Security GRC 2LoD

15 hours ago

bangalore, India Soffit Infrastructure Services (P) Ltd Full time

Job Overview:

The Security GRC (Governance, Risk, and Compliance) 2nd Line of Defense (2LoD) role is crucial in maintaining and enhancing the organization’s security posture by effectively managing risks, ensuring compliance with applicable regulations, and supporting the overall governance framework. The role involves monitoring risk remediation efforts, providing expert guidance, and supporting the first line of defense (1LoD) in achieving security objectives.


Key Responsibilities:

● Risk Management:

- Monitor risk remediation activities exceeding the risk appetite.

- Develop and implement risk mitigation strategies and action plans.

- Report to boards and working groups on a regular basis, providing advice and resolving conflicting goals

● Compliance & Assurance Management:

- Stay abreast of relevant laws, regulations, and industry standards affecting the organization. - Ensure compliance with regulatory requirements.

- Monitor control implementation & effectiveness. Track control attestations and exceptions Evaluating the implementation and effectiveness of a control.

- Participate in security incident investigations, documenting findings, and recommending corrective actions.

● Metrics and reporting:

- Support Int’l GRC management and entity management reporting needs.

- Analyze security metrics data to identify trends, patterns, and anomalies that may indicate areas of concern or opportunities for improvement.

● Resilience

- Report to management on overall Resilience status as measured against risk appetite/tolerance.

● Security Outsourcing

- Coordinate with 1LOD to assess/monitor SLA performance for outsourced security services, and report back on root cause for non compliance.

● Other responsibilities:

- Maintain runbooks/SOPs for 2LOD support.

- Actively collaborate with 1LOD to streamline processes.

- Participate in team meetings and other project support meetings actively.

- Identify and recommend opportunities to improve current processes.

- Maintain strict compliance with CB IT and Security policies and procedures


Qualifications:

● Bachelor’s degree in Computer Science or a related field.

● Alternatively, candidates with a minimum of 5-10 years of relevant experience in IT and Security Program Management, particularly with a focus on managing enterprise-scale projects and remote personnel, may be considered. Proficiency in project management methodologies, information security best practices, and relevant technical skills is essential. PMP or similar certifications are a plus.

● Other Experience with program lifecycles, scheduling, budgeting, risk management, and conflict resolution techniques.

● 6+ years of experience in Project Management, Program Management or a similar field.

● 3+ years of experience supporting security engineering, regulatory compliance, risk management, audit, or other applicable programs/projects.

● Self-motivated and able to work with minimal supervision across time zones and geographies

  • Security GRC 2LoD

    1 day ago

    Bangalore, India Soffit Infrastructure Services (P) Ltd Full time

    Job Overview : The Security GRC (Governance, Risk, and Compliance) 2nd Line of Defense (2LoD ) role is crucial in maintaining and enhancing the organization’s security posture by effectively managing risks, ensuring compliance with applicable regulations, and supporting the overall governance framework. The role involves monitoring risk remediation...

  • Senior SAP GRC Security Consultant

    2 days ago

    Delhi, Bengaluru / Bangalore, Chennai, India beBeeGrc Full time ₹ 15,00,000 - ₹ 25,00,000

    Job Opportunity: Experienced SAP GRC and Security Professional We are seeking a highly skilled and experienced SAP GRC and security professional to join our organization. As a key member of our team, you will be responsible for implementing and managing SAP GRC solutions, as well as providing technical guidance and support to our stakeholders. Key...

  • Senior Consultant

    1 day ago

    Bangalore, India Crossbow Cybersecurity Full time

    We’re excited to announce that Crossbow is growing, and we’re looking for passionate professionals to join our team! Open Role(s): Senior Consultant - GRC Location: Bangalore Experience Required: 5–8 years experience Job Description: Lead and execute  ISO 27001 implementation and audit projects , including risk assessments, gap...

  • Senior Consultant

    15 hours ago

    bangalore, India Crossbow Cybersecurity Full time

    We’re excited to announce that Crossbow is growing, and we’re looking for passionate professionals to join our team!Open Role(s): Senior Consultant - GRCLocation: BangaloreExperience Required: 5–8 years experienceJob Description: Lead and execute ISO 27001 implementation and audit projects, including risk assessments, gap analysis, and...

  • Technical Lead

    1 day ago

    Bangalore, India AvanteNow Full time

    Job Title - Technical Lead / Architect – ServiceNow GRC / IRM Job Type - Remote Experience - 7+year's Job Description - We are seeking a technically strong and experienced ServiceNow GRC / IRM Technical Lead or Architect to lead the design, implementation, and optimization of risk, compliance, and audit processes using the ServiceNow...

  • Technical Lead

    7 hours ago

    Bangalore, India AvanteNow Full time

    Job Title - Technical Lead / Architect – ServiceNow GRC / IRM Job Type - Remote Experience - 7+year's Job Description - We are seeking a technically strong and experienced ServiceNow GRC / IRM Technical Lead or Architect to lead the design, implementation, and optimization of risk, compliance, and audit processes using the ServiceNow...

  • ServiceNow GRC Professional

    4 days ago

    Mumbai, Bengaluru / Bangalore, Pune, India beBeeGRC Full time ₹ 1,04,000 - ₹ 13,08,780

    Job OverviewThis role is responsible for delivering end-to-end ServiceNow GRC solutions in an enterprise production environment. The ideal candidate will have hands-on experience with the ServiceNow platform, including solution configuration and customization for all components of the ServiceNow GRC product.">Key ResponsibilitiesDesign, develop, and deploy...

  • IT GRC

    1 day ago

    Bangalore, India Talent500 Full time

    Job Profile: Job Title: IT GRC Manager Corporate Title: AVP Experience: 10+ years Location: Bangalore No. of Positions: 1 Job Responsibilities: Responsible for managing Cyber Security Risk, Compliance, and Assurance activities. Drive the global cyber security certifications as per MGS Management Strategy. Evaluating control...

  • IT GRC – AVP

    15 hours ago

    bangalore, India Talent500 Full time

    Job Profile:Job Title: IT GRC Manager Corporate Title: AVPExperience: 10+ yearsLocation: BangaloreNo. of Positions: 1Job Responsibilities:Responsible for managing Cyber Security Risk, Compliance, and Assurance activities.Drive the global cyber security certifications as per MGS Management Strategy. Evaluating control effectiveness and review evidence of...

  • Servicenow GRC Consultant

    1 week ago

    Bangalore Rural, Bengaluru, India Anlage Infotech Full time US$ 90,000 - US$ 1,20,000 per year

    Key Responsibilities:• Implement, configure, and maintain ServiceNow GRC modules, including:Policy and Compliance ManagementRisk ManagementAudit ManagementVendor Risk Management• Work with stakeholders to gather and analyze business requirements and translate them intoServiceNow GRC configurations.• Design and implement custom workflows, business...