CrawlJobs Logo
AMBC Logo AMBC · IT - Administration

Grc Consultant

India, Bengaluru · Job Posted June 09, 2026
Apply Position
Job Link Share

Job Description

Manage and maintain IT Governance, Risk & Compliance (GRC) programs across the organization. Conduct IT Risk Assessments and maintain enterprise Risk Registers with mitigation plans. Support implementation and compliance activities aligned with NIST CSF 2.0 and ISO 27001:2022 frameworks. Coordinate Internal and External Audits, including evidence collection, control testing, and audit readiness activities. Manage compliance requirements related to GDPR and India’s DPDP Act. Perform Third-Party Risk Management (TPRM) activities, including vendor security assessments and risk evaluations. Develop, review, and maintain Information Security policies, standards, procedures, and governance documentation. Track audit findings, corrective action plans (CAPs), remediation activities, and compliance gaps. Prepare compliance reports, risk dashboards, management updates, and stakeholder communications while working closely with Security, IT, Product, and Legal teams to ensure governance and compliance objectives are achieved.

Job Responsibility

  • Manage and maintain IT Governance, Risk & Compliance (GRC) programs across the organization
  • Conduct IT Risk Assessments and maintain enterprise Risk Registers with mitigation plans
  • Support implementation and compliance activities aligned with NIST CSF 2.0 and ISO 27001:2022 frameworks
  • Coordinate Internal and External Audits, including evidence collection, control testing, and audit readiness activities
  • Manage compliance requirements related to GDPR and India’s DPDP Act
  • Perform Third-Party Risk Management (TPRM) activities, including vendor security assessments and risk evaluations
  • Develop, review, and maintain Information Security policies, standards, procedures, and governance documentation
  • Track audit findings, corrective action plans (CAPs), remediation activities, and compliance gaps
  • Prepare compliance reports, risk dashboards, management updates, and stakeholder communications while working closely with Security, IT, Product, and Legal teams to ensure governance and compliance objectives are achieved

Requirements

4 to 5 years of work experience in Information Security, Cybersecurity, IT Risk Management, Compliance, FinTech, SaaS, or BFSI

AMBC - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Grc Consultant

8 matching positions

New

Grc Consultant

Our client is seeking a seasoned Cybersecurity GRC Consultant to support the nex...
Location
Location
United States , Schaumburg
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years in cybersecurity, with strong focus on GRC and compliance
  • Proven experience with NIST framework implementation and audit readiness
  • Background in large enterprise environments
  • Experience conducting gap assessments and building compliance roadmaps
  • Strong knowledge of cloud environments (AWS) and Microsoft security ecosystem
Job Responsibility
Job Responsibility
  • Lead gap analysis efforts to assess current cybersecurity posture against frameworks such as NIST
  • Develop and implement governance, risk, and compliance (GRC) processes
  • Help mature security operations into a compliance-driven program
  • Support international compliance initiatives, including China and other global regions
  • Establish and refine policies, procedures, and control frameworks
  • Partner with stakeholders to align cybersecurity practices with regulatory requirements
What we offer
What we offer
  • medical, vision, dental, and life and disability insurance
  • 401(k) plan
Read More
Arrow Right

GRC Consultant

The Information Security Manager will play a crucial role in safeguarding the or...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in Information Security and GRC
  • Strong understanding of risk management methodologies and international security standards (e.g., ISO 27001, US NIST, TSA, etc.) and the ability to assess risks, identify vulnerabilities, etc.
  • Familiarity with data privacy legislation such as EU GDPR
  • Experience maintaining and auditing Information Security Management Systems (ISMS) in line with ISO 27001
  • Customer service-oriented with the ability to build strong relationships with internal stakeholders
  • Analytical and creative thinking skills, with the ability to identify pragmatic solutions
  • The ability to organize the daily work schedule and delegate where necessary
  • Strong verbal and written proficiency in English and German.
Job Responsibility
Job Responsibility
  • Maintain the Information Security Management System (ISMS) in accordance with ISO 27001
  • Conduct audit against Telecommunications Security Act (TSA) and other applicable local and regional compliance standards
  • Analyze and evaluate internal projects to identify risks and define appropriate compensatory measures
  • Prepare and present reports on information security including areas for improvement
  • Manage and update content for the information security awareness platform for employees and key suppliers, ensuring up-to-date training on information and cybersecurity best practices
  • Research and recommend security enhancements and improvements
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options
Read More
Arrow Right

