Senior Principal Consultant – IT SOX, Cyber Risk, Compliance %26 GRC

Ready to build the future with AI
At Genpact, we don't just keep up with technology-we set the pace. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI, our breakthrough solutions tackle companies most complex challenges.
If you thrive in a fast-moving, innovation-driven environment, love building and deploying cutting-edge AI solutions, and want to push the boundaries of what's possible, this is your moment.
Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions - we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation, our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn, X, YouTube, and Facebook.
Inviting applications for the role of Senior Principal Consultant - IT SOX, Cyber Risk, Compliance & GRC
Cyber Risk, Compliance & GRC will be responsible for leading and managing enterprisewide cyber security risk management, governance, compliance, and audit support across IT and OT environments.
This role will drive risk identification, tracking, remediation, policy governance, regulatory compliance, thirdparty cyber risk management, IT SOX compliance, and GRC tool administration, working closely with internal stakeholders including IT, OT, Security, Audit, Legal, Procurement, and Business leadership.
Responsibilities

1.IT SOX Compliance Management
.Own IT SOX compliance activities, including control documentation, narratives, validation, and testing
.Maintain IT SOX control library, identify control gaps, and track issues to closure
.Coordinate with internal audit and external auditors to support SOX audits
.Drive continuous improvement of IT SOX processes and control effectiveness

2. Cyber Security Risk Management (Corporate & Manufacturing)
.Lead enterprise cyber security risk management across IT and OT environments, including identification, assessment, prioritization, and mitigation of risks
.Own risk tracking, monitoring, and remediation, ensuring timely closure and management visibility
.Manage risk scenarios and policy exceptions using enterprise GRC platforms
.Provide risk insights and reporting to senior leadership and governance forums
.Drive governance of Cyber and Information Security policies, standards, and frameworks across IT and OT
.Own policy and standard lifecycle management, including creation, review, maintenance, approvals, and exception handling
.Ensure alignment of policies and standards with industry frameworks such as ISO 27001, ISA/IEC 62443, NIST CSF, and other applicable standards
.Act as a subject matter expert for ISMS / CSMS governance
3. Continuous Compliance Management & Audit Support
.Lead continuous compliance activities for corporate and manufacturing regulatory frameworks and industry standards (e.g., ISO 27001, TISAX, NIS2)
.Manage controls and compliance management, including control design, implementation, testing, and monitoring
.Support internal and external compliance audits by ensuring timely, accurate documentation and evidence
.Partner with internal audit, external auditors, and business teams to remediate audit findings
4. Third Party & Supply Chain Cyber Risk Management
.Support supplier and vendor cyber risk assessments, onboarding due diligence, and ongoing risk monitoring
.Track and manage third party cyber risks, remediation actions, and reporting

Stakeholder Management
.Partner with internal & external stakeholders
.Communicate risk and compliance insights clearly to senior management
.Influence stakeholders to drive riskbased decisionmaking and compliance culture
Qualifications we seek in you!
Minimum Qualifications

.Good years of experience in Cyber Security, Risk Management, GRC, or IT Compliance
.Demonstrated experience in IT SOX compliance and audit support
.Proven experience managing enterprise cyber risk and compliance programs across IT and OT environments
.Hands on experience with GRC tools
.Strong experience with ISO 27001, NIST CSF, ISA/IEC 62443, and regulatory compliance frameworks
.Experience with third party / supply chain cyber risk management
Preferred Certifications
.CISSP, CISM, CISA, CRISC
.ISO 27001 Lead Implementer / Lead Auditor
.ITIL or equivalent governance certifications
Preferred Qualifications/ Skills

.IT SOX
.Cyber Risk Management & Governance
.Regulatory Compliance & Audit Management
.GRC Tools & Automation
.Stakeholder & Executive Communication
.Program & People Leadership
.Analytical & Risk based Decision Making

Why join Genpact
.Lead AI-first transformation - Build and scale AI solutions that redefine industries
.Make an impact - Drive change for global enterprises and solve business challenges that matter
.Accelerate your career-Gain hands-on experience, world-class training, mentorship, and AI certifications to advance your skills
.Grow with the best - Learn from top engineers, data scientists, and AI experts in a dynamic, fast-moving workplace
.Committed to ethical AI - Work in an environment where governance, transparency, and security are at the core of everything we build
.Thrive in a values-driven culture - Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress
Come join the 140,000+ coders, tech shapers, and growth makers at Genpact and take your career in the only direction that matters: Up.
Let's build tomorrow together.Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation.
Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training.