Information Risk Management (Irm) - Manager / Senior Manager

Manager / Senior Manager – Information Risk Management (IRM) Consulting | Bangalore

Location : Bangalore

Experience : 5+ years

Role : Manager / Senior Manager – Information Risk Management

Preference : Early joiners preferred

About the Role

We are seeking experienced professionals in Information Risk Management (IRM) for our consulting practice. The role involves advising enterprise clients on risk assessments, control effectiveness, governance, and compliance maturity. You will work directly with client stakeholders to strengthen their risk posture through structured frameworks, analytics, and strategic guidance.

Key Responsibilities

1. Risk Assessment & Governance

Conduct and lead end-to-end IT risk assessments across critical applications, infrastructure, and enterprise environments.

Identify control weaknesses, assess risk impact, and recommend mitigation strategies.

Drive ITGC and SOX control testing , design effectiveness reviews, and continuous improvement of control frameworks.

Facilitate risk workshops and support alignment with organizational risk appetite.

2. Compliance & Audit Support

Ensure audit readiness by coordinating evidence collection, documentation, and remediation follow-up.

Support compliance with internal policies and global control standards.

Work with client teams to enhance governance structures and strengthen compliance accountability.

3. Reporting, Dashboards & Analytics

Build and maintain dashboards using platforms such as Power BI, ServiceNow GRC, or MetricStream .

Provide insights on compliance trends, control health, and risk indicators to client leadership.

Deliver clear, data-backed recommendations to improve IT governance processes.

4. Stakeholder & Client Management

Engage with cross-functional teams across IT, cybersecurity, legal, compliance, and business units.

Present findings, action plans, and project updates to senior stakeholders.

Provide advisory support on risk mitigation, process improvements, and governance structures.

5. Project Delivery & Execution

Manage multiple risk and compliance initiatives simultaneously.

Track deliverables, monitor timelines, and ensure quality of all consulting outputs.

Lead issue management, deviation tracking, and proactive risk mitigation during engagements.

6. Training & Knowledge Enablement

Conduct awareness programs on risk identification, mitigation processes, and governance.

Mentor junior team members and ensure consistency in methodology and delivery.

Required Skills & Experience

5+ years of experience in IRM, IT risk assessments, ITGC / SOX testing, risk governance, or compliance functions.

Strong understanding of IT controls, risk frameworks, and audit methodologies .

Hands-on experience with risk reporting and tools like Power BI, MetricStream, ServiceNow GRC , etc.

Proven ability to analyze complex datasets and derive actionable insights.

Strong communication, presentation, and stakeholder management skills.

Experience managing projects, risk remediation programs, or governance initiatives.

Certifications such as CISM, CISA, CISSP, CRISC, PMP, PSM , or other risk / governance credentials are an advantage.

Preferred Profile

Prior consulting or advisory experience.

Ability to manage senior stakeholder discussions and steer governance forums.

Strong documentation, reporting, and analytical skills.

Early joiners preferred.