508 Grc Jobs - Page 17

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA’s (90-95%), response time and resolution time TAT Mandatory Skills: SAP GRC - Governance-Risk-Compliance. Experience3-5 Years.

Role is SAP subject matter expert/architect role for Security. Key responsibilities will involve working with Business Stakeholders, understanding requirements, translating user requirements into SAP IT scope, assessing impact on application & connected systems, estimating high level schedule and efforts to implement solution and ensure successful technical delivery Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Candidate must have minimum 3-5 years of solid SAP Security Implementation experience with focus on Role authorizations. Solid implementation and hands-on experience in S/4HANA Experience in working with stakeholders and leading SAP security projects. Sound understanding of SOD - segregation of duties. Support technical requirement gathering, develop prototypes/PoCs/recommend solutions with limited information from the business, delivery quality technical specifications and documentation Preferred technical and professional experience SOX/GRC Control experience

As a senior SAP Consultant, you will serve as a client-facing practitioner working collaboratively with clients to deliver high-quality solutions and be a trusted business advisor with deep understanding of SAP Accelerate delivery methodology or equivalent and associated work products. You will work on projects that assist clients in integrating strategy, process, technology, and information to enhance effectiveness, reduce costs, and improve profit and shareholder value. There are opportunities for you to acquire new skills, work across different disciplines, take on new challenges, and develop a comprehensive understanding of various industries. Your primary responsibilities include Strategic SAP Solution FocusWorking across technical design, development, and implementation of SAP solutions for simplicity, amplification, and maintainability that meet client needs. Comprehensive Solution DeliveryInvolvement in strategy development and solution implementation, leveraging your knowledge of SAP and working with the latest technologies Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Overall 5 - 12 years of relevant experience in SAP BODS/BOIS/SDI/SDQ and 3+ Years of SAP functional experience specializing in design and configuration of SAP BODS/HANA SDI modules. Experience in gathering business requirements and Should be able to create requirement specifications based on Architecture/Design/Detailing of Processes. Should be able to prepare mapping sheet combining his/her Functional and technical expertise. All BODS Consultant should primarily have Data migration experience from Different Legacy Systems to SAP or Non SAP systems. Data Migration experience from SAP ECC to S/4HANA using Migration Cockpit or any other methods. In addition to Data Migration experience, Consultant should have experience or Strong knowledge on BOIS( BO Information Steward) for data Profiling or Data Governance Preferred technical and professional experience Having BODS Admin experience/Knowledge. Having working or strong Knowledge of SAP DATA HUB. Experience/Strong knowledge of HANA SDI (Smart data Integration) to use this as an ETL and should be able to develop flow graphs to Validate/Transform data. Consultant should Develop Workflows, Data flows based on the specifications using various stages in BODS

ISO 27001 Compliance Auditor & Consultant Work from Office & Client Site (Mumbai & Beyond) We are looking for a detail-oriented professional with experience in ISO 27001 audits, risk assessment, and compliance management. The role involves audit execution, security documentation, client collaboration, and regulatory compliance. Strong communication & report-writing skills required. Frequent travel required. Skills : - IT Security Compliance,Risk Assessment,Compliance Auditor,Security Audit,Governance,Risk,Compliance,GRC,IT Risk Management,Audit,ISO 27001 Lead Auditor,Internal Audit,External Audit,Security Frameworks,GDPR,NIST,SOC 2

