No longer accepting applications

GRC and Security Assessment Engineer

PeopleGenePune, Republic Of India, IN

22 days ago

Job description

About the role :

We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.G., RBI, ISO 27001, SOC 2 Type II).

Responsibilities :

Conduct technical assessments (e.G., VRA, security checklists) required by new BFSI clients.
Analyse and complete detailed cloud infrastructure security and compliance questionnaires.
Assist in mapping customer security and regulatory requirements (e.G., ISO 27001, RBI, SOC 2 type II) to internal controls.
Maintain documentation and templates for commonly requested BFSI assessment artifacts.
Manage and complete security questionnaires from clients, vendors, and partners.
Evaluate vendor security and compliance by reviewing their responses and
supporting documentation.
Identify security risks within the company’s IT infrastructure, applications and services.
Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.
Work with internal teams to maintain compliance with legal and regulatory requirements.
Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.
Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.
Prepare detailed reports summarizing findings from security assessments and risk analysis.
Provide recommendations to improve security measures and compliance.
Educate internal staff and external partners about security best practices and compliance requirements
Support pre-sales and onboarding teams with timely delivery of assessment documentation.
Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.

Good to Have :

Bachelor’s degree in computer science, Information Security, Data Science, or a related field

5+ years of experience working with Audit / compliance, application security assessments, AWS cloud security preferably BFSI domain

2+ yrs. of experience on AWS cloud security and risk assessments.

Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).

Familiarity with secure coding practices, vulnerability management, and threat modelling.

Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.

Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.

Strong understanding of data protection, encryptions methodologies

Ability to interpret and explain security configurations and policies in layman's terms.

Experience with security controls, vulnerability scanning tools (e.G., Nessus, wire shark), or SIEM.

Exposure with security tools such as network firewall, IPS / IDS is plus

Create a job alert for this search

Security Engineer Grc • Pune, Republic Of India, IN

Related jobs

Promoted

SAP GRC Security Lead Consultant - Australia (Onsite)

Avensys ConsultingNagpur, IN

Avensys is a reputed global IT professional services company headquartered in Singapore.Our service spectrum includes enterprise solution consulting, business intelligence, business process automat...Show moreLast updated: 1 day ago

Promoted

Cyber Security Engineer

Nexoria Techworks Inc.nagpur, maharashtra, in

Job Description : Cybersecurity Engineer.Cybersecurity, Information Security, Threat Management.Your core responsibilities will include : . Implement security measures to proactively identify and mitig...Show moreLast updated: 25 days ago

Promoted

GRC Security Analyst

AmagiRepublic Of India, IN

This role has been established to support the business in building sustainable governance andcompliance practices at Amagi. The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 12 days ago

Promoted

Illumio- Zero Trust Microsegmentation

CareerXperts ConsultingNagpur, IN

Hiring : Manager - Zero Trust Microsegmentation.Bengaluru | 💼 5+ Years Experience.Lead Illumio microsegmentation implementations. Design & deploy Zero Trust policies.Analyze network infrastructure &...Show moreLast updated: 14 days ago

Promoted

GRC Security Engineer (Contract)

MindlanceRepublic Of India, IN

Remote Role | Contractor Security Engineer Level 3 – GRC Tech Solutions.This position focuses on enabling process clarity, automation, and efficiency while creating insights that empower our busine...Show moreLast updated: 17 days ago

Promoted

Contract Security Engineer (GRC Focus)

MindlanceRepublic Of India, IN

Promoted

Cyble - GRC Lead - Information Security

Cyble, India

About Cyble : - Cyble is revolutionizing the landscape of cybersecurity intelligence.Founded in 2019, Cyble began as a visionary college project and has quickly transformed into...Show moreLast updated: 16 days ago

Promoted

GRC Security Analyst

Exela TechnologiesPune, Republic Of India, IN

Enterprise Risk & Compliance - Security Analyst will play a significant role in our SOX Compliance.Regulatory and internal Compliance framework. Role : Enterprise Risk & Compliance – Security Analyst...Show moreLast updated: 22 days ago

Promoted
New!

Checkpoint L3 Security Engineer (Hybrid : Bangalore)

DigiHelic Solutions Pvt. Ltd.Nagpur, IN

A Checkpoint L3 Security Engineer job description typically involves serving as a senior specialist and an escalation point for complex issues, leading design, configuration, and advanced troublesh...Show moreLast updated: 13 hours ago

Promoted

Senior Security Engineer

CBTSnagpur, maharashtra, in

Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst. Certifications, Accreditations, Licenses.One or more of th...Show moreLast updated: 16 days ago

Promoted

AI Engineer - Cyber Security Start-up - Remote - LLM, MCP, Statistical Rigor, System Design and API in Production Scale Environment - CTC INR - 60 L

CareerXperts Consultingnagpur, maharashtra, in

Remote

We are seeking a highly skilled and motivated AI Engineer with expertise in large language models (LLMs), AI workflows, and machine learning. This role combines deep technical knowledge in ML / AI wit...Show moreLast updated: 23 days ago

Promoted

Sr Threat Detection Engineer

Insight GlobalNagpur, IN

Exact compensation may vary based on several factors, including skills, experience, and education.We are seeking a highly experienced Senior Detection Engineer to lead the development and optimizat...Show moreLast updated: 16 days ago

Promoted

SAP GRC Security Implementation Lead

Avensys ConsultingRepublic Of India, IN

Promoted

Lead Security Engineer

ArcanaIndia, India

As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago

Promoted

Contractor Security Engineer Level 3 - Grc Tech Solutions

MindlanceRepublic Of India, IN

Promoted

Contractor Security Engineer Level 3 – GRC Tech Solutions

MindlanceNagpur, IN

Promoted

Lead Security Engineer

interface.aiNagpur, IN

Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago

Promoted

Cyber Security Engineer

Dautomnagpur, maharashtra, in

Security Monitoring and Incident Response.Monitor networks and systems for potential security breaches.Investigate and respond to security incidents and anomalies. Conduct forensic analysis to deter...Show moreLast updated: 2 days ago