GRC Analyst

We're building something audacious, something global, in next tech at Mai Labs: a new digital infrastructure layer, an internet architectural rail that puts users, builders, creators and developers first. Our mission? To distribute participatory power to billions of people in the digital economy.

What this actually means:

We're taking on established paths and conventional wisdom about how the Tech and Internet should work. Underlying principle is to solve the hard problem of protecting user rights, digital intellectual property rights and protection of assets in an age of AI and instant replication.

Cultural Expectations:

You can expect:

• Thriving in decision making in an ambiguous, fast-paced environment
• To exhibit exceptional integrity and reliability on promise delivery
• Will collaborative and have inclusive attitude
• A value outcome driven thinking with resource optimization

If above resonates with you, we will love to have a discussion with you.

Role Name: GRC Analyst

Location: Noida (Hybrid)

About the Role:

GRC Analyst:

In this role, you will lead risk assessments, gap analyses, and manage GRC frameworks across cloud (AWS), and decentralized environments. You will be responsible for maintaining audit logs, risk registers, compliance dashboards, and developing audit-ready documentation.

A key part of the role involves integrating security and compliance controls into our SDLC, CI/CD, and DevOps pipelines, as well as collaborating closely with engineering teams to ensure secure and compliant deployments. This is a critical role that ensures the organization meets regulatory requirements and maintains a strong security posture.

What will you get to do?

• Audit reports, risk treatment logs, policy documentation, compliance dashboards, and evidence packages.
• Lead internal audits for ISO 27001, 27701, 22301, 9001, NIST CSF/RMF, GDPR, and PDPL.
• Conduct gap assessments, risk assessments, and maturity evaluations.
• Manage GRC frameworks across in-house, AWS cloud, and decentralized environments.
• Maintain risk registers, audit logs, and compliance dashboards.
• Develop and update ISO/NIST-aligned policies, procedures, and SOPs.
• Ensure documentation supports audit trail, evidence requirements, and traceability.
• Integrate compliance controls into SDLC, CI/CD pipelines, and DevOps toolchains.
• Review AWS services (S3, IAM, GuardDuty, Security Hub) for compliance alignment.
• Collaborate with engineering and DevOps teams to ensure secure deployments

  .

Profile Expectations:

• 3–5 years’ experience in audits, GRC, AWS security, and DevSecOps environments.
• ISO 27001 Lead Auditor/Implementer, NIST CSF/RMF trained.
• Preferred: CISA, CISM, CRISC, CEH, CCSK, AWS Security Specialty.
• Familiar with compliance automation tools and CI/CD platforms like Jenkins, GitHub Actions, Terraform.
• Education: B.Tech/B.E or equivalent skillset.

Hiring Process-