Information Security GRC Manager

3 months ago

Navi Mumbai, India Jio Full time

Job Description Information Security GRC Manager

Work Location: Navi Mumbai

Key Focus Area: Information Security GRC

Key Responsibilities:

Policy Development and Enforcement: Develop, implement and maintain Information Security policies, procedures, standards, frameworks, and associated plans based on industry best practices such as ISO 27001, ISO 22301, ISO 27701 NIST, ITGC, PCI-DSS, etc.

Lead the organizations tech compliance requirements such as but not limited to DoT requirements, PCIDSS, RBI (System Audit reports), ITGC, ISMS BCMS and Data privacy etc.

Risk Management: Performing security risk assessments, ISMS audits and privacy risk evaluations. Identify, document, and maintain an information security risk register. Regularly report to the security lead and other stakeholders.

Security Project Management (PMO) Prepare Governance and Risk Management presentations for CISO and Leads on monthly/quarterly basis. Collaborate with cross functional team, gather required information and ensure end-to-end delivery.

Compliance Reporting: Prepare compliance reports and remediation plans based on periodic reviews of application, workstation, server, and network device configurations.

Data Loss Prevention (DLP): Monitor and maintain compliance of DLP.

Third-Party Risk Management: Provide responses to Third party due diligence, independent oversight, and facilitate implementation and continuous improvement of Third-party risk management and processes.

Security Control Automation: Influence security control automation efforts to enhance security and compliance at scale.

Audit Representation: Represent Jios security posture in both internal and external audits.

Security Awareness and Training: Drive security awareness initiatives and conduct regular training on organisation security policies and standard requirements through training sessions, communication, and workshops etc.


Qualification and Work Experience


Qualification

B.E./B.Tech/MBA

Professional certifications such as CISM/ CISA or equivalent are highly desirable.


Work Experience: 5-7 Years

Minimum 4-5 years of professional experience in Information Security practices, with at least 2 years specialising in Governance, Risk and Compliance (GRC) domains.

Significant knowledge and experience in Cyber Security domain, ITGC control evaluation, policies and standards, regulatory compliance, in-depth understanding of Industry Standards and Frameworks such as ISO 27001, PCI DSS, COBIT, NIST, ISO 31000.

Project management within the realm of information security to include developing/vetting of project plans to ensure compliance to security standards.

Leading cross-functional teams to address vulnerabilities and enhance security measures.

Experience in supporting security controls, compliance and audit activities.

Demonstrated ability to apply IT-related knowledge and experience in solving compliance issues.

Have extensive experience of process building and improvement, strategic development and cross-organizational collaboration and negotiation.

Competencies /Expertise Required (Functional & Behavioral)

Strong knowledge of core information security principles such as least privilege access, defence in depth, preventative vs. detective controls, network security, cloud security, application security, endpoint security, data protection, and incident response.

Excellent analytical and problem-solving skills, with the ability to manage multiple tasks under tight deadlines.

Advanced written and verbal communication and presentation skills, with a focus on team building and collaboration.

High sense of ownership and drive with ability to establish credibility and earn trust with a variety of stakeholders and leadership.

An entrepreneurial spirit with the ability to drive innovation independently.

Maturity, judgment, negotiation/influence skills, analytical skills, and leadership skills

Adaptable to change.

Quick Learner Open learn and work on new technologies and products.

A proactive approach to security, attention to detail, and a commitment to continuous learning and improvement.

  • SAP Security

    2 months ago

    mumbai, India LTIMindtree Full time

    Greetings!!! Role: SAP Security & GRC Administrator Experience: 4-10 Years Location: PAN India Expert in SAP Security and GRC Architecture Experience in Leading Team and handle multiple parallel projects. Experience in Multiple Implementations Excellent Business Communication Must have knowledge on User Management, Role Management and GRC ARM request...

  • Information Security Analyst

    3 days ago

    Mumbai Metropolitan Region, India Priceline Full time

    This role is eligible for our hybrid work model: Two days in-office. Why is this job a big deal: The position is responsible for coordinating Priceline’s risk and compliance projects, elevating our security posture. As a leading tech company, this role requires an understanding of our existing infrastructure, cybersecurity controls and risk profi le, as...

  • Information Security Analyst

    2 days ago

    Mumbai Metropolitan Region, India Priceline Full time

    This role is eligible for our hybrid work model: Two days in-office.Why is this job a big deal:The position is responsible for coordinating Priceline’s risk and compliance projects, elevating our security posture. As a leading tech company, this role requires an understanding of our existing infrastructure, cybersecurity controls and risk profi le, as well...

  • SAP Security

    1 month ago

    mumbai, India LTIMindtree Full time

    Greetings!!! Role: SAP Security & GRC Administrator Experience: 4-10 Years Location: PAN India Expert in SAP Security and GRC Architecture Experience in Leading Team and handle multiple parallel projects. Experience in Multiple Implementations Excellent Business Communication Must have knowledge on User Management, Role Management and GRC ARM request...

  • SAP Security

    3 months ago

    Mumbai, India LTIMindtree Full time

    Greetings!!!Role: SAP Security & GRC AdministratorExperience: 4-10 YearsLocation: PAN IndiaExpert in SAP Security and GRC ArchitectureExperience in Leading Team and handle multiple parallel projects.Experience in Multiple ImplementationsExcellent Business CommunicationMust have knowledge on User Management, Role Management and GRC ARM request processingMust...

