Talent.com
Risk Manager – GRC

Risk Manager – GRC

SMC GroupDelhi, India, India
23 hours ago
Job description

Hiring for Information Security – Risk Manager – GRC (BCP & ISO 27001 : 2022 Implementation)

Experience required for the Job : 5 - 10 years

Job Location : Delhi

Position : Risk Manager – GRC

Job Summary :

The Risk Manager – GRC (ISO 27001 : 2022 & BCP) is responsible for overseeing the implementation, maintenance, and continual improvement of the Information Security Management System (ISMS) in alignment with ISO 27001 : 2022 standards . This role ensures that the organization’s information security practices meet regulatory requirements, client expectations, and industry best practices, while also mitigating risks to the confidentiality, integrity, and availability of information.

Education :

  • Bachelor’s degree in Information Security, Computer Science, or a related field.
  • A Master’s degree is a plus.

Experience :

  • 5+ years of experience in information security management, with a focus on ISO 27001 implementation and compliance.
  • Proven experience in leading ISMS implementation and managing information security compliance audits.

    • Certifications :

  • ISO 27001 Lead Implementer or Lead Auditor certification.
  • Additional certifications such as CISSP, CISM, or CISA are advantageous.

    • Skills :

  • In-depth knowledge of ISO 27001 : 2022 standards and information security best practices.
  • Strong understanding of risk management and incident management processes.
  • Excellent communication, documentation, and project management skills.
  • Ability to work collaboratively with cross-functional teams and influence decision-making.
  • Knowledgeable and experienced in crisis management best practices.
  • Experience with cloud (AWS) environments, SaaS provider architecture, and cloud-based disaster recovery methodologies.

    • Key Responsibilities :

    1. ISMS Implementation & Maintenance

  • Lead the development, implementation, and continuous improvement of the Information Security Management System (ISMS) in accordance with ISO 27001 : 2022 standards.
  • Ensure that all policies, procedures, and controls are documented, communicated, and enforced throughout the organization.
  • Collaborate with various departments to integrate ISO 27001 requirements into business processes and operations.

    • 2. Risk Management

  • Conduct regular risk assessments to identify, analyze, and evaluate information security risks.
  • Develop and implement risk treatment plans to mitigate identified risks.
  • Monitor the effectiveness of risk treatment plans and adjust them as necessary to ensure ongoing risk mitigation.

    • 3. Compliance & Audit Management

  • Prepare and maintain compliance documentation required for ISO 27001 : 2022 certification.
  • Coordinate and facilitate internal and external audits to ensure compliance with ISO 27001 standards.
  • Address non-conformities identified during audits by developing and implementing corrective and preventive actions.

    • 4. Training & Awareness

  • Develop and deliver information security awareness training programs to educate employees about their roles in maintaining the ISMS.
  • Ensure that staff members understand and comply with ISO 27001 : 2022 policies and procedures.

    • 5. Incident Management

  • Oversee the incident management process, ensuring that information security incidents are promptly identified, reported, and managed.
  • Conduct post-incident reviews to identify root causes and implement corrective actions to prevent recurrence.

    • 6. Continuous Improvement

  • Monitor and evaluate the effectiveness of the ISMS, identifying areas for improvement.
  • Lead initiatives to enhance the organization’s information security posture, staying up to date with industry trends, emerging threats, and changes in the regulatory environment.

    • 7. Stakeholder Communication

  • Act as the primary point of contact for all matters related to ISO 27001 : 2022 compliance.
  • Communicate ISMS performance, compliance status, and risk management activities to senior management and relevant stakeholders.

    • 8. Vendor and Third-Party Management

  • Evaluate and monitor third-party vendors and service providers to ensure they meet the organization's information security requirements.
  • Develop and maintain vendor risk assessments and ensure that third-party agreements align with ISO 27001 : 2022 standards.

    • 9. Coordinate business continuity and technology disaster recovery drills and tabletop exercises as appropriate.

    10. Identify critical systems and categorize them based on enterprise and operational risks crucial to continued business operations in the event of a disaster.

    11. Create reports as needed for different levels of leadership, covering all aspects of BCP.

    12. Conduct weekly status reports, DR readiness reviews, milestone reviews, and post-exercise reviews.

    Note : This role is 60% documentation and process-oriented.

    Create a job alert for this search

    Risk Manager • Delhi, India, India

    Related jobs
    • Promoted
    Business Risk Manager (Technology)

    Business Risk Manager (Technology)

    RevolutMeerut, IN
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 30+ days ago
    • Promoted
    Urgent looking for GRC consultant II Need 1+ years experience II Loc : Mumbai II Salary upto 14LPA I

    Urgent looking for GRC consultant II Need 1+ years experience II Loc : Mumbai II Salary upto 14LPA I

    Jobman by Shunya TattvaDelhi, India
    GRC Consultants | 1-5 Years |Currently open (Immediate Joiners).Please note, we are focusing on candidates who are based in Mumbai to avoid relocation. Location : Mumbai (Should be comfortable travel...Show moreLast updated: 22 days ago
    • Promoted
    GRC Specialist

    GRC Specialist

    ConfidentialNoida, India
    The Governance, Risk and Compliance specialist is responsible for process definition with respect to business and its related security requirements, implementation of security controls, governance ...Show moreLast updated: 4 days ago
    • Promoted
    GRC Analyst

