Talent.com
Information Security GRC Leader

Information Security GRC Leader

SagilityKarnataka, India
6 days ago
Job description

About Sagility

Sagility is a tech-enabled BPM services provider, a thought partner providing a broad spectrum of transformational services, to enable our clients provide efficient and hi-quality care across the healthcare system. Sagility combines industry-leading technology and transformation-driven BPM services with decades of healthcare domain expertise to help clients draw closer to their members. We optimize the entire member / patient experience through service offerings for clinical, case management, member engagement, provider solutions, payment integrity, claims cost containment, and analytics.

Leading industry analyst firms have consistently cited our service excellence, breadth of offerings, and ability to execute. The most recent being recognized as a leader for Healthcare Payer Operations in 2022 & 2023 as a part The Healthcare Payer Operations PEAK Matrix® Assessment report by Everest Group. To learn more about our recognitions please visit our AWARDS SECTION

We have 40,000+ employees in 15 cities across 5 countries – India, Philippines, USA, Jamaica, and Colombia.

Role Overview

The InfoSec GRC Officer will be responsible for driving and maintaining the organization’s governance, risk, and compliance framework. This includes ensuring robust account hygiene practices, managing account-level GRC reporting, aligning with HiTrust certification requirements, overseeing governance processes, and mitigating third-party risks. The role demands a proactive and detail-oriented professional with strong analytical and communication skills.

Key Responsibilities

Account Hygiene & GRC Reporting

  • Monitor and enforce account hygiene standards across infrastructure and application layers.
  • Develop and maintain dashboards and reports for account-level GRC metrics.
  • Collaborate with IT and security teams to ensure timely remediation of hygiene issues.
  • Conduct periodic reviews and audits of account configurations and access controls.

Governance, Risk & Compliance (GRC)

  • Implement and maintain GRC frameworks aligned with industry standards and regulatory requirements.
  • Support internal and external audits, including evidence collection and gap remediation.
  • Maintain risk registers and track mitigation plans across business units.
  • Facilitate risk assessments and control testing activities.

    • HiTrust Compliance

  • Lead initiatives to align with HiTrust CSF requirements.
  • Coordinate with stakeholders to ensure documentation, controls, and evidence meet HiTrust standards.
  • Support readiness assessments and certification processes.

    • Governance Processes

  • Define and document governance policies, procedures, and workflows.
  • Ensure consistent application of governance principles across projects and operations.
  • Conduct training and awareness sessions on governance best practices.

    • Third Party Risk Management

  • Evaluate and monitor third-party vendors for InfoSec compliance and risk exposure.
  • Conduct due diligence, risk assessments, and periodic reviews of vendor security posture.
  • Maintain third-party risk inventory and ensure contractual obligations are met.

    • Qualifications & Skills :

  • Bachelor’s degree in information security, Risk Management, or related field.
  • 5+ years of experience in GRC, cybersecurity, or IT compliance roles.
  • Strong understanding of HiTrust CSF, ISO 27001, NIST, and other regulatory frameworks.
  • Experience with GRC tools (e.g., Archer, ServiceNow GRC, MetricStream).
  • Excellent analytical, documentation, and communication skills.
  • Ability to work independently and collaboratively in a fast-paced environment.

    • Preferred Certifications

  • Certified Information Systems Auditor (CISA)
  • Certified in Risk and Information Systems Control (CRISC)
  • HiTrust Certified Professional (HCP)
  • ISO 27001 Lead Implementer or Auditor
    • Create a job alert for this search

    Information Security • Karnataka, India

    Related jobs
    • Promoted
    Information Security Engineer

    Information Security Engineer

    InCred CapitalKarnataka, India
    We are seeking a highly motivated and independent Information Security Engineer to join.The ideal candidate will possess a broad range of technical and compliance expertise across various informati...Show moreLast updated: 6 days ago
    • Promoted
    Senior Information Security Platform Engineer, ITC

