Search by job, company or skills

fulcrum digital inc

GRC Analyst

fulcrum digital inc
Pune, India
2-5 Years
Save
  • Posted 5 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

Who are we

Fulcrum Digital is an agile and next-generation digital accelerating company providing digital transformation and technology services right from ideation to implementation. These services have applicability across a variety of industries, including banking & financial services, insurance, retail, higher education, food, healthcare, and manufacturing.

Job Summary

We are seeking a detail-oriented and analytical GRC Analyst to support the organization's governance, risk management, and compliance initiatives. The ideal candidate will help identify risks, ensure regulatory compliance, support audit processes, and strengthen internal controls to protect the organization's assets and reputation.

Key Responsibilities

Governance

  • Support development and maintenance of security policies, standards, and procedures

  • Ensure alignment with industry frameworks (e.g., ISO 27001, NIST, SOC 2)

  • Assist in policy awareness and training initiatives


Risk Management

  • Conduct risk assessments and maintain risk registers

  • Identify, analyze, and document security and operational risks

  • Track remediation plans and risk mitigation efforts

  • Support third-party/vendor risk assessments


Compliance

  • Monitor compliance with regulatory and industry requirements (e.g., GDPR, HIPAA, PCI-DSS as applicable)

  • Assist with internal and external audits

  • Collect and maintain evidence for compliance reporting

  • Coordinate remediation of audit findings


Reporting & Documentation

  • Prepare risk and compliance reports for management

  • Maintain documentation of controls and audit artifacts

  • Track KPIs and KRIs


Required Qualifications

  • Bachelor's degree in Information Security, Cybersecurity, IT, Risk Management, or related field

  • 2–5 years of experience in GRC, risk management, compliance, or IT audit

  • Knowledge of security frameworks (ISO 27001, NIST, SOC 2, etc.)

  • Understanding of regulatory requirements (GDPR, HIPAA, PCI-DSS, etc.)

  • Strong analytical and documentation skills


Preferred Qualifications

  • Mandatory - Certifications such as CISA, CRISC, CISM, ISO 27001 Lead Implementer/Auditor

  • Experience with GRC tools (e.g., Archer, ServiceNow GRC)

  • Experience working with cloud environments (Azure, AWS, GCP)

  • Knowledge of cybersecurity controls and risk methodologies

Key Skills

  • Risk assessment and analysis

  • Policy and control documentation

  • Audit coordination

  • Strong communication and stakeholder management

  • Attention to detail

  • Ability to work independently and manage multiple priorities


Work Environment

  • Full-time position

  • Hybrid/Remote (as applicable)

  • Cross-functional collaboration with IT, Security, Legal, and Business teams

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Information Security
Employment Type:
Full time

About Company

fulcrum digital inc

Job ID: 149086305

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 11-06-2026 01:59:29 PM
Homejobs in PuneGRC Analyst

Similar Jobs

GRC Analyst

Zywave
Pune, India

Skills:

Pci DssHipaaIso 27001CsfCisaDORANIST RMFCRISCSOC 2

Senior GRC Analyst

Pattern
Pune, India

Skills:

GdprSaasGrcCloud ComputingAI GovernanceCompliance AuditsISO IEC 27001Risk ManagementCIS ControlsSOC 2ISO 27701CCPASecurity PoliciesNIST CSFIt AuditCSA CCMThird-Party Risk ManagementISO IEC 42001NIST AI RMFNIST SP 800-53CPRA

GRC Analyst

fulcrum digital inc
Pune, India

Skills:

GrcGdprHipaaIso 27001Policy and control documentationAudit CoordinationPCI-DSSnistSOC 2Risk assessment and analysis

Senior GRC Analyst

pattern 2
Pune, India

Skills:

GdprSaasInformation SecurityCloud ComputingGrcIt AuditCPRACCSKNIST CSFCIS ControlsAI RMFSOC 2CCPARisk ManagementNIST SP 800-53NIST AI Risk Management FrameworkEU AI ActCSA CCMISO IEC 27001ISO IEC 42001CRISCISO 27701ISO IEC 23894

Cybersecurity GRC Analyst

Copeland Toyota
Pune, India

Skills:

Iso 27001It Operationsthird-party risk assessmentsZscaler for EndpointDLP Policiessecurity control evaluationsKRI developmentCIS Controlsgap analysesSOC 2cybersecurity awareness trainingNIST CSFcybersecurity best practicescybersecurity policiesvendor security evaluationscybersecurity reporting and metricsrisk assessments