Cyber Risk and Compliance Lead
EltropyBengaluru, Republic Of India, IN1 day ago
Job descriptionContribute to access governance, including quarterly access reviews, enforcement of least privilege, and identity and access documentation. Draft, review, and update security policies, standards, and procedures to reflect current risk posture and best practices. Lead or support security awareness programs to promote a risk-conscious culture among staff and end users. Contribute to the development and testing of incident response and disaster recovery plans. Monitor and analyze cybersecurity threats, trends, and technologies, and recommend enhancements to Eltropy’s security posture. Help ensure the security of IT infrastructure by supporting the implementation and maintenance of measures against unauthorized access, cyber threats, and vulnerabilities. Track and report on compliance status, audit readiness, and risk trends to key stakeholders. 3–5 years of experience in cybersecurity or IT risk / compliance, with a focus on GRC. Familiarity with major frameworks like SOC 2, PCI-DSS, ISO / IEC 27001, and NIST CSF. Experience supporting third-party audits or certifications. Knowledge of risk management processes and frameworks. Ability to respond to security due diligence questionnaires and document technical and organizational controls. Understanding of access governance and identity lifecycle best practices. Excellent communication, documentation, and stakeholder coordination skills. Comfort with tools like Vanta, Drata, or similar GRC platforms. Experience in a SaaS, FinTech, or regulated technology environment. Familiarity with cloud environments such as GCP, AWS, or Azure. Understanding of security operations, incident response, or DevSecOps concepts. CISA – Certified Information Systems Auditor ISO 27001 Lead Auditor / Implementer PCI ISA – Internal Security Assessor Customers are our North Star No Fear - Tell the truth Team of Owners
Senior Cybersecurity Analyst | 100% Remote | Eltropy (Product based fintech SaaS firm)
We are seeking a Senior Cybersecurity Analyst – GRC (Governance, Risk, and Compliance) to support and improve our security compliance and risk management program. This individual will help manage third-party audits, perform risk assessments, ensure ongoing compliance with security frameworks, and support business teams with customer and vendor assurance.
You’ll work closely with security, engineering, legal, and customer teams to ensure Eltropy’s security posture remains strong, transparent, and audit-ready.
Key Responsibilities
- Assist in the preparation and execution of third-party audits and assessments, including SOC 2, PCI-DSS, NIST CSF, and ISO 27001.
- Support the development and maintenance of Eltropy’s GRC program, ensuring alignment with business and regulatory requirements through well-defined policies, controls, and risk processes.
- Respond to customer security questionnaires and due diligence requests.
- Conduct and manage vendor security assessments, maintain risk tracking, and ensure third-party compliance.
- Perform risk assessments across systems, tools, and business processes;
manage mitigation plansand maintain an exceptions register.
Skills & Attributes
Preferred Skills
Certifications (Preferred But Not Mandatory)
About Eltropy (www.Eltropy.Com)
Eltropy is a rocket ship FinTech on a mission to disrupt the way people access financial services. Eltropy enables financial institutions to digitally engage in a secure and compliant way. Using our AI enabled digital conversations platform, community financial
institutions can improve operations, engagement and productivity. CFIs (Community Banks and Credit Unions) use Eltropy to communicate with consumers via Text, Video, Secure Chat, co-browsing, screen sharing and chatbot technology — all integrated in a single platform bolstered by AI, skill-based routing and other contact center capabilities.
Eltropy Values
Eltropy is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status
Create a job alert for this search
Lead Risk Compliance • Bengaluru, Republic Of India, IN
Related jobs
- Promoted
Enterprise Risk & Compliance Leader
DigileBengaluru, Republic Of India, IN We are seeking a highly experienced.Governance, Risk, and Compliance (GRC) Manager.The ideal candidate will have deep expertise in.
HITRUST CSF, ISO 27001 : 2022, SOC 2 Type II, NIST 800-53.Financial ...Show moreLast updated: 1 day ago
- Promoted
Manager, Cyber Threat Analysis
FICOBengaluru, Republic Of India, IN FICO (NYSE : FICO) is a leading analytics software company, helping businesses in 90+ countries make better decisions that drive higher levels of growth, profitability and customer satisfaction.The ...Show moreLast updated: 30+ days ago
- Promoted
Risk and Compliance Management Leader
HCLTechBengaluru, Republic Of India, IN The position is a member of Risk & Compliance team within HCL Technologies.The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accord...Show moreLast updated: 30+ days ago
- Promoted
Cybersecurity Risk & Audit Specialist
[24]7.aiBengaluru, Republic Of India, IN Position : Security & Compliance Specialist.Reports to : Manager InfoSec, GRC.Department : Information Security (InfoSec).
