GRC Analyst - Information Security

PINKVILLABengaluru, IN

16 hours ago

Job description

Pinkvilla is seeking a dynamic Information Security professional, who will play a key role in driving compliance programs, managing audits, supporting data protection initiatives, and ensuring third-party security risks are effectively identified and mitigated.

Key Responsibilities

Governance, Risk & Compliance (GRC)

Develop, implement, and maintain information security policies, standards, and procedures.
Conduct risk assessments and drive risk treatment / mitigation plans.
Support security audits and ensure timely closure of findings.
Monitor compliance with frameworks / standards such as ISO 27001, NIST, CIS
Collaborate with security engineering and SOC teams on remediation of vulnerabilities, incident response, and security enhancements.
Contribute to cross-functional security initiatives requiring governance, technical, and operational alignment.
Provide training and awareness on security to drive security aware culture

Data Protection

Identify and mitigate risks associated with processing of personal and sensitive data.

Oversee data data classification, retention, and secure disposal practices.

Lead initiatives around Data Loss Prevention (DLP) — including policy finetuning, incident monitoring, and working with stakeholders on data handling improvements.

Third-Party Risk Management (TPRM)

Conduct security assessments and due diligence for vendors, partners, and service providers.

Review and evaluate vendor security controls, certifications, and compliance posture.

Manage the third-party risk lifecycle, including onboarding, periodic reviews, and issue remediation.

Work with procurement, legal, and business teams to integrate security requirements into contracts and agreements.

Qualifications :

Bachelor’s degree in Computer Science or Information Security or related field

4–6 years of experience in Information Security roles with focus on GRC, Data Protection, and TPRM.

Strong understanding of security standards (ISO 27001, NIST, etc.).

Experience conducting risk assessments, vendor due diligence, and compliance reviews.

Good knowledge of data protection principles, privacy laws, and security best practices.

Excellent documentation, communication, and stakeholder management skills.

Preferred Skills :

Relevant certifications such as CISM, CISA, ISO 27001, CIPM, or CRISC .

Experience with GRC tools (e.g., Archer, ServiceNow GRC, OneTrust, or similar).

Knowledge of cloud security and SaaS vendor risk assessments.

Create a job alert for this search

Information Security Analyst • Bengaluru, IN

Related jobs

Promoted

Analyst - GRC (Governance, Risk & Compliance)

AmagiBangalore Urban, Karnataka, India

This role has been established to support the business in building sustainable governance andcompliance practices at Amagi. The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 25 days ago

Promoted

Information Security Specialist

ACL DigitalBengaluru, Karnataka, India

Archer Information Security GRC Data Management.Type of resource : Consulting Based Services (CBS).Support the Corporate Information Security GRC team in managing and enhancing the qual-ity, integra...Show moreLast updated: 1 day ago

Promoted

Information Security Risk Analyst

ADMBengaluru, Republic Of India, IN

We are one of the world’s largest nutrition companies and a global leader in human and animal nutrition.We unlock the power of nature to provide nourishing quality of life by transforming crops int...Show moreLast updated: 1 day ago

Promoted

Mashreq - Senior Manager - Information Security - Risk Management - GRC

Mashreq Global Services Private LimitedBangalore, India

Security Risk Management : - Develop, implement, and maintain the Information Security Risk Management Framework, ensuring alignment with the banks enterprise risk management (E...Show moreLast updated: 28 days ago

Promoted

Archer GRC Platform Administrator

ACL DigitalBengaluru, Republic Of India, IN

Promoted

Digitap - GRC Analyst - PCI-DSS

DigitapBangalore

Job description : We are seeking a motivated and skilled GRC professional to join our team.As a GRC Analyst, you will be responsible for m...Show moreLast updated: 30+ days ago

Promoted

Information Security Analyst, AVP

Deutsche BankBangalore, India

Job Title : Information Security Analyst, AVP.The Risk Lead Function covering Chief Security Office (CSO) CTO, IS Threat Operations and Office of the CSO is looking for an Information Security Speci...Show moreLast updated: 30+ days ago

Promoted

InfoSec Governance and Compliance Analyst

[24]7.aiBengaluru, Republic Of India, IN

Position : Security & Compliance Specialist.Reports to : Manager InfoSec, GRC.Department : Information Security (InfoSec). This role oversee the development, evaluation and implementation of governanc...Show moreLast updated: 30+ days ago

Promoted

SAP GRC Security Specialist

Tata Consultancy ServicesBengaluru, Republic Of India, IN

Greetings from TCS Recruitment Team.Walk In Drive on 15-Nov-2025 (Saturday) in Bengaluru Location.It is a Walk in Drive planned to attract great Talents in. We believe that your skills and expertise...Show moreLast updated: 30+ days ago

Promoted

Information Security GRC Analyst

ACL DigitalBengaluru, Republic Of India, IN

IT and product engineering services provider.The company enables clients to innovate, integrate, and transform their businesses by leveraging disruptive technologies like mobility, big data analyti...Show moreLast updated: 3 days ago

Promoted

SAP GRC Security Lead Consultant - Australia (Onsite)

Avensys Consultinghosur, tamil nadu, in

Avensys is a reputed global IT professional services company headquartered in Singapore.Our service spectrum includes enterprise solution consulting, business intelligence, business process automat...Show moreLast updated: 14 days ago

Promoted

Senior Threat Analyst - Information Security

OptivBangalore

Description : This position will be on-site reporting to our Bangalore office M-F.This team provides 24 / 7 support.This role requires shift flexibil...Show moreLast updated: 1 day ago

Promoted

Saks Fifth Avenue - Senior Analyst - Information Security Strategy & Resilience

HUDSON'S BAY SERVICES PRIVATE LIMITEDBangalore

You Will Be : - A key contributor to the Information Security Strategy serving as Subject Matter Expert (SME), working closely with cross-functional teams to strengt...Show moreLast updated: 29 days ago

Promoted

Senior Security Governance and Compliance Analyst

EltropyBengaluru, Republic Of India, IN

Senior Cybersecurity Analyst | 100% Remote | Eltropy (Product based fintech SaaS firm).Senior Cybersecurity Analyst – GRC (Governance, Risk, and Compliance). This individual will help manage third-p...Show moreLast updated: 16 days ago

Promoted

Senior Security Analyst - Threat Intelligence

MashreqBengaluru, Republic Of India, IN

Manage security event monitoring and incident response using SIEM platforms, with preference for Azure Sentinel and ArcSight. Analyze and respond to security events from diverse sources such as fire...Show moreLast updated: 3 days ago

Promoted
New!

GRC Analyst - Information Security

PINKVILLABangalore, IN

Promoted

GRC Analyst

J.B. Poindexter & CoBangalore Urban, Karnataka, India

Analyst, Governance, Risk and Compliance.As the GRC Analyst, you will play a critical role in developing and implementing comprehensive governance, risk, and compliance strategies, policies, and co...Show moreLast updated: 16 days ago

Promoted

Information Security Governance Analyst

ACL DigitalBengaluru, Republic Of India, IN