Home
Communities
Companies
- Companies
  
  Discover best places to work
- Compare Companies
  
  Compare & find best workplace
- Add Office Photos
  
  Bring your workplace to life
- Add Company Benefits
  
  Highlight your company's perks
Reviews
- Company reviews
  
  Read reviews for 6L+ companies
- Write a review
  
  Rate your former or current company
Salaries
- Browse salaries
  
  Discover salaries for 6L+ companies
- Salary calculator
  
  Calculate your take home salary
- Are you paid fairly?
  
  Check your market value
- Share your salary
  
  Help other jobseekers
- Gratuity calculator
  
  Check your gratuity amount
- HRA calculator
  
  Check how much of your HRA is tax-free
- Salary hike calculator
  
  Check your salary hike
Interviews
- Company interviews
  
  Read interviews for 40K+ companies
- Campus placements
  
  Interviews questions for 2K+ colleges
- Share interview questions
  
  Contribute your interview questions
Jobs
Awards

WINNERS AWAITED!
- ABECA 2025
  
  WINNERS AWAITED!
  
  AmbitionBox Employee Choice Awards - 4th Edition
- ABECA 2024
  
  AmbitionBox Employee Choice Awards - 3rd Edition
- AmbitionBox Best Places to Work 2022
  
  2nd Edition
- AmbitionBox Best Places to Work 2021
  
  1st Edition

Add office photos

Engaged Employer

Cortex Consulting

Compare

2.8

based on 22 Reviews

97 Cortex Consulting Jobs

GRC Consultant - IT Risk & Audit (8-15 yrs)

CORTEX Consultants

2.8

based on 22 Reviews

8-15 years

Cortex Consulting

posted 4d ago

Job Role Insights

Fixed timing

Key skills for the job

SAP Security and GRC IT Audit Credit Risk Modelling Security Operations Center Audit Compliance

Job Description

Job Title : GRC Consultant (SOC 1, SOC 2, Audit, Compliance)

Location : Bengaluru (Remote Opportunity)

Experience : 8+ years

Immediate Joiners

Job Description :

We are seeking an experienced GRC (Governance, Risk, and Compliance) Consultant with a strong background in the IT field, specifically with hands-on experience in SOC 1 and SOC 2 projects. The ideal candidate should have a solid understanding of audit, compliance, and internal controls, and will be working in a consulting capacity for an immediate or 15-day notice period role.

Key Responsibilities :

- Lead governance, risk, and compliance-related assessments, ensuring compliance with industry standards and frameworks such as ISO 27001:2022, NIST 800, NIST CSF, PCI DSS, and HITRUST.

- Perform gap analysis, identify security risks, and provide actionable recommendations for compliance improvement.

- Drive risk methodology development and execution, updating and mapping GRC assessments to changing requirements for SOC 1 and SOC 2.

- Act as the key liaison between internal teams and external audit resources, government regulators, and external customers to ensure readiness for audits and compliance.

- Work collaboratively with business units to assist in understanding internal controls, address business drivers, and prepare for future audits.

- Support business units in managing technology risks, data security, and vendor relationships, ensuring alignment with GRC within the Enterprise Risk Management (ERM) model.

- Provide guidance on change management and internal control identification and measurement per applicable guidelines.

- Promote a positive, performance-driven culture while supporting business growth and compliance initiatives.

- Manage the coordination, tracking, and reporting on divisional and business unit risk metrics and results.

Qualifications :

- Minimum 8 years of experience in IT, with a strong focus on Governance, Risk, and Compliance.

- Expertise in SOC 1 and SOC 2 audits and compliance.

- Proven experience with ISO 27001:2022, NIST 800, NIST CSF, PCI DSS, and HITRUST frameworks.

- Prior experience working in a consulting capacity, with the ability to work across matrix business environments.

- Excellent communication and stakeholder management skills.

- Ability to work independently with minimal supervision in a remote setting.

- Immediate or 15-day notice period preferred.