37 It Grc Jobs

Roles and Responsibilities Collaborate with stakeholders to implement process changes, monitor progress against agreed-upon timelines, and track key performance indicators (KPIs). Develop reports on audit findings and present them to management. Conduct internal audits, risk assessments, and process improvements Bring in Cost benefits Desired Candidate Profile 1-6 years of experience in internal audit or consulting firm. Bachelor's degree in Commerce (B.Com), MBA/PGDM in Finance or related field; professional certifications like CA/CPA/CISA are an added advantage. Strong understanding of auditing principles, data analytics tools, risk management techniques, business process improvement metho...

Role & responsibilities T Infrastructure Management: Oversee the design, implementation, and maintenance of the organizations IT infrastructure, including servers, networks, storage, and On-prim systems. Manage and optimize the performance, scalability, and security of IT systems. Ensure high availability and disaster recovery plans are in place and tested regularly. Troubleshoot and resolve infrastructure-related issues, ensuring minimal downtime. Collaborate with cross-functional teams to assess and implement new infrastructure solutions. Governance, Risk, and Compliance (GRC) Management: Develop and implement GRC policies, processes, and controls to ensure adherence to regulatory requirem...

Designation : Technology Risk Manager Reporting to : Chief Risk Officer Job Description : 1. Risk Identification and Analysis Conduct systematic risk assessments in line with ISO/IEC 27005 and CSCRF, identifying vulnerabilities, threats, and potential impacts on organizational assets. Maintain and update a risk inventory, categorizing risks by criticality and likelihood. Develop risk scenarios and conduct business impact analyses (BIA). 2. Risk Evaluation and Prioritization Apply qualitative and quantitative risk evaluation methods to prioritize risks. Align risk evaluations with organizational objectives, compliance requirements, and the business risk appetite. Engage with stakeholders to v...

Sr. Data Center Auditor Certification: Any 2 from ISO27001 LA/CISA/CISM/CISSP, PMP/Prince2, ITIL/ISO 20000 or relevant ITSM/IT Governance certs. JD: Experience in SWAN/SDC/e-Gov PM plus design/monitoring of WAN/Data Centre projects is a plus.

The job The IT GRC Junior Analyst supports AVEVAs internal control certification activities under PCAOB/SOX. This role operates within the first line of defence and is responsible for validating IT General Control (ITGC) documentation, tracking audit evidence, and ensuring timely readiness of compliance deliverables. This role should ensure that documentation meets required standards across AVEVAs business-critical systems. Key responsibilities Validate ITGC evidence across access, change, and operational control areas using QA checklists Support control owners in preparing audit-ready documentation, ensuring clarity and completeness Maintain centralized repositories and trackers (e.g. Share...

Chief Manager / Senior Manager Information Security GRC Location: Gurugram Shift: Day Workdays: 5 Days/Week Experience: Chief Manager: 8 to 14 years Senior Manager: 5 to 8 years Role Summary A strategic and execution-driven role focused on aligning enterprise security posture with Indian & Global standards, regulatory mandates, and operational risk frameworks. Youll lead audits, compliance assessments, vendor risk evaluations, and training programs while leveraging your technical and project management expertise. Key Responsibilities Governance, Risk & Compliance (GRC) Lead InfoSec audits and compliance assessments Conduct vendor risk evaluations and third-party assessments Prepare audit doc...

o Be responsible for day-to-day technical administration of the RSA Archer platform o Lead the administration of items such as user accounts, data feeds, workflow & reports access etc. o Provide development / configuration support based on technical requirements o Own technical issues/problem resolution and request management o Execute test cases and document them o Support User Acceptance Tests and implement code into production o Define/configure questionnaires/workflows/forms/reports in Archer o Participate in and support Archer version upgrades o Install, test and deploy new applications in Archer o Work with service management and infrastructure teams as needed on technology upgrades, m...

6+ years of IT Business Analyst experience with sound Risk and Compliance Good working knowledge in RCSA, OpRisk, ERM etc . Should have been part of any GRC implementation for any banks GRC concepts and BRD Share Your CV at tanya@praxists.co.in

Key Responsibilities: Perform audits and assessments of internal controls (regulatory compliance Audits, ISO 27001, NIST, GDPR, HIPAA, etc.). Conduct risk assessments and develop mitigation plans across IT and business processes.