    Senior Information Security Platform Engineer, ITC

    NIKEKarnataka, Karnataka, India
    You’ll be a key member of the SecureCode team within the Application Security Consulting group, collaborating with Corporate Information Security and cross-functional teams across Nike.In this posi...Show moreLast updated: 28 days ago
    • Promoted
    Network Security Engineer

    Network Security Engineer

    Tata Consultancy ServicesKarnataka, India, India
    Role : Network Security - Firewall Palo Alto.Hands on experience on Palo Alto network firewalls including Configuration, Firewall rules management. Panorama Management : Proficiency in managing Palo A...Show moreLast updated: 13 days ago
    • Promoted
    Senior Cyber Security Analyst

    Senior Cyber Security Analyst

    e-Hireo Global SolutionsKarnataka
    About Company : This is a globally renowned automobile manufacturer known for its commitment to quality, reliability, and innovation. It has played a pioneering role in developi...Show moreLast updated: 4 days ago
    • Promoted
    Senior Director Cyber Security

    Senior Director Cyber Security

    The Edge Partnership - The Edge in AsiaKarnataka, India
    Our client is a leading global investment and advisory firm known for its deep expertise in private equity, real estate, and alternative asset management. The ideal professional will be responsible ...Show moreLast updated: 6 days ago
    • Promoted
    Assistant Manager - IT Infrastructure Security

    Assistant Manager - IT Infrastructure Security

    Galleon ConsultantsKarnataka
    Job Description : - Provide strategic oversight and leadership for all IT infrastructure and security operations.Manage ...Show moreLast updated: 30+ days ago
    • Promoted
    Program Manager (Information Security)

    Program Manager (Information Security)

    NaviKarnataka, India
    At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data. We lead the charge on cyber risk management, regu...Show moreLast updated: 6 days ago
    • Promoted
    Director of Application Security

    Director of Application Security

    HCLSoftwareKarnataka, India
    Director, Head of Product & Application Security.The successful candidate will lead the end to end Product Security portfolio within HCL Software. Maintains and strengthens the risk posture across t...Show moreLast updated: 6 days ago
    • Promoted
    Cyber Security Architect

    Cyber Security Architect

    NAZZTECKarnataka, India
    Cyber Security Architect – PSAP.This senior-level position involves leading the design, implementation, and governance of cybersecurity architecture and frameworks in alignment with national regula...Show moreLast updated: 6 days ago
    • Promoted
    Cyber Security Architect

    Cyber Security Architect

    Black BoxKarnataka, India
    Black Box provides comprehensive, innovative, and full-lifecycle cybersecurity services such as Consulting, Professional Services, and 24 / 7 Managed Security Services. We believe ‘one size does NOT f...Show moreLast updated: 6 days ago
    • Promoted
    Security & DR Automation Eng

    Security & DR Automation Eng

    LTIMindtreeKarnataka, India, India
    Senior Infrastructure Security & Compliance Engineer (Zero-Touch GPU Cloud – GitOps-Driven Compliance & Resilience).Senior Infrastructure Security & Compliance Engineer. Zero-Touch Build, Upgrade, a...Show moreLast updated: 20 days ago
    • Promoted
    Cloud Security Architect

    Cloud Security Architect

    Nazztec Private LimitedKarnataka
    Position : Cloud Security Architect / Senior Cloud Security Engineer Experience Required : 6+ years (with minimum 2+ years in cloud Type : Full-time< / b&g...Show moreLast updated: 30+ days ago
    • Promoted
    DGM / GM - Cyber Security

    DGM / GM - Cyber Security

    TÜV SÜDKarnataka, India
    Manage complete technical operations of Cyber-security laboratory for Telecom / IoT and other related products.Actively develop the security programs and details test method according to ITSAR requ...Show moreLast updated: 6 days ago
    • Promoted
    SecOps / Security Infrastructure Engineer

    SecOps / Security Infrastructure Engineer

    RingCentralKarnataka, India
    SecOps Infrastructure Engineer / Administrator.Administer and maintain security products (web application firewall, IDS, (h)IPS, EDR, phishing training, vulnerability management, SIEM, etc).Conduct r...Show moreLast updated: 6 days ago
    • Promoