259 Senior Executive Jobs in Mumbai

Job Purpose

Support the development, implementation, and maintenance of the ISOs framework, ensuring effective risk management, compliance, and governance practices. Provide expertise and guidance to internal stakeholders, and drive continuous improvement

Roles & Responsibilities

Collaborate with functional, DC Operations & IT delivery team for conducting risk assessments, identifying risks, and implementing mitigation plans

Monitor and interpret regulatory requirements at time to time

Support in Implementing and maintaining compliance frameworks like ISOs, NIST, PCI DSS, SSAE 18 at organizational & functional level

Conduct compliance audits and follow up with teams to ensure the implementation of Correction/Corrective action in compliance with organizational s policies, procedures, process, Standards & regulatory requirements

Provide inputs to develop the policies and procedures

Maintain the policies and procedures as per document control procedure

Creating organizational policies & regulatory awareness among stakeholder by preparing & sharing infographics, conducting quiz etc

Prepare the organization for various Client & Third-party compliance audits and ensure all necessary documentation in line with requirements.

Conduct internal audits and support /collaborate for external audits being conducted for multiple business functions

Prepares and reports periodic reports and MIS to senior management

Works with external agencies for obtaining proposaland onboarding them for audit& assessment requirement

May require to travel for business units and datacenter during such planned audit and assessment

Educational Qualifications

B.Tech in computer science, information technology, Information security or related field

At least one lead Auditor certification of ISO 27001/ 22301/ 31000

Relevant Experience

3-7 years of work experience in GRC and security roles handling audits and certification

Knowledge/Implementation experience of ISO Standards e.g., ISO 9001, 20000-1, 27001, 27701, 22301

Knowledge of additional security standards and frameworks e.g., NIST, PCI DSS is plus

Excellent communication and collaboration skills

Experience in Testing of operating effectiveness of Network, Cloud, Physical security controls