CrawlJobs Logo
Hewlett Packard Enterprise Logo Hewlett Packard Enterprise · IT - Administration

GRC Lead

India, Bangalore · Job Posted July 05, 2025
Apply Position
Job Link Share

Job Description

HPE Operations is our innovative IT services organization. It provides the expertise to advise, integrate, and accelerate our customers’ outcomes from their digital transformation. Our teams collaborate to transform insight into innovation. In today’s fast paced, hybrid IT world, being at business speed means overcoming IT complexity to match the speed of actions to the speed of opportunities. Deploy the right technology to respond quickly to market possibilities. Join us and redefine what’s next for you.

Job Responsibility

  • Definition, design, implementation of end to end ITSM processes
  • Understand the Services, Services Providers, and the Services metrics- SLAs, KPI associated with various process associated from Service management point of view
  • Ensure various process standards and designs are created, updated on periodic basis working closely with the respective Process Owners
  • Analysis of the IT Metrics and draw inferences and come up with Service Improvement plans to improve the performance of IT
  • Drive meetings, interactions with the Process and Services teams and to improve the quality of services, quality of metrics data and the quality of reporting
  • Customize the process documents to suit the customer requirements and landscape
  • Develop/enhance an audit framework which would help auditing to the Core ITSM process to fix gaps and improve Maturity
  • Participate in audits, Services reviews and provide inputs on improving effectiveness of ITSM process
  • Develop SOPs, reporting standards and reporting templates as needed from time to time
  • Work as backup if any support is needed for Incident, Problem, Change, Service Level Management Process
  • Come up with ideas to Optimize, automate tasks/activities to bring in efficiency
  • Independently lead/manage various drives/Activities pertaining to Service Improvements and Operational stability
  • Establish a good working relationship with all the supporting teams and stakeholders

Requirements

  • Excellent understanding and 8+ relevance Years experience of working with/implementing ITIL framework- Service Level Management, Incident Management, Problem Management, Change Management, Configuration Management, Continual Service Improvement
  • Knowledge of international standards like ISO20000 / ISO20K
  • At least ITIL 4 Practice Manager certified or above
  • Strong Background of Process Design-IT and Business, Optimization, Audits and documentation
  • Thorough understanding of the IT Metrics and ability to identify/develop KPI which can be effectively used to track IT performance
  • Understanding of Service Design principles
  • Good understanding of IT Applications and Infrastructure domain
  • Ability to Objectively Analyze, Assess, Communicate, and report metrics and Analyze them to draw logical inferences and identify improvements
  • Excellent communications skills – Written, Verbal and Presentation and Process documentation
  • Proficiency of developing process flows using Vision, PowerPoint and reports using excel, Word and tools like SNOW
  • Influencing, negotiation, conflict resolution
  • Candidate should be self-driven and should be able to Lead/manage activities with minimal guidance

Nice to have

Accountability, Accountability, Action Planning, Active Learning (Inactive), Active Listening, Bias, Business Growth, Business Planning, Coaching, Commercial Acumen, Creativity, Critical Thinking, Cross-Functional Teamwork, Customer Experience Strategy, Customer Solutions, Data Analysis Management, Data Collection Management (Inactive), Data Controls, Design Thinking, Empathy, Follow-Through, Growth Mindset, Intellectual Curiosity (Inactive), Long Term Planning, Managing Ambiguity

What we offer

  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
Hewlett Packard Enterprise - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

GRC Lead

8 matching positions

GRC Lead

We are looking for a GRC Lead to serve as the Technical Lead for our compliance ...
Location
Location
United States , Foster City
Salary
Salary:
208000.00 - 300000.00 USD / Year
replit.com Logo
Replit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in GRC or Information Security
  • Leadership Experience: Proven experience mentoring other GRC professionals or leading complex cross-functional projects
  • Technical Fluency: Ability to speak the language of engineering, cloud (GCP/AWS), and security architecture
  • Regulatory Breadth: Deep experience with SOC 2, ISO 27001, PCI, HIPPA, and Privacy laws
  • Collaborative Communication: Strong ability to explain risk and tradeoffs to technical (Engineers), legal, and commercial (Sales/Execs) stakeholders
  • Automation Mindset: Experience with GRC automation tools (e.g., Vanta, Drata) and a bias toward reducing manual toil
Job Responsibility
Job Responsibility
  • Team Leadership: Act as the technical anchor for the GRC team
  • Program Architecture: Own the technical vision for Replit’s GRC program
  • Thought Leadership: Champion a culture of security and privacy across the company
  • Engineering & Architecture: Partner with Architects and Engineering Leads to 'bake in' compliance requirements
  • Legal & Privacy: Work closely with Legal Counsel to interpret and implement requirements for Privacy and AI regulations
  • Sales & GTM: Enable the Sales team by managing the Customer Trust Center and handling complex security questionnaires
  • Auditor Relationships: Own and cultivate the primary relationship with external auditors
  • Risk Register Owner: Own the Cybersecurity Risk Register
  • Framework Evolution: Manage and evolve our compliance posture across SOC 2, ISO 27001, and prepare for future certifications
  • Pragmatic Governance: Apply judgment to operate in 'gray areas' when appropriate
What we offer
What we offer
  • Competitive Salary & Equity
  • 401(k) Program with a 4% match
  • Health, Dental, Vision and Life Insurance
  • Short Term and Long Term Disability
  • Paid Parental, Medical, Caregiver Leave
  • Commuter Benefits
  • Monthly Wellness Stipend
  • Autonomous Work Environment
  • In Office Set-Up Reimbursement
  • Flexible Time Off (FTO) + Holidays
  • Fulltime
Read More
Arrow Right

