Information Security GRC Consultant

Role: Information Security GRC Consultant

Department: GRC

Location: Mumbai, India


Key Responsibilities:

  • Manage the ISMS including maintenance of the current ISO 27001 certification scope as well as strategic expansion across the customer's organization.
  • Support the management of information security governance for the organization, ensuring adherence to group policies and standards.
  • Can ensure key information security risks and issues are identified, addressed, and resolved in a timely manner.
  • Coordinate periodic security testing (e.g. penetration testing) in coordination with the Application Security Team and prioritise and manage response activities.
  • Run employee awareness campaigns, and coordinate for use cases around Phishing Simulation across the organization.
  • Assist with updating the Third Party Risk Management framework including policy, procedures, due diligence questionnaires and the monitoring of third parties adherence to information security and data privacy obligations.
  • Assist with the client management aspects of the Information Security team, including client and potential client questionnaires; help design a more effective process including a self-service process and a library of standard responses.
  • Provide insights on overall GRC with Weekly updates which covers overall InfoSec and compliance status.
  • Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment.

Ideal Candidate:

  • Recent experience of working in a similar capacity in a financial services organisation.
  • Excellent interpersonal skills, comfortable working at all levels within an organisation and in a wide variety of situations.
  • Relevant industry certification (e.g. ISO 27001 Lead Auditor, CISSP, CISM, etc.) is optional
  • Broad level of knowledge of security and risk issues and techniques across platforms.
  • Excellent knowledge of methodologies, processes and tools associated with supporting this function effectively.


About CyberNX:

Cybernx was founded by individuals who have extensive experience in uplifting and transforming other businesses. Cybernx was founded by a small group of entrepreneurs with big ideas and a lot of ambition. The Cybernx team has innovated and risen through the top positions to become one of the world's top cyber security companies.



Share this on:

Want to apply for this position?



Captcha Image

By clicking on the 'Submit' button you agree that you have read, and accept the Terms Of Use and Privacy Policy.


CyberNX
Typically replies within 10 minutes

CyberNX
Hi there 👋

How can I help you?
17:38
×
Enquire Now!