Manager – IT GRC at Mumbai

Manager – IT GRC at Mumbai

1 Nos.
53373
Full Time
5.0 Year(s) To 10.0 Year(s)
18.00 LPA TO 30.00 LPA
Accounts / Finance / Tax / CS / Audit
Banking/Financial Services
Job Description:

IT Security GRC Manager will improve framework, controls, services and products and continuously improve cyber security resilience and support the Business.

 

Responsibilities

To maintain sustainable processes for all Business functions, will integrate IT security & risk requirements, covering Business as Usual (“BAU”) as well as project objectives.

The position will also be critical for communication of policies, procedures, standards & best practices across the Business lines to urgently reduce risk.

Working with Business teams in support of their agenda across various activities within the Sharekhan Cyber Security framework.

 

Direct Responsibilities

  • Responsible for managing multiple project including ITGC, Information Security and application controls assessments
  • Supporting Internal Audit engagements within Technology Risk space.
  • Lead IT Risk Management activities within Sharekhan
  • Manage Third party Risk management track within Sharekhan. Performing supplier security reviews. Review quality of deliverables, work papers, audit/ assessment reports
  • Lead Shadow Light IT security initiative within Sharekhan
  • Direct/indirect  representation of IT Risk team in various steering committees or working committees within Sharekhan
  • Interface with LoD2 for consultation and status updates
  • Interact with other stakeholders within Group for IT risk management activities

 

Technical & Behavioral Competencies

 

  • Expertise in IT compliance requirements from various standards & regulations (SOX, SSAE16 SOC1/2 reviews, ISO 27001, HITRUST, PCI DSS, HIPPA, GDPR etc.)
  • Hands on experience on GRC tool
  • Good experience in Information security and risk assessments for third parties and suppliers
  • Good understanding of various industry standards, best practices and IT risk frameworks e.g. COBIT5 or 2019, NIST, CIS etc.
  • Understanding of IT Infrastructure, Cloud, Application Security, controls
  • Understanding of Shadow Light IT Security
  • View point on network, infra, mobile & web security assessment approaches.
  • Thorough understanding of internal audit methodology, auditioning techniques, audit planning, report writing, audit closure support activities.
  • Should possess ability to identify controls gaps, articulate risk, impact of failure, remedial measures and communicate the same to business stakeholders.
  • Knowledge sharing, training, motivating and development of team members.
  • Understand the business requirements clearly and plan for effective utilization of resources, managing the change requests and risk planning, etc.
  • Expert in time management to ensure timely completion of work

 

Desired Profile / Criteria / Skills :
  • 5 to 9 years of experience in large consultancy or relevant industry segment
  • Team management experience is a must
  • Must possess vendor management skills
  • Prior Big 4 or consulting experience is a plus.
  • Experience in IT Audit / Technology Risk / Information Security / Third Party Risk Management/ BCP for varied industry segments preferred.
  • IT Audit experience within the Internal Audit function of Brokerage/ Banking / Investment Banking / Insurance companies will be preferred.
Key Skills :
Company Profile

its is the fifth largest retail brokerage full-service brokerage firm and the 8th largest stock broker in India with 676631 customers. Its is one of the pioneers of online trading in India.

Apply Now

  • Interested candidates are requested to apply for this job.
  • Recruiters will evaluate your candidature and will get in touch with you.

Similar Jobs