Talent.com
Deputy Manager - IT GRC (Governance, Risk, and Compliance)
Deputy Manager - IT GRC (Governance, Risk, and Compliance)ENGIE India • Pune, India
Deputy Manager - IT GRC (Governance, Risk, and Compliance)

Deputy Manager - IT GRC (Governance, Risk, and Compliance)

ENGIE India • Pune, India
13 days ago
Job description

The Deputy Manager - IT GRC (Governance, Risk, and Compliance) role at ENGIE India is crucial in ensuring the organization's Digital & IT landscape is secure, compliant, and aligned with business objectives. This role involves developing, implementing, and managing IT GRC, risk management, and ensuring compliance with regulations and internal controls. This is an individual contributor role based in Pune, India, with occasional onsite travel to support Digital & IT audits.

Main Objectives

The primary objective is to ensure the IT landscape is secure, compliant, and aligned with business goals. This involves :

  • Implementing comprehensive IT GRC strategies.
  • Implementing INCOME framework for D&IT function
  • Implement and Manage - Risk management processes.
  • Ensuring adherence to regulations and standards.
  • Maintain Digital &IT internal control requirements
  • Lead the Digital & IT Internal Control and Compliance

Key Responsibilities

  • Audit Preparation and Management : Prepare processes, teams, and documents for internal and external audits. Track and remediate audit observations with corrective and preventive actions.
  • Risk Management : Manage and track all technology-related risks for timely closure. Oversee formal risk analysis and self-assessment programs for various systems and processes.
  • Compliance : Ensure compliance with privilege access management processes and relevant IT regulations and standards, such as ISO 27001 and NIST CSF.
  • Documentation and Communication : Maintain strong documentation and communication skills. Ensure clear communication with stakeholders and effective conflict resolution.
  • Implementing Initiatives : Coordinate with various departments to ensure smooth execution and monitor progress.
  • Continuous Improvement : Foster a culture of continuous improvement within the IT GRC team.
  • Stakeholder Engagement : Engage with key stakeholders, including management and department heads, to ensure IT GRC strategies are well-supported and integrated.
  • Conducting Risk Assessments : Oversee comprehensive risk assessments to identify potential risks.
  • Developing Mitigation Strategies : Implement controls and safeguards to reduce the likelihood and impact of risks.
  • Monitoring and Reporting : Establish effective monitoring mechanisms and regularly report on risk status to management.
  • Collaboration with Departments : Work closely with various departments to ensure effective implementation of risk management strategies.
  • Adhering to Regulations : Ensure compliance with all relevant IT regulations and standards.
  • Implementing Best Practices : Promote the adoption of industry best practices within the organization.
  • Internal and External Audits : Conduct regular internal audits and manage relationships with external auditors and regulatory bodies.
  • Policy Development : Develop and maintain comprehensive IT GRC policies.

    • Coordination and Collaboration

  • Cross-Departmental Collaboration : Collaborate with various departments to ensure effective implementation of GRC initiatives.
  • Stakeholder Communication : Ensure stakeholders are informed about the progress and impact of GRC activities.
  • Conflict Resolution : Resolve conflicts that arise during the implementation of GRC initiatives.
  • Internal Audits : Conduct internal audits to assess the effectiveness of IT GRC controls and processes.
  • Managing External Audits : Ensure the organization is well-prepared for external audits and address any findings promptly.
  • Audit Preparation : lead the preparation for audits to ensure a smooth process.
  • Addressing Audit Findings : Develop and implement action plans to resolve audit findings and prevent recurrence.
  • Continuous Improvement : Use audit insights to drive continuous improvement in GRC practices.
  • Regular Reporting : Provide regular reports on IT GRC activities to management and the board.
  • Clear Communication : Ensure GRC-related information is communicated clearly and consistently.
  • Training and Awareness : Promote awareness of GRC policies and practices within the organization through training sessions and resources.

