HCLTech
Website:
hcltech.com
Job details:
Hi All,
We are hiring for Manager Risk & Compliance role for Chennai location. Please find the job details below:
Qualification- Any Graduate
Total experience- 10+Years
Work Model- WFO
- Experience in Compliance management, Risk Management, Information Security, Infosec Training & awareness, incident management and internal & external audit in financial Market.
- Required to have excellent understanding of the client MSA obligations, data privacy laws (CCPA, GDPR, Digital Personal Data Protection Act, 2022), IT Control framework & risk assessment.
- Working experience in compliance programs i.e. (PCI DSS, , ISO 27001, ISO 22301, SSAE-18 SOC 1 & 2, SOX)
- Lead teams and efforts to ensure effective execution of periodic risk assessments and drive integration of remediation efforts with the risk management process
- Partner with service delivery leadership to both communicate and manage risk in delivery to an acceptable level
- Partner with awareness and training elements to develop and ensure rollout of programs to increase the level of awareness of compliance with policy and process
- Lead and perform activities to help measure and monitor compliance with contractual security requirements, company policies and procedures to ensure the account is compliant and audit ready
- Lead different compliance & audit testing programs and support successful completion of various external compliance certification programs and internal compliance assessments
- Proven ability to lead small teams dedicated to the performance of risk management and assessment responsibilities.
- Ability to provide effective management of junior employees.
- Develops and provides appropriate guidance on solutions to mitigate risks and enhance system security
- Deep understanding of privacy and business continuity requirements and support R&C Privacy and BCM teams in execution of their respective program
- Demonstrates ability to work in virtual team with help of tools and technologies
- Demonstrates ability to handle conflicting situation & should have strong verbal, written communication & analytical skills
- Must have systematic and pragmatic approach to problem solving
- Demonstrates good inter-personal skills, high standards of professional behavior in dealings with business customers, colleagues, and staff
- Have a good technical awareness and the aptitude to remain up to date with information security and IT developments
- Ability to communicate Risk to non-IT business owners and support function such as delivery, HR, Admin, Legal, Contracting and others
- Ability to communicate risk at all levels of management up to and including C-Level executives.
- Translate business, industry, and regulatory requirements into information security objectives and associated tactical/strategic information security initiatives
- Certification such as ISO 27001/ ISO 22301/ PCI DSS/ GDPR/ Certified in Risk and Information Systems Control (CRISC) / Certified Information Security Manager (CISM) /or any other security related certifications are preferred.
Click on Apply to know more.