Info Security GRC Analyst

Location: Bengaluru

Duration: Full Time

Responsibilities of Info Security GRC Analyst

• Monitor risk remediation activities exceeding the risk appetite.
• Develop and implement risk mitigation strategies and action plans.
• Report to boards and working groups on a regular basis providing advice and resolving conflicting goals
• Stay abreast of relevant laws regulations and industry standards affecting the organization.
• Monitor control implementation & effectiveness. Track control attestations and exceptions Evaluating the implementation and effectiveness of a control.
• Participate in security incident investigations documenting findings and recommending corrective actions.
• Support Intl GRC management and entity management reporting needs.
• Analyze security metrics data to identify trends patterns and anomalies that may indicate areas of concern or opportunities for improvement.
• Report to management on overall Resilience status as measured against risk appetite/tolerance.
• Coordinate with 1LOD to assess/monitor SLA performance for outsourced security services and report back on root cause for non compliance.

Requirements for Info Security GRC Analyst

• Minimum of 5 years of experience in Information Security roles.
• Preferably 2 years of experience in Governance Risk and Compliance (GRC) roles.
• Proven understanding of regulatory frameworks and compliance standards.
• Handson experience with risk assessment methodologies and tools.
• Familiarity with information security principles and best practices.
• Experience in developing and implementing GRC policies and procedures.
• Strong analytical and problemsolving skills.
• Excellent understanding of IT risk management concepts.
• Proficient in using GRC tools and platforms.
• Experience working within a global technology or fintech organization
• Bachelors degree in information security or related field.
• Industryrecognized certifications such as; CISSP CISA or CRISC are preferred.