You will:
- Implement and maintain GRC processes across all group entities.
- Conduct risk assessments, gap assessments, and control effectiveness reviews.
- Draft, update, and maintain information security policies, procedures, and standards.
- Manage risk registers, compliance trackers, and remediation logs.
- Coordinate with entity-level teams for evidence collection, documentation, and audit closure.
- Support adherence to regulatory guidelines from SEBI (including CSCRF), IRDAI, RBI, AMFI, NSE/BSE, MeitY, CERT-In, and others.
- Prepare documentation, audit evidence, and reports for internal audits, external audits, and regulatory inspections.
- Support regulatory submissions, cybersecurity declarations, and periodic compliance filings.
- Assist in vendor due-diligence and third-party cybersecurity risk assessments.
- Review vendor contracts to ensure inclusion of required security clauses and regulatory alignment.
You have:
- A Bachelor's degree in IT, Computer Science, Cybersecurity, or a related field.
- 13 years of experience in Information Security, Governance, Risk, or Compliance.
- Understanding of the Indian financial sector regulatory landscape.
- Knowledge of frameworks such as ISO 27001, NIST CSF, SOC 2, or similar.
- The ability to document controls, evaluate risks, and work with cross-functional teams.
- Strong documentation, analytical, and communication skills.
- Exposure to ISO standards, SOC 2 requirements, and CMMI concepts.
- Understanding of BFSI-specific guidelines like SEBI CSCRF, RBI NBFC guidelines, IRDAI Cybersecurity requirements, and CERT-In directions.
- Experience with internal, statutory, compliance, or cybersecurity audits.
- Certifications such as ISO 27001 LA/LI, Security+, ITIL, CC, CSA, or any GRC-related credential.
We Are:
Software development and consulting firm; Subsidiary of Choice International Limited which is a multi-diversified business enterprise; established in India in March 1993. The group operates from its head office in Mumbai and has zonal offices across the country and has several business verticals like Investment Banking, Broking, Hospitality, E-commerce, Energy sector etc.
We are fast emerging in the field of innovation to help accelerate the digital transformation journey by providing credible web solutions to foster business growth. We assist in business by offering Cloud, Mobile & IT solutions that foster efficiency, growth, and ROI. We keep in mind the goals of the organization while simultaneously enhancing efficiency. Our dynamic team comprises Web Software Developers, Cloud Architects, Technical Consultants, Data Administrators, IT Security experts, DevOps Professionals & Digital Marketing.
You & We:
Will work together to safeguard digital assets and strengthen cybersecurity defenses. Together, we will monitor, analyze, and respond to security threats to ensure a secure and resilient infrastructure. We will collaborate in threat hunting activities, contributing to a safer and more secure digital environment. Will leverage your analytical skills and passion for cybersecurity to enhance our security posture. Together, we will continuously learn, adapt, and implement best practices to stay ahead of emerging threats and fortify our security operations.
