Grc Associate

**About Perfios**:

Perfios Software Solutions is India’s largest SaaS-based B2B fintech software company empowering 800+ FIs to take informed decisions in real-time. Headquartered in Bangalore, India Perfios specializes in real-time credit decisioning, analytics, onboarding automation, due diligence, monitoring and more. Perfios’ core data platform has been built to aggregate and analyze both structured and unstructured data and provide vertical solutions combining both consented and public data for the BFSI space catering to their stringent Scale Performance, Security and other SLA requirements.

**Acquisitions**
In line with Perfios’ efforts to strengthen its lending-focused product offerings, Perfios has recently acquired
- **Karza Technologies**
**. **currently one of India’s most prominent SaaS based RegTech start-ups. Perfios had earlier acquired
- **FintechLabs Technologies, **a Noida-based company which provides digital lending software as a service to companies.

**Key Metrics**
Perfios is servicing more than
- **800+ Financial Institutions **in making informed decisions,
- **offering 500+ APIs**, processing over
- **2 Million API calls** on an average in a month (growing month on month) and
- **automating 90% of the credit decisioning process.**

**Current Employees**
1200+

**Website**

**Roles and Responsibilities**:

- Provide independent, objective assessment to evaluate whether a client’s management systems comply with ISO Standards.
- While on audits; assess client controls, identify control weaknesses and areas for process improvements.
- Provide detailed assessment reports following each client audit.
- Report all audit findings to the clients’ management team and ensure that corrective action plans are implemented accordingly.
- Follow up on clients’ technical requests in a timely manner.
- Be responsible for diary management and administration duties associated with the role.

**Job Requirement**

**Skills and Expertise**:

- Ability to translate security concerns into business context and articulate to executives, while weighing business needs against security concerns in the decision-making process
- Attend customer Audits, Explain Perfios network security posture ( both Corporate IT and Business IT ) to Audit.
- Review RFP’s and respond to every requirement based on Perfios solution capabilities and fitment to project requirement.
- Ensure Audits are cleared from the regulations perspective
- Try to lower the levels of Non Compliance identified by the Customers by working with internal teams
- Ensure the highest levels of compliance are achieved with the current technology that are implemented ( focus on Lowest cost of compliance )
- Work with internal teams to ensure compliance to ISMS frameworks and Regulations applicable for Perfios are met in a timely manner
- Establish a governance process and drive compliance programs
- Help standardise compliance templates by influencing customers auditors
- Identify possibilities of automating audits
- Responsible for assessing information risk and facilitates remediation of identified vulnerabilities for IT security and IT risk across the enterprise
- Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios
- Evaluates the organization to ensure compliance with standards and relevance with industry security norms
- Research, analyse and identify potential vulnerabilities and security deficiencies in the company’s information systems
- Monitors performance of risk remediation tasks, changes related to risk mitigation and reports on findings.
- Plan and Prepare our network for periodic Audits by customers and regulatory bodies and ensure compliance to guideline
- Analyse results, deploy remediation for security audits and penetration testing, working with internal TechOps stakeholders and Cybersecurity