Job Description
As a GRC Analyst, you will unlock for our teams, from Sales to R&D to Customers, the ability to work fast and with confidence with your partnership as a subject matter expert and experience in compliance and controls frameworks.
You will be responsible for deploying and operationalizing our compliance programs, building and maintaining policies, procedures, training, communications, and controls. This role will execute the monitoring programs and will drive and formally document all monitoring and monitoring test work performed.
Essential Responsibilities
Develops, initiates, maintains and revises policies and procedures for the operation of Elation's compliance programs and audits. Performs day-to-day operation of these programs.
Ensures proper controls are in place for a coordinated security and compliance posture across a variety of functional organizations and their policies.
Strong collaboration with internal and external stakeholders regarding compliance related topics. Working closely with Product, Engineering, IT, Legal & Compliance, and Customer organizations to ensure effective incorporation of compliance requirements.
Monitors the performance of the compliance program on a continuing basis, taking appropriate steps to improve its effectiveness.
Lead the compliance audit projects such as SOC 2 Type II audits and ISO 27001 Certifications
Supporting regular privacy compliance monitoring activities by performing or directing internal audits to ensure company-wide compliance with internal and external compliance requirements.
Rolls out and maintains training and education for risk and compliance across the organization.
Education:
Bachelor's Degree or equivalent combination of relevant education and experience
Experience:
5 years minimum experience in GRC, compliance or relevant industry.
Prior experience designing, operating, and assessing control frameworks including SOC2 type II
Knowledge, Ability & Skills:
Knowledge and understanding of information risk/security principles and related industry standards, such as NIST, PCI, ISO 27001
Working knowledge and understanding of international and local privacy regulations including GDPR and CCPA.
Strong oral and written communication skills, with ability to bring clarity to complex needs and requirements
Location : Coimbatore (Hybrid)
CTC : 25 LPA
NP : immediate to 15 Days
Skills : pci,gdpr,ccpa,nist,soc2,compliance programs,compliance program,iso 27001,compliance audit,training and education,iso 27001 certifications,policies and procedures,information risk/security principles,soc 2 type ii audits