GRC / IT / IS Auditor

About the Company

Softcell Technologies Global Pvt. Ltd. is a trusted and CERT-In empanelled Cybersecurity & IT consultancy firm with a legacy of delivering enterprise-grade solutions to leading organizations across sectors. We specialize in delivering audit, advisory, and implementation services across the domains of IT Governance, Risk & Compliance, Cybersecurity, and Privacy.

About the Role

We are looking for an experienced GRC / IT / IS Auditor to manage audit and assessment engagements for our enterprise clients across sectors such as BFSI, Healthcare, FinTech, Manufacturing, and Government. The role involves planning, executing, and reporting IT and cyber audits based on leading regulatory and industry frameworks including RBI, SEBI, IRDAI, CERT-In, ISO 27001, ISO 22301, IRDAI, NIST, HIPAA, and DPDP Act 2023.

Responsibilities

• Plan, conduct, and report on IT General Controls (ITGC), Application Controls, Cybersecurity Audits, and Infrastructure Audits.
• Conduct audits aligned with frameworks such as RBI Cyber Security Framework, SEBI CSCRF, IRDAI Cybersecurity Guidelines, CERT-In, and DPDP Act 2023.
• Assess effectiveness of controls in areas like network security, endpoint security, access management, backup & recovery, and SOC.
• Map policies and processes to frameworks like ISO 27001, ISO 22301, CSCRF, IRDAI, NIST, HIPAA, PCI DSS and perform risk/maturity assessments.
• Prepare audit checklists, evidence collection trackers, risk registers, and final audit reports.
• Interact with client stakeholders during fieldwork and post-audit discussions.
• Support pre-sales in RFP responses, scope definition, and client presentations.
• Contribute to internal knowledge repositories and standard operating procedures.

Qualifications

• Bachelor’s or Master’s Degree in Computer Science, Commerce, IT, Cybersecurity, or equivalent.
• 3–8 years of experience in IT Audit, GRC, or Information Security domains.
• Strong knowledge of regulatory frameworks (RBI, SEBI, IRDAI, DPDP, CERT-In) and standards (ISO/IEC 27001, ISO/IEC 22301, NIST, COBIT, SOC 2, HIPAA).
• Understanding of technical domains: Firewalls, IDS/IPS, AD, Cloud Security, SDLC, Endpoint Security, SOC etc.
• Excellent report writing, documentation, and presentation skills.
• Hands-on experience with audit tools, scanners, ticketing systems, and GRC platforms.

Required Skills

• Certifications (Preferred):
• ISO 27001 LA / LI
• CISA / CISM / CRISC
• CEH / CHFI / CompTIA Security+
• DPO / DPDP Act-related certifications
• ITIL Foundation / COBIT

Preferred Skills

• Excellent analytical, problem-solving, and client communication skills.
• Self-motivated, team player, and able to work independently.
• Willingness to travel to client locations as required.

Pay range and compensation package

Competitive salary based on industry standards and candidate experience. Fixed annual CTC with periodic performance-based revisions.

Equal Opportunity Statement

Softcell Technologies is committed to diversity and inclusivity in the workplace.

How to Apply

Interested candidates may send their resumes to Jobs@softcell.com with the subject line: “Application for GRC / IT / IS Auditor – Mumbai WFO”

Regards

HR Team