GRC Consultant

Mizuho Global Services Pvt Ltd (MGS) is a subsidiary company of Mizuho Bank, Ltd, which is one of the largest banks or so called 'Mega Banks' of Japan. MGS was established in the year 2020 as part of Mizuho's long-term strategy of creating a captive global processing centre for remotely handling banking and IT related operations of Mizuho Bank's domestic and overseas offices and Mizuho's group companies across the globe.

At Mizuho we are committed to a culture that is driven by ethical values and supports diversity in all its forms for its talent pool. Direction of MGS's development is paved by its three key pillars, which are Mutual Respect, Discipline and Transparency, which are set as the baseline of every process and operation carried out at MGS.

GRC Consultant (Governance Risk & Compliance) – Third Party Contract.

We are seeking a skilled and vigilant L2 for handling Governance Risk and Compliance for MGS. The Ideal candidate will ensure that an organization's operations and procedures meet government and industry compliance standards with a strong focus on ISO 27001 implementation and policy preparation.

Roles & Responsibilities:

1. Risk Management: Identify, assess, and manage risks related to information security, privacy, and regulatory compliance.

2. ISO 27001 Implementation: Lead the implementation and maintenance of ISO 27001 standards, including conducting internal audits and managing certification processes.

3. Policy Development: Develop, update, and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements.

4. Compliance Monitoring: Monitor and ensure adherence to industry regulations and standards, such as GDPR, NIST, and SOX.

5. Audits and Assessments: Conduct regular audits and risk assessments to identify gaps and recommend improvements.

6. Vendor Risk Management: Evaluate and manage third-party vendors to ensure they meet organizational security requirements.

7. Security Controls: Test and monitor the effectiveness of security controls and recommend enhancements.

8. Regulatory Research: Stay updated on regulatory changes and ensure the organization complies with new requirements.

Mandate Skills:-

• Good Verbal and Written communication skills.

• Good Team player.

• Possess Positive and learning attitude.

• Excellent problem-solving skills and attention to detail.

• Strong documentation skills (creation of dashboards for regular reporting)

Relevant certifications (e.g., CISA, CISM, ISO 27001) are a plus.

• Sense of Ownership, Priorities and Autonomous.

Good to have at least one certification (ISO 27001 LI, ISO27001 LA)

Knowledge of banking business and information technology practices and trends in banking sector

Ability to communicate effectively, both orally and in writing.

Qualifications:

Graduation/Post graduation in, Computers, Information Systems, Computer Science, or Information technology systems

Experience: 3+ years of work experience as GRC Consultant and relevant experience hands on of 3 years including Risk management, risk assessment, 2nd line defence in risk, control assessment, control review, control testing, ITGC Control, Gap Analysis, Creating and making policies And procedures, Information Security Officer - ISO 27001 certified, Corporate IT Governance, Risk & Compliance, auditing.

Address:

Mizuho Global Services India Pvt. Ltd,

11th Floor, Q2 Building Aurum Q Park, Gen 4/1,

Ttc, Thane Belapur Road, MIDC Industrial Area,

Ghansoli, Navi Mumbai- 400710.

Please Note : Candidates residing within 20 KMs will be preferred.

Shortlisted candidates will be invited for an interview F2F at office on 13th September, Saturday.