Job Description
Job Title : GRC Security and Compliance Consultant
Location : Mumbai, Pune, Bangalore, Hyderabad, Chennai, Cochin, Kolkata, Delhi
Experience : 05 -08 Years
Skills :
ITAC (IT Applications Control Testing) ,ITGC (IT General Controls) ,Internal Audit ,Risk Assessment ,TPRM ,DR/BCP ,Cloud Security Assessments
Job Description :
-TPRM, DR BCM Security maturity Assessments, SOC 1, SOC 2, Information Security, ISO 27001, NIST, Cloud Security.
-Perform review of the Vendor Due Diligence from the WK perspective, in conjunction with business stakeholders.
-Perform IT Applications Control testing.
-Understanding of Risk frameworks such as COBIT NIST ISO
-Experience in design and implementation of information security controls
-Design, implement, and manage core Third Party Risk Management (TPRM) processes to monitor, mitigate and report on risk from third party relationships especially vendors and clients.
-Understanding applicable regulations, guidelines and industry best practices to manage risk and ensure compliance.
-Developing, maintaining, or auditing security documentation such as policies, standards, and procedures.
-Experience in infrastructure security and end user security management, specifically in cloud security
-Experience in implementing security tools and solutions across a complex and global organization.
-Expertise in cloud infrastructure (AWS, Azure)
-Conducting internal security assessments to ensure continued compliance.
-Manage and support Information Security Risk Management Lifecycle.
-Ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives.
-Provide adequate security and compliance against specific standards such as NIST 800-53, NIST 800-171, ISO 27001, and other regulatory requirements.
-Identify and formally documents deviations from published standards, estimates risk level, recommends appropriate mitigation countermeasures in operational and non-operational situations.
-Should have adequate working knowledge of Endpoint Security, Network Security, Business Process, SIEM, SOC Advanced security tools Client-SOAR platform
-Analyze the security of new or existing applications, software, or specialized utility programs and provides risk recommendation.
-Monitor external data sources to maintain knowledge of threat condition and determine which security issues
About Company
LTIMindtree is a global technology consulting and digital solutions LTIMindtree company that enables enterprises across industries to reimagine business models, accelerate innovation, and maximize growth by harnessing digital technologies. As a digital transformation partner to more than 750 clients, LTIMindtree brings extensive domain and technology expertise to help drive superior competitive differentiation, customer experiences, and business outcomes in a converging world. Powered by more than 90,000 talented and entrepreneurial professionals across 30 countries, LTIMindtree — a Larsen & Toubro Group company — combines the industry-acclaimed strengths of erstwhile L&T Infotech and Mindtree in solving the most complex business challenges and delivering transformation at scale.
For more, please visit www.ltimindtree.com.