    • Technical Knowledge and Skills

  • Understanding IT Systems : Strong understanding of IT systems, including Cloud services, IT-OT convergence, hardware, software, networks, and data management practices.
  • Security Principles : Deep understanding of security principles, including encryption and access control.
  • Risk Management Frameworks : Familiarity with frameworks such as ISO 31000 and NIST RMF.
  • Emerging Technologies : Stay updated on emerging technologies and their impact on IT GRC practices.
  • Technical Certifications : Relevant certifications such as CRISC are valuable.
  • Compliance Knowledge
  • Regulatory Requirements : Deep knowledge of relevant regulatory requirements, such as CEA guidelines, Internal Controls (ITGC), IT Act, Indian and global Energy sector compliance, GDPR, HIPAA, and SOX.
  • Industry Standards : Familiarity with industry standards like ISO 27001 and NIST CSF.
  • Compliance Assessment : Conduct regular compliance assessments and develop comprehensive compliance policies.
  • Training and Awareness : Promote awareness of compliance requirements within the organization.

    • Analytical and Problem-Solving

  • Risk Analysis : Conduct formal risk analysis to identify potential vulnerabilities.
  • Problem-Solving : Develop and implement effective solutions to mitigate risks.
  • Data Analysis : Analyze data to identify trends, assess risks, and make informed decisions.
  • Decision-Making : Make informed decisions based on risk and compliance analysis.
  • Continuous Improvement : Promote a culture of continuous improvement in GRC practices.

    • Qualifications and Experience

  • Strong background in Information Technology, Cybersecurity, or a related discipline.
  • Knowledge of frameworks like ISO 27001, NIST, GDPR, and HIPAA.
  • 5-8 years in IT GRC, preferably in the Energy sector.
  • Hands-On Experience : Identifying, assessing, and mitigating risks.
  • Practical Application : Applying GRC principles in energy sector

    • Work Environment & Physical Requirements : -

  • Location : Pune, India, with intermittent travel to sites.
  • Team Size : Individual Contributor role.
  • Physical Activity : Extended periods of concentration, technical hands-on work, and physical activity during site visits.
  • Reports to : Cyber Security & IT Infrastructure Manager

    • Why Join ENGIE?

    As a Deputy Manager IT-GRC at ENGIE, you will play a pivotal role in safeguarding and improving the Digital & IT landscape of a global leader in energy and sustainability. Drive ENGIE’s mission to achieve a carbon-neutral world through innovative technology solutions. Join us to contribute to a sustainable future and be part of a transformative journey towards a more efficient and eco-friendlier world.

    Visit us at and

    Create a job alert for this search

    Deputy Manager • Pune, India

    Related jobs
    IT Systems Manager

    IT Systems Manager

    Bray Leino Splash (formerly Splash Interactive Group) • Pune, Maharashtra, India
    We are seeking a proactive and skilled IT Systems Engineer to support, maintain, and optimize our cloud and on-premise systems. You will play a key role in ensuring the stability, security, and effi...Show more
    Last updated: 23 days ago • Promoted
    Manager IT Infrastructure & End-User Services

    Manager IT Infrastructure & End-User Services

    Verdantas • Pune, Maharashtra, India
    Join Verdantas – A Top #ENR 81 Firm!.We are seeking a highly skilled and strategic manager of IT infrastructure & end-user services to lead and oversee our critical technology service pillars.This ...Show more
    Last updated: 9 days ago • Promoted
    Manager, IT Finance Systems

    Manager, IT Finance Systems

    Danaher • Pune, Maharashtra, India
    This job is with Danaher, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.Are you ready to...Show more
    Last updated: 30+ days ago • Promoted
    Assistant Manager - IT & Solutions

    Assistant Manager - IT & Solutions

    Confidential • Pune, India
    Tata Communications Redefines Connectivity with Innovation and IntelligenceDriving the next level of intelligence powered by Cloud, Mobility, Internet of Things, Collaboration, Security, Media serv...Show more
    Last updated: 24 days ago • Promoted
    Deputy General Manager - Global Information Security

    Deputy General Manager - Global Information Security

    Confidential • Pune, India
    We are seeking a highly experienced and visionary Head of Data Security Engineering to lead the design, implementation, and continuous improvement of our data security strategies across the enterpr...Show more
    Last updated: 2 days ago • Promoted
    H1B Resource Deployment Manager

