JPC-232626 - Governance, Risk, Compliance SME
Job Posted: May 14, 2024 | Total views: 1

Job Description:

• Job Description

  Job Overview

  The GRC SME role is to ensure that customer is in full compliance with the relevant technology policies, standards, and regulatory requirements. The role is required to manage technology risks and cybersecurity effectively and to ensure that consistent risk management framework and practices are applied across the organization

  Key Resonsiblities

  Assist the CISO to deliver strategic technology risk and cybersecurity transformation activities. Effective management of all technology risk and cybersecurity framework including technology policies and standards based on the customer\'s risk appetite. Timely update on all material technology risk and cybersecurity topics including a set of risk indicators to the relevant risk committees and forums. Ensure that all forms of requests are responded in time including audit, local regulatory, compliance, DR, BCP technology components, and security needs. Ensure that risks identified are addressed within an appropriate timeframe. Ensure that all necessary legal and regulatory controls (e.g., SEBI, and RBI) are in place from initial migration through service provisioning Act as the single point of contact in responding to enquiries around technology risk and cybersecurity from senior management and regulatory including inte al and exte al audits. Responsible for evaluating and reporting of regular risk assessment activities covering compliance status and incident metrics Analyze root cause of major incidents together with other IT teams to avoid the same incidents being occurred. Lead the customer\'s technology risk and cybersecurity acceptance process whenever necessary and follow-up risk mitigation / prevention plans Coordinate with other IT teams to address control weaknesses, including design and implement new controls to address known issues Conduct trainings to improve awareness of the customer\'s control requirements and industry good practices

  Qualifications and What to look for

  Minimum of 6 yrs\' experience in technology risk, cybersecurity, or IT audit. Professional certifications such as CISA, CISM, CISSP, CRISC, CGEIT, and CDPSE. For Sr. Resources 10yrs exprience is required Solid understanding of regulatory requirements (e.g., SEBI) and industry standards (e.g., ISO 27001 & TPRM). Experience in designing and implementing new controls to mitigate identified risks Excellent communication and interpersonal skills including presentations and writing risk papers, with the ability to collaborate effectively with stakeholders at all levels. Analytical mindset and problem-solving abilities Ability to work in a fast-moving high-pressure environment and balancing multiple work streams. Experience in financial/security services or regulated environments is preferred. Previous experience in cloud security is an advantage

  Location / Duration / Timings

  Mumbai / 2 yrs / Normal working hours in genarl with ocassional stretch that will be compensated, Laptop to be carried as BYOD

  This job description outlines the key responsibilities and qualifications for the GRC Senior Resource role, but additional duties may be assigned as needed to support the organization’s GRC objectives.

About Company :
Purview is a leading Digital Cloud & Data Engineering company headquartered in Edinburgh, United Kingdom having a presence in 14 countries India (Hyderabad, Bangalore, Chennai and Pune), Poland, Germany, Finland, Netherlands, Ireland, USA, UAE, Oman, Singapore, Hong Kong, Malaysia and Australia.

We have a strong presence in UK, Europe and APEC, providing services to Captive Clients (HSBC, NatWest, Northern Trust, IDFC First Bank, Nordia Bank etc) in fully managed solutions and co-managed capacity models. Also, we support various top IT tier 1 organisations (Capgemini, Deloitte, Wipro, Virtusa, L&T, CoForge, TechM and more) to deliver solutions and workforce/resources.

Company Info: