Our technology services client is seeking multiple GRC Specialist to join their team on a contract basis. These positions offer a strong potential for conversion to full-time employment upon completion of the initial contract period. Below are further details about the role:
Role: GRC Specialist
Experience: 3- 6 Years
Location: PAN India
Notice Period: Immediate- 15 Days
Mandatory Skills: GRC Specialist , Governance, Risk Assessment , RSA Archer, Compliance, Vulnerability
Job Description:
- We are seeking a highly skilled and motivated GRC Specialist.
- The ideal candidate will be responsible for developing, implementing, and managing governance, risk, and compliance programs to ensure the organization meets regulatory requirements and industry standards.
- Good Experience in GRC Domain with knowledge of Archer tool to perform the Risk assessment of various Cloud and network-based application.
- Aware about Risk Mitigation processes/controls, Vulnerability Management, Third party risk management, Vendor risk screening, Cyber risks, Audit Methodology (SOX/ICFR), Network security, DPAT (One trust Tool) and SOC reports.
- Good Verbal & written Communication skills. Ability to communicate and take calls with client to understand their requirements.
- Highly customer focused and motivated with willingness to take ownership for their work and ability to work both independently and in a team-oriented environment.
- Good Knowledge of Archer tool is preferable. Relevant certifications (e.g., ISO 27001 LA, CISA, CRISC, CISSP) are a plus.
Key Responsibilities
- Work on Risk Assessment, Risk Re-assessment, CAQ, CRE for new applications following the required standards set forth by client.
- Review Projects and their technical design documents for Information security risks and advise on suitable controls and mitigations at early stages of onboarding an application
- Work closely with requestors to understand Technology Landscape Infrastructure Cloud and review Client's information security and related threats and vulnerabilities legal and regulatory requirements.
- Review and advise on information security risks of vendor offerings, initial vendor screening, IT security contractual clauses, Third party risk management etc..
- Conduct risk assessment on Applications Network Systems on Archer according to applicable Client policies, Standards and legal regulatory requirements
- Knowledge of Excel Macros, SQL programming, SAP, Power Bi is desirable but not mandatory.
If you are interested, share the updated resume with [Confidential Information]
