Position : GRC Lead Consultant
Location : Pune or Bangalore or Singapore
Job Type : Full Time, Perm
Travel : 30%
Rede Consulting is looking for a Governance Risk and Compliance (GRC) Lead who will manage the GRC unit of the organization.
What You Will Do
Define and implement risk management and risk assessment framework according to international standards like ISO and NIST
Define, review and update the information security policies and procedures on periodic basis
Research and Understand the applicable compliance and regulatory requirements to be met by the organization
Define compliance assessment framework based on all the regulatory and other international compliance to be met
Define KPIs and KRIs to measure, track and improve the overall security posture
Conduct risk assessments / compliance assessment as per the defined process, identify and report the gaps along with mitigation recommendations
Conduct gap / maturity assessment as per NIST / regulatory cybersecurity frameworks
Report the findings from the assessments and explain the same to the relevant stakeholders along with clear recommendations to mitigate the identified risks
Work with / guide the relevant stakeholders in mitigating identified risks
Track and report the status of the identified risks on a periodic basis
Conduct regular sessions on building awareness about the organization’s information security polices and best practices to be followed
Who You Are
A cybersecurity and technology enthusiast who is up to date with the latest developments in the world of technology, cybersecurity and risk management
Someone who can:
- Balance business needs, technology viability and security risks.
- Think big and take ownership of deliverables from ideation to execution
- Embrace chaos, uncertainty and volatility
-Work in a dynamic environment with a diverse set of stakeholders
What You Possess
Experience in Information Security Governance, Risk Assessment, creating customized Risk Assessment framework
Experience in conducting risk assessments of hybrid environments, mix of cloud and on-premise applications and systems
Experience in Business Continuity Management and Information Security Incident Management will be an added advantage
Experience with GRC automation tools will be an added advantage
Strong Written and Oral Communication skills
Experience of working in Agile development environment
Understanding of security risks associated with using AI, ML, NLP and blockchain technologies
An open, intuitive and curious mind to learn, unlearn and experiment
3-6+ years of experience in the relevant industry
Bachelor’s or master’s degree in business administration/commerce/engineering/science
ISO 27001 Lead Implementer certification is a must and other relevant certifications like CISA/CISM/CISSP will be an added advantage
Email your updated resume at [ info@rede-consulting.com ] . To know more about Rede Consulting and its services, visit our business page at www.rede-consulting.com
Comentarios