GRC Lead

1 day ago


Anand, Gujarat, India YASH Technologies Full time

Job Description:

  • We are looking for a senior cybersecurity GRC (Governance, Risk, and Compliance) professional.
  • Strong background in GRC frameworks such as NIST CSF, ISO 27001, and similar standards.
  • Hands on experience with risk management processes, security documentation writing, security assessments.
  • Candidates will work closely with different teams within the cybersecurity practice, COE's, business teams, customer cybersecurity teams
  • Candidate will analyze the cybersecurity risks associated with the implementation of security solutions, secure processes and computing environments changes.
  • Candidates will collaborate with other cybersecurity teams to help clients prioritize and implementing risk mitigating controls and solutions.

Job Responsibilities:

1. Governance, Risk, and Compliance (GRC):

  • Lead and execute security assessments against recognized frameworks like NIST CSF, ISO 27001, SOC 2, and others.
  • Develop, implement, and manage GRC initiatives for customers.
  • Perform gap assessments and provide recommendations for compliance and risk mitigation.
  • Drive development and maintenance of risk management processes and tools.

2. Security Documentation and Policy Development:

  • Draft, review, and refine security policies, procedures, and technical documentation.
  • Develop security documentation such as risk assessment reports, compliance roadmaps, and certification support materials.
  • Ensure all documentation aligns with industry best practices and regulatory requirements.

3. Security Assessments:

  • Conduct in-depth security assessments, including readiness assessments for certifications (e.g., ISO 27001 certification audits, NIST CSF Maturity assessments).
  • Evaluate the effectiveness of existing security controls and provide actionable recommendations for improvement.
  • Facilitate security control mapping exercises between frameworks (e.g., ISO 27001, NIST CSF, PCI-DSS, HIPAA, NIS2, DORA etc.).

4. Collaboration and Stakeholder Management:

  • Work closely with customer security teams to understand their environment, challenges, and objectives.
  • Provide technical and strategic advisory to customers regarding cybersecurity best practices.
  • Act as the primary point of contact for GRC-related initiatives, ensuring clear communication and alignment.

5. Communication and Reporting:

  • Create detailed reports and presentations tailored for both technical teams and leadership audiences.
  • Communicate technical concepts effectively to non-technical stakeholders.

6. Training and Awareness:

  • Support security awareness, phishing and training initiatives for customers to enhance their understanding of GRC practices.
  • Mentor team members and provide guidance on GRC activities.

7. Required Qualifications and Skills:

  • Experience: 10–12 years of experience in cybersecurity GRC roles, including hands-on exposure to frameworks like ISO 27001, NIST CSF, SOC 2, and others.
  • Documentation Expertise: Proven ability to create clear, concise, and technically accurate security policies, procedures, and assessments.
  • Assessment Skills: Experience conducting security assessments, gap analysis, and control mapping exercises across multiple frameworks.

Communication:

  • Excellent written and verbal communication skills; ability to engage with both technical and non-technical stakeholders.

Framework Knowledge:

  • In-depth understanding of governance, risk management, and compliance frameworks and their implementation.

Certifications:

  • Preferred certifications include ISO 27001 Lead Auditor/Implementer, CISSP, CISA, CISM, CRISC, or other relevant certifications. (Mandatory at least 1)

Preferred experience:

  • Experience working with global customers and understanding region-specific regulations (e.g., GDPR, DORA, CCPA).
  • Exposure to privacy frameworks, PIAs, privacy objectives.
  • Familiarity with cloud security governance frameworks (e.g. CCA-CCM etc.) for AWS . Azure etc.
  • Experience in third part risk management TPRM

Soft Skills:

  • Strong stakeholder management and collaboration abilities.
  • Ability to work independently and lead GRC initiatives in complex environments.
  • Analytical mindset and problem-solving skills.


  • Anand, Gujarat, India beBeeGovernance Full time ₹ 80,00,000 - ₹ 1,20,00,000

    SAP GRC SpecialistWe are seeking an experienced Senior SAP GRC professional to drive the implementation, configuration, and support of SAP GRC solutions.Key Responsibilities:Lead the design, configuration, and implementation of SAP GRC Access Control (AC), SAP GRC Risk Management (RM), SAP GRC Audit Management (AM), and other relevant modules.Manage...

