GRC Specialist

Job Title: Governance, Risk, and Compliance (GRC) Specialist - Information Security

Location: Gurugram

Department: Governance, Risk & Compliance

Reports To: Head- GRC/CISO

Job Summary:

We are seeking a knowledgeable and experienced GRC Specialist to oversee our governance, risk management, and compliance initiatives in reference to Information Security, particularly in alignment with IRDAI norms and security standards. The ideal candidate will have a deep understanding of information security frameworks, risk assessment methodologies, and regulatory compliance.

Key Responsibilities:

- Develop and implement GRC strategies that align with organizational objectives and regulatory requirements.

- Conduct risk assessments and audits to identify risks and ensure compliance with IRDAI norms and other relevant standards.

- Monitor and evaluate the effectiveness of existing security controls and recommend improvements.

- Collaborate with cross-functional teams to ensure adherence to information security policies and procedures.

- Prepare and present compliance reports and risk management metrics to senior management and stakeholders.

- Facilitate training and awareness programs for employees regarding GRC policies and practices.

- Lead incident response efforts and ensure proper documentation and reporting as per compliance requirements.

Qualifications:

- Bachelors degree in Information Technology, Cybersecurity, or a related field. Master’s degree preferred.

- 5-10 years of experience in Governance, Risk, and Compliance, specifically related to Information Security.

- Strong knowledge of IRDAI norms and security standards (ISO 27001, NIST, etc.).

- Proficiency in risk assessment tools and methodologies.

- Excellent communication and interpersonal skills.

Skills:

- Strong analytical and problem-solving abilities.

- Ability to work collaboratively in a team environment.

- Detail-oriented with a strong focus on compliance and risk management.

- Familiarity with DLP tools and incident management processes is a plus.

Benefits:

- Competitive salary and performance-based bonuses.

- Health and wellness programs.

- Opportunities for professional development and training.

- Flexible working arrangements.