Global GRC Lead

Monte Carlo is seeking our first Global GRC Manager to lead our compliance effor...
Location
Location
Salary
Salary:
160000.00 - 210000.00 USD / Year
montecarlodata.com Logo
Monte Carlo Data
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep GRC Expertise: extensive knowledge of common frameworks (SOC 2, ISO 27001, NIST, GDPR, etc.) and experience managing end-to-end audit processes
  • Strong Communication Skills: translate security jargon into business language and effectively manage customer and vendor communications
  • Risk Management Mindset: balance business objectives with security requirements, prioritizing risk mitigation in a way that aligns with company goals
  • Team Player: thrive in cross-functional environments, effectively collaborating with engineering, legal, product, and other teams
  • Adaptability: flourish in a fast-paced environment, pivoting quickly when new threats, requirements, or business needs emerge
  • 5+ years of experience in a GRC or compliance-focused role, ideally in a SaaS or technology company
  • Proven track record of managing third-party risk assessments, vendor security reviews, and compliance audits
  • Expertise in compliance frameworks such as SOC 1/2, ISO 27001| 27017 | 27018 | 27701 | 42001, and GDPR
  • Relevant certifications (e.g., CISA, CISSP, CRISC, or CISM) are highly desirable
  • Excellent written and verbal communication skills with a strong attention to detail
Job Responsibility
Job Responsibility
  • Manage and respond to customer security reviews, questionnaires, and audits
  • Serve as the primary liaison for security-related inquiries from prospects, customers, and partners
  • Oversee ongoing compliance initiatives (SOC 2, ISO 27001, 27017, 27018, GDPR etc.) and maintain the risk register
  • Collaborate with cross-functional teams (Engineering, Sales, Product, HR) on risk management strategies
  • Evaluate third-party vendors, manage due diligence processes, and coordinate remediation actions
  • Develop, refine, and maintain security and compliance policies, procedures, and standards
  • Support and promote security awareness initiatives, including employee training and phishing simulations
  • Lead and coordinate internal and external audits, ensuring continuous improvement in controls
What we offer
What we offer
  • Stock Options
  • Healthcare plans
  • 401k Retirement Plan
  • Wellness Stipend
  • Home Office Stipend
  • Cell Phone or WIFI reimbursement
  • Paid Parental Leave
  • Flexible Time Off
  • Generous Travel Policy
  • Offers Equity
  • Fulltime
Read More
Arrow Right

Lead GRC Program Manager

Location
Location
United States , Austin
Salary
Salary:
Not provided
bumble.com Logo
Bumble Inc.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Have you personally built a GRC or compliance program from the ground up in a product or technology company rather than supporting or inheriting an existing program?
  • Have you replaced a recurring manual compliance or audit control with an automated, system-driven control?
  • Have you owned external audits end to end, including control design, evidence strategy, auditor interaction, and remediation decisions?
  • Have you worked through a customer payment or sensitive data flow to determine PCI scope, storage locations, and compliance boundaries?
  • Are you comfortable owning compliance and risk decisions in a fast-moving product environment without relying on a fully implemented GRC platform or large compliance team?
  • Do you live in/within commutable distance to Austin
Read More
Arrow Right

GRC Lead (ITSM)