About the business Oreta is a leading technology services company that empowers business outcomes through advisory, delivery and managed services using network, cloud, security, and analytics. Our commitment to innovation and excellence has earned us numerous prestigious awards in the Australian technology sector, including recognition from ARN, Telstra, Deloitte and CRN. We maintain strategic partnerships with renowned industry leaders such as Microsoft, Telstra, Cisco, SentinelOne, Palo Alto Networks, VMware Premium, and Qualys, enabling us to deliver top-tier solutions and services. Our success is underpinned by our people and their desire to constantly delight the customer. Our culture is made up of our behaviours and values which define the way we work together and service our customers. We are passionate about living and breathing our 4 Core Values which are at the heart of our culture: Go Further Thrive Together Move with Velocity Have Fun About the role Location: Chandigarh We are looking to engage a well-presented Mid level GRC Consultant to work closely with our clients. You will be responsible for consulting, designing and reviewing formal documentation and business requirements to ensure they are in line with ISO 2700-1, NIST, NSW Mandatory 25, SOCI ACT 2018 and Essential 8 frameworks and maturity levels to name a few. This role is front facing and therefore you will be expected to engage with internal and external stakeholders, communicate with technical and non-technical teams and provide practical solutions to the end client. Essential Criteria Minimum of 3 5 years in Information technology or related field Bachelor's Degree in Computer Science, Information Security, Information Systems, or related field in Cyber Exceptional communications skills (written, verbal & customer presentations) Strong attention to detail Ethical mindset Experience in a client facing role Strong analytical and problem-solving skills. Proven experience writing formal documentation, business requirements and reports (Excellent MS Office experience) Design and document GRC policies, procedures, and controls Develop and implement GRC strategies and roadmaps aligned with client objectives Understanding of ISMS, ISO 27001, SOC 2 compliance, NIST and Essential 8 Ability to work autonomously Assist and contribute to fellow team members and team discussions Being comfortable with a high degree of on-the-job learning An understanding of Information Security and a keen sense to learn Travel to client sites as needed. Strong understanding of GRC frameworks, Risk Management, business processes, security governance, audit compliance and risk assessment Conduct GRC assessments to identify risks and compliance gaps Prepare and present reports to clients on GRC findings and recommendations. Manage and track GRC projects and deliverables. Strong self-management skills, including time management and the ability to work on multiple assignments concurrently Highly regarded/Desirable Criteria Knowledge of security standards. Excellent written and oral skills Confident to face customers Excellent documentation skills Excellent time management skills Responsibilities (not limited to) include; As a Mid level GRC Consultant (Governance, Risk, and Compliance), your roles and responsibilities will include: Assisting senior consultants / Managers / Leads in conducting risk assessments and compliance audits. Researching and analysing regulatory requirements and industry best practices. Supporting the development and implementation of GRC frameworks and policies. Assisting in the identification and evaluation of potential risks and vulnerabilities. Collaborating with cross functional teams to ensure compliance with regulations and standards. Assisting in the development and delivery of training programs on GRC topics Supporting the creation and maintenance of documentation related to GRC processes. Assisting in the monitoring and reporting of key risk indicators and performance metrics. Participating in client meetings and providing support in presenting findings and recommendations. Keeping up-to-date with industry trends and developments in GRC. Benefits and Perks Oreta takes pride in providing a service of excellence to our customers and looking after our team members who enable our business to succeed. The successful applicant will enjoy working in a collaborative environment in either Sydney or Melbournes CBD with a friendly, diverse, inclusive and highly driven team (the Oreos), where ideas are always welcome and ongoing training and development is strongly encouraged. Employees rewards and recognition and have fun happy momentsJust to name a few of the perks. The renumeration base range will be negotiated based on the applicants relevant skills and experience. Performance reviews are conducted annually. If you are interested in a long-term career with potential to develop and grow with the business and are available to start immediately, then we look forward to hearing from you.

Certified ServiceNow,ServiceNow Scripting and HRSD/GRC/SecOps/ITAM tools. Experience in creating Record Producer, Client Scripts UI and Data Policies, Business Rules, UI Actions, Service Catalog Experience in JavaScript, CSS, HTML, and a good understanding of Object Oriented JavaScript.Responsibilities Design, develop, and implement ServiceNow customizations, including workflows, business rules, client scripts, UI actions, and record producers. Develop integrations between ServiceNow and other systems using APIs and web services. Create and maintain Service Catalog items, including catalog forms, variables, and workflow actions. Configure and administer ServiceNow modules such as HRSD, GRC, SecOps, and ITAM. Troubleshoot and resolve ServiceNow issues and incidents. Provide technical guidance and support to end-users. Stay up-to-date with ServiceNow platform updates and best practices.

