Onsite – Bengaluru, Karnataka
Bengaluru
Posted on 2026-06-04
Job Description
Core Responsibilities
- Manage and maintain IT Governance, Risk & Compliance (GRC) programs across the organization
- Conduct IT Risk Assessments and maintain enterprise Risk Registers with mitigation plans
- Support implementation and compliance activities aligned with NIST CSF 2.0 and ISO 27001:2022 frameworks
- Coordinate Internal and External Audits, including evidence collection, control testing, and audit readiness activities
- Manage compliance requirements related to GDPR and India’s DPDP Act
- Perform Third-Party Risk Management (TPRM) activities, including vendor security assessments and risk evaluations
- Develop, review, and maintain Information Security policies, standards, procedures, and governance documentation
- Track audit findings, corrective action plans (CAPs), remediation activities, and compliance gaps
- Prepare compliance reports, risk dashboards, management updates, and stakeholder communications while working closely with Security, IT, Product, and Legal teams to ensure governance and compliance objectives are achieved.
