Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Jobs

Interviews

Home
>
Jobs in bengaluru
>
Ethos Life Technologies
>
Senior GRC Analyst, Security

Senior GRC Analyst, Security

Ethos Life Technologies

3 - 8 years

5 - 10 Lacs

bengaluru

Posted:2 days ago| Platform:

Apply

Skills Required

computer science san pci dss cisa information security risk assessment iso 27001 hipaa risk management auditing

Work Mode

Work from Office

Job Type

Full Time

Job Description

About the Role

The GRC Analyst is responsible for supporting the organizations information security governance, risk, and compliance activities. This role involves ensuring that the organization s security policies, procedures, and practices are aligned with regulatory requirements, industry standards, and best practices. The ideal candidate will have a strong understanding of information Security & Privacy principles, Third Party Vendor Risk management, ITGC & SOC2 audit controls, and the ability to communicate complex security issues to various stakeholders.

Duties and Responsibilities:

Governance:

Develop, implement, and maintain information security policies and procedures.
Ensure alignment of security governance frameworks with business objectives and regulatory requirements.
Assist in the creation and maintenance of the information security governance structure.

Risk Management:

Conduct information security risk assessments and evaluate the effectiveness of existing controls.
Identify, assess, and document risks related to information security & privacy across the organization.
Conduct regular risk assessments for existing and potential vendors.
Monitor and report on the organization s information security risk posture.

Compliance:

Ensure compliance with relevant information security regulations, standards, and frameworks (e.g., ISO 27001, SOC2, ITGC, NIST, PCI-DSS, CCPA, NYDFS, HIPAA).
Conduct regular security compliance assessments and audits.
Track and report on compliance gaps and work with relevant teams to address deficiencies.
Stay current on emerging security regulations and industry best practices.
Develop and deliver information security awareness and training programs to staff at all levels.

Reporting and Documentation:

Maintain comprehensive and accurate documentation related to information security governance, risk, and compliance.
Prepare and present reports on the organization s information security activities, risk assessments, and compliance status to senior management.
Ensure all documentation is up-to-date and in compliance with regulatory and organizational requirements.

Qualifications and Skills:

Bachelor s degree in Information Security, Computer Science, Cybersecurity, or a related field.
3+ years of experience in information security, risk management and compliance.
Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, NIST, CCPA, PCI-DSS, NYDFS, HIPAA).
Experience with security & privacy risk assessment and management methodologies.
Extensive experience in Third Party/Vendor Risk Management (TPRM) with hands-on expertise in managing VRM tools (e.g.,OneTrust, ProcessUnity, Vanta).
Experience in supporting security audits (SOC2, Customer & Partners Audits) - At least 2 complete audit cycles of SOC2.
Excellent communication skills, with the ability to convey complex security concepts to non-technical stakeholders.
Relevant certifications such as ISO 27001 LA LI, CISA, CRISC are highly desirable.

#LI-Hybrid

More Jobs at Ethos Life Technologies

Senior Engineering Manager

Bengaluru

4.0 - 9.0 yrs

INR 12 - 16 Lacs

Support Representative

Bengaluru

1.0 - 3.0 yrs

INR 1 - 2 Lacs

Documentation Specialist

Bengaluru

2.0 - 7.0 yrs

INR 3 - 6 Lacs

Senior Product Designer

Bengaluru

2.0 - 5.0 yrs

INR 25 - 30 Lacs

Insurance Customer Operations Associate

Bengaluru

Experience: Not specified

INR 1 - 3 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now

Ethos Life Technologies

Login to

Please Verify Your Phone or Email

Confirm Action

Search

Profile

Upskill and Grow with AI

Senior GRC Analyst, Security