GRC Consultant

Job Title: GRC Consultant / Sr. Consultant Location: Coimbatore, Tamil Nadu Experience: Minimum 2 years Employment Type: Full-time About the Role: We are seeking experienced Governance, Risk & Compliance (GRC) Consultants to join our dynamic team in Coimbatore. You will play a critical role in helping our clients design, implement, and enhance their GRC frameworks, processes, and tools. If you have hands-on experience in GRC platforms (e.g., RSA Archer, MetricStream, ServiceNow GRC, etc.), compliance frameworks (ISO 27001, SOC 2, NIST, etc.), and a strong understanding of enterprise risk, this role is for you. Responsibilities: For GRC Consultant (2+ years): - Assist in implementing and configuring GRC platforms like RSA Archer, ServiceNow GRC, or MetricStream. - Work with client teams to gather requirements, document processes, and support GRC tool integration. - Support risk assessments, control testing, and compliance reporting. - Collaborate with internal and external stakeholders to ensure GRC policies and procedures are effectively followed. - Assist in audits, documentation, and evidence gathering. - Maintain up-to-date knowledge of regulations and compliance standards (e.g., ISO 27001, NIST, GDPR, SOC 2). For Sr. GRC Consultant (4+ years or proven advanced experience): - Lead end-to-end GRC implementations and manage client engagements independently. - Customize and optimize GRC tools based on client-specific requirements. - Conduct risk and control assessments, gap analysis, and maturity assessments. - Provide guidance on regulatory requirements and industry best practices. - Mentor junior consultants and act as a project point of contact. - Support pre-sales, proposal creation, and solutioning for prospective clients. Key Skills & Qualifications: - Bachelor's or master's degree in information security, Computer Science, or related field. - 2-6 years of experience in GRC, InfoSec, or Risk Management. - Strong knowledge of at least one GRC platform (RSA Archer, MetricStream, ServiceNow GRC, etc.). - Familiarity with regulatory and compliance frameworks: ISO 27001, NIST, HIPAA, SOC 2, PCI-DSS, etc. - Good communication, documentation, and client-handling skills. - Relevant certifications (preferred): - ISO 27001 Lead Implementer / Auditor - CISA / CISM / CRISC - RSA Archer Certified Professional or similar