the risks that Northern Trust faces, and the controls designed to keep our technologies and business operations safe.
If you are interested in learning more about this opportunity, Register here google form and upload your CV. All the JDs are uploaded here and you can refer to the details before applying for the role.
The recent job opening for Northern Trust is now completed, any future job opening will be published here. Keep visiting this page to check for job openings in the future.
Internal Audit-Compliance and Legal Technology Audit-Vice President- Hyderabad
What We Do:
As the third line of defense, Internal Audit’s mission is to independently assess the firm’s internal control structure, including the firm’s governance processes and controls, and risk management and capital and anti-financial crime frameworks, raise awareness of control risk and monitor the implementation of management’s control measures. In doing so, internal Audit:
- Communicates and reports on the effectiveness of the firm’s governance, risk management and controls that mitigate current and evolving risk
- Raise awareness of control risk
- Assesses the firm’s control culture and conduct risks; and
- Monitors management’s implementation of control measures
Goldman Sachs Internal Audit comprises individuals from diverse backgrounds including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm’s businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber-security and technology risk, and engineering.
Who We Look For
Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, building relationships and are able to evolve and thrive in teamwork and in a fast-paced global environment.
Corporate Compliance and Legal Engineering Audit:
C&L Engineering audit team is responsible to primarily cover Compliance and Legal functions within the firm. Global Compliance manages the firm’s compliance, regulatory and reputational risks by ensuring adherence to laws, rules and regulations. The division monitors trends and changes in regulations in all jurisdictions in which the firm does business and develops and implements firmwide and divisional policies and procedures. In addition to advising the firm’s businesses, Global Compliance is responsible for managing audits and inquiries, Compliance learning, surveillance and testing the firm’s risk management infrastructure.
The Legal Division’s mission is to advance and protect the interests of the firm by providing the highest quality legal advice. Central to our mission is the identification and provision of advice with respect to the resolution of legal, regulatory and reputational risks. As part of the firm’s second line of defense, Legal helps ensure that the firm’s activities are conducted within the boundaries of the law and consistent with preserving and enhancing the firm’s reputation.
As an Engineering Auditor, you will be involved in providing assurance on the data completeness, data integrity, applications stability, system operations, user access, change management, application controls, and other technology general controls across new and emerging technologies, including cloud, artificial intelligence, machine learning, etc.
Your Impact:
As part of the third line of defense, you will be involved in independently assessing the firm’s overall control environment, communicating the results to the firm’s local and global management on the effectiveness of the firm’s controls that mitigate current and emerging risks, and monitoring the management’s implementation of control measures. In doing so, you are supporting the provision of independent, objective and timely assurance around the firm’s internal control structure, and supporting the Audit Committee, the Board of Directors and Risk Committee in fulfilling their oversight responsibilities.
Responsibilities:
For each assigned project, you will be involved in scoping and planning of the project/audit. You will play a vital role in audit execution focusing on the review of Technology processes and analyzing the risks involved and assessing the design and operating effectiveness of the controls implemented to mitigate the risk. You will be responsible in documenting the assessments and testing conducted and discussing the results with the firms local and global management. You will also be involved in reviewing the audit documentation completed by the audit team. Additionally, you will also monitor and follow up with management on the resolution of the open audit findings.
Basic Qualifications:
- BE/B Tech/MCA/MBA/MSc or equivalent University Degree in Information Technology
- Atleast 10 years of experience in Technology auditing focusing on Financial Services
- Ability to review code (Java, C++, SQL)
- Experience in managing audit engagements or Technology Projects
- Good People Management Skills
- Strong written and verbal communication skills and strong interpersonal skills, as the job requires frequent interaction with Technology Management
- Must be able to multitask while managing both time and work load
- Technology audit skills including an understanding of System architecture, Operating Systems, Database, System Development Lifecycle (SDLC)
Preferred Qualifications:
- Ability to review / develop code (Java, C++, Python, etc.)
- Experience with Data Analytics tools and techniques
- Relevant certification or industry accreditation (e.g. CISA)
- Good Knowledge of Financial Products and Services
About GS:
The Goldman Sachs Group, Inc. is a leading global investment banking, securities and investment management firm that provides a wide range of financial services to a substantial and diversified client base that includes corporations, financial institutions, governments and individuals. Founded in 1869, the firm is headquartered in New York and maintains offices in all major financial centers around the world.