  • SAP Security

    3 months ago

    mumbai, India LTIMindtree Full time

    Greetings!!!Role: SAP Security & GRC AdministratorExperience: 4-10 YearsLocation: PAN IndiaExpert in SAP Security and GRC ArchitectureExperience in Leading Team and handle multiple parallel projects.Experience in Multiple ImplementationsExcellent Business CommunicationMust have knowledge on User Management, Role Management and GRC ARM request processingMust...

  • SAP Security

    3 months ago

    Mumbai, India LTIMindtree Full time

    Greetings!!! Role: SAP Security & GRC Administrator Experience: 4-10 Years Location: PAN India Expert in SAP Security and GRC Architecture Experience in Leading Team and handle multiple parallel projects. Experience in Multiple Implementations Excellent Business Communication Must have knowledge on User Management, Role Management and GRC ARM request...

  • SAP Security

    3 months ago

    Mumbai, India LTIMindtree Full time

    Greetings!!!Role: SAP Security & GRC AdministratorExperience: 4-10 YearsLocation: PAN IndiaExpert in SAP Security and GRC ArchitectureExperience in Leading Team and handle multiple parallel projects.Experience in Multiple ImplementationsExcellent Business CommunicationMust have knowledge on User Management, Role Management and GRC ARM request processingMust...

  • SAP GRC Consultant

    5 days ago

    Navi Mumbai, India Infovision HR Consulting Services Pvt Ltd. Full time

    Responsibilities :- Participate in the implementation of the SAP GRC system, configuring critical modules like Access Control (AC) and Process Control (PC).- Define and implement user roles and authorization rules within the SAP system, adhering to best practices for segregation of duties (SoD) principles.- Design and configure risk assessments and control...

  • Information Security Analyst

    2 months ago

    Mumbai, India TAC Security Full time

    Job Title: Information Security Analyst Location: Lower Parel, Mumbai (On-site) Job Description: We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture. Key Responsibilities: Monitor security alerts and events using...

  • Information Security Consultant

    1 month ago

    Mumbai, India TAC Security Full time

    Job Title: Information Security AnalystLocation: Lower Parel, Mumbai (On-site)Job Description:We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture.Key Responsibilities:- Monitor security alerts and events using SIEM...

  • Information Security Consultant

    1 month ago

    mumbai, India TAC Security Full time

    Job Title: Information Security AnalystLocation: Lower Parel, Mumbai (On-site)Job Description:We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture.Key Responsibilities:Monitor security alerts and events using SIEM tools...

  • Information Security Analyst

    2 months ago

    Mumbai, India TAC Security Full time

    Job Title: Information Security Analyst Location: Lower Parel, Mumbai (On-site)Job Description:We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture.Key Responsibilities:Monitor security alerts and events using SIEM tools...

  • Information Security Analyst

    2 months ago

    mumbai, India TAC Security Full time

    Job Title: Information Security Analyst Location: Lower Parel, Mumbai (On-site) Job Description: We are seeking a skilled Information Security Analyst to join our team in Lower Parel, Mumbai. In this role, you will play a critical part in monitoring and enhancing our cybersecurity posture. Key Responsibilities: Monitor security alerts and events using...

  • Information Security Analyst

    3 days ago

    Mumbai, India VISTRA Full time

    It’s never been a more exciting time to join Vistra. At Vistra our purpose is progress. We believe that our clients have the power to change the world and to do great things for global progress, and we exist to remove the friction that comes from the complexity of global business – to help our clients achieve progress without friction. But...

  • Information Security Analyst

    2 days ago

    Mumbai, India VISTRA Full time

    It’s never been a more exciting time to join Vistra. At Vistra our purpose is progress. We believe that our clients have the power to change the world and to do great things for global progress, and we exist to remove the friction that comes from the complexity of global business – to help our clients achieve progress without friction. But progress...

  • Information Security and Compliance Associate

    6 months ago

    Mumbai, Maharashtra, India Datavail Full time

    **Job Title: Information Security and Compliance Associate** **Education: Any Degree** **Location: Mumbai** **Experience: 0 -1 year** **Key Skills: ISMS, PIMS, CISA, ISO 27001:2022 LI/LA, ISO 27701:2019 LI / LA and PCI DSS** Information Security and Compliance Associate Reports to Sr. Director of Information Security. Information Security and Compliance...

  • Information Security and Compliance Associate

    6 months ago

    Mumbai, Maharashtra, India Datavail Full time

    **Job Title: Information Security and Compliance Analyst** **Education: Any Degree** **Location: Mumbai** **Experience: 0 -1 year** **Key Skills: ISMS, PIMS, CISA, ISO 27001:2022 LI/LA, ISO 27701:2019 LI / LA and PCI DSS** Information Security and Compliance Associate Reports to Sr. Director of Information Security. Information Security and Compliance...

  • Information Technology Security Specialist

    2 days ago

    Navi Mumbai, India CrackerJack Biz Tech Pvt Ltd Full time

    A SHOUT OUT TO ALL INFORMATION SECURITY ENTHUSIASTS ! If you are passionate, talented, experienced and skilled in any of the below talent categories, write to us with with your CV and answers to the below set of questions at hr@crackerjacktech.com Talent Category ASecurity Assessments, VAPT for Web Applications, Mobile Applications, APIs and Networks.Threat...

  • Information Technology Security Specialist

    3 days ago

    Navi Mumbai, India CrackerJack Biz Tech Pvt Ltd Full time

    A SHOUT OUT TO ALL INFORMATION SECURITY ENTHUSIASTS ! If you are passionate, talented, experienced and skilled in any of the below talent categories, write to us with with your CV and answers to the below set of questions at Talent Category A Security Assessments, VAPT for Web Applications, Mobile Applications, APIs and Networks. Threat modeling...