Talent.com
Risk Manager – Grc

Risk Manager – Grc

SMC GroupNew Delhi, Republic Of India, IN
1 day ago
Job description

Hiring for Information Security – Risk Manager – GRC (BCP & ISO 27001 : 2022 Implementation)

Experience required for the Job : 5 - 10 years

Job Location : Delhi

Position : Risk Manager – GRC

Job Summary :

The Risk Manager – GRC (ISO 27001 : 2022 & BCP) is responsible for overseeing the implementation, maintenance, and continual improvement of the Information Security Management System (ISMS) in alignment with ISO 27001 : 2022 standards . This role ensures that the organization’s information security practices meet regulatory requirements, client expectations, and industry best practices, while also mitigating risks to the confidentiality, integrity, and availability of information.

Education :

  • Bachelor’s degree in Information Security, Computer Science, or a related field.
  • A Master’s degree is a plus.

Experience :

  • 5+ years of experience in information security management, with a focus on ISO 27001 implementation and compliance.
  • Proven experience in leading ISMS implementation and managing information security compliance audits.

    • Certifications :

  • ISO 27001 Lead Implementer or Lead Auditor certification.
  • Additional certifications such as CISSP, CISM, or CISA are advantageous.

    • Skills :

  • In-depth knowledge of ISO 27001 : 2022 standards and information security best practices.
  • Strong understanding of risk management and incident management processes.
  • Excellent communication, documentation, and project management skills.
  • Ability to work collaboratively with cross-functional teams and influence decision-making.
  • Knowledgeable and experienced in crisis management best practices.
  • Experience with cloud (AWS) environments, SaaS provider architecture, and cloud-based disaster recovery methodologies.

    • Key Responsibilities :

    1. ISMS Implementation & Maintenance

  • Lead the development, implementation, and continuous improvement of the Information Security Management System (ISMS) in accordance with ISO 27001 : 2022 standards.
  • Ensure that all policies, procedures, and controls are documented, communicated, and enforced throughout the organization.
  • Collaborate with various departments to integrate ISO 27001 requirements into business processes and operations.

    • 2. Risk Management

  • Conduct regular risk assessments to identify, analyze, and evaluate information security risks.
  • Develop and implement risk treatment plans to mitigate identified risks.
  • Monitor the effectiveness of risk treatment plans and adjust them as necessary to ensure ongoing risk mitigation.

    • 3. Compliance & Audit Management

  • Prepare and maintain compliance documentation required for ISO 27001 : 2022 certification.
  • Coordinate and facilitate internal and external audits to ensure compliance with ISO 27001 standards.
  • Address non-conformities identified during audits by developing and implementing corrective and preventive actions.

    • 4. Training & Awareness

  • Develop and deliver information security awareness training programs to educate employees about their roles in maintaining the ISMS.
  • Ensure that staff members understand and comply with ISO 27001 : 2022 policies and procedures.

    • 5. Incident Management

  • Oversee the incident management process, ensuring that information security incidents are promptly identified, reported, and managed.
  • Conduct post-incident reviews to identify root causes and implement corrective actions to prevent recurrence.

    • 6. Continuous Improvement

  • Monitor and evaluate the effectiveness of the ISMS, identifying areas for improvement.
  • Lead initiatives to enhance the organization’s information security posture, staying up to date with industry trends, emerging threats, and changes in the regulatory environment.

    • 7. Stakeholder Communication

  • Act as the primary point of contact for all matters related to ISO 27001 : 2022 compliance.
  • Communicate ISMS performance, compliance status, and risk management activities to senior management and relevant stakeholders.

    • 8. Vendor and Third-Party Management

  • Evaluate and monitor third-party vendors and service providers to ensure they meet the organization's information security requirements.
  • Develop and maintain vendor risk assessments and ensure that third-party agreements align with ISO 27001 : 2022 standards.

    • 9. Coordinate business continuity and technology disaster recovery drills and tabletop exercises as appropriate.

    10. Identify critical systems and categorize them based on enterprise and operational risks crucial to continued business operations in the event of a disaster.

    11. Create reports as needed for different levels of leadership, covering all aspects of BCP.

    12. Conduct weekly status reports, DR readiness reviews, milestone reviews, and post-exercise reviews.

    Note : This role is 60% documentation and process-oriented.

    Create a job alert for this search

    Risk Manager • New Delhi, Republic Of India, IN

    Related jobs
    • Promoted
    Manager- SACCR / Counterparty Credit Risk

    Manager- SACCR / Counterparty Credit Risk

    EvalueserveNagpur, IN
    Elevate Your Impact Through Innovation and Learning.Evalueserve is a global leader in delivering innovative and sustainable solutions to a diverse range of clients, including over 30% of Fortune 50...Show moreLast updated: 14 days ago
    • Promoted
    Risk Manager

    Risk Manager

    Motilal Oswal Financial Services LtdRepublic Of India, IN
    The Treasury & Investment Risk Manager is responsible for identifying, assessing, and managing risks associated with the organization’s treasury activities and investment portfolio.This role ensure...Show moreLast updated: 10 days ago
    • Promoted
    GRC Analyst

