Senior Manager/Manager - Risk Management - IT

As a Senior Manager/Manager in Risk Management at Mumbai, your primary responsibility will be to coordinate with various departments to continuously identify, mitigate, and manage risks. You will be required to define and assess Key Risk Indicators (KRI Metrics) for Technology and Information Security related processes. Your role will also involve performing Root Cause Analysis (RCA) for Technology & Information Security related processes and conducting Risk Control Self-Assessment, assigning risk severity score/rating, and tracking/reporting the mitigation plans to remediate the identified risks. Your qualifications should include a Masters/Bachelors degree or MBA in engineering/information system/computer science or a related field. Relevant certifications such as CISA/CISSP/CRISC/CISM/DISA or any other recognized Risk Management Certification/IT Risk Management Certification are preferred. You should possess a strong knowledge of IT management frameworks, industry standards, and best practices such as ISO 27000, NIST Cyber Security Framework, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402, etc. Key Responsibilities: - Coordinating with various departments to identify, mitigate, and manage risks - Defining and Assessing Key Risk Indicators for Technology and Information Security processes - Performing Root Cause Analysis for Technology & Information Security processes - Conducting Risk Control Self-Assessment and tracking/mitigating identified risks - Reviewing processes, existing policies/procedures, and assisting in their creation and maintenance - Coordinating with auditors for IT audits and ensuring closure of audit findings - Performing Third Party Assessment of vendors and partners - Developing and maintaining periodic risk reporting to stakeholders - Monitoring and tracking control validation reviews and self-identified issues - Implementing key operational risk components/programs across different business functions Your experience should include a minimum of 7-8 years in IT general controls, internal/external audit relationships, IT risk management, IT security standards, or IT change management. Skills required for this role include exposure to Risk Management and Governance Frameworks/Systems, understanding of data analysis/GRC tools, familiarity with Indian regulatory requirements related to IT risk management, and up-to-date knowledge of emerging IT and cyber risk. Please email your resume to careers@cdslindia.com with the position applied for mentioned in the subject column.,