Information Security GRC Consultant

Role: Information Security GRC Consultant

Department: GRC

Location: Mumbai, India

Key Responsibilities:

  • Manage the ISMS including maintenance of the current ISO 27001 certification scope as well as strategic expansion across the customer's organization.
  • Support the management of information security governance for the organization, ensuring adherence to group policies and standards.
  • Can ensure key information security risks and issues are identified, addressed, and resolved in a timely manner.
  • Coordinate periodic security testing (e.g. penetration testing) in coordination with the Application Security Team and prioritise and manage response activities.
  • Run employee awareness campaigns, and coordinate for use cases around Phishing Simulation across the organization.
  • Assist with updating the Third Party Risk Management framework including policy, procedures, due diligence questionnaires and the monitoring of third parties adherence to information security and data privacy obligations.
  • Assist with the client management aspects of the Information Security team, including client and potential client questionnaires; help design a more effective process including a self-service process and a library of standard responses.
  • Provide insights on overall GRC with Weekly updates which covers overall InfoSec and compliance status.
  • Develop relevant metrics, analyze data, identify trends and help drive improvements to the control environment.

Ideal Candidate:

  • Recent experience of working in a similar capacity in a financial services organisation.
  • Excellent interpersonal skills, comfortable working at all levels within an organisation and in a wide variety of situations.
  • Relevant industry certification (e.g. ISO 27001 Lead Auditor, CISSP, CISM, etc.) is optional
  • Broad level of knowledge of security and risk issues and techniques across platforms.
  • Excellent knowledge of methodologies, processes and tools associated with supporting this function effectively.

About CyberNX:

Cybernx was founded by individuals who have extensive experience in uplifting and transforming other businesses. Cybernx was founded by a small group of entrepreneurs with big ideas and a lot of ambition. The Cybernx team has innovated and risen through the top positions to become one of the world's top cyber security companies.

Share this on:

Want to apply for this position?

Captcha Image

By clicking on the 'Submit' button you agree that you have read, and accept the Terms Of Use and Privacy Policy.