Job Title: ServiceNow GRC Developer Location: Bangalore, India Company: NexusNow.ai Experience: Minimum 4 years Job Type: Full-time About Us: NexusNow.ai is a leading ServiceNow consulting and implementation partner, delivering value-driven digital transformation solutions. We specialize in IT workflows, risk and compliance automation, and strategic platform integrations that help enterprises operate smarter and faster. Job Summary: We are looking for a strong ServiceNow GRC Developer with solid experience in core ServiceNow concepts, GRC module implementations, scripting, and integration. The ideal candidate will contribute to building and enhancing GRC use cases like Policy & Compliance, Risk Management, and Audit Management, ensuring seamless integration with other systems. Key Responsibilities: Design, develop, and implement solutions in the ServiceNow GRC module (Governance, Risk, and Compliance) Configure and customize Policy and Compliance , Risk , Audit , and Vendor Risk Management applications Build and manage custom applications , workflows , catalog items , and UI components using JavaScript, Glide APIs , and ServiceNow Studio Develop and support REST/SOAP integrations between ServiceNow and external systems Perform end-to-end GRC solutioning , including form design, data model setup, and dashboard/report creation Collaborate with business analysts, architects, and stakeholders to gather and clarify requirements Conduct unit testing , code reviews, and performance tuning to maintain system health and quality Follow best practices for ServiceNow development, security, and documentation Required Skills: Minimum 4 years of hands-on development experience with ServiceNow Strong expertise in ServiceNow GRC module (at least 1 full-cycle implementation preferred) Proficiency in ServiceNow platform fundamentals , including forms, workflows, ACLs, notifications, and UI policies Advanced scripting skills in JavaScript , GlideRecord , Business Rules , Script Includes , UI Scripts , etc. Experience with ServiceNow Integrations (REST, SOAP, MID Server) Strong understanding of data security , roles/permissions , and CMDB/asset management Experience with Agile/Scrum delivery methodology Preferred Qualifications: ServiceNow Certified System Administrator (CSA) mandatory ServiceNow GRC Implementation Specialist preferred Exposure to IRM , Third-Party Risk , or Continuous Monitoring modules is a plus Strong communication and stakeholder management skills What We Offer: Competitive salary and performance bonuses Opportunity to work on cutting-edge GRC implementations Collaborative and growth-oriented culture Hybrid/flexible work model Apply Now: Send your resume to careers@nexusnow.ai with the subject: Application for ServiceNow GRC Developer Bangalore

About PhonePe PhonePe is India's largest transactions platform built on payments. It is the crusader of UPI payments and a proud contributor to the hypergrowth of the world's most advanced payments system. PhonePe started in 2015 and has achieved many milestones in the last 6 years and is rightly India's Payments App. Culturally, as a team, we learn fast, fail fast, act to impact, run lean and collaborate to bring out excellence and intellectual honesty in each other. Skills Expected: Solid foundational knowledge of information security principles and Governance, Risk, and Compliance (GRC). Exceptional communication abilities, both spoken and written. Effectively manage and engage stakeholders. Team & Responsibilities: As part of the IT Compliance team, you will collaborate with various stakeholders to ensure our products are developed in accordance with regulatory requirements. Given PhonePe's diverse licenses (Wallet, e-KYC, UPI, etc.), you will play a key role in supporting multiple compliance audits. Additionally, you will be involved in our Third-Party Risk Management program, conducting risk assessments on vendors in partnership with business teams and the vendors themselves.Day-to-Day (BAU):Your responsibilities will include interpreting regulations to align with PhonePe's business operations and identifying and gathering necessary evidence to demonstrate ongoing regulatory compliance. PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy

Role & responsibilities SAP IT Audit SAP security design/re-design, Bachelor's degree in an appropriate field from an accredited college/university Hands-on SAP Financial and/or security implementation and/or effective SAP audit experience, ideal candidate will have both Project or team lead experience, specifically within a consulting firm is preferred Excellent written and verbal communication, facilitation, and presentation skills with the ability to gain the confidence and respect of senior level executives Strong analytical and problem solving skills Ability to work well in teams Ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours Willingness to travel within India or abroad for continuous long periods of time Demonstrate integrity, values, principles, and work ethic and lead by example Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Would be required to execute SAP related audit and advisory engagements, as tabulated below Pre & Post implementation review (configurations controls review, BBP Review, Go-Live strategy etc.) System utilization review Advisory related to above., Data migration review, Pre & Post Go-Live reviews, Segregation of duties, SOD Ruleset review and design, SAP GRC Access Control and Process Controls review. Is expected to demonstrate strong business process understanding and provide reasonable recommendation as per industry best practice. Is expected to be a quick learner, adapt to new client situations quickly and work under a competitive environment Would be responsible for ensuring quality and timely delivery of projects Would be responsible to interact independently with various Head of Departments and CXO level personnel, SAP implementation partner, client IT teams and other stakeholders. Is expected to maintain excellent client relationship Must have problem solving skills, a strong drive and resilience and excellent documentation/ report writing skills Supervise associates and interns on engagements Minimum of 2 year of experience in any of the following areas: SAP Financial implementation SAP audit and advisory Any Graduation degree from a reputed college with minimum 3-4 years of SAP audit and implementation experience. One end to end SAP implementation experience or at least 3 years of SAP support in FICO, MM and SD module. Candidate should be well versed with the configuration across different processes for the respective modules. Deep technical skills with experience in any of the below modules: SAP FICO, MM SD GRC AC and Security (Roles Re-design, GRC functional and technical) BASIS Must have good business process knowledge and excellent communication skills Preferred candidate profile

