Security GRC 2LoD

2 days ago

bangalore district, India Soffit Infrastructure Services (P) Ltd Full time

Job Overview :

The Security GRC (Governance, Risk, and Compliance) 2nd Line of Defense (2LoD ) role is crucial in maintaining and enhancing the organization’s security posture by effectively managing risks, ensuring compliance with applicable regulations, and supporting the overall governance framework. The role involves monitoring risk remediation efforts, providing expert guidance, and supporting the first line of defense (1LoD) in achieving security objectives.

Key Responsibilities :

● Risk Management:

- Monitor risk remediation activities exceeding the risk appetite.

- Develop and implement risk mitigation strategies and action plans.

- Report to boards and working groups on a regular basis, providing advice and resolving conflicting goals

● Compliance & Assurance Management:

- Stay abreast of relevant laws, regulations, and industry standards affecting the organization. - Ensure compliance with regulatory requirements.

- Monitor control implementation & effectiveness. Track control attestations and exceptions Evaluating the implementation and effectiveness of a control.

- Participate in security incident investigations, documenting findings, and recommending corrective actions.

● Metrics and reporting:

- Support Int’l GRC management and entity management reporting needs.

- Analyze security metrics data to identify trends, patterns, and anomalies that may indicate areas of concern or opportunities for improvement.

● Resilience

- Report to management on overall Resilience status as measured against risk appetite/tolerance.

● Security Outsourcing

- Coordinate with 1LOD to assess/monitor SLA performance for outsourced security services, and report back on root cause for non compliance.

● Other responsibilities:

- Maintain runbooks/SOPs for 2LOD support .

- Actively collaborate with 1LOD to streamline processes.

- Participate in team meetings and other project support meetings actively.

- Identify and recommend opportunities to improve current processes.

- Maintain strict compliance with CB IT and Security policies and procedures

Qualifications :

● Bachelor’s degree in Computer Science or a related field.

● Alternatively, candidates with a minimum of 5-10 years of relevant experience in IT and Security Program Management , particularly with a focus on managing enterprise-scale projects and remote personnel, may be considered. Proficiency in project management methodologies , information security best practices , and relevant technical skills is essential. PMP or similar certifications are a plus.

● Other Experience with program lifecycles, scheduling, budgeting, risk management, and conflict resolution techniques.

● 6+ years of experience in Project Management, Program Management or a similar field.

● 3+ years of experience supporting security engineering, regulatory compliance, risk management, audit, or other applicable programs/projects.

● Self-motivated and able to work with minimal supervision across time zones and geographies

  • Security GRC 2LoD

    2 weeks ago

    Bangalore, India Soffit Infrastructure Services (P) Ltd Full time

    Job Overview : The Security GRC (Governance, Risk, and Compliance) 2nd Line of Defense (2LoD ) role is crucial in maintaining and enhancing the organization’s security posture by effectively managing risks, ensuring compliance with applicable regulations, and supporting the overall governance framework. The role involves monitoring risk remediation...

  • Security GRC 2LoD

    1 week ago

    bangalore, India Soffit Infrastructure Services (P) Ltd Full time

    Job Overview:The Security GRC (Governance, Risk, and Compliance) 2nd Line of Defense (2LoD) role is crucial in maintaining and enhancing the organization’s security posture by effectively managing risks, ensuring compliance with applicable regulations, and supporting the overall governance framework. The role involves monitoring risk remediation efforts,...

  • Security grc 2lod

    4 days ago

    Bangalore, India Soffit Infrastructure Services Full time

    Job Overview: The Security GRC (Governance, Risk, and Compliance) 2nd Line of Defense (2 Lo D) role is crucial in maintaining and enhancing the organization’s security posture by effectively managing risks, ensuring compliance with applicable regulations, and supporting the overall governance framework. The role involves monitoring risk remediation...

  • SAP Security

    4 days ago

    bangalore, India Ignisov Consulting Services Full time

    Hands-on experience in Implement and manage SAP Security and GRC solutions to ensure compliance and risk mitigation.Conduct user access reviews, segregation of duties (SoD) analysis, and risk assessments.Configure and support SAP GRC Access Control, Process Control, and Risk Management modules.Develop and maintain security roles, authorizations, and user...

  • GRC/IRM Cyber Security Specialist

    2 days ago

    hyderabad district, India DigitalXForce Full time

    Team XForce and DigitalXForce is looking to expand our GRC/IRM Cyber Security Specialist team in Hyderabad, India   Share your resume at HR@Cyberxforce.com Job Summary The GRC/IRM Cyber Security Specialist role is a customer facing domain expert, that drives innovative business solutions with our customers, by applying technical and business skills. The...

  • Senior Consultant

    2 days ago

    bangalore district, India Crossbow Cybersecurity Full time

    We’re excited to announce that Crossbow is growing, and we’re looking for passionate professionals to join our team! Open Role(s): Senior Consultant - GRC Location: Bangalore Experience Required: 5–8 years experience Job Description:Lead and execute  ISO 27001 implementation and audit projects , including risk assessments, gap analysis, and...

  • Senior SAP GRC Security Consultant

    2 weeks ago

    Delhi, Bengaluru / Bangalore, Chennai, India beBeeGrc Full time ₹ 15,00,000 - ₹ 25,00,000

    Job Opportunity: Experienced SAP GRC and Security Professional We are seeking a highly skilled and experienced SAP GRC and security professional to join our organization. As a key member of our team, you will be responsible for implementing and managing SAP GRC solutions, as well as providing technical guidance and support to our stakeholders. Key...

  • Cybersecurity- Agentic AI Security

    2 days ago

    bangalore district, India CareerXperts Consulting Full time

    Cyber Agentic AI Security About the Role We are seeking a dynamic Cybersecurity & AI Risk Management Consultant to join our growing team. This role offers the opportunity to work with senior executives across diverse industries, developing tailored cybersecurity and AI risk management frameworks while delivering high-value consulting services. Key...

  • Senior Consultant

    2 weeks ago

    Bangalore, India Crossbow Cybersecurity Full time

    We’re excited to announce that Crossbow is growing, and we’re looking for passionate professionals to join our team! Open Role(s): Senior Consultant - GRC Location: Bangalore Experience Required: 5–8 years experience Job Description: Lead and execute  ISO 27001 implementation and audit projects , including risk assessments, gap...

  • Senior Consultant

    1 week ago

    bangalore, India Crossbow Cybersecurity Full time

    We’re excited to announce that Crossbow is growing, and we’re looking for passionate professionals to join our team!Open Role(s): Senior Consultant - GRCLocation: BangaloreExperience Required: 5–8 years experienceJob Description: Lead and execute ISO 27001 implementation and audit projects, including risk assessments, gap analysis, and...