HPE Operations is our innovative IT services organization. It provides the exper...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Excellent understanding and 8+ relevance Years experience of working with/implementing ITIL framework- Service Level Management, Incident Management, Problem Management, Change Management, Configuration Management, Continual Service Improvement
  • Knowledge of international standards like ISO20000 / ISO20K
  • At least ITIL 4 Practice Manager certified or above
  • Strong Background of Process Design-IT and Business, Optimization, Audits and documentation
  • Thorough understanding of the IT Metrics and ability to identify/develop KPI which can be effectively used to track IT performance
  • Understanding of Service Design principles
  • Good understanding of IT Applications and Infrastructure domain
  • Ability to Objectively Analyze, Assess, Communicate, and report metrics and Analyze them to draw logical inferences and identify improvements
  • Excellent communications skills – Written, Verbal and Presentation and Process documentation
  • Proficiency of developing process flows using Vision, PowerPoint and reports using excel, Word and tools like SNOW
Job Responsibility
Job Responsibility
  • Definition, design, implementation of end to end ITSM processes
  • Understand the Services, Services Providers, and the Services metrics- SLAs, KPI associated with various process associated from Service management point of view
  • Ensure various process standards and designs are created, updated on periodic basis working closely with the respective Process Owners
  • Analysis of the IT Metrics and draw inferences and come up with Service Improvement plans to improve the performance of IT
  • Drive meetings, interactions with the Process and Services teams and to improve the quality of services, quality of metrics data and the quality of reporting
  • Customize the process documents to suit the customer requirements and landscape
  • Develop/enhance an audit framework which would help auditing to the Core ITSM process to fix gaps and improve Maturity
  • Participate in audits, Services reviews and provide inputs on improving effectiveness of ITSM process
  • Develop SOPs, reporting standards and reporting templates as needed from time to time
  • Work as backup if any support is needed for Incident, Problem, Change, Service Level Management Process
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right
New

Cyber GRC Project Lead

Help us deliver like never before  We’re looking for a Cyber Risk Advisor – Majo...
Location
Location
Australia , Richmond
Salary
Salary:
Not provided
auspost.com.au Logo
Australia Post
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in cyber security, risk, or GRC within complex or program-based environments
  • Strong stakeholder engagement skills, with the ability to influence and act as a trusted advisor
  • Experience conducting or coordinating risk assessments, with an understanding of cyber frameworks and governance practices
Job Responsibility
Job Responsibility
  • Partner closely with program teams and cyber stakeholders to embed strong governance, risk and compliance practices across key transformation initiatives
  • Act as the central point of triage for cyber risk, providing insights, driving improvements, and building trusted relationships across the business
  • Lead and coordinate cyber risk assessments across major programs, acting as the central triage point for incoming work
  • Engage and influence key stakeholders to uplift cyber awareness and embed GRC practices into delivery
  • Provide timely reporting and insights on program risk posture, trends and key findings
  • Continuously improve processes through feedback and iteration to enhance how cyber GRC supports delivery
What we offer
What we offer
  • Work across high-impact, enterprise-wide transformation programs driving meaningful cyber outcomes
  • A genuinely collaborative environment where you're empowered to shape processes and ways of working
  • Opportunities to grow your capability and build trusted advisor relationships across Digital Technology and the broader business
  • Fulltime
Read More
Arrow Right

Lead Cybersecurity GRC Engineer

Lead Cybersecurity GRC Engineer role focusing on risk remediation and governance...
Location
Location
United States , New York
Salary
Salary:
225000.00 USD / Year
realign-llc.com Logo
Realign
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • CISSP certification strongly preferred (or equivalent demonstrated experience)
  • Additional certifications such as CISA, CISM are a plus
  • Experience with GRC platforms such as: ServiceNow IRM / GRC, Archer, 6clicks, Other comparable GRC tools
  • Prior exposure to regulated financial services environments (Banking / Insurance)
  • Minimum 8 years of experience in Cybersecurity and GRC, spanning multiple security domains (CISSP domains may be used as a reference framework)
  • Strong hands-on experience in risk remediation, particularly across security design, testing, compliance, BCP/DR, and third-party risk
  • Proven ability to translate policy and regulatory requirements into actionable remediation steps
  • Demonstrated experience in control testing (ToD and ToE)
  • Excellent verbal and written communication skills, with experience engaging senior leaders within banking or insurance organizations
  • Strong analytical and documentation skills with a track record of producing professional, client-ready deliverables
Job Responsibility
Job Responsibility
  • Lead and oversee cybersecurity risk remediation and governance initiatives aligned with enterprise risk and compliance requirements
  • Interpret security policies, standards, and regulatory requirements, and apply them effectively to enterprise assets and environments
  • Identify control gaps, non-compliance issues, and deviations, and drive remediation efforts to closure
  • Perform and guide security control testing, including: Test of Design (ToD), Test of Effectiveness (ToE)
  • Provide remediation guidance across key cybersecurity domains, including but not limited to: Secure architecture and security design, Security testing and validation, Secure coding and code compliance, Business Continuity Planning (BCP) and Disaster Recovery (DR), Third-Party Risk Management (TPRM)
  • Partner with technical, risk, and business stakeholders to gather and validate evidence supporting remediation and compliance activities
  • Prepare and maintain high-quality documentation such as: Policies, procedures, and SOPs, Remediation plans and guidance documents, Risk and compliance reports
  • Present findings, recommendations, and remediation strategies to senior stakeholders and decision-makers
  • Influence outcomes through clear, tactful, and data-driven communication
  • Support compliance and audit activities
  • Fulltime
Read More
Arrow Right

