CyberSecurity GRC | 9 to 12 years | Pune & Hyderabad

Job Description

  • Able to strategize Risk Management and conduct risk assessments based on organization’s information security policies, frameworks, industry standards and regulations applicable to the company and its customers including, but not limited to GDPR, ISO 27001, ISO 27002, NIST, COBIT, SOC 2 and hands on experience in GRC tools.
  • Help organizations create their cyber strategy and develop the transformation roadmap
  • Conduct Cyber Maturity Assessment and prepare reports highlighting gaps in the client’s overall cybersecurity program
  • Manage the end-to-end implementation of Cybersecurity frameworks
  • Develop security standards, procedures, and controls to manage risks
  • Defining Policies & Procedures in line with the various Data Privacy & Protection Regulations; Understanding applicable regulations, guidelines, and industry best practices to manage risk and ensure compliance.
  • Develop SSPs, SOPs and other security documentation in order to secure systems
  • Respond to RFx of potential clients and lead client presentations and discussions on Governance, Risk & Compliance topics
  • Ensure compliance with required local laws, international regulations and standards relating to Information Security and Privacy
  • Have sound understanding of risk management concepts and should be able to articulate operational and technology risk and suggest effective remediation; Knowledge and experience working with Agile & DevOps; Client Management and Advisory experience

Primary Skills

  • Knowledge on at least any one of ISO 27K series, GDPR, NIST, COSO, COBIT, PCI DSS, HIPAA, SOC, etc.
  • Technically hands-on System Security, Network Security, Vulnerability & Threat Management, BCP/ DR

Secondary Skills

  • ISO LA, CISSP, CISA, CISM, PCI QSA/ISA Certifications
  • Knowledge on OWASP top 10 secure development practices



Posted on:

January 27, 2022

Experience level:


Contract type:




Business units: