Talent.com
GRC Analyst - Information Security
GRC Analyst - Information SecurityPINKVILLA • Mumbai, Mumbai (district)
GRC Analyst - Information Security

GRC Analyst - Information Security

PINKVILLA • Mumbai, Mumbai (district)
6 days ago
Job description

Pinkvilla is seeking a dynamic Information Security professional, who will play a key role in driving compliance programs, managing audits, supporting data protection initiatives, and ensuring third-party security risks are effectively identified and mitigated.

Key Responsibilities

Governance, Risk & Compliance (GRC)

  • Develop, implement, and maintain information security policies, standards, and procedures.
  • Conduct risk assessments and drive risk treatment / mitigation plans.
  • Support security audits and ensure timely closure of findings.
  • Monitor compliance with frameworks / standards such as ISO 27001, NIST, CIS
  • Collaborate with security engineering and SOC teams on remediation of vulnerabilities, incident response, and security enhancements.
  • Contribute to cross-functional security initiatives requiring governance, technical, and operational alignment.
  • Provide training and awareness on security to drive security aware culture

Data Protection

  • Identify and mitigate risks associated with processing of personal and sensitive data.
  • Oversee data data classification, retention, and secure disposal practices.
  • Lead initiatives around Data Loss Prevention (DLP) — including policy finetuning, incident monitoring, and working with stakeholders on data handling improvements.

    • Third-Party Risk Management (TPRM)

  • Conduct security assessments and due diligence for vendors, partners, and service providers.
  • Review and evaluate vendor security controls, certifications, and compliance posture.
  • Manage the third-party risk lifecycle, including onboarding, periodic reviews, and issue remediation.
  • Work with procurement, legal, and business teams to integrate security requirements into contracts and agreements.

    • Qualifications :

  • Bachelor’s degree in Computer Science or Information Security or related field
  • 4–6 years of experience in Information Security roles with focus on GRC, Data Protection, and TPRM.
  • Strong understanding of security standards (ISO 27001, NIST, etc.).
  • Experience conducting risk assessments, vendor due diligence, and compliance reviews.
  • Good knowledge of data protection principles, privacy laws, and security best practices.
  • Excellent documentation, communication, and stakeholder management skills.

    • Preferred Skills :

  • Relevant certifications such as CISM, CISA, ISO 27001, CIPM, or CRISC .
  • Experience with GRC tools (e.g., Archer, ServiceNow GRC, OneTrust, or similar).
  • Knowledge of cloud security and SaaS vendor risk assessments.
    • Create a job alert for this search

    Information Security Analyst • Mumbai, Mumbai (district)

    Related jobs
    Cyber Security Site Lead

    Cyber Security Site Lead

    Confidential • Navi Mumbai, India, Mumbai
    In recent years, we have evolved from a new player in power generation to India's largest private thermal power producer, with a capacity of 15,250 MW and a 40 MW solar project in Gujarat.It has cr...Show more
    Last updated: 9 hours ago • Promoted • New!
    Regulatory Compliance Associate

    Regulatory Compliance Associate

    Confidential • Navi Mumbai, India, Mumbai
    This job is with Accenture, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.KYC Screening ...Show more
    Last updated: 9 hours ago • Promoted • New!
    HCL Commerce

    HCL Commerce

    Confidential • Bengaluru / Bangalore, Pune, Mumbai
    Candidates with 0–30 days Notice Period (NP) only.Java / J2EE, Sql, Database Design.Show more
    Last updated: 30+ days ago • Promoted
    Snowflake, DBT, SQL, Kafka

    Snowflake, DBT, SQL, Kafka

    Confidential • Mumbai City, Noida, Mumbai
    Collaborate with cross-functional teams to deliver efficient and reliable data solutions.Maintain documentation of database schemas, processes, and code changes. Troubleshoot database-related issues...Show more
    Last updated: 26 days ago • Promoted
    Team Member-Risk Business Analyst / Projects

    Team Member-Risk Business Analyst / Projects

    Confidential • Mumbai City, Navi Mumbai, Mumbai
    Manager / Senior Manager – Business Analyst - Risk Function.Functional Business Analyst in Risk domain catering to Market Risk. Project Manager for identified developments responsible for Business Re...Show more
    Last updated: 22 days ago • Promoted
    Technical Lead – Azure Snowflake DBT

    Technical Lead – Azure Snowflake DBT

    Confidential • Bengaluru / Bangalore, Pune, Mumbai
    Technical Lead – Azure Snowflake DBT,.Agile team to build healthcare applications and implement new features while adhering to the best coding development standards. Design, develop, and maintain da...Show more
    Last updated: 22 days ago • Promoted
    Dynatrace specialist

    Dynatrace specialist

    Confidential • Bengaluru / Bangalore, Chennai, Mumbai
    Given your work experience, we believe it would be a great opportunity for you to progress in your career at Capgemini.Azure Infrastructure, GCP Infrastructure . We are seeking a talented and experi...Show more
    Last updated: 4 days ago • Promoted
    Information Security Lead

    Information Security Lead

    Confidential • Mumbai City, Navi Mumbai, Mumbai
    We are seeking an experienced Information Security Lead to join our team in India.The ideal candidate will have a strong background in information security and risk management, with at least 6-11 y...Show more
    Last updated: 16 days ago • Promoted