Develop, implement, and maintain IT GRC policies, procedures, and frameworks. Conduct IT risk assessments in line with RBI/IRDAI/SBI frameworks and recommend mitigation measures. Monitor and report IT risk metrics. Align IT standards like ISO 27001,

Archer Developer o Be responsible for day-to-day technical administration of the RSA Archer platform o Lead the administration of items such as user accounts, data feeds, workflow & reports access etc. o Provide development / configuration support based on technical requirements o Own technical issues/problem resolution and request management o Execute test cases and document them o Support User Acceptance Tests and implement code into production o Define/configure questionnaires/workflows/forms/reports in Archer o Participate in and support Archer version upgrades o Install, test and deploy new applications in Archer o Work with service management and infrastructure teams as needed on techn...

Key Responsibilities: • Define the overall GRC strategy, policies, standards, and procedures. • Oversee the identification, assessment, analysis, and prioritization of enterprise-wide risks, including operational, reputational, and cybersecurity risks. • Develop and implement robust risk mitigation strategies and controls • Monitor the effectiveness of risk management activities and report on the organization's risk posture to senior leadership and the Board. • Ensure the organization complies with all applicable laws, regulations, industry standards, and internal policies (e.g., data privacy regulations like DPDPA, RBI regulatory requirements and compliance) • Develop and manage compliance ...

Experience Implementation of ISO 27001, GRC ITGC & IT Regulatory compliance Knowledge in ISMS, ITRS, Knowledge about regulators RBI, IRDA, SEBI Experience in PCI DSS, ISO 27001, SOC 2, GDPR, RBI guidelines Experience in audits & risk assessments.

3 - 15yrs exp in IT & IT Security across various levels Certified in ISO 27001: 2013 /ISO 22301:2019 Preferred Enterprise IT Governance including knowledge of IT risk management & controls Strong PPT creation & design Func as SPOC for IT GRC & Audits Required Candidate profile Manage establishment of operate & tech decision-making process to ensure IT svc are align to organization priorities & risk appetite Prep sec dashboards with KPIs, sec metrics for CISO presentations Perks and benefits +++ Mediclaim + 10% perf bonus + 30% Company Bonus

Permanent opportunity with an RBI-licensed FinTech company for professionals with 2-3 years of experience in GRC, InfoSec, or Compliance.Requires expertise in PCI DSS, ISO 27001, SOC 2, GDPR, RBI guidelines, & experience in audits & risk assessments.

Hello, We are looking for candidates who are Currently serving Notice Period or 30 Days Job Title: Associate - IT Governance & Compliance Reports to: Lead - IT Governance & Compliance Location: Mumbai Experience: 2-6 Years Relevant 1. Role Overview: The Associate of IT Governance & Compliance will be part of the development, implementation, and oversight of the organization's IT Governance, and compliance framework. This role ensures stringent adherence to regulatory mandates, particularly those issued by the Reserve Bank of India (RBI). The ideal candidate must demonstrate a comprehensive understanding of RBI regulations, IT to Business strategy alignment, IT Policies & Processes and Govern...

Deputy Manager IT GRC (Governance, Risk, and Compliance) -Pune Summary Job Summary The Deputy Manager IT GRC (Governance, Risk, and Compliance) role at ENGIE India is crucial in ensuring the organization's Digital & IT landscape is secure, compliant, and aligned with business objectives This role involves developing, implementing, and managing IT GRC, risk management, and ensuring compliance with regulations and internal controls This is an individual contributor role based in Pune, India, with occasional onsite travel to support Digital & IT audits, Main Objectives The primary objective is to ensure the IT landscape is secure, compliant, and aligned with business goals This involves: Implem...

Location: Gurgaon Sector 58 Preference: Candidates with experience in NBFCs Compensation: Up to 00 LPA Requirements: Strong communication skills, a compelling personality, and relevant profile exposure -----JOB DESCRIPTION--- For a role that encompasses IT GRC (Governance, Risk, and Compliance) along with IT Security Audit responsibilities, especially in the context of NIST, ISO 27001, SOC2, ITGC audit, RBI (Reserve Bank of India) regulatory compliance, IT Security Compliance, Business Continuity Management (BCM), Disaster Recovery (DR), and Vulnerability Assessment (VA), the roles and responsibilities would typically include: Governance, Risk, and Compliance (GRC): Develop and maintain IT g...

