GRC Associate / Consultant

Securisti Consulting LLP is a rapidly growing consulting company that believes in democratizing cybersecurity through an unwavering commitment to “Bespoke Security” and vision of making “Cyber Security for All” a reality. Securisti provides a complete suite of cybersecurity services such as implementation and sustenance of ISO 27001 & 22301, Managed GRC, Cyber Risk monitoring, Third Party Risk Management, Cybersecurity framework design and implementation (IRDAI / RBI / PFRDA / SEBI), vCISO services, Table Top exercises and IR simulations, Managed Incident Response, Technical Vulnerability Management and Security testing.

For more details visit:

https://securisti.com/

We currently are expanding our GRC operations and have multiple requirements for candidates interested in switching to or already having experience of GRC.

Total Positions

1. GRC Consultant : exp 3-5 years

2. Senior Associate/Associate : exp 1-3 years

3. Trainee and Intern : exp 0-1 year

Experience and Responsibilities:

• Develop and implement GRC strategies, policies and procedures as per regulatory, legal requirements and organizational goals.

• Performing Risk Assessment, recommend Internal Controls, conduct Security Audits and implement Risk Mitigation strategies.

• Monitoring and reporting risk exposures to top management.

• Strong knowledge of information security principles and best practices.

• Clear understanding of Governance, Risk and Compliance principles and fundamentals

• Proficiency in conducting Security Audits, Internal Controls and Risk Assessment, Third Party Risk Assessments and Audits,

• Knowledge on ISO 27001 / ISO 22301 / NIST / Privacy implementation and lifecycle maintenance etc.

• Ability to work independently and as part of a team and guide other team members

• Understanding of Legal aspects of Cybersecurity (Service Agreements / Non Disclosure Agreements)

• Ability to independently handle audits such as ISO 27001 & 22301, Third Party Risk Management and RFPs etc.

Qualifications and Skills :

• Experience : 0-5 Years

• Certifications : ISO 27001 LA / LI, ISO 22301 LA / LI

• Qualification : Bachelor's or Master's degree

• Language : Good written and communication skills (English)

• Competencies in NIST / DPDPA / IRDAI / RBI / PFRDA / SEBI CSCRF / SOC2 / ITGC / IT Systems & Network, Cloud security fundamentals