IT GRC (Governance, Risk and Compliance) Consultant

By /
Salary: Not Disclosed
Job Experience: 4 - 9 years
Job Type: Hybrid
Job Location: Bangalore/ Bengaluru Karnataka Maharashtra Pune

Job description

  • Proficiency in core IT Risk, Compliance, and security initiatives.
  • Thorough understanding of industry standards like ISO, GDPR, NIST, PCI DSS.
  • Wide-ranging grasp of cybersecurity concepts and associated risks.
  • Evaluating audit findings and gaps, addressing control weaknesses in collaboration with stakeholders, and aiding in the formulation of management action plans.
  • Comprehensive comprehension of security classification, change controls, SDLC, security controls, Application Controls, including interfaces and configurations across various applications, operating systems, databases, and networks.
  • Managing IT Risk, Compliance, and security operations projects, including the ability to coordinate multiple GRC and Security engagements.
  • Assisting in SOX program planning by defining objectives, scope, and audit work programs.
  • Regularly following up on outstanding and overdue actions regarding security control implementations.
  • Understanding client requirements to devise project plans, resource plans, establish reporting and metrics, and provide regular project updates to clients and leaders.
  • Ensuring appropriate and consistent utilization of the project team, with a strong emphasis on process/tool automations and innovations.
  • Exceptional customer service, analytical thinking, problem-solving, decision-making, verbal and written communication skills.
  • Familiarity with common audit and compliance tools, with experience using a Governance/Risk/Compliance (GRC) platform.
  • Collaborating with key customers and relevant stakeholders to assess short-term and long-term GRC needs, and planning staffing accordingly.
  • Strong skills in managing people, including training and mentoring project team members to maintain consistent work quality and apply best practices across engagements.
  • Desirable to possess professional certifications such as CISA, CISM, CRISC, or CISSP.
  • Proficient in Microsoft Word, PowerPoint, Excel, and email.

Primary Skills:
  • Management of Governance, Risk, and Compliance (GRC)
  • Utilization of Security Frameworks
  • Implementation of IT General Controls (ITGC)
  • Deployment of Information Security Management Systems (ISMS)
Secondary Skills:
  • Possession of Certifications such as CISA, CISM, CRISC, or CISSP

Role: IT & Information Security – Other Industry Type: IT Services & Consulting Department: IT & Information Security Employment Type: Full-Time, Permanent Role Category: IT & Information Security

Education:
  • Bachelor’s degree in any field

Apply for this position

Allowed Type(s): .pdf, .doc, .docx

Copyright © 2024 Internshiptech | All rights reserved

Scroll to Top