Principal GRC Security Specialist

3 days ago


Pune, Maharashtra, India Community Brands Software Development Solutions Full time ₹ 12,00,000 - ₹ 36,00,000 per year

Job Overview

Were looking for an experienced and strategic Principal GRC Security Analyst to help lead our Governance, Risk, and Compliance efforts. In this role, youll work cross-functionally to drive security initiatives, support compliance frameworks, and partner with both internal teams and external customers to ensure trust, transparency, and operational excellence.

About Us

When you join iCIMS, you join the team helping global companies transform business and the world through the power of talent. Our customers do amazing things: design rocket ships, create vaccines, deliver consumer goods globally, overnight, with a smile. As the Talent Cloud company, we empower these organizations to attract, engage, hire, and advance the right talent. Were passionate about helping companies build a diverse, winning workforce and about building our home team. We're dedicated to fostering an inclusive, purpose-driven, and innovative work environment where everyone belongs.

Responsibilities

  • Assist in identifying and tracking information security risks, assessing their impact, and monitoring the execution of mitigation plans in alignment with established security policies and controls.
  • Manage internal risk assessments.
  • Support Sales and Customer Success by responding to security questionnaires and speaking to technical controls
  • Track and report on GRC metrics, KPIs, and audit remediation activities
  • Collaborate with Product, Development, Engineering, and Legal to embed securitypractices company-wide
  • Assist in updating, maintaining and maturing security policies, awareness campaigns, and disaster recovery planningDevelop and define associated metrics to allow clear visibility into iCIMS governance, risk, and compliance status.
  • Provide leadership and act as key stakeholder of regulatory and compliance initiatives (e.g. ISO 27001, SOC 2, GDPR, Tx-RAMP, etc.). Participate in associated audits as necessary.
  • DevelopKey Performance Indicators (KPI) and Key Risk Indicators (KRI) toensure compliance-related controls are operating to an acceptable tolerance level.
  • Strong understanding of security tools to support the execution of Security Control Assessments and evaluate control effectiveness.
  • Lead security compliance efforts across ISO 27001, SOC 2, GDPR, and otherframeworks
  • Develop and define associated metrics to allow clear visibility into iCIMS governance, risk, and compliance status.
  • Provide strategic guidance and insights to strengthen and mature the Governance, Risk, and Compliance (GRC) program.

Qualifications

  • 5+ years in GRC, risk, or information security roles
  • Strong knowledge of frameworks like ISO 27001, NIST, SOC 2, GDPR, and risk assessment methodologies
  • Knowledge of risk management processes and frameworks (e.g., methods for assessing and mitigating risk).
  • Experience in SaaS environments and cloud platforms such as AWS or Azure
  • Excellent communication skills, including comfort engaging with customers, executives, and auditors
  • Demonstrated success driving compliance projects and risk management programs
  • A self-starter with the demonstrated ability to take initiative, who can proactively identify issues/opportunities and recommend actions
  • Demonstrated ability to advance and mature GRC programs through collaborationwith enterprise-level stakeholders.
  • Familiar with and able to apply generally accepted security methods, concepts and techniques, including an understanding of networks, operating systems, cloud operations and associated technologies and services.
  • Understanding of privacy standards, PII protection, and third-party risk management

Preferred

  • Prior experience with cloud-based security tools, technologies, and controls (e.g., Amazon AWS, Azure, Google Cloud).
  • CISSP, CISA, CRISC, CISM or similar security/GRC focused certifications.


  • Pune, Maharashtra, India Johnson Controls Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Position: SAP Security GRC DevOps LeadExperience: 7+ yearsJob Summary:The SAP Security GRC DevOps Lead will be responsible for leading the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security...


  • Pune, Maharashtra, India Johnson Controls Full time ₹ 5,00,000 - ₹ 15,00,000 per year

    Position: SAP Security GRC DevOps AnalystExperience: 3+ yearsJob Summary:The SAP Security GRC DevOps Analyst will be responsible for implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security practices...


  • Pune, Maharashtra, India YASH Technologies Full time

    We're Hiring: SAP Security GRC Consultant @ YASH Technologies Location: Pune Notice Period: Immediate / 30 Days PreferredAre you an experienced SAP Security professional ready to take on exciting challenges in a dynamic tech environment? Join YASH Technologies and help us secure and optimize our SAP landscape Key Responsibilities: Maintain & troubleshoot...


  • Pune, Maharashtra, India YASH Technologies Full time

    We're Hiring: SAP Security GRC Consultant @ YASH Technologies Location: Pune Notice Period: Immediate / 30 Days PreferredAre you an experienced SAP Security professional ready to take on exciting challenges in a dynamic tech environment? Join YASH Technologies and help us secure and optimize our SAP landscape Key Responsibilities: Maintain & troubleshoot...


  • Pune, Maharashtra, India YASH Technologies Full time

    We're Hiring: SAP Security GRC Consultant @ YASH Technologies Location: Pune Notice Period: Immediate / 30 Days Preferred Are you an experienced SAP Security professional ready to take on exciting challenges in a dynamic tech environment? Join YASH Technologies and help us secure and optimize our SAP landscape Key Responsibilities: Maintain &...


  • Pune, Maharashtra, India YASH Technologies Full time

    We're Hiring: SAP Security GRC Consultant @ YASH Technologies Location: Pune Notice Period: Immediate / 30 Days Preferred Are you an experienced SAP Security professional ready to take on exciting challenges in a dynamic tech environment? Join YASH Technologies and help us secure and optimize our SAP landscape


  • Pune, Maharashtra, India JumpCloud Full time US$ 90,000 - US$ 1,20,000 per year

    All roles at JumpCloud are Remote unless otherwise specified in the Job Description.About JumpCloudJumpCloud delivers a unified open directory platform that makes it easy to securely manage identities, devices, and access across your organization. With JumpCloud, IT teams and MSPs enable users to work securely from anywhere and manage their Windows, Apple,...

  • SAO GRC

    1 week ago


    Pune, Maharashtra, India Talent Worx Full time ₹ 1,04,000 - ₹ 1,30,878 per year

    We are looking for a seasoned SAO GRC (System Access and Optimisation Governance, Risk and Compliance) consultant with expertise in S4 HANA to join Talent Worx. In this role, you will be responsible for managing governance frameworks related to system access, ensuring compliance while enhancing operational efficiency in S4 HANA environments.Your primary...


  • Pune, Maharashtra, India KPMG Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Key Responsibilities:GRC Development & Configuration:Design and implement ServiceNow GRC solutions, including Policy and Compliance, Risk Management, Audit Management, and Vendor Risk Management modules.Configure and customize workflows, dashboards, and reports to meet organizational requirements.ServiceNow Workspace Development:Develop intuitive and...

  • SAP GRC Consultant

    3 weeks ago


    Pune, Maharashtra, India YASH Technologies Full time

    YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation. At YASH, were a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single...