Governance, Risk

1 day ago

Race Course, India Cubical Operations LLP Full time

Job Title: GRC Consultant / Sr. Consultant

Location: Coimbatore, Tamil Nadu

Experience: Minimum 2 years

Employment Type: Full-time

About the Role:

We are seeking experienced Governance, Risk & Compliance (GRC) Consultants to join our dynamic team in Coimbatore. You will play a critical role in helping our clients design, implement, and enhance their GRC frameworks, processes, and tools. If you have hands-on experience in GRC platforms (e.G., RSA Archer, MetricStream, ServiceNow GRC, etc.), compliance frameworks (ISO 27001, SOC 2, NIST, etc.), and a strong understanding of enterprise risk, this role is for you.

Responsibilities:

For GRC Consultant (2+ years):

  • Assist in implementing and configuring GRC platforms like RSA Archer, ServiceNow GRC, or MetricStream.
  • Work with client teams to gather requirements, document processes, and support GRC tool integration.
  • Support risk assessments, control testing, and compliance reporting.
  • Collaborate with internal and external stakeholders to ensure GRC policies and procedures are effectively followed.
  • Assist in audits, documentation, and evidence gathering.
  • Maintain up-to-date knowledge of regulations and compliance standards (e.G., ISO 27001, NIST, GDPR, SOC 2).

For Sr. GRC Consultant (4+ years or proven advanced experience):

  • Lead end-to-end GRC implementations and manage client engagements independently.
  • Customize and optimize GRC tools based on client-specific requirements.
  • Conduct risk and control assessments, gap analysis, and maturity assessments.
  • Provide guidance on regulatory requirements and industry best practices.
  • Mentor junior consultants and act as a project point of contact.
  • Support pre-sales, proposal creation, and solutioning for prospective clients.

Key Skills & Qualifications:

  • Bachelor’s or master’s degree in information security, Computer Science, or related field.
  • 2–6 years of experience in GRC, InfoSec, or Risk Management.
  • Strong knowledge of at least one GRC platform (RSA Archer, MetricStream, ServiceNow GRC, etc.).
  • Familiarity with regulatory and compliance frameworks: ISO 27001, NIST, HIPAA, SOC 2, PCI-DSS, etc.
  • Good communication, documentation, and client-handling skills.
  • Relevant certifications (preferred):
  • ISO 27001 Lead Implementer / Auditor
  • CISA / CISM / CRISC
  • RSA Archer Certified Professional or similar