Dear Candidate, Greetings. We are hiring for the role of Biso Helius Technologies Hyderabad. Work mode – Work from office Project – Singlife Exp – 10 to 15 years Please find the below JD for your reference. Role: BISO Work Location: Hyderabad (ODC) Key Responsibilities Focuses on Core BISO activities: Conduct Information Security Business Impact Assessments (ISBIA) for Projects, Applications, and Third-Party Outsourcing arrangements, aligning with Singlife Standards. Collaborate with Technology and Business units to evaluate the impact of control deficiencies. Lead the implementation of IS standards at the business level, ensuring alignment of procedures and practices with established standa...

Job Overview: We are seeking a skilled and experienced IT Infrastructure and Governance, Risk, and Compliance (GRC) Specialist to join our team. The ideal candidate will have a proven track record in managing and optimizing IT infrastructure, Network while ensuring compliance with industry regulations and best practices. Person will be responsible for maintaining secure and efficient IT systems, as well as ensuring that governance, risk management, and compliance processes are effectively integrated within the organizations operations. Job Title: IT Infrastructure and GRC (Governance, Risk, and Compliance) Specialist Location: Gurgaon Job Type: Full-Time Experience Required: 5+ Years Key Res...

Description: You'll be responsible for: Ensuring that cybersecurity risk management methods is embedded in Client operations, working with IT functions, other enabling functions, and the business lines across the member firm. Maintaining the operational cybersecurity risk register and Strategic Cyber Risk Dashboard for cybersecurity and provide regular updates to CISO leadership and where required, risk governance committees on the operational risks status. Managing the risk identification, analysis, assessment, treatment, and reporting deliverables, reporting the cybersecurity risk profile, and supporting security governance across the member firm. Providing expert security advice and consu...

Dear Candidate, We are hiring an IT Risk Analyst to identify, assess, and mitigate risks to the organization's information systems and data. This role supports compliance initiatives and strengthens the IT risk management framework. Key Responsibilities: Conduct IT risk assessments, gap analysis, and control evaluations. Develop mitigation strategies for identified security and compliance risks. Monitor regulatory changes and ensure adherence to frameworks (e.g., NIST, ISO 27001). Prepare risk reports, scorecards, and presentations for stakeholders. Collaborate with audit, security, and IT teams on risk response plans. Required Skills & Qualifications: Experience in IT risk, governance, or a...

Req ID: 327248 We are currently seeking a Archer IRM Developer to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Configure and develop solutions for customers on the Archer IRM platform Configure and develop integrated solutions for customers using the Archer IRM platform utilizing additional industry standard applications including SSO, web services integrations, import sets and table polling Design and configure complex configurations including advanced workflow, questionnaires, layouts, reports, data feeds and data imports, campaigns, dashboards, notifications, package installation and workflows, etc. Support and escalate issues and defects related to specific customer environ...

10+ yrs exp IT & IT Security Certified in ISO 27001: 2013 Enterprise IT Governance including knowledge of IT risk management and controls Strong power point presentation creation and design Func as SPOC for IT GRC & Audits Team Leading Exp preferable Required Candidate profile Manage establishment of operate & tech decision-making process to ensure IT svc are align to organization priorities & risk appetite Prep sec dashboards with KPIs, sec metrics for CISO presentations Perks and benefits Mediclaim + additional 10% performance bonus

BE, B.Tech, MSc (Information Technology), CISA, CISSP, CEH General Description: Candidates must possess hands-on audit experience in IT general controls. As Information Technology Auditor, you will examine, evaluate and verify policies, procedures and internal controls around information systems and networks. Exposure to ISO27001, SSAE16, Vulnerability Assessment and Penetration Testing, Security Technologies is an added advantage. Responsibilities: Timely completion of information technology and information security audits in a manner that is consistent with the professional standards set by Qadit. Adequately analyze and document all information systems and related controls, and develop an ...