Job Title: IRM & Cyber Security (G&RM)
Location: RCP, Ghansoli, Navi Mumbai
Core Focus: Governance, Risk, and Compliance (GRC)
Job Summary
This role focuses on driving Enterprise Cyber Security Strategy, Governance, and Risk Management. You will be responsible for ensuring continuous compliance, conducting high-level risk assessments (Cloud & Supply Chain), and reporting security postures to top management (CIO/CISO).
Key Accountabilities
- Strategy & Governance: Assist the CISO in defining cyber security objectives and steering governance meetings with top management.
- Risk Management: Lead security risk assessments for emerging technologies, cloud platforms (CCM), and third-party supply chains.
- Policy Development: Research and improve information security policies, standards, and frameworks (ISO, NIST, COBIT).
- Compliance & Metrics: Ensure ongoing compliance through established metrics and management reporting.
- Awareness & Innovation: Drive innovative cyber security awareness campaigns and incubate new security solutions.
Required Technical Skills
- Framework Expertise: Extensive knowledge of NIST CSF, ISO 27001, PCI-DSS, and privacy regulations.
- Cloud Security: Strong understanding of cloud control matrices (CCM) and cloud-based risk reviews.
- Risk & BCP: Proficiency in Information Security Risk Management, BCP/DR, and IT control frameworks.
- Consulting: Strong consulting and team-handling skills with the ability to present complex data to leadership.
Experience & Qualifications
- Education: BE / B.Tech / ME / M.Tech / MCA from a recognized institute.
- Experience: 68 years in Information Security.
- Certifications (Preferred): CISSP, CISM, CISA, CEH, or ISO 27001 Lead Auditor.