    GRC Analyst

    DemandbaseGhaziabad, IN
    Demandbase is seeking a motivated and detail-oriented GRC Sr Analyst to support its global Governance, Risk, and Compliance program. Reporting to the Senior Director of GRC, you’ll collaborate cross...Show moreLast updated: 22 days ago
    • Promoted
    Business Risk Manager (Savings)

    Business Risk Manager (Savings)

    RevolutDelhi, IN
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 20 days ago
    • Promoted
    • New!
    GRC and ISMS Manager

    GRC and ISMS Manager

    SMC GroupDelhi, Republic Of India, IN
    Hiring for Information Security – Risk Manager – GRC (BCP & ISO 27001 : 2022 Implementation).Experience required for the Job : . Risk Manager – GRC (ISO 27001 : 2022 & BCP).Information Security Management...Show moreLast updated: 21 hours ago
    • Promoted
    Senior Manager - Business Consulting Risk - AMI - CNS - Risk - Digital Risk - Gurgaon

    Senior Manager - Business Consulting Risk - AMI - CNS - Risk - Digital Risk - Gurgaon

    ConfidentialGurugram, Gurgaon / Gurugram, India
    As a global leader in assurance, tax, transaction and advisory services, we hire and develop the most passionate people in their field to help build a better working world.This starts with a cultur...Show moreLast updated: 4 days ago
    • Promoted
    Analyst - GRC (Governance, Risk & Compliance)

    Analyst - GRC (Governance, Risk & Compliance)

    AmagiDelhi, India
    This role has been established to support the business in building sustainable governance andcompliance practices at Amagi. The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 9 days ago
    • Promoted
    • New!
    Risk and Compliance Manager

    Risk and Compliance Manager

    Visit HealthNoida, Republic Of India, IN
    Visit Health is a pioneering health-tech platform, founded in 2016 by BITS Pilani alumni, dedicated to making healthcare accessible, affordable, and preventive. Originated as a telemedicine platform...Show moreLast updated: 21 hours ago
    • Promoted
    Senior Manager Enterprise Risk Management

    Senior Manager Enterprise Risk Management

    Gangahar Consulting Pvt.Ltd.South Delhi, Delhi, India
    Enterprise Risk Management - Client of GCPL , India.This is a full-time on-site role for a Manager / Senior Manager Enterprise Risk Management with a client in Hyderabad, Mumbai and Bangalore.The S...Show moreLast updated: 23 hours ago
    • Promoted
    Associate Partner - GRC (Governance, Risk, and Compliance)

    Associate Partner - GRC (Governance, Risk, and Compliance)

    Talent ToppersDelhi, India
    Position Overview : We are seeking a highly experienced professional to join our client's GRCS, Risk Advisory Service Line. The ideal candidate will bring extensive expertise in risk management, comp...Show moreLast updated: 27 days ago
    • Promoted
    Sr. Client Consulting Manager(Credit Risk Manager)

    Sr. Client Consulting Manager(Credit Risk Manager)

    VisaDelhi, India
    Visa Consulting & Analytics (VCA) is Visa's client-facing consulting division, serving Visa's clients (including card issuers, acquirers and merchants) and solving their strategic problems linked t...Show moreLast updated: 18 days ago
    • Promoted
    • New!
    Risk Manager – Grc

    Risk Manager – Grc

    SMC GroupDelhi, Republic Of India, IN
    Hiring for Information Security – Risk Manager – GRC (BCP & ISO 27001 : 2022 Implementation).Experience required for the Job : . Risk Manager – GRC (ISO 27001 : 2022 & BCP).Information Security Management...Show moreLast updated: 19 hours ago
    • Promoted
    Allica Bank - Manager - Risk & Controls

    Allica Bank - Manager - Risk & Controls

    Allica India Technologies SrervicesDelhi, India
    Allica is the UKs fastest growing company and the fastest-growing financial technology (Fintech) firm ever.Our purpose is to help established SMEs, one of the last major underserved opportunities i...Show moreLast updated: 28 days ago
    • Promoted
    Manager- SACCR / Counterparty Credit Risk

    Manager- SACCR / Counterparty Credit Risk

    EvalueserveDelhi, IN
    Elevate Your Impact Through Innovation and Learning.Evalueserve is a global leader in delivering innovative and sustainable solutions to a diverse range of clients, including over 30% of Fortune 50...Show moreLast updated: 13 days ago
    • Promoted
    • New!
    SAP GRC Solutions Lead

    SAP GRC Solutions Lead

    DeloitteDelhi, Republic Of India, IN
    SAP GRC PC Professional should have : .As a GRC PC Manager in our Risk Advisory team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed clien...Show moreLast updated: 21 hours ago
    • Promoted
    Risk Manager

    Risk Manager

    Motilal Oswal Financial Services LtdDelhi, India
    Job Purpose : The Treasury & Investment Risk Manager is responsible for identifying, assessing, and managing risks associated with the organization’s treasury activities and investment portfolio.Thi...Show moreLast updated: 9 days ago
    • Promoted
    SAP GRC Risk Management Consultant - Onsite

    SAP GRC Risk Management Consultant - Onsite

    ConfidentialIndia, Faridabad
    Candidate should have 8-10 years of experience in SAP GRC Risk Management and SAP GRC Process Controls.Experience in developing, implementing, and optimizing SAP GRC (Governance, Risk, and Complian...Show moreLast updated: 4 days ago