Work Location:- Bangalore / Hyderabad / Pune / Gurgaon Experience:- 1.5 - 4.5 years JD Roles & responsibilities Responsible for delivering IT Risk & Controls, Assessments/Audits, and Compliance Security Assessments around IT and Business processes. Working with the organization onshore counterparts as part of project/engagement delivery. Supporting client service delivery by consistently meeting quality standards within the established turnaround time and allotted budget for the project. Ensuring personal and the team's compliance with the applicable Organization Risk Management policies & Organization proprietary tools. Mandatory technical &functional skills Control assurance and Risk Management Compliance- Security Assessments IT Internal/External Audit engagements Experience on Control testing of IT Application Controls (ITAC), IT General Controls (ITGC), and Business process controls. - MANDATE Must have significant experience, in depth knowledge and expertise in at least one of the SAP functional modules (SAP PTP, RTR, MM, SD, FICO, etc.) , SAP HANA dB, SAP S/4 Hana ERP. Must have a strong Business process understanding and have the ability to identify risks and control weaknesses and gaps. Experience on Functional testing, Control gap analysis and SDLC reviews. Knowledge of security measures and auditing practices within various operating systems, Applications, and databases. Personal drive and positive work ethic to deliver results within tight deadlines and in demanding situations Flexibility to adapt to a variety of engagement types, working hours and work environments and locations

Job Description: We are looking for an experienced ServiceNow Developer / Lead Consultant with over 11 years of IT experience and deep expertise in the ServiceNow platform / Snow Development . The ideal candidate will be responsible for the design, development, and implementation of ServiceNow solutions, while also mentoring junior developers and collaborating with business stakeholders for effective service delivery. Key Responsibilities: Lead the design, development, and deployment of complex ServiceNow modules including ITSM, ITOM, HRSD, CSM, and custom applications. Engage with clients and stakeholders to gather requirements, define architecture, and propose scalable solutions. Customize and configure ServiceNow workflows, business rules, UI policies, client scripts, script includes, ACLs, and notifications. Lead ServiceNow upgrades, patch management, and instance cloning. Integrate ServiceNow with other enterprise tools using REST/SOAP APIs, MID Server, and integration hubs. Drive implementation of ServiceNow best practices across development, deployment, and governance. Work with cross-functional teams to ensure quality assurance and UAT sign-offs. Manage ServiceNow instance security, performance tuning, and licensing optimization. Guide and mentor a team of junior ServiceNow developers and administrators. Participate in pre-sales, solution design, and proposal writing for ServiceNow opportunities. Required Skills: 5+ years hands-on experience with ServiceNow platform. Strong understanding of ServiceNow ITSM, CMDB, Discovery, Orchestration, and Flow Designer. Proven experience in implementation of at least 3 full-scale ServiceNow projects . Proficiency in JavaScript, Glide API, AngularJS, and REST/SOAP integrations. Experience with ServiceNow IntegrationHub, App Engine Studio, and Scoped Applications. Strong analytical, troubleshooting, and problem-solving skills. Excellent written and verbal communication skills.

Job Description Advanced experience with Service Now implementations Strong technical knowledge in Scripting System Definition Business Rules Menus UI Forms UI Actions Content Management Imports Transforms Web Services and Notifications Developing designing configuring and rollout of new application modules workflows and catalog requests Experience with Business Rules Script Includes UI Actions Scheduled Jobs all scripted aspects of the Service Now system Experience with ServiceNow client and server-side JavaScript and the Service Now APIs Strong understanding of ITSM best practice processes must be self-motivated with a proven track record in ITSM technologies Experience in the development and implementation of Service Portal and Widgets Experience in Integration with third-party tools Experience with the development and implementation of ServiceNow ITSM modules Incident Management Problem Management Configuration Management Change Management Knowledge Management or other ITSM application Hands-on experience integrating multiple data sources into a unified ServiceNow CMDB as well as integrating data between Primary Skills Service Now implementation/Integration ServiceNow ITSM/HRSD/ITOM/SPM Module ServiceNow Scripting (Server/Client/Javascript) Secondary Skills CSA Certification is (Good to have) Workflow

Job Title:: ======== SAP Security Senior Consultant x3 Job Location: (Multiple) ========= Dubai - UAE Riyadh - Saudi Doha - Qatar Type of Job: ========== Work from office Salary per annum: =============== USD $3000 - $5000 Full Tax Free USA Dollars - Depending on Experience Project duration: 1-2 Years Experience needed: 5 Years or above Qualification: BTech/MTech/MCA/MSc IT or any equivalent Roles and Responsibilities: Minimum of 5+ years of experience in SAP security administration and configuration. In-depth knowledge of SAP security concepts, including roles, authorizations, profiles, and user management. Proficiency in SAP GRC modules (Access Control, Process Control, Risk Management). Experience in conducting security assessments and audits within SAP environments. Design, implement, and maintain robust security controls within SAP systems, including SAP ERP, SAP S/4HANA, SAP BW, and SAP CRM. Manage user access and authorization, ensuring adherence to the principle of least privilege and segregation of duties (SoD). Leverage SAP GRC (Governance, Risk, and Compliance) solutions to manage access risks, identify vulnerabilities, and ensure compliance with industry regulations. Conduct security assessments and audits to identify and address security gaps within the SAP environment. Develop and implement a comprehensive SAP security strategy aligned with business objectives and best practices. Integrate SAP systems with identity providers and configure single sign-on (SSO) solutions for streamlined user access. No.of positions: 3 Nice to have: =========== Any onsite experience is added plus Any SAP Certifications are added advantage Business Verticals: ==================== Oil and Gas Petro Chemicals Industries Banking and Financial services Capital Markets Telecom Automotive Healthcare Logistics / Supply Chain Job Ref Code: SAP_SEC_0525 Email: ===== spectrumconsulting1985@gmail.com If you are interested, Please email your PDF / Word - CV by quoting job ref. code [ SAP_SEC_0525 ] as subject

We are looking for a seasoned GRC Presales and Solution Architect with deep expertise in auditing, compliance assessments, and designing governance, risk, and compliance (GRC) programs. The ideal candidate will have hands-on experience with international standards and regulatory frameworks such as ISO 27001, SOC 2, PCI DSS, HIPAA, GDPR , and more. In this leadership role, you will be responsible for developing tailored GRC solutions, supporting sales initiatives, and guiding clients through the compliance journey. This position requires a blend of technical acumen, consulting experience, and exceptional communication skills to drive impactful client engagements globally. Key Responsibilities Presales Leadership Collaborate with sales teams to identify client needs and align them with tailored GRC solutions. Lead the creation and delivery of proposals, solution demonstrations, and client presentations. Serve as the subject matter expert (SME) during sales cycles, engaging with senior stakeholders to position the organization as a trusted GRC advisor. Solution Development Design end-to-end GRC solutions in line with global frameworks (ISO 27001, SOC 2, PCI DSS, HIPAA, GDPR, etc.). Create implementation roadmaps, control documentation, and process frameworks suited for diverse industry verticals. Continuously evolve solution offerings by incorporating the latest regulatory trends and compliance requirements. Audit & Assessment Expertise Lead audits, gap assessments, and readiness programs for compliance certifications. Support clients in operationalizing compliance controls and risk mitigation strategies. Build and advise on governance frameworks and enterprise-wide risk management processes. Team & Stakeholder Management Partner with internal technical and delivery teams for smooth handover from presales to execution. Mentor junior consultants, helping to scale the GRC practice through knowledge sharing and training. Maintain strong client relationships and act as a liaison with regulatory bodies when required. Qualifications & Experience Bachelor's degree in Computer Science, Information Security, or a related field (Master's degree or MBA preferred). Preferred certifications: CISSP, CISA, CISM, CRISC, ISO 27001 Lead Auditor/Implementer . Experience 15+ years of experience in GRC domains. Proven track record managing large-scale compliance programs across geographies and industries. Strong hands-on experience with GRC tools and processes, including audit readiness, risk management, and control implementation. Key Skills & Competencies Technical Expertise: In-depth knowledge of GRC frameworks, control design, and industry regulations. Familiarity with tools like RSA Archer, ServiceNow GRC, etc. Consultative Selling: Ability to articulate technical solutions into business value. Skilled in creating RFP responses, solution architectures, and sales documentation. Project Management: Experience managing complex, multi-stakeholder GRC initiatives with a strong focus on quality and timely delivery. Leadership & Communication: Excellent presentation, negotiation, and interpersonal skills. Ability to lead teams and collaborate across functional units. Required Skills GRC, Presales

