Manager IT Governance, Risk and Compliance (GRC) Protonlogics IT Solutions

6.0 - 10.0 years

0 - 0 Lacs

noida, uttar pradesh

On-site

The Manager - IT Governance, Risk and Compliance (GRC) is responsible for assessing and documenting the organization's compliance and risk posture related to its information assets. You will provide directions, coordinate and perform security assessment functions and control testing reporting in accordance with internal controls compliance, regulatory requirements, and departmental policies. Your role includes updating and maintaining control matrices and spreadsheets, as well as providing recommendations for management consideration. Ensuring compliance with internal controls, regulatory standards, and information security policies is a key aspect of this position. You will work closely with internal audit, external audit firms, and regulatory agencies to provide necessary documentation. Additionally, you will take a lead role in maintaining the security of all protected information collected, used, maintained, or released by the organization. Responsibilities include recommending programmatic and technical directions, operating independently in matters related to security incidents, risk analysis, and computer and network security measures. You will lead the development and implementation of the organization-wide risk management function within the information security program. Internally assessing and evaluating security controls, participating in vendor risk evaluation, and managing the information security compliance program are vital aspects of the role. You will also assist in developing and implementing policies and practices to secure sensitive data, ensure information security, and comply with relevant legislation. Key responsibilities involve executing strategies for dealing with audits, compliance checks, and external assessments related to effective security practices. You will interact with various stakeholders through oral and written communications, including IT, engineering, senior leadership, auditors, customers, and technology vendors. Managing security awareness training programs, developing Business Continuity Planning, Incident Response, and Disaster Recovery strategies are also part of your responsibilities. Qualifications for this role include a minimum of 6 years of advanced IT skills with a high level of information security experience and expertise. Knowledge of information security risk management frameworks, compliance practices, network technologies, operating systems, and security standards is essential. Excellent interpersonal, communication, and presentation skills are required, along with an understanding of security and privacy standards, regulations, and laws. Preferred qualifications include a Bachelor's degree in information technology or related field, skills in documenting risk and compliance activities, and certifications such as ISO 27001, CISSP, CRISC, or CISA. This is a full-time permanent role based in Noida, U.P with a minimum experience requirement of 6+ years and salary ranging from 15-20 LPA.,

Posted 3 weeks ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.