GRC Manager

zee entertainment enterprises limited

full-time

Required skills

compliance
cross-functional
information security

About the role

zee entertainment enterprises limited

Website: zee.com
Job details:
The GRC Manager/Senior Manager is responsible for leading cybersecurity governance, risk management, compliance, and awareness programs in ZEE. This role ensures enterprise-wide risk visibility, audit readiness, regulatory compliance, and continuous improvement of the cybersecurity maturity posture.

The Core Responsibilities For The Job Include The Following

Risk Management and Governance:

Maintain an up-to-date enterprise risk register including risk assessment, mitigation, and acceptance inputs with status.
Conduct weekly reviews of enterprise and engineering risks and policy exceptions and track closure.
Perform proactive risk identification through process reviews, audits, and control testing.
Publish fortnightly cybersecurity and privacy risk summary reports to leadership.
Track KPIs and publish dashboards indicating control maturity.

Security Awareness And Training

Plan and execute weekly cybersecurity awareness campaigns via email.
Conduct monthly cybersecurity and privacy training for contractors.
Lead quarterly ethical phishing simulations, reduce phishing failure rates and improve reporting rates.
Execute industry-event-based awareness programs and annual gamified security carnival.

Policies, ISMS And Process Reviews

Lead annual Information Security Policy and Procedure reviews with cross-functional stakeholders.
Plan and execute ISMS risk assessments and internal and external ISO 27001 audits.
Review cybersecurity processes and recommend enhancement to process and control measures for improvement.

Leadership Reporting And Governance Committees

Prepare quarterly cybersecurity and monthly business review reports for CIO and leadership.
Convene and manage Information Security and Privacy Steering Committee (ISPSC) meetings and track actions/decisions out of the meetings for closure.

Audit, Compliance, And Contracts

Assist the team during internal, corporate, and statutory audits.
Review MSAs, NDAs, and project engagements for security obligations.
Support in security and privacy compliance portal submissions.

Financial And Corporate Governance

Track cybersecurity budget consumption and renewals.
Provide cybersecurity inputs for ESG, BRSR and Annual reporting.

This job was posted by Sudeshna Mohanty from ZEE - Technology & Innovation. Click on Apply to know more.

This page is fully interactive when JavaScript is enabled. Please enable JavaScript to apply or browse related roles.