This role oversee the development, evaluation and implementation of governanc...Show moreLast updated: 30+ days ago
- Promoted
Cybersecurity Project Lead
NokiaBengaluru, Republic Of India, IN Bachelor’s degree in Engineering or a comparable major;.Minimum of 10 years of telecom experience, with at least 5 years in Program / Project Management or NPI Project Management.Proven track record ...Show moreLast updated: 1 day ago
- Promoted
Cyber Risk and Advisory Director
The Edge Partnership - The Edge in AsiaBengaluru, Republic Of India, IN Our client is a leading global investment and advisory firm known for its deep expertise in private equity, real estate, and alternative asset management.
The ideal professional will be responsible ...Show moreLast updated: 30+ days ago
- Promoted
Cyber Threat Intelligence Lead
FICOBengaluru, Republic Of India, IN FICO (NYSE : FICO) is a leading analytics software company, helping businesses in 90+ countries make better decisions that drive higher levels of growth, profitability and customer satisfaction.The ...Show moreLast updated: 30+ days ago
- Promoted
Cybersecurity Assessment Lead
BDO IndiaBengaluru, Republic Of India, IN BDO is a global network of professional services firms with a presence in over 166 countries, revenue of over USD 14 billion, and experience of over 60 years.
It’s a leading service provider for the...Show moreLast updated: 1 day ago
- Promoted
Senior Cyber Security Analyst
Eltropyhosur, tamil nadu, in Senior Cybersecurity Analyst | 100% Remote | Eltropy (Product based fintech SaaS firm).Senior Cybersecurity Analyst – GRC (Governance, Risk, and Compliance).
This individual will help manage third-p...Show moreLast updated: 1 day ago
- Promoted
Senior Cybersecurity Risk Manager
NaviBengaluru, Republic Of India, IN At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data.
We lead the charge on cyber risk management, regu...Show moreLast updated: 1 day ago
- Promoted
Lead, Information Security and Compliance
sliceBengaluru, Republic Of India, IN The individual will be responsible for executing IT security audits, ensuring adherence to ISMS and ITGC controls, and identifying potential security risks.
The role involves conducting security ass...Show moreLast updated: 14 days ago
- Promoted
Compliance and Certification Lead
HCLTechBengaluru, Republic Of India, IN The position is a member of Risk & Compliance org within HCL Technologies.The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accorda...Show moreLast updated: 30+ days ago
- Promoted
Senior Director Cyber Security
The Edge Partnership - The Edge in AsiaBengaluru, Karnataka, India Our client is a leading global investment and advisory firm known for its deep expertise in private equity, real estate, and alternative asset management.
The ideal professional will be responsible ...Show moreLast updated: 30+ days ago
- Promoted
Senior Manager IS Cyber Culture & Awareness
Mashreqhosur, tamil nadu, in The Cyber Security Awareness Specialist plays a critical role in maturing Mashreq Bank’s cyber security awareness program.
The specialist is responsible for fostering a culture where Cybersecurity i...Show moreLast updated: 1 day ago
- Promoted
Cybersecurity Compliance Manager
TÜV SÜDBengaluru, Republic Of India, IN Manage complete technical operations of Cyber-security laboratory for Telecom / IoT and other related products.Actively develop the security programs and details test method according to ITSAR requ...Show moreLast updated: 18 days ago
- Promoted
- New!
Cyber Risk & Controls Manager
PwC Acceleration Center IndiaBengaluru, Republic Of India, IN Main purpose of the job and key background information.Cyber, Risk & Regulatory-Enterprise Technology Solutions - Oracle provides a broad range of assess and recommend services specific to the Orac...Show moreLast updated: 14 hours ago
- Promoted
Cybersecurity Governance Lead
Ocwen Financial Solutions Pvt. Ltd. - APACBengaluru, Republic Of India, IN This position will allow working for Information Security Governance on information systems, processes, and technologies within the organization.
This is a global role engaging stakeholders (at all ...Show moreLast updated: 1 day ago
- Promoted
IT Security Compliance Lead
[24]7.aiBengaluru, Republic Of India, IN Position : Security & Compliance Specialist.Reports to : Manager InfoSec, GRC.Department : Information Security (InfoSec).
This role oversee the development, evaluation and implementation of governanc...Show moreLast updated: 30+ days ago