L3 – Vulnerability Management, Risk and Compliance Lead

1 week ago

Mumbai, Maharashtra, India ITC Infotech Full time ₹ 12,00,000 - ₹ 36,00,000 per year

Hi, We have 4 open positions for the below role in Mumbai, Secondary location is Pune. Interested candidates can email their updated profiles to alongwith the following details: Current CTC, Expected CTC, Notice period, Preferred location: Mumbai / Pune

L3 – Vulnerability Management, Risk & Compliance Lead

Job Summary:

ITCI Cyber Security team is looking for the role which is accountable for leading the organization's end-to-end vulnerability lifecycle and aligning risk and compliance efforts with regulatory mandates such as RBI Master Directions and SEBI Cybersecurity Framework. The individual will ensure timely vulnerability detection, validation, remediation governance, and risk-based prioritization. The role also anchors all compliance readiness activities across cybersecurity, translating control gaps into actionable security initiatives while coordinating with internal and external audit functions.

Key Responsibilities:

  • Lead the overall vulnerability management lifecycle across infra and application assets (VM, risk scoring, remediation tracking).
  • Own end-to-end delivery of VM scans, validation cycles, and risk-based prioritization using tools like Tenable/Nessus.
  • Map vulnerabilities to business risk and generate executive-level dashboards with risk exposure summaries.
  • Define and maintain risk treatment plans per RBI and SEBI frameworks, coordinating with infra and app teams.
  • Conduct compliance checks, technical control validations, and support readiness for RBI/SEBI/ISO audits.
  • Perform monthly risk posture reviews, threat trend reporting, and mitigation progress evaluations.
  • Oversee gap assessments against RBI Master Direction, SEBI circulars, and DPDP data security provisions.
  • Provide expertise in documenting technical controls, ISMS artifacts, and audit trails for internal and external audits.
  • Engage with stakeholders to establish security exceptions, compensating controls, and policy deviation approvals.
  • Build and maintain GRC tools and risk registers with role-based access and automated updates.

Key Skills & Certifications:

  1. 10+ years in cyber risk management, vulnerability assessment, and compliance delivery.
  2. Strong experience with Tenable/Nessus, Qualys, and GRC tools.
  3. ISO 27001 Lead Auditor, CRISC, or CISA certified.
  4. In-depth knowledge of RBI Master Direction on IT Framework, SEBI Cybersecurity Guidelines.
  5. Strong skills in risk quantification, reporting, and policy enforcement.

  • L3 Vulnerability Management

    2 weeks ago

    Mumbai, Maharashtra, India Harita Techserv Full time ₹ 8,00,000 - ₹ 24,00,000 per year

    Key Responsibilities:• Lead the overall vulnerability management lifecycle across infra and application assets (VM, risk scoring, remediation tracking).• Own end-to-end delivery of VM scans, validation cycles, and risk-based prioritization using tools like Tenable/Nessus.• Map vulnerabilities to business risk and generate executive-level dashboards...

  • Lead / Sr. Lead, Vulnerability & Risk Management (169606)

    3 days ago

    Mumbai, Maharashtra, India Colgate-Palmolive Full time US$ 14,000 - US$ 1,68,000 per year

    Requisition ID Posted 11/05/2025 - Information Technology - India - Maharashtra - Mumbai - Colgate-Palmolive - Travel - up to 10% of time - HybridNo Relocation Assistance OfferedJob Number # Mumbai, Maharashtra, India Who We Are Colgate-Palmolive Company is a global consumer products company operating in over 200 countries specializing in Oral Care,...

  • Manager IT Governance Risk and Compliance

    2 weeks ago

    Mumbai, Maharashtra, India Indusind Bank Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Role & responsibilitiesCompliance Oversight: Ensure that all IT operations, systems, and processes adhere to relevant regulatory requirements, including RBI/SEBI guidelines, and cybersecurity standards.Regulatory Reporting: Strong knowledge in KRI, Public Facing App & DB, Tranche reporting.End to end management of Regulatory submissions: Assign, co-ordinate...

  • Lead-Governance Risk and Compliance

    2 weeks ago

    Mumbai, Maharashtra, India Nayara Energy Full time ₹ 1,00,00,000 - ₹ 3,00,00,000 per year

    Job DescriptionDUTIES & RESPONSIBILITIESAREASACTIVITIES1234567LEADERSHIPGOVERNANCERISK ASSESSMENTSUPPLY CHAIN RISK MANAGEMENTAWARENESS & TRAININGPOLICY COMPLIANCEMISCELLANEOUSPerform other duties as assigned to ensure the smooth functioning of the department.Recommend programmatic and technical inputs and operate with a high degree of independence in matters...

  • Lead-Governance Risk and Compliance

    1 week ago

    Mumbai, Maharashtra, India NAYARA Energy Full time ₹ 20,00,000 - ₹ 25,00,000 per year

    DUTIES & RESPONSIBILITIESAREASACTIVITIES1234567LEADERSHIPGOVERNANCERISK ASSESSMENTSUPPLY CHAIN RISK MANAGEMENTAWARENESS & TRAININGPOLICY COMPLIANCEMISCELLANEOUSPerform other duties as assigned to ensure the smooth functioning of the department.Recommend programmatic and technical inputs and operate with a high degree of independence in matters relating to...

  • Compliance Lead

    1 week ago

    Mumbai, Maharashtra, India Smart Edge Solutions Full time ₹ 50,000 - ₹ 23,00,000 per year

    Role : VM & Compliance LeadRole Type: PermanentJob Location: MumbaiExperience: 10+ yrs.JD below :Mandatory to have:10+ years in cyber risk management, vulnerability assessment, and compliance delivery.Strong experience with Tenable/Nessus, Qualys, and GRC tools.ISO 27001 Lead Auditor, CRISC, or CISA certified.In-depth knowledge of RBI Master Direction on IT...

  • Analyst, Cybersecurity Governance, Risk and Compliance

    2 weeks ago

    Mumbai, Maharashtra, India Ares Management Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Over the last 20 years, Ares' success has been driven by our people and our culture. Today, our team is guided by our core values – Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy – and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming,...

  • Risk Lead

    3 days ago

    Mumbai, Maharashtra, India Millennium Management Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Risk LeadAs a Risk Lead for Equity Derivatives, you will play a key role in Millennium's Risk Management team. Your job will focus on building and improving risk frameworks, developing quantitative models, and ensuring effective risk management for equity derivatives portfolios. You'll work closely with other teams, mentor junior talent, and drive innovation...

  • L3 Email Security Lead

    1 day ago

    Mumbai, Maharashtra, India Tekskills Full time ₹ 14,40,000 - ₹ 19,20,000 per year

    Hi Everyone,We have Immediate openings for MNC Company as L3 Email Security Lead in Mumbai Location.Job Title: L3 Email Security Lead (Mimecast is mandatory)Work Location: MumbaiExperience: 6 to 8 yearsJob Description:Cyber security team is looking for responsible for architecting and managing the secure email ecosystem, protecting against phishing,...

  • Information Security Lead-8 to 1 0yrs

    5 days ago

    Mumbai, Maharashtra, India Semperfi Solutions and Services Full time ₹ 1,20,00,000 - ₹ 1,80,00,000 per year

    Information Security Lead ( 8 – 10 Year Experience) Governance Risk and Compliance Project Implementation: Oversee the implementation of information security projects, ensuring alignment with organizational goals and compliance requirements. Policy Development and Maintenance: Develop, maintain, and update information security policies to align with best...