Job Description

Roles and Responsibilities: The GRC Analyst assesses and prioritizes information security and cybersecurity risk across the organization, facilitates compliance with regulatory requirements and information security policies, and develops and reports on information security metrics. • A Lead implementer and internal auditor who is responsible for supporting the ISMS & Information Security audit team in the organization. • Candidate must have implemented ISO policies and procedures across a corporate company. • Must handle Client compliance and Security Assessment, Client Security control implementation in the facility, ISO/IEC 27001:2013, SOC 1 Type 2, SOC 2 TYPE 2. • Preparing the organization for ISO certification, delivering meetings and submits audit report at the end of quarter or year and prepares the audit plan. • Conducting regular internal audits on Information Security Management System (ISMS), SOC and support the team on tracking the NCs to closure effectively is the main responsibility of a lead auditor and that needs to be done daily. • Hands-on experience in preparing Information Security awareness, Incident prevention. • Report Review knowledge on VAPT Assessments. • Evaluating the Business Continuity Plan (BCP) test results based on the test objectives. • Responsible for standard upgradation from ISO 27001:2013 to ISO 27001:2022 and coordinating with internal and external stakeholders during audits. • Participating in the project team for information security requirements. • Conduct monthly assessments for security policies for all employees. • Real-time experience with leading external audits. Job Title: GRC Analyst Location: Tiruchirappalli (Onsite) Shift: 06:30 PM IST TO 03:30 AM IST Qualifications: • Bachelor's degree in information technology or other related field. • Minimum of 2+ years of experience • Skills in documenting risk and compliance activities. • Information security related training or certifications such as CISSP or CRISC.