Roles & Responsibilities
Risk Identification and Assessment :
Conduct risk assessments to identify vulnerabilities in IT systems, processes, and policies.
Assist in the identification and evaluation of risks associated with third-party vendors and partners.
Maintain the IT risk register, documenting risks, issues, and remediation actions.
Risk Mitigation and Monitoring :
Recommend risk mitigation strategies and implement risk management controls across IT infrastructure.
Collaborate with IT, cybersecurity, and business teams to track and resolve identified risks and vulnerabilities.
Monitor and report on the effectiveness of existing IT risk controls and recommend enhancements as needed.
Compliance and Regulatory Support :
Ensure compliance with relevant industry standards and regulatory requirements (e.g., GDPR, SOX, PCI-DSS, NIST).
Assist in the preparation for audits by internal and external parties, providing documentation and evidence of IT risk management practices.
Support the development and implementation of IT governance, risk, and compliance frameworks.
Vendor Risk Management :
Conduct vendor risk assessments, ensuring third-party services and products align with internal risk and security policies.
Regularly review vendor performance and risk exposure, working with procurement and legal teams as necessary.
Skills Required
Cybersecurity, Vendor Management, Risk Management
Security Engineer • Hyderabad / Secunderabad, Telangana