APPLY HERE
Internal Audit- Senior Vice President- C&L Technology Audit - Hyderabad
What We Do
As the third line of defense, Internal Audit’s mission is to independently assess the firm’s internal control structure, including the firm’s governance processes and controls, and risk management and capital and anti-financial crime frameworks, raise awareness of control risk and monitor the implementation of management’s control measures. In doing so, internal Audit:
• Communicates and reports on the effectiveness of the firm’s governance, risk management and controls that mitigate current and evolving risk
• Raise awareness of control risk
• Assesses the firm’s control culture and conduct risks; and
• Monitors management’s implementation of control measures
Goldman Sachs Internal Audit comprises individuals from diverse backgrounds including chartered accountants, developers, risk management professionals, cybersecurity professionals, and data scientists. We are organized into global teams comprising business and technology auditors to cover all the firm’s businesses and functions, including securities, investment banking, consumer and investment management, risk management, finance, cyber-security and technology risk, and engineering.
Who We Look For
Goldman Sachs Internal Auditors demonstrate strong risk and control mindsets, analytical, exercise professional skepticism and are able to challenge and discuss effectively with management on risks and control measures. We look for individuals who enjoy learning about audit, businesses and functions, have innovative and creative mindsets to adopt analytical techniques to enhance audit techniques, building relationships and are able to evolve and thrive in teamwork and in a fast-paced global environment..
Your Impact
As part of the third line of defense, you will be involved in independently assessing the firm’s overall control environment, and communicating the results to the firm’s local and global management the effectiveness of the firm’s controls that mitigate current and emerging risks, and monitoring the management’s implementation of control measures. In doing so, you are supporting the provision of independent, objective and timely assurance around the firm’s internal control structure, and supporting the Audit Committee, the Board of Directors and Risk Committee in fulfilling their oversight responsibilities.
For each assigned review you will report to an experienced project manager. You will be expected to:
- Assist/Lead the risk assessment, scoping and planning of a review.
- Assist/Lead in executing the review. Specifically focusing on the following:
- Analyze the design of controls around the underlying system architecture in the context of information technology controls and its impact on the business.
- Analyze the business and technology processes to evaluate the design and effectiveness of the relevant technology controls by designing and executing tests to validate identified system control features, which may require data analysis, code inspection and re-performance of system processes.
- Document the results of the test steps executed within the IA automated document project repository as per the departmental guidelines.
- Assist/Lead in vetting audit observations
- Assist/Lead in tracking, monitoring and recording remediation of risks identified in reviews.
Basic Qualifications
- BE/B Tech/MCA/MBA in Systems/MSc or equivalent University degrees in technology
- Atleast 15+years of experience in technology audit focusing on Financial Services Technology audit.
- Technology audit skills including an understanding of:
- System architecture, with high level understanding of databases, operating systems and messaging
- Prior experience of testing automated IT application controls
- System Development / Programming Languages / Databases, System Architecture (Distributed/Messaging)
- Operating Systems and Data analysis skills (SQL, ACL, or similar tools)
- Application security principles.
- System development lifecycle (SDLC).
- Management, monitoring and operations of technology (backups, change management, system monitoring, incident/problem management)
- Business continuity planning and disaster recovery design and implementation
- Security within the software development lifecycle
- Ability to review / develop code (OO languages like Java, C#, C++)
- Experience in managing audit engagements or technology projects
- Relevant Certification or industry accreditation (CISA, CISSP, etc)
- Ability to work effectively across a large global audit team, understanding the team’s role in the overall strategy of the firm
- Strong Written and verbal communication skills a must; strong interpersonal skills essential. Job requires frequent interaction with technology management
- Must be able to multitask while managing both time and work load
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We’re committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html
© The Goldman Sachs Group, Inc., 2023. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
Same Posting Description for Internal and External Candidates
Internal Audit-Enterprise Technology Audit - VP - Bengaluru
In Internal Audit, we ensure that Goldman Sachs maintains effective controls by assessing the reliability of financial reports, monitoring the firm’s compliance with laws and regulations, and advising management on developing smart control solutions. Our group has unique insight on the financial industry and its products and operations. We’re looking for detail-oriented team players who have an interest in financial markets and want to gain insight into the firm’s operations and control processes.
Enterprise Engineering audit team is responsible to primarily cover audits across Corporate & Workplace Solutions, Corporate Planning and Management, Vendor management, Treasury Payments, Conflict and Resolution Group, Digital Workplace and Windows Eng and Human Capital Management divisions.
As an Engineering Auditor, you will be involved in providing assurance on the data completeness, data integrity, data privacy, applications stability and resiliency, system operations, user access, change management, application controls, and other technology general controls across
Your Impact:
As part of the third line of defense, you will be involved in independently assessing the firm’s overall control environment, communicating the results to the firm’s local and global management on the effectiveness of the firm’s controls that mitigate current and emerging risks, and monitoring the management’s implementation of control measures. In doing so, you are supporting the provision of independent, objective and timely assurance around the firm’s internal control structure, and supporting the Audit Committee, the Board of Directors and Risk Committee in fulfilling their oversight responsibilities.