Department: Information Security Location: Mumbai Reports to: IS GRC Head Employment Type: Full-time Job Purpose: This role is responsible for driving the organization’s Information Security Governance, Risk, and Compliance (GRC) function, Industry standards (ISO 27001, NIST CSF), and regulatory requirements. The candidate will lead internal audits, vendor risk governance, SOC 2 readiness, automation initiatives, client assessments, and security awareness across the enterprise—while managing a team of security professionals. Key Responsibilities: Governance, Risk & Compliance • Implement and maintain a scalable Information Security GRC framework based on ISO 27001, NIST Cybersecurity Framework, and applicable regulatory requirements (RBI, SEBI, IRDAI, DPDPA). • Manage the information security policy lifecycle, risk registers, and control objectives across business units. • Lead the exception management process, including impact assessments, approval workflows, and periodic reviews. Internal Audit & Control Testing • Plan and execute periodic internal audits, control design evaluations, and operational effectiveness testing for IT and cybersecurity controls. • Coordinate external assessments, including SOC 2 readiness, ISO 27001 surveillance audits, and customer/compliance audits. • Track and close audit findings with clear ownership, root cause analysis, and sustainable remediation plans. Vendor Risk Management (End-to-End) • Oversee the Third-Party Risk Management (TPRM) lifecycle: onboarding, risk assessment, security clauses, ongoing monitoring, and exit governance. • Drive continuous oversight of critical vendors based on data exposure and service criticality, using automated tools where feasible. Automation & Tooling • Identify manual GRC activities suitable for automation; perform POCs, evaluate tools, and drive implementation. • Lead automation initiatives for risk assessments, control testing, evidence gathering, and exception workflows. SOC 2 & Compliance Readiness • Lead organizational readiness for SOC 2 Type 1 and Type 2 audits, working with Business SPOC's, application owners and control owners. • Align existing practices to SOC trust service criteria (Security, Availability, Confidentiality). Security Training & Awareness • Develop and deliver cybersecurity training and awareness programs tailored to various stakeholder groups (employees, management, vendors). • Promote a risk-aware culture and drive ongoing compliance awareness campaigns. Incident Response Oversight • Support and enhance the incident response governance process by aligning it with NIST CSF framework. • Ensure roles, responsibilities, and reporting mechanisms are clearly defined and followed during incidents. • Oversee the documentation of lessons learned, RCA, and incorporation of incidents into risk registers. Reporting & Stakeholder Engagement • Prepare and present dashboards, heatmaps, and reports for executive management, audit committees, and the board. • Maintain governance KRIs and provide insights into risk trends, audit closures, and compliance status. • Serve as a key liaison during client assessments, RFP security responses, and due diligence efforts. Team Leadership • Manage, mentor, and upskill a team of GRC analysts and specialists. • Allocate responsibilities, track performance, and foster collaboration across IT, Legal, Procurement, and Business teams. Key Requirements: Qualifications: • Bachelor’s/Master’s in Information Security, Computer Science, or related field. • Professional certifications preferred: CISA, CRISC, ISO 27001 LA, CISSP, CCSK, or equivalent. Experience: • 8+ years of experience in Information Security GRC, IT Risk, and Regulatory Compliance. • Strong expertise in internal audits, control testing, and vendor security governance. • Hands-on experience in managing SOC 2, ISO 27001, or similar frameworks. • Demonstrated leadership in team management and multi-stakeholder coordination. • Exposure to automating GRC functions using platforms like ServiceNow GRC, Archer, OneTrust, or similar. Skills & Competencies: • Strong analytical, documentation, and reporting skills. • Effective communication across technical and business audiences. • High level of integrity, ownership, and stakeholder management.

