Moneyview
Website:
moneyview.in
Job details:
Job Role : IS & IT GRC
Experience : 3 to 5 Years
Reporting to : AD (Associate Director)
Location : Bangalore
Commitment: Full-Time
About the Role:
Moneyview is seeking a highly skilled IS & IT GRC to lead the GRC (Governance, Risk,
and Compliance) initiatives. This role involves updating and maintaining a robust governance
framework, proactively managing risks, and ensuring compliance with relevant industry
standards, regulatory compliance and legal requirements.
This critical role will involve conducting periodic reviews, driving compliance initiatives,
overseeing compliance findings, driving continuous improvement in our IS & IT GRC
(Governance, Risk, and Compliance) program, interfacing audits and documenting processes to
enhance the overall program maturity.An experienced and highly skilled professional is required
to assume the position of Manager, Information Systems & Information Technology
Governance, Risk, and Compliance (IS & IT GRC). This role is of critical importance in
safeguarding the organization's information infrastructure and assets.
The selected candidate will be responsible for establishing and maintaining a robust
governance framework, performing detailed risk analyses, and guaranteeing strict adherence to
applicable industry regulations and legislative requirements. Key duties will include conducting
regular reviews, implementing compliance protocols, rectifying compliance issues, leading
continuous improvement initiatives within the IS & IT GRC program, managing review
processes, and developing thorough procedural documentation to enhance the program's
maturity.
Qualifications:
● A minimum of three to five (5) years of professional experience in information security risk
and compliance management within a complex organizational setting is required.
● Preference will be given to applicants possessing experience in the development and
management of internal IT risk and compliance programs, rather than advising external
clients or conducting audits.
● Essential skills include proven expertise in ISO/IEC 27001 implementation,
maintenance, internal review procedures, and managing ongoing maintenance projects.
The role also requires experience in liaising with non-technical departments.
● A robust understanding or practical engagement with ISO 27001, PCI DSS and SOC2
standards is necessary.
● Experience in organizations subject to regulatory oversight by the RBI, NPCI,SEBI or
IRDAI is advantageous.
● A comprehensive knowledge of information security operational processes and
technologies is critical.
● Advanced documentation and reporting capabilities are mandatory.
● Exceptional stakeholder management skills are requisite.
● Certifications such as CISM,CISA , ISO 27001 Lead Implementer are highly desirable.
● Experience within the financial services industry, with particular emphasis on regulated
fintech, is considered a significant asset.
Click on Apply to know more.