    H1B Resource Deployment Manager

    PTR Global • Pune, IN
    Pinnacle Group is a nationally recognized leader in workforce solutions, known for delivering high-impact staffing, talent management, and contingent workforce programs. We support some of the most ...Show more
    Last updated: 30+ days ago • Promoted
    Orbia - Director / Senior Manager - CIO Office

    Orbia - Director / Senior Manager - CIO Office

    Orbia • Pune, India
    The Director / Senior Manager Office of the CIO is responsible for leading and integrating key IT governance functions, driving strategic portfolio execution, and ensuring cohesive oversight of fina...Show more
    Last updated: 30+ days ago • Promoted
    Manager - IT Infrastructure

    Manager - IT Infrastructure

    Ensono Technologies LLP • Pune
    About Ensono : Ensono, Inc is a Delaware corporation incorporated in 2015 and located in Downers Grove, Illinois.Ensono, Inc provides infrastructure management services that h...Show more
    Last updated: 22 days ago • Promoted
    GM - Senior IT Development Manager

    GM - Senior IT Development Manager

    Confidential • Pune, India
    VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation.As the l...Show more
    Last updated: 20 days ago • Promoted
    Senior Manager IT Portfolio Governance and Resource Management

    Senior Manager IT Portfolio Governance and Resource Management

    Confidential • Pune, India
    Location : Remote, Pune, Maharashtra, India.Position Title : Senior Manager IT Portfolio Governance and Resource Management. Senior Manager IT Portfolio Governance and Resource Management is responsib...Show more
    Last updated: 18 days ago • Promoted
    Deputy General Manager - IoT and Private Networks

    Deputy General Manager - IoT and Private Networks

    Confidential • Pune, India
    Engineering Lead will be responsible for leading the design, development,.G network solutions for enterprise and.This role requires deep technical expertise in 5G. The Lead will manage a team of.Pla...Show more
    Last updated: 1 day ago • Promoted
    IT Privilege Management lead

    IT Privilege Management lead

    Confidential • Pune, India
    Join us as a 'IT Privilege Management lead' at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence. You'll harness cutting-edge technology to r...Show more
    Last updated: 23 days ago • Promoted
    Support Manager

    Support Manager

    Confidential • Pune
    Intune, Azure Active Directory.Collaborate with cross-functional teams to resolve complex IT issues.Lead and mentor support teams, ensuring. Azure Active Directory, Active Directory Support, Intune,...Show more
    Last updated: 16 days ago • Promoted
    IT Security & Data Protection Risk Manager

    IT Security & Data Protection Risk Manager

    Confidential • Pune, India
    Are you a data protection and cyber security risk SME looking for a new challenge Do you have risk and control mindset Do you enjoy working within collaborative team to improve the risk posture of ...Show more
    Last updated: 23 days ago • Promoted
    Problem Manager

    Problem Manager

    Mphasis • Pune, IN
    Problem Manager & Major Incident Manager.The Problem Manager, following ITIL V4 best practices, is responsible for the efficient and effective management of IT problems and incidents to minimize th...Show more
    Last updated: 3 days ago • Promoted
    Manager - Cybersecurity Compliance

    Manager - Cybersecurity Compliance

    Tekskills India Private Limited • Pune, India
    Manager - Cybersecurity Experience : 10 to 14 Years (Relevant : 9+ Years) Skills Required : ISO 27001 : 2005, Cybersecurity Risk, Regulatory Co...Show more
    Last updated: 30+ days ago • Promoted
    Deputy Manager - IT GRC (Governance, Risk, and Compliance)

    Deputy Manager - IT GRC (Governance, Risk, and Compliance)

    ENGIE India • Pune, Maharashtra, India
    Deputy Manager - IT GRC (Governance, Risk, and Compliance) role.ENGIE India is crucial in ensuring the organization's Digital & IT landscape is secure, compliant, and aligned with business objectiv...Show more
    Last updated: 13 days ago • Promoted
    SIAM IT Service Manager

    SIAM IT Service Manager

    Tata Consultancy Services • Pune, Maharashtra, India
    Role : SIAM IT Service Manager.Required Technical Skill Set : Knowledge of implementing or working under the ITIL V3 framework as part of the Service Operation stage of the lifecycle.Desired Compete...Show more
    Last updated: 30+ days ago • Promoted