GRC Specialist

KRA:

• GRC Technical - Rule set keeper
• To ensure that all approved changes to risks, risk levels, mitigation and mitigation assignment are reflecting in GRC system
• To ensure correct transaction mapping in the rule set and record justification for exceptions
• To ensure that mitigation control defined by the risk owner is accurately recorded in GRC and assigned to the Control owner
• Emergency Access Management
• Periodic control processing (Daily, Weekly, Monthly, Quarterly, Yearly)
• Work with business teams to identify material risks and facilitate, provide support for risk mitigating initiatives. Provide support and challenge to the business in the operation of the risk management.
• Business Continuity Program Support.
• Impact assessment of risk elements through quantitative and qualitative risk measures.
• Prepare ERM reports with key risk indicators and risk mitigation commentary for the relevant risks and present reports to management
• Coordinate with technology team to ensure ongoing categorization of emerging and ongoing risks as it pertains to Information Security. Work with the businesses in the management of Information Security risk to help run the businesses more efficiently and to assure best market practices are employed by VIL.
• Collaborate with Internal Audit Team and Compliance Team to evaluate enterprise risk and compliance activities, and ensure that design and effectiveness testing results from audit are incorporated into risk information. Also, work with Internal Audit and Compliance Team in conducting project/audit specific risk assessments.
• Conducting regular training/ education to all the relevant employees on risk related matters.
• Driving various projects as assigned by the management

Skills, knowledge and Experience:

Knowledge of GRC , business process

Audit background is preferred.1 to 3 Years experience.

Candidates having Graduate ,B.E. , GRC Certification preferred