Role: Information Security GRC Consultant
Department: GRC
Location: Mumbai, India
Key Responsibilities:
- Manage the ISMS including maintenance of the current ISO 27001 certification scope as well as strategic expansion across the customer's organization.
- Support the management of information security governance for the organization, ensuring adherence to group policies and standards.
- Can ensure key information security risks and issues are identified, addressed, and resolved in a timely manner.
- Coordinate periodic security testing (e.g. penetration testing) in coordination with the Application Security Team and prioritise and manage response activities.
- Run employee awareness campaigns, and coordinate for use cases around Phishing Simulation across the organization.
- Assist with updating the Third Party Risk Management framework including policy, procedures, due diligence questionnaires and the monitoring of third parties adherence to information security and data privacy obligations.
- Assist with the client management aspects of the Information Security team, including client and potential client questionnaires; help design a more effective process including a self-service process and a library of standard responses.
- Provide insights on overall GRC with Weekly updates which covers overall InfoSec and compliance status.
- Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment.
Ideal Candidate:
- Recent experience of working in a similar capacity in a financial services organisation.
- Excellent interpersonal skills, comfortable working at all levels within an organisation and in a wide variety of situations.
- Relevant industry certification (e.g. ISO 27001 Lead Auditor, CISSP, CISM, etc.) is optional
- Broad level of knowledge of security and risk issues and techniques across platforms.
- Excellent knowledge of methodologies, processes and tools associated with supporting this function effectively.
About CyberNX:
Cybernx was founded by individuals who have extensive experience in uplifting and transforming other businesses. Cybernx was founded by a small group of entrepreneurs with big ideas and a lot of ambition. The Cybernx team has innovated and risen through the top positions to become one of the world's top cyber security companies.
Share this on: