GRC/Compliance Executive

6 days ago

Mumbai Metropolitan Region, India Snapmint Full time

About The Role
We are seeking a proactive and detail-oriented GRC (Governance, Risk & Compliance) Executive to strengthen our information security and regulatory compliance framework. The role involves maintaining ISO 27001 documentation, ensuring RBI and IT Act compliance, driving policies and SOP rollouts, and coordinating internal/external audits. This position is ideal for candidates with a strong understanding of information security and NBFC regulatory requirements, who can translate compliance frameworks into effective operational practices.

Key Responsibilities

  • Information Security Governance (ISMS & Risk Management) :
  • Maintain and update ISMS documentation, policies, and control procedures in alignment with ISO 27001.
  • Maintain and track the risk register, ensure periodic risk reviews, and drive closure of risk mitigation actions.
  • Support ISMS internal audits, external certification audits, and management reviews.
  • Maintain evidence for controls such as access management, data classification, asset management, and vendor compliance.
  • Regulatory Compliance (RBI, IT Act, CERT-IN, etc.) :
  • Track and ensure compliance with applicable RBI Master Directions, IT Act 2000, CERT-IN guidelines, and other NBFC-specific requirements.
  • Support timely submission of compliance reports and maintain evidence for regulatory reviews.
  • Monitor updates from regulators and translate them into actionable compliance steps for relevant teams.
  • Maintain an up-to-date compliance calendar for RBI and information security obligations.
  • Policy and SOP Rollout :
  • Draft, review, and standardize security and compliance policies, SOPs, and guidelines across departments.
  • Drive policy rollout programs coordinate communication, acknowledgment tracking, and training for employees.
  • Periodically review and update policies/SOPs to reflect regulatory or business changes.
  • Support awareness initiatives to improve organization-wide adherence to policies and security practices.
  • Audit Coordination & Evidence Management :
  • Prepare and organize audit artifacts for internal, external, IT, and ISO audits.
  • Coordinate with stakeholders to close non-conformities and maintain audit trail documentation.
  • Maintain an updated audit tracker for ongoing and completed activities.

Preferred Skills & Competencies

  • Understanding of ISO 27001 framework, risk management, and ISMS documentation.
  • Familiarity with RBI Master Directions, CERT-IN, IT Act, and NBFC compliance landscape.
  • Experience in drafting and rolling out policies and SOPs across functions.
  • Strong Excel and documentation skills; ability to manage trackers, logs, and audit evidence.
  • Excellent coordination, communication, and follow-up skills.
  • Attention to detail, high integrity, and ownership mindset.

Education & Qualifications

  • Bachelors degree in information technology, Computer Science, or Commerce.
  • Certifications (preferred but not mandatory) : ISO 27001 LA/LI, CISA, CRISC, or other information security/compliance credentials.

Why Join Us

  • Be part of a fast-growing NBFC with strong focus on governance, security, and regulatory excellence.
  • Opportunity to work closely with leadership on RBI, IT Act, and ISO 27001 compliance programs.
  • Build hands-on expertise in policy governance, audit management, and regulatory operations.

)

  • ServiceNow GRC Consultant

    2 days ago

    Mumbai Metropolitan Region, India PineQ Lab Technology Full time

    **Project Role : ServiceNow GRC ConsultantProject Role Description : Develop custom software solutions to design, code, and enhance components across systems or applications. Use modern frameworks and agile practices to deliver scalable, high-performing solutions tailored to specific business needs.Must have skills : ServiceNow Governance, Risk, and...

  • GRC Executive

    3 weeks ago

    Mumbai, India ShieldByte Infosec Pvt. Ltd. Full time

    Location: Bhandup, MumbaiExperience: 1-8 yearsIndustry: Cybersecurity, IT Security, IT AuditEmployment Type: Full-timeRole Overview:We are seeking Governance, Risk, and Compliance (GRC) professionals to join our team as GRC Executive / GRC Manager. The role involves risk assessment, regulatory compliance, and security audits to strengthen organizational...

  • GRC Executive

    3 weeks ago

    Mumbai, India ShieldByte Infosec Pvt. Ltd. Full time

    Location: Bhandup, MumbaiExperience: 1-8 yearsIndustry: Cybersecurity, IT Security, IT AuditEmployment Type: Full-timeRole Overview:We are seeking Governance, Risk, and Compliance (GRC) professionals to join our team as GRC Executive / GRC Manager. The role involves risk assessment, regulatory compliance, and security audits to strengthen organizational...

  • GRC Executive

    3 weeks ago

    Mumbai, India ShieldByte Infosec Pvt. Ltd. Full time

    Location: Bhandup, MumbaiExperience: 1-8 yearsIndustry: Cybersecurity, IT Security, IT AuditEmployment Type: Full-timeRole Overview:We are seeking Governance, Risk, and Compliance (GRC) professionals to join our team as GRC Executive / GRC Manager. The role involves risk assessment, regulatory compliance, and security audits to strengthen organizational...

  • GRC Executive

    3 weeks ago

    Mumbai, India ShieldByte Infosec Pvt. Ltd. Full time

    Location: Bhandup, Mumbai Experience: 1-8 years Industry: Cybersecurity, IT Security, IT Audit Employment Type: Full-time Role Overview: We are seeking Governance, Risk, and Compliance (GRC) professionals to join our team as GRC Executive / GRC Manager. The role involves risk assessment, regulatory compliance, and security audits to strengthen organizational...

  • GRC Executive

    3 weeks ago

    Mumbai, India ShieldByte Infosec Pvt. Ltd. Full time

    Location: Bhandup, MumbaiExperience: 1-8 yearsIndustry: Cybersecurity, IT Security, IT AuditEmployment Type: Full-timeRole Overview:We are seeking Governance, Risk, and Compliance (GRC) professionals to join our team as GRC Executive / GRC Manager. The role involves risk assessment, regulatory compliance, and security audits to strengthen organizational...

  • GRC Executive

    3 weeks ago

    Mumbai, India ShieldByte Infosec Pvt. Ltd. Full time

    Location: Bhandup, Mumbai Experience: 1-8 years Industry: Cybersecurity, IT Security, IT Audit Employment Type: Full-time Role Overview: We are seeking Governance, Risk, and Compliance (GRC) professionals to join our team as GRC Executive / GRC Manager. The role involves risk assessment, regulatory compliance, and security audits to strengthen organizational...

  • Cybersecurity GRC Manager

    2 days ago

    Mumbai, India Talent Worx Full time

    About the role As a Cybersecurity GRC Manager, this position plays an vital role to support the implementation and management of governance, risk, and compliance initiatives that safeguard the organization's information assets. This role involves assisting in the execution of cybersecurity policies, conducting risk assessments, participating in audits, and...

  • Governance, Risk, and Compliance

    2 weeks ago

    Mumbai, India Talent Worx Full time

    Job Description for Governance, Risk, and Compliance (GRC) Resource Overview The Governance, Risk, and Compliance (GRC) resource plays a crucial role in ensuring that an organization adheres to regulatory requirements, manages risks effectively, and upholds governance standards. This position involves a blend of strategic planning, risk assessment, policy...

  • Governance, Risk, and Compliance

    2 weeks ago

    Mumbai, India Talent Worx Full time

    Job Description for Governance, Risk, and Compliance (GRC) Resource Overview The Governance, Risk, and Compliance (GRC) resource plays a crucial role in ensuring that an organization adheres to regulatory requirements, manages risks effectively, and upholds governance standards. This position involves a blend of strategic planning, risk assessment, policy...