Position Summary:
To ensure that the Bank's IT infrastructure, applications, digital banking channels, information security framework, and
technology operations comply with all applicable regulatory requirements, RBI guidelines, cybersecurity standards,
internal policies, and audit requirements. The role is responsible for strengthening IT governance, managing compliance
risks, and ensuring audit readiness across the Bank.
Qualification:
Essential: - Graduate / Postgraduate Degree in Computer Engineering / Computer Applications / Information Technology
Desirable: - CISA, CISM, CRISC, ISO 27001 Lead Auditor / Lead Implementer
Key Responsibilities:
Ensure compliance with RBI, NPCI, CERT-In, UIDAI, and other applicable regulatory guidelines.
Monitor new circulars, notifications, and directives issued by regulators.
Maintain a regulatory compliance tracker and ensure timely closure of compliance requirements.
Coordinate submission of IT-related reports and compliance certifications to regulatory authorities.
Develop, review, and update IT policies, procedures, SOPs, and standards.
Ensure alignment of IT policies with RBI Cyber Security Framework and Information Security requirements.
Providing support to CIO & CISO in cyber security area, GRC policies and IT posture gaps/observations of the
Bank especially with respect to observations reported by RBI in all previous and current year IT – Examination.
Developing / Modifying IT / IS Policies and other Governance / Risk and Compliance related Policies / SOPs
observed by RBI in the report.
Conduct periodic policy compliance reviews across departments.
Providing support to CIO & CISO for effective measurable SLA / AMC.
Coordinate audit responses and ensure timely closure of audit observations.
Track compliance status of audit findings and report progress to management.
Maintain audit documentation and evidence repositories.
Monitor compliance with Information Security Policies and Cyber Security Framework.
Ensure periodic Vulnerability Assessments (VA), Penetration Testing (PT), Security Audits, and Source Code
Reviews are conducted.
Monitor implementation of security controls and remediation measures.
Support cybersecurity governance initiatives across the Bank.
Conduct IT risk assessments and compliance reviews.
Identify control gaps and recommend mitigation measures.
Review user access controls, change management processes, vendor controls, and data protection measures.
Monitor Key Risk Indicators (KRIs) and compliance metrics.
Evaluate IT vendors and service providers for compliance requirements.
Ensure third-party agreements include regulatory and information security clauses.
Monitor vendor audit reports and compliance certifications.
Prepare periodic compliance dashboards and reports for senior management and Board committees.
Present compliance status, audit observations, risk assessments, and remediation progress.
Support Board-level IT Strategy and Information Security Committee meetings.
Actively coordinate the role in execution of approved plan and carry out overall monitoring and control of processes
and Bank / OEM / Vendor team to achieve the targets on time.
Educate employees on regulatory requirements, cyber risks, and security best practices.
Promote a culture of compliance throughout the Bank.
Age: Below 48 years
Designation and Compensation:
Designation and Compensation will be commensurate with qualifications & relevant experience.
Any of the above criteria may be relaxed in the case of deserving candidates, at the sole discretion of the Bank’s
Management.
Interested candidates are requested to e-mail their latest resume at [email protected] with subject –Application
for IT Compliance Manager.
Pay: ₹50,000.00 - ₹1,000,000.00 per year
Work Location: In person
