Information Security Specialist

We're Hiring: Information Security GRC Professional

Location: Gurgaon

At RenewBuy, we are transforming insurance through technology, innovation, and a powerful partner distribution network. Our mission is to make insurance simple, accessible, and affordable while delivering an exceptional customer experience.

We are looking for a Governance, Risk & Compliance (GRC) Professional to strengthen our information security, regulatory compliance, and risk governance framework in the insurance ecosystem.

• Lead ISO/IEC 27001 ISMS implementation, audits & recertification
• Drive compliance with DPDP Act, SOC 2 (Type I & II), and IRDAI Cyber Security Guidelines
• Conduct enterprise risk assessments & vendor risk reviews
• Manage regulatory audits, internal audits, and compliance monitoring
• Implement data privacy frameworks data inventory, consent management, breach processes
• Collaborate with IT, Security, DevOps, Legal & Product teams to ensure governance alignment
• Deliver security awareness programs and compliance reporting to leadership
  

• 37 years of Information Security GRC experience (BFSI / Insurance preferred)
• Hands-on exposure to ISO 27001, SOC 2, DPDP compliance, IRDAI guidelines
• Strong understanding of risk assessment frameworks & control frameworks

Preferred Certifications:

CISA | CISM | CRISC | CISSP | ISO 27001 Lead Implementer/Auditor | Privacy Certifications

• Cloud compliance experience (AWS security controls)
• Exposure to SIEM governance / vulnerability management
• Experience handling regulatory inspections

If you are passionate about security governance, compliance leadership, and building strong risk frameworks, apply now!!