Jobeedo
PE

GRC Practitioner

Persistent
Pune10-12 LPA Posted 16 Apr 2025
FULL TIME
Hipaa
Gdpr
Cobit

Job Description

What You'll Do:

  • Practice Leadership: Define and execute the overall strategy for the GRC practice. Identify and develop new service offerings to meet evolving client needs. Establish and maintain strong relationships with key technology partners. Stay abreast of industry trends and emerging security threats.
  • Solution Development & Delivery: Lead the development of comprehensive GRC Security solutions tailored to client requirements. Oversee the implementation and management of security services, Privacy Assessment, Audits, Third Party Risk Management. Familiarity with compliance & security standards across the enterprise IT landscape. Knowledge of compliances (PCI DSS, SOX etc.) and IS standards (ISO 27001, BS25999, ISO 2700X, OWASP, CIS, etc). Develop and maintain comprehensive service documentation and operational procedures.
  • RFP Response & Pre-Sales: Lead the technical response to RFPs and RFIs, crafting compelling solutions that address client security challenges, collaborate with sales teams to develop winning proposals and presentations. Provide expert security guidance during client meetings and presentations.
  • Client Relationship Management: Build and maintain strong relationships with clients, conduct regular service reviews and provide proactive security recommendations. Act as a trusted advisor to clients on security matters

Expertise You'll Bring:

  • Bachelor's degree in Business, Computer Science, Information Technology, or related field. Master's degree preferred.
  • Minimum of 10 years of experience in GRC, including experience in practice building.
  • Extensive knowledge of GRC frameworks, standards, and best practices, such as ISO 27001, NIST Cybersecurity Framework, and COBIT.
  • Hands-on experience with GRC tools and platforms, such as RSA Archer, ServiceNow GRC, or similar solutions.
  • Strong understanding of risk management principles and methodologies.
  • Experience with regulatory compliance requirements, such as GDPR, HIPAA, PCI DSS, and SOX.
  • Excellent communication and leadership skills, with the ability to effectively lead and mentor a team.
  • Relevant certifications such as CRISC, CISA, CISSP, or GRC-related certifications are a plus.

Required Skills

HipaaGdprCobit
Join WhatsApp Channel