8.0 - 12.0 years

0 Lacs

karnataka

On-site

The company Ushur delivers the world's first Customer Experience Automation platform tailored for regulated industries. Ushur's focus is on providing ideal self-service experiences by infusing intelligence into digital interactions, resulting in delightful and impactful customer engagements. With a compliance-ready infrastructure, Ushur specializes in creating vertical AI Agents for healthcare, financial services, and insurance sectors. As the GRC Lead at Ushur, you will collaborate with the GRC Director to execute GRC initiatives and strategies. Your primary responsibilities will include implementing processes to uphold protection, compliance, and certifications within the organization. You will work towards acquiring new certifications, supporting audits, and ensuring ongoing compliance. This role will require close collaboration with various teams, offering guidance to product management, customer success, system architects, engineering, and quality assurance teams. Key Responsibilities: - Implementing the GRC charter to enhance the overall security and compliance posture of the organization. - Collaborating with external security consultants to develop a security-conscious mindset within the teams. - Supporting and adhering to regulations such as CCPA, GDPR, HIPAA, HITRUST, etc. - Assisting in certification and compliance audit activities like SOC2, HITRUST, ISO 27001, and PCI-DSS. - Contributing to product and corporate security hygiene. - Establishing policies, procedures, and guidelines. - Serving as a subject matter expert in security and GRC practices. - Continuously improving GRC processes in alignment with stakeholders and existing tools. Qualifications: - 8-10 years of IT experience with a minimum of 3 years in security/GRC. - Proficiency in Cloud Concepts, Cloud Security, and SaaS Security. - Experience in an AWS cloud environment is essential. - Ability to draft policies, procedures, and reports. - Familiarity with Security Operations is advantageous. - Hands-on experience in compliance tasks, assessments, risk management, and audits. - Knowledge of organization accreditations/certifications like SOC2, ISO 27001, PCI DSS. - Understanding of frameworks, regulations, standards, and best practices such as NIST CSF, CSA, CIS, HITRUST. - Prior exposure to GRC tools is a plus. - Skills in DevSecOps/DevOps, security testing, vulnerability management, data security, incident response, etc. - Awareness of industry regulations on security and privacy like GDPR, CCPA, DPDP. Join Us for: - Thriving Company Culture that values respect, inclusion, and collaboration. - Diversity and inclusivity in an innovative and supportive environment. - Work-life balance with flexible paid time off and wellness initiatives. - Comprehensive Health Benefits including medical insurance and wellness programs. - Competitive compensation, stock options, and growth opportunities. - Emphasis on lifelong learning with certification courses and professional development support. - Flexible Work Options to support collaboration and personal well-being, either in-office or hybrid model.,

Posted 2 days ago

Apply

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.