GRC Audit and Compliance Analyst

8 hours ago


Pune, Maharashtra, India Johnson Controls Full time ₹ 9,00,000 - ₹ 12,00,000 per year

Job Description

The Audit and Compliance Analyst is responsible for ensuring IT and business operations adhere to internal controls, regulatory standards, and corporate policies. This role supports SOX compliance, access reviews, audit coordination, and privileged account monitoring across SAP and other enterprise systems.

Key Responsibilities

SOX Controls Monitoring (Production deployment checks)

  • Conduct monthly and emergency SOX checks to validate:
  • UAT completion and approval prior to production deployment
  • Final IT approvals for code migration
  • Valid change requests and proper documentation
  • Business and IT approval workflows
  • Review support messages for emergency changes and validate UAT results

Firefighter ID (FFID) Usage Oversight

  • Monitor and review Firefighter account activity across SAP systems
  • Update weekly scorecards and audit repositories
  • Send re-confirmation emails to business owners
  • Track exception approvals and ensure compliance documentation
  • Conduct Firefighter uPerform training sessions

Audit Coordination

  • Respond to adhoc audit requests including:
  • IT SOX, financial compliance, integrated audits, statutory audits
  • Support internal and external audit teams with required documentation

Access and Account Management

  • Monitor default, generic, and shared accounts for compliance
  • Review privileged access and critical transactions in SAP
  • Validate batch job and interface processes
  • Conduct annual user access reviews and remediate findings
  • Ensure timely removal of terminated users and inactive accounts
  • Perform SoD checks and validate dialog account validity dates

Admin and Developer Access Control

  • Restrict super user access for system and security administrators
  • Monitor developer access to ensure no production deployment rights
  • Track code changes in test/QA environments

Reporting and Documentation

  • Generate SM20 reports for FFID usage on sensitive transactions
  • Monitor system configuration changes and login attempts
  • Maintain audit repositories and compliance logs

Operational Oversight

  • Submit weekly status reports and time tracking
  • Validate and update approver lists for access and change requests
  • Ensure compliance with corporate password management policies
  • Restrict access to critical application/data files and utilities

Required Qualifications

  • Bachelor's degree in information systems, or related field
  • 2+ years of experience in IT audit, compliance, or risk management
  • Strong understanding of SOX, SAP security, and access controls
  • Familiarity with Firefighter ID management and SM20 reporting
  • Experience with GRC ARM , GRC SoD analysis, and batch job monitoring
  • Excellent documentation and communication skills
  • Ability to manage multiple audits and compliance tasks simultaneously


  • Pune, Maharashtra, India Johnson Controls Full time ₹ 5,00,000 - ₹ 15,00,000 per year

    Position: SAP Security GRC DevOps AnalystExperience: 3+ yearsJob Summary:The SAP Security GRC DevOps Analyst will be responsible for implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security practices...

  • GRC Data Analyst

    6 hours ago


    Pune, Maharashtra, India A.P. Moller - Maersk Full time ₹ 5,00,000 - ₹ 12,00,000 per year

    Job Purpose/SummaryMaersk is a value-led company, and we strive to high ethical and quality standards and want to be trusted by our customers, partners, society, and our employees.Maersk Governance, Risk and Control (GRC) ensures an effective and efficient risk based internal control framework across Maersk. GRC is based in Finance and drives the overall...

  • GRC Engineer

    7 hours ago


    Pune, Maharashtra, India Johnson Controls Full time ₹ 6,00,000 - ₹ 18,00,000 per year

    We are seeking a highly skilled and detail-oriented GRC Engineer to lead the design, development, and implementation of SAP Governance, Risk, and Compliance (GRC) solutions. This role is critical in managing segregation of duties (SoD), user access provisioning, access controls, and process controls, while supporting audit and compliance initiatives across...


  • Pune, Maharashtra, India Johnson Controls Full time ₹ 15,00,000 - ₹ 25,00,000 per year

    Position: SAP Security GRC DevOps LeadExperience: 7+ yearsJob Summary:The SAP Security GRC DevOps Lead will be responsible for leading the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security...

  • Senior Grc Analyst

    4 weeks ago


    Pune, Maharashtra, India DRUVA Full time

    About DruvaDruva the autonomous data security company puts data security on autopilot with a 100 SaaS fully managed platform to secure and recover data from all threats The Druva Data Security Cloud ensures the availability confidentiality and fidelity of data - providing customers with autonomous protection rapid incident response and guaranteed...


  • Pune, Maharashtra, India Community Brands Software Development Solutions Full time ₹ 12,00,000 - ₹ 36,00,000 per year

    Job Overview Were looking for an experienced and strategic Principal GRC Security Analyst to help lead our Governance, Risk, and Compliance efforts. In this role, youll work cross-functionally to drive security initiatives, support compliance frameworks, and partner with both internal teams and external customers to ensure trust, transparency, and...


  • Pune, Maharashtra, India Weekday AI Full time

    This role is for one of Weekday's clientsSalary range: Rs 2000000 - Rs 2500000 (ie INR 20-25 LPA)Min Experience: 4 yearsLocation: PuneJobType: full-timeRequirementsAbout the roleDesirable SkillsImplementation & Configuration:• Configure and customize the ServiceNow GRC modules, including Policy and Compliance Management, Risk Management, and Audit...

  • SAO GRC

    1 week ago


    Pune, Maharashtra, India Talent Worx Full time ₹ 1,04,000 - ₹ 1,30,878 per year

    We are looking for a seasoned SAO GRC (System Access and Optimisation Governance, Risk and Compliance) consultant with expertise in S4 HANA to join Talent Worx. In this role, you will be responsible for managing governance frameworks related to system access, ensuring compliance while enhancing operational efficiency in S4 HANA environments.Your primary...


  • Pune, Maharashtra, India KPMG Full time ₹ 9,00,000 - ₹ 12,00,000 per year

    Key Responsibilities:GRC Development & Configuration:Design and implement ServiceNow GRC solutions, including Policy and Compliance, Risk Management, Audit Management, and Vendor Risk Management modules.Configure and customize workflows, dashboards, and reports to meet organizational requirements.ServiceNow Workspace Development:Develop intuitive and...


  • Pune, Maharashtra, India ACA Group Full time ₹ 4,00,000 - ₹ 12,00,000 per year

    About ACA:ACA was founded in 2002 by four former SEC regulators and one former state regulator. The founders saw a need for investment advisers to receive expert guidance on existing and new regulations. Over the years, ACA has grown both organically and by acquisition to expand our GRC business and technology solutions. Our services now include GIPS...