Responsibilities
For each assigned review you will report to an experienced project manager. You will be expected to:
- For each assigned project, you will be involved in scoping and planning of the project/audit.
- You will play a vital role in audit execution focusing on the review of Technology processes and analyzing the risks involved and assessing the design and operating effectiveness of the controls implemented to mitigate the risk.
- You will be responsible in documenting the assessments and testing conducted and discussing the results with the firms local and global management.
- You will also be involved in reviewing the audit documentation completed by the audit team.
- Additionally, you will also monitor and follow up with management on the resolution of the open audit findings.
Basic Qualifications
- BE/B Tech/MCA/MBA/MSc or equivalent University Degree in Information Technology
- Atleast 10 years of experience in Technology auditing focusing on Financial Services
- Ability to review code (Java, C++, SQL)
- Experience in managing audit engagements or Technology Projects
- Good People Management Skills
- Strong written and verbal communication skills and strong interpersonal skills, as the job requires frequent interaction with Technology Management
- Must be able to multitask while managing both time and work load
- Technology audit skills including an understanding of System architecture, Operating Systems, Database, System Development Lifecycle (SDLC)
- Relevant certification or industry accreditation (e.g. CISA)
- Ability to review / develop code (Java, C++, Python, etc.)
- Experience with Data Analytics tools and techniques
- Good Knowledge of Financial Products and Services
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We’re committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html
© The Goldman Sachs Group, Inc., 2023. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
Job Title: Risk Analyst
Company: Maclear Global Risk Management Private Limited
Location: Remote with ability to travel pan India
Position Type: Full-Time Start Date: Preferably immediate or within 30 days
About Maclear Global:
Maclear Global is a leading provider of risk assessment and vendor information security services, dedicated to safeguarding the confidentiality, integrity, and availability of sensitive data. We work closely with our clients to ensure compliance with regulatory requirements and to minimize inherent technology risks. Our commitment to excellence, integrity, and client satisfaction has earned us a solid reputation in the industry.
Job Description:
As a Risk Analyst at Maclear Global, you will play a crucial role in evaluating and managing the security and compliance of our clients’ vendor relationships. You will work closely with internal teams and external vendors to assess, report, and mitigate risks, ensuring that data and information security standards are met.
Responsibilities:
Conduct internal controls and vendor information security risk assessments and audits, with a preference for candidates with previous experience in conducting risk assessments.
Validate the adequacy of controls, standards, policies, and procedures to protect Confidentiality, Integrity, and Availability and ensure compliance with regulatory requirements.
Assess the level of inherent technology risks in the context of business objectives and risk appetite, establishing residual risk based on scores.
Classify vendors according to their access to systems, networks, and sensitive information, assessing risks for individual vendors based on their level of access and the sensitivity of the data they handle.
Query vendors based on their responses, identify potential gaps or observations, and communicate findings to stakeholders in a structured format, including risk descriptions, root causes, business impacts, compensating controls, and suggested remediation plans.
Prepare and update Standard Operating Procedures for the Vendor Risk assessment process.
Organize and lead internal weekly action review calls to track the status of ongoing assessments.
Utilize knowledge of frameworks like CIS, NIST-CSF or ISO and understand compliance requirements pertaining to data privacy, such as GDPR, CCPA, etc.
Maintain, track, and follow up on the status of assessments, publishing a weekly tracker to the client.
Full training will be provided for this role.
This position is client-facing, so a strong client presence and excellent communication skills are essential.
Be highly organized and a self-starter, requiring minimal supervision.
Be able to learn software intuitively and enhance processes to take advantage of automation.
Qualifications and Skillset:
Bachelor’s degree in a relevant field or equivalent work experience.
Previous experience in conducting risk assessments is a plus.
Knowledge of risk management frameworks, such as CIS, NIST-CSF or ISO.
Understanding of compliance requirements related to IT audit, data privacy, including GDPR and CCPA.
Strong organizational and communication skills.
Ability to work independently and collaboratively.
Excellent client-facing skills and a professional demeanor.
If you are a self-motivated individual with a passion for risk analysis and information security, and you want to join a dynamic team that is dedicated to ensuring the security of our clients’ sensitive data, we encourage you to apply.
How to Apply:
Interested candidates are invited to submit their resume and cover letter to delliot@maclear-grc.com with the subject line “Risk Analyst Application – [Your Name].” Please clearly indicate your current and expected CTC together with availability to start within 30 days in your cover letter.
Closing Date: October 20, 2023