Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 1K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Employer? Claim Account for FREE

Goldman Sachs

Compare

3.6

based on 1.2k Reviews

361 Goldman Sachs Jobs

Transaction Banking - Associate - Security Engineering

Goldman Sachs

3.6

based on 1.2k Reviews

4-9 years

Bangalore / Bengaluru

1 vacancy

Transaction Banking - Associate - Security Engineering

Goldman Sachs

posted 1mon ago

Job Role Insights

Flexible timing

Key skills for the job

Data Analysis Data Analytics Investment Banking Social Work Consulting HTML

+ 4 more

Job Description

Transaction Banking (TxB) , a business unit within IBD, aims to provide comprehensive cash management solutions for corporations. Transaction Banking combines the strength and heritage of a 153-year-old financial institution with the agility and entrepreneurial spirit of a tech start-up. Our goal is to provide the best client experience. Through the use of modern technologies centered on data and analytics, we provide customers with powerful tools that are grounded in value, transparency and simplicity to improve cash flow management efficiency.

THE TEAM

The TxB Engineering Risk (Technology Risk) function is an information security group embedded within TxB responsible for the oversight of Information Security and Cybersecurity risks across the business and technology, and supplements the firm s Technology Risk programs to meet the additional unique needs of the business. Our mission is to balance risk mitigation with a client-centric approach necessary to implement our digital strategy. The TxB Engineering Risk group currently has a presence in New York, Dallas, Bangalore and Tokyo, and is responsible for the following services:

Application Security & Risk Advisory - Provides technical design consultancy services, conducts security architecture reviews, and manages manual code reviews and penetration testing activities. Assesses and manages the portfolio of information security and cybersecurity risks for the business.
Assurance, Risk & Governance - Ensures that our risk posture remains in a managed state and helps meet the different information security, privacy, regulatory, audit, and firm-wide technology risk commitments. Supports client/partner due diligence activities, audit engagements and regulatory inquires.
Engineering - Responsible for designing and developing applications and services that support our Information Security & Cybersecurity program, including preventative and detective controls, control assurance and monitoring, and our business intelligence platform.

HOW YOU WILL FULFILL YOUR POTENTIAL

As part of our global team you will ensure that the risk posture of TxB remains in a managed state and helps meet the different information security, privacy, regulatory, audit, and firm-wide technology risk commitments. You will work with a broad range of engineers and risk partners across the firm to implement and adopt security solutions and execute on various programs/tasks, including the risk control self-assessment (RCSA), quarterly control assessments, managing control incidents and overrides, privacy, and risk and metric reporting. You will also engage regularly with the firm s auditors (internal and external), and assist with client/partner due diligence activities and regulatory inquires.

We are looking for someone with lots of energy that has excellent communication and organization skills, the ability to manage complex projects, enjoys engineering challenges, and is able to operate in a highly fluid, rapidly changing environment. If that s you, we would like to hear from you!

RESPONSIBILITIES

Review new application architectures to influence the design and implementation to meet control requirements
Facilitate the timely, complete and accurate execution of concurrent internal and external audit engagements by coordinating and tracking audit requests, gathering relevant evidence from authoritative sources, and reviewing evidence to confirm it meets the request s requirements prior to submission
Monitor ongoing adherence to TxB and firmwide control programs, including periodic reporting and metrics, provide early warning to responsible stakeholders and drive completion of required actions
Evaluate effectiveness of technology controls in support of regular controls self-assessment requirements
Assess internal controls posture and evidence ongoing compliance with externally-defined technical requirements for payment processing, data privacy, etc
Document key processes, transaction flow and controls across the business for internal and external use
Design, socialize and track the implementation of remedial actions identified during audits and reviews
Assist in fact-finding, data analysis, and supporting documentation collation in response to findings
Respond to client/partnership due diligence inquires, as we'll as execute due diligence on vendors/partners
Seek opportunities to elevate the risk management function by identifying, implementing, and refining meaningful and actionable stakeholder content
Manage multiple tasks and use sound judgment when prioritizing
Collaborate with global cross functional teams
Establish trusted partnerships with peers, functional leads, and executive level stakeholders
Exceptional analytical skills and able to apply knowledge and experience in decision-making to arrive at creative and commercial solutions
Must be independent and comfortable in a fast paced, ambiguous and often multi-directional work environment

BASIC QUALIFICATIONS

Minimum 4 years of relevant professional experience in one or more of the following areas: information security, technology governance, operational risk, technology or cybersecurity audit, regulatory compliance, third-party risk management
B.S. or higher in Computer Science, Cybersecurity or Information Security (or equivalent work experience)
Strong program and project management skills
Strong understanding of the technology implications of regulations
Ability to analyze internal and external processes and integration to understand risks and identify controls
Ability to assess and evaluate corporate risk tolerance and translate into goals and new processes including software engineering, IT teams, and other relevant stakeholders
Understanding of relevant audit and control standards and the ability to drive and maintain compliance initiatives across the organization
Team oriented; strong interpersonal and communication skills (verbal and written)
Energetic, self-directed, and self-motivated

PREFERRED QUALIFICATIONS

Previous Big 4 and/or consulting experience conducting audits (eg, SOX, SOC 1, SOC 2) or control assessments
Experience or trainings in related disciplines (eg computer security, network security, cloud security)
Experience in Financial Services or Fintech
Strong communication with the ability to tailor content to the audience
Experience collaborating with a team of security experts in a diverse set of security topics including, but not limited to, security architecture, financial controls and regulatory compliance, identity and access management, application security, penetration testing, network security, security monitoring, and building secure systems
Experience manipulating data and working with large sets
Ability to gain consensus among diverse groups and drive initiatives to completion effectively

Employment Type: Full Time, Permanent

Read full job description

Prepare for Security Engineer roles with real interview advice