JOB DESCRIPTION: He will be responsible for a defined scope of the management system, location, engagement or specialty within Risk and Compliance and reports to the Location Risk and Compliance Manager. Mandatory Skill- ISO 27001 Certified and Knowledge of the Implementation. Note :- Only those candidates apply who is certified and working on The ISO 27001 Implementation. Responsibilities 1. Conduct periodic Risk Assessment, review the identified/open risk and guide the client engagements and support function to treat the risk through cost effective controls 2. Conduct Business Impact Analysis for client engagements and support function 3. Guide the client engagements and support function to draft Business Continuity Plan and test as per Operational Risk & Compliance Calendar 4. Conduct periodic Information Security, Quality and Business continuity awareness sessions for all new joiners 5. Develop and promote Information security, Quality and Business continuity awareness through various channels like email blasters, posters. 6. Frontend Security Incident Response and Management for Security and Business continuity incidents 7. Develop Information security procedures in line with Global ISMS and enforce the same 8. Hands on experience in Governance, Customer Satisfaction, Continual Improvement management +++ Experience in Information Security and Business Continuity Management. Good level of familiarity in ISO 27001, ISO 27701 and ISO 22301 Standards Strong background in one or more Management Systems. Able to demonstrate strong problem solving, communication and improvement skills.

About The Role Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information ? Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails ? Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA??s (90-95%), response time and resolution time TAT ? ? Mandatory Skills: SAP GRC - Governance-Risk-Compliance. Experience5-8 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information ? Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails ? Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA??s (90-95%), response time and resolution time TAT ? ? Mandatory Skills: GRC Consulting. Experience5-8 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information ? Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails ? Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA’s (90-95%), response time and resolution time TAT ? ? Mandatory Skills: GRC Consulting. Experience3-5 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution ? Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support ? 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet ? Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter ? Mandatory Skills: IBM OpenPages Security. Experience8-10 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of the role is to support process delivery by ensuring daily performance of the Production Specialists, resolve technical escalations and develop technical capability within the Production Specialists. ? Do Oversee and support process by reviewing daily transactions on performance parameters Review performance dashboard and the scores for the team Support the team in improving performance parameters by providing technical support and process guidance Record, track, and document all queries received, problem-solving steps taken and total successful and unsuccessful resolutions Ensure standard processes and procedures are followed to resolve all client queries Resolve client queries as per the SLA’s defined in the contract Develop understanding of process/ product for the team members to facilitate better client interaction and troubleshooting Document and analyze call logs to spot most occurring trends to prevent future problems Identify red flags and escalate serious client issues to Team leader in cases of untimely resolution Ensure all product information and disclosures are given to clients before and after the call/email requests Avoids legal challenges by monitoring compliance with service agreements ? Handle technical escalations through effective diagnosis and troubleshooting of client queries Manage and resolve technical roadblocks/ escalations as per SLA and quality requirements If unable to resolve the issues, timely escalate the issues to TA & SES Provide product support and resolution to clients by performing a question diagnosis while guiding users through step-by-step solutions Troubleshoot all client queries in a user-friendly, courteous and professional manner Offer alternative solutions to clients (where appropriate) with the objective of retaining customers’ and clients’ business Organize ideas and effectively communicate oral messages appropriate to listeners and situations Follow up and make scheduled call backs to customers to record feedback and ensure compliance to contract SLA’s ? Build people capability to ensure operational excellence and maintain superior customer service levels of the existing account/client Mentor and guide Production Specialists on improving technical knowledge Collate trainings to be conducted as triage to bridge the skill gaps identified through interviews with the Production Specialist Develop and conduct trainings (Triages) within products for production specialist as per target Inform client about the triages being conducted Undertake product trainings to stay current with product features, changes and updates Enroll in product specific and any other trainings per client requirements/recommendations Identify and document most common problems and recommend appropriate resolutions to the team Update job knowledge by participating in self learning opportunities and maintaining personal networks ? Deliver NoPerformance ParameterMeasure1ProcessNo. of cases resolved per day, compliance to process and quality standards, meeting process level SLAs, Pulse score, Customer feedback, NSAT/ ESAT2Team ManagementProductivity, efficiency, absenteeism3Capability developmentTriages completed, Technical Test performance Mandatory Skills: ARAS - PLM. Experience5-8 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information ? Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails ? Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA’s (90-95%), response time and resolution time TAT ? ? Mandatory Skills: SAP GRC - Governance-Risk-Compliance. Experience3-5 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution ? Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support ? 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet ? Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter ? Mandatory Skills: GRC Process. Experience5-8 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information ? Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails ? Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA’s (90-95%), response time and resolution time TAT ? ? Mandatory Skills: ServiceNow - GRC. Experience3-5 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution ? Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support ? 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet ? Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter ? Mandatory Skills: GRC Consulting. Experience8-10 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.