  • GRC Specialist

    1 day ago


    Anand, Gujarat, India beBeeCybersecurity Full time ₹ 15,00,000 - ₹ 25,00,000

    Job Title: Governance ExpertWe are seeking a highly skilled security professional to drive business resilience and compliance initiatives in our Cybersecurity & Advisory Services team.Key Responsibilities:Lead enterprise-wide security governance frameworks, including risk assessments and implementation.Develop and maintain strategic roadmaps, policies...


  • Anand, Gujarat, India beBeeGrc Full time ₹ 60,00,000 - ₹ 1,20,00,000

    Join Our Governance, Risk and Compliance TeamWe are looking for talented professionals to join our Governance, Risk and Compliance (GRC) team. This is an exciting opportunity to work with ServiceNow GRC modules and contribute to strategic, operational and technical GRC initiatives across the organization.About the RoleThis role involves leading and managing...


  • Anand, Gujarat, India beBeeGovernance Full time ₹ 1,50,00,000 - ₹ 2,20,00,000

    Job Title: Enterprise Risk Governance Specialist">We are seeking an experienced cybersecurity professional to spearhead our Governance, Risk, and Compliance (GRC) initiatives.The ideal candidate will have a strong background in GRC frameworks such as NIST CSF, ISO 27001, and similar standards.Experience with risk management processes, security documentation...


  • Anand, Gujarat, India beBeeBusiness Full time ₹ 7,50,000 - ₹ 15,00,000

    Job OpportunityWe are seeking ambitious individuals to join us as independent Business Development Specialists.This is a flexible, remote opportunity with unlimited earning potential by helping us grow our client base.Identify and engage clients across various industriesEstablish NAZZTEC as a vendor with new organizationsP present NAZZTECs services...


  • Anand, Gujarat, India beBeeitgcp Full time ₹ 1,50,00,000 - ₹ 2,00,00,000

    IT General Controls Professional We are seeking a skilled IT General Controls professional to join our team. The successful candidate will have expertise in ITGC, Test of Design (TOD), and Test of Effectiveness (TOE). About the Role: This role is responsible for performing design and operating effectiveness testing of IT General Controls.The ideal candidate...


  • Anand, Gujarat, India beBeeGoverance Full time ₹ 1,20,00,000 - ₹ 2,00,00,000

    As a seasoned IT Governance professional, you will lead the organization's compliance program. Your key responsibilities include ensuring IT activities and processes meet defined requirements, policies, and regulations.Key ResponsibilitiesImplement and manage a robust IT Governance frameworkMaintain a deep understanding of commonly used governance...


  • Anand, Gujarat, India beBeeInformationSecurity Full time ₹ 15,00,000 - ₹ 20,00,000

    Job Title: Information Security ManagerExperience: 2+ Years RequiredLocation: Mumbai (On-site)Employment Type: Full-timeJob Description:We are seeking a highly skilled and motivated information security manager with over 2 years of experience in implementing and maintaining robust information security management systems (ISMS) based on ISO 27001 standards....


  • Anand, Gujarat, India beBeeSolutions Full time ₹ 18,00,000 - ₹ 25,00,000

    Enterprise Solutions Architect: Drive Business Change with SAP ExpertiseAs a seasoned Enterprise Solutions Architect, you will spearhead analysis and design activities to deliver SAP solutions for IT projects. You will work closely with the SAP Domain Lead to manage demand and solution delivery to time, quality, and scope.You will provide expert advice and...


  • Anand, Gujarat, India beBeeArchitecture Full time ₹ 1,50,00,000 - ₹ 2,50,00,000

    Job DescriptionThe FI/CO Module Lead plays a vital role in shaping the organization's SAP IT landscape, ensuring alignment with business requirements of the Finance Department.This expert in SAP (Finance & Controlling Processes) sets and manages the organization's SAP IT infrastructure, driving business design and solution architecture for the Finance...