Grc Consultant

In Cyclad we work with top international IT companies in order to boost their po...
Location
Location
Poland
Salary
Salary:
110.00 PLN / Hour
cyclad.pl Logo
Cyclad Sp. z o.o.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3–6 years of experience as a GRC Consultant or in a similar IT security role
  • Solid knowledge of IT risk management, cybersecurity frameworks, and compliance practices
  • Strong understanding of Agile methodologies
  • Experience in vulnerability management and remediation
  • Ability to manage stakeholders and communicate effectively across teams
  • Strong analytical thinking and problem-solving skills
  • Independent, proactive mindset with a consultant approach
Job Responsibility
Job Responsibility
  • Ensure deployment of security and continuity policies across the organization
  • Influence business decisions to align with security goals and objectives
  • Ensure applications are onboarded into relevant security tools (SAST, AVS, Pentests, SCA, ANON)
  • Promote security by design and security by default principles in software architecture and development
  • Support troubleshooting and debugging of security issues
  • lead cross-functional vulnerability remediation initiatives
  • Participate in agile ceremonies (Sprint Planning, Backlog Review) with a strong focus on security
  • Provide regular reporting on application security levels and vulnerabilities to IT Risk & Cyber Security stakeholders
  • Share best practices with central IT Risk & Cyber Security teams and other security officers
  • Coordinate and follow up on continuity tests and exercises
What we offer
What we offer
  • Private medical care with dental care (covering 70% of costs). Family package option possible.
  • Multisport card (also for an accompanying person).
  • Life insurance.
  • Work with talented engineers on large-scale, technically challenging projects.
  • Fulltime
Read More
Arrow Right

GRC Consultant

Sopra Steria offers tailored, end-to-end corporate technology and software solut...
Location
Location
Belgium , Brussels
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in the domain
  • extensive experience with information security management systems (ISMS), compliance audits and ensuring security-by-design
  • interest in AI security developments
  • familiarity with IT processes based on e.g. ITIL
  • knowledge of standards and legislations such as ISO2700x, NIS2, GDPR, AI and Cyber Fundamentals
  • experience working in the EU or public sector, navigating complex projects
  • fluency in English, French and/or Dutch
  • certifications such as CISSP, CISA, CISM, CRISC or ISO27001 - Lead Implementor or Lead Auditor, AI risk management (ISO42001) is desirable.
Job Responsibility
Job Responsibility
  • design and develop secure solutions to complex application problems - deliver clients projects end-to-end, interfacing across stakeholders
  • implement hardening controls using CIS benchmark across different system components and applications to reduce attack surface
  • lead risk assessments, identification, analysis, treatment, and monitoring across clients
  • perform BCPs, draft Security Plans and roadmaps, ensure third-party risk management
  • cooperate with key stakeholders such as CISO
  • implement/support DevSecOps processes and security engineering review of code and IT configuration
  • support internal and external audits including audit planning, evidence gathering, gap analysis, and remediation tracking
  • support business development and GRC team in driving NIS2 and AI security initiatives and projects
  • support presale process by drafting and leading relevant offers, RFPs, etc.
What we offer
What we offer
  • extensive career development opportunities, both local and international
  • participation in Sopra Steria Academy
  • dynamic network of 56,000 professionals
  • wide array of offices to explore to find ideal location
  • Fulltime
Read More
Arrow Right

SAP Security & GRC Consultant

Deep experience in SAP Application Security, GRC Experience in HANA DB roles, oD...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep experience in SAP Application Security, GRC
  • Experience in HANA DB roles, oDATA Roles and Fiori roles, SAP DWC and SAC roles
  • Good understanding of SAP application security implementation methodologies, role-based access controls, and application threats
  • User Administration using SAP Standard TCode, CUA, CUP, ARM, or IDM
  • Role Management. (Create new user, change role, role simulations)
  • Manage GRC roles with modules (ARA, ARM, UAR EAM, SoDR)
  • Perform L1 L3 support for SAP Application Security, GRC (ARA, ARM, UAR EAM, SoDR)
  • Ability to handle sev1 and major incidents and provide resolution within SLA
  • Ability to identify and communicate issues/risks to the team lead or end user to facilitate timely resolution
  • Work independently on standard SAP authorization tasks
Job Responsibility
Job Responsibility
  • User Administration using SAP Standard TCode, CUA, CUP, ARM, or IDM
  • Role Management (Create new user, change role, role simulations)
  • Manage GRC roles with modules (ARA, ARM, UAR EAM, SoDR)
  • Perform L1 L3 support for SAP Application Security, GRC (ARA, ARM, UAR EAM, SoDR)
  • Ability to handle sev1 and major incidents and provide resolution within SLA
  • Ability to identify and communicate issues/risks to the team lead or end user to facilitate timely resolution
  • Work independently on standard SAP authorization tasks
  • Manage and coordinate SAP outages and weekend outages
  • Support SAP audit and compliance activities
  • Scheduling BG Jobs
  • Fulltime
Read More
Arrow Right

Ts Sci W/ Ci Poly Cleared Grc Consultant

Our client, a leader in the HCM space is in need of a Cybersecurity GRC Consulta...
Location
Location
United States , Reston
Salary
Salary:
78.75 - 113.75 USD / Hour
clearbridgetech.com Logo
ClearBridge Technology Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in governance, risk and compliance
  • 3+ years of experience with the FedRAMP and RMF assessment and authorization process
  • A strong understanding of FedRAMP frameworks and DoD Impact levels IL4, IL5 and IL6
  • Active TS SCI w/ CI Poly Clearance
Job Responsibility
Job Responsibility
  • Assuring all aspects of cyber security and compliance for our clients defense and intelligence customers
  • Leading FedRAMP and RMF assessment and authorization processes
  • Fulltime
Read More
Arrow Right

Senior GRC Consultant

The Information Security Analyst will be responsible for maintaining and enhanci...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience in Information Security and GRC
  • Strong understanding of risk management methodologies and international security standards (e.g., ISO 27001, US NIST, TSA, etc.) and the ability to assess risks, identify vulnerabilities, etc.
  • Familiarity with data privacy legislation such as EU GDPR
  • Experience maintaining and auditing Information Security Management Systems (ISMS) in line with ISO 27001
  • Customer service-oriented with the ability to build strong relationships with internal stakeholders
  • Analytical and creative thinking skills, with the ability to identify pragmatic solutions
  • The ability to organize the daily work schedule and delegate where necessary
  • Strong verbal and written proficiency in English and German.
Job Responsibility
Job Responsibility
  • Maintain the Information Security Management System (ISMS) in accordance with ISO 27001
  • Conduct audit against Telecommunications Security Act (TSA) and other applicable local and regional compliance standards
  • Analyze and evaluate internal projects to identify risks and define appropriate compensatory measures
  • Prepare and present reports on information security including areas for improvement
  • Manage and update content for the information security awareness platform for employees and key suppliers, ensuring up-to-date training on information and cybersecurity best practices
  • Research and recommend security enhancements and improvements.
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options.
Read More
Arrow Right

Technical GRC Consultant

Our client, a leading technology integrator, is in need of a Technical GRC Consu...
Location
Location
United States
Salary
Salary:
78.00 - 115.00 USD / Hour
clearbridgetech.com Logo
ClearBridge Technology Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • SME level knowledge of Governance, Risk and Compliance frameworks
  • FedRAMP Moderate and IL4 knowledge of NIST 800-53 controls as well as a strong understanding of Rev 5
  • Experience working with GRC SaaS products. Paramify, RegScale or Vanta experience is a huge plus
  • Experience working with Python or API based automation in order to write “Fetcher” and “Validator” scripts to automate evidence collection
  • Ability to validate boundary diagrams, data flows, and network architecture against actual cloud configurations
  • Demonstrated ability to develop and deliver training to staff on GRC processes, tools, and implementation best practices
Job Responsibility
Job Responsibility
  • Working remotely in support of a GRC effort to move legacy ATO documentation into a modern, machine-readable format
  • Supporting a GRC SaaS implementation and should understand how to manage workspaces, program settings and KSI (Key Security Indicators) mapping
  • Creating scripts and validators to automate evidence collection from our clients environment
  • Validating boundary diagrams, data flows and network architecture against actual cloud configurations
  • Developing and delivering training to staff on GRC processes, tools and implementation best practices
What we offer
What we offer
  • excellent benefits and compensation packages
Read More
Arrow Right