Director, Security GRC Program Lead

Meta is seeking a highly skilled Security GRC Program Manager to join our Risk O...
Location
Location
United States , Bellevue
Salary
Salary:
227000.00 - 287000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience as a leader and contributor in security risk management and compliance, including providing second-line oversight
  • Strong track record of operating effectively and influencing outcomes with Engineering, Product, GRC, and Legal partners
  • Extensive experience with Governance, Risk, and Compliance (GRC) and Legal functions
  • Deep expertise in security, with the ability to holistically understand relevant issues, partners, and products, and go deep on technical details
  • Proven ability to identify critical issues, balance competing priorities, translate technical and regulatory concepts for diverse audiences, and personally drive initiatives to completion
  • In-depth knowledge of complex global regulatory requirements (e.g., GDPR, SEC, PCI-DSS, NYDFS)
  • Demonstrated ability to build strong formal and informal networks with key influencers and decision makers inside and outside the company
  • Experience working in integrated privacy-security environments or familiarity with unified GRC frameworks across multiple risk domains
Job Responsibility
Job Responsibility
  • Lead and deliver on deeply complex, high-impact projects that shape Meta's risk profile and business trajectory
  • Proactively identify long-term, critical, and ambiguous problems, setting a clear vision and strategy for risk management in alignment with company goals
  • Partner with Central Security teams to analyze, streamline, and consolidate issues and risks from all sources (1LoD, 2LoD, 3LoD, external) into a clear, prioritized list for first-line-of-defense consumption and actioning
  • Integrate security risk management with Meta's Security Prioritization Framework (SPF) and contribute to capability maturity assessments to drive risk-based prioritization across the organization
  • Define and maintain clear interfaces and points of contact with the Security organization and other key partners, ensuring efficient governance and communication
  • Prepare regular updates and compliance documents to ensure Meta meets board and regulatory obligations, adapting processes and strategies to evolving regulatory and business environments
  • Drive cross-org execution, collaborating with Risk, Security, Legal, Product, and Engineering functions to deliver results and maximize impact
  • Champion organizational efforts to build and sustain diversity, culture, recruitment, onboarding, mentoring, and development programs, serving as a role model and mentor for others
  • Integrate learnings and best practices from/to sister 2LoD organizations (e.g., Integrity GRC, Privacy GRC), and partner with Product & Engineering teams on necessary second-line-of-defense tooling within the unified GRC framework
What we offer
What we offer
  • bonus
  • equity
  • benefits
Read More
Arrow Right
New

Security Analysis Specialist Advisor

Location
Location
India , Noida
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to self-manage work schedule to ensure timely delivery of audit and compliance services
  • Ability to drive IT teams and escalate where necessary to ensure timely delivery of audit and compliance services
  • Solid critical thinking and problem-solving skills
  • Ability to manage competing priorities and comfortable to work through ambiguity
  • Minimum 2 years of hands-on information technology operations experience and a strong knowledge of IT security standards and best practices
  • Minimum of 2 years recent audit experience spanning at least two full cycles of any two of the following: SSAE16 SOC1 Type 2, SSAE16 SOC2 Type 2, SOX, PCI-DSS, HIPPA, ISO/IEC 27001:2005, or similar
  • Strong understanding and application of IT Security frameworks such as: PCI DSS, ISO/IEC 27001:2005, CIS, HIPAA, NIST 800-53 etc.
  • Strong understanding of IT general controls
  • Ability to work within a fast-paced environment within an ITO organization
  • Strong interpersonal relationship building and business acumen
Job Responsibility
Job Responsibility
  • Develop and maintain an effective audit and compliance program strategy based on client requirements
  • Evaluate, interpret, and ensure clarity of contractual audit and compliance obligations and client objectives
  • Implement and drive governance, risk, and compliance approach to promote ongoing audit readiness and to contribute toward effective IT security hygiene and management of risk
  • Participate in audit lifecycle including internal/external audits and assessments
  • Provide oversight and guidance for internal/external audits and assessments
  • Drive recurring internal assessment of controls environment to ensure compliance with information security policies and established security controls
  • facilitate remediation
  • Maintain annual audit calendar for supported client
  • Maintain IT security controls library and documentation repository for supported client
  • Coordinate the collection of audit evidence and provide timely responses to support audits and/or assessments from internal/external auditors/assessors
Read More
Arrow Right