GRC Consultant (L2)

Astra Cybertech Pvt. Ltd.
Mumbai, Maharashtra

Quick apply

Job details

Full-time
₹6,00,000 - ₹8,00,000 a year

Qualifications

PCI
CISSP
Information security
Information Security
NIST standards
Risk management
ISO 27001
Financial services
Communication skills
Banking

Full job description

Location: Navi Mumbai – Onsite at Client Premises
Preferred Industry: Banking / Financial Services Domain

Role Overview

We are seeking a skilled and experienced GRC Consultant (L2) with strong hands-on expertise in Third Party Risk Management (TPRM) and Information Security Audits. The candidate will be responsible for conducting vendor risk assessments, onsite third-party audits, security compliance reviews, and ensuring adherence to organizational and regulatory security requirements.

The ideal candidate should have prior experience working with Banking/Financial Services clients and must have independently conducted onsite TPRM assessments and vendor audits.

Key Responsibilities

Conduct Third Party Risk Management (TPRM) assessments for vendors and partners.
Perform onsite vendor security audits and assessments at client/vendor locations.
Evaluate vendor security controls, policies, processes, and compliance posture.
Review compliance against industry standards and regulatory requirements.
Identify security gaps, risks, and recommend remediation measures.
Prepare audit reports, risk assessment findings, and management summaries.
Coordinate with internal stakeholders and external vendors for closure of observations.
Support governance, risk, and compliance activities related to third-party engagements.
Ensure adherence to organizational security frameworks and banking compliance requirements.

Required Skills & Experience

2–4 years of experience in GRC, Information Security Audits, or TPRM.
Hands-on experience in conducting onsite TPRM audits and vendor assessments.
Strong understanding of information security controls and risk management practices.
Experience in Banking / Financial Services domain is preferred.
Knowledge of security and compliance frameworks such as:
ISO 27001
RBI Guidelines
PCI-DSS
SOC 2
NIST
Experience in audit documentation, reporting, and remediation tracking.
Good stakeholder management and communication skills.

Preferred Qualifications

Certifications such as ISO 27001 LA/LI, CISA, CRISC, CISSP, or equivalent are preferred.
Experience handling regulatory and compliance assessments in Banking environments.

Work Model

Full-time
Onsite at client premises in Navi Mumbai

Pay: ₹600,000.00 - ₹800,000.00 per year

Work Location: In person

Quick apply

Jobseeker tools

Employer Tools

Browse

Stay Connected