    GRC Analyst

    DemandbaseNagpur, IN
    Demandbase is seeking a motivated and detail-oriented GRC Sr Analyst to support its global Governance, Risk, and Compliance program. Reporting to the Senior Director of GRC, you’ll collaborate cross...Show moreLast updated: 23 days ago
    • Promoted
    Analyst - Grc (Governance, Risk & Compliance)

    Analyst - Grc (Governance, Risk & Compliance)

    AmagiRepublic Of India, IN
    This role has been established to support the business in building sustainable governance andcompliance practices at Amagi. The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 10 days ago
    • Promoted
    Manager Enterprise Risk

    Manager Enterprise Risk

    Ujjivan Small Finance BankRepublic Of India, IN
    These responsibilities are representative and the role holder is also responsible for any other job assigned by the superior authorities from time to time. This section in not intended to be an exha...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager - Risk and Compliance

    Senior Manager - Risk and Compliance

    Good Business LabNagpur, IN
    We use rigorous academic research to prove that worker well-being programs have business impacts.We develop market-ready, scalable interventions that benefit both workers and businesses.Our goal is...Show moreLast updated: 1 day ago
    • Promoted
    Risk Lead – Proprietary Trading

    Risk Lead – Proprietary Trading

    Nuvama GroupRepublic Of India, IN
    Risk Lead – Proprietary Trading.Listed derivatives (index & single-stock options), OTC exotics / structured products, Equity and Debt. The role is for a desk that is being setup.Candidate will be key ...Show moreLast updated: 1 day ago
    • Promoted
    Risk Management - Model Risk Management - Global Business Manager

    Risk Management - Model Risk Management - Global Business Manager

    NomuraRepublic Of India, IN
    Nomura is a global financial services group with an integrated network spanning approximately 30 countries and regions.By connecting markets East & West, Nomura services the needs of individuals, i...Show moreLast updated: 22 days ago
    • Promoted
    GRC Analyst

    GRC Analyst

    ConfidentialIndia
    Demandbase is seeking a motivated and detail-oriented GRC Sr Analyst to support its global Governance, Risk, and Compliance program. Reporting to the Senior Director of GRC, you'll collaborate cross...Show moreLast updated: 5 days ago
    • Promoted
    • New!
    Vendor Risk Management Lead

    Vendor Risk Management Lead

    Tata Consultancy ServicesPune, Republic Of India, IN
    Should be able to develop and manage a comprehensive third party risk management framework / program.Should be able to drive regulatory compliance / remediation programs such as Digital Operational...Show moreLast updated: 22 hours ago
    • Promoted
    Grc Analyst

    Grc Analyst

    J.B. Poindexter & CoRepublic Of India, IN
    Analyst, Governance, Risk and Compliance.As the GRC Analyst, you will play a critical role in developing and implementing comprehensive governance, risk, and compliance strategies, policies, and co...Show moreLast updated: 1 day ago
    • Promoted
    Enterprise Risk Manager

    Enterprise Risk Manager

    Generali Central Life InsuranceRepublic Of India, IN
    Responsible for Financial and Operational Risk related Reporting to Region / Group.Adoption and Implementation of Generali Group Policies and Guidelines. Carry out annual Operational Risk Assessment (...Show moreLast updated: 30+ days ago
    • Promoted
    Grc Consultant - Cyber

    Grc Consultant - Cyber

    Cubical Operations LLPRepublic Of India, IN
    Information Risk Management / Cybersecurity.We are seeking a proactive and detail-oriented.GRC (Governance, Risk & Compliance) Consultant. The ideal candidate will have hands-on experience in.IT Aud...Show moreLast updated: 1 day ago
    • Promoted
    Business Risk Manager (Savings)

    Business Risk Manager (Savings)

    RevolutIndia, India
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 20 days ago
    • Promoted
    Grc Analyst

    Grc Analyst

    DemandbaseRepublic Of India, IN
    Demandbase is seeking a motivated and detail-oriented GRC Sr Analyst to support its global Governance, Risk, and Compliance program. Reporting to the Senior Director of GRC, you’ll collaborate cross...Show moreLast updated: 22 days ago
    GRC (Governance, Risk and Compliance) Specialist

    GRC (Governance, Risk and Compliance) Specialist

    ProArchIN
    Remote
    Quick Apply
    Provide input on compliance readiness in support of periodic risk assessments .Where compliance initiatives may be at risk of meeting goals, contribute analysis to the Risk Register and be an ...Show moreLast updated: 10 days ago
    • Promoted
    Business Risk Manager (Technology)

    Business Risk Manager (Technology)

    RevolutNagpur, IN
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 30+ days ago
    • Promoted
    Credit Risk & Regulatory Advisor

    Credit Risk & Regulatory Advisor

    YES BANKRepublic Of India, IN
    Role holder should have 12-15 years of post-qualification experience with very good communication skills, hands on with Credit regulations (Wholesale / Retail) and compliances thereunder.KEY RESPONS...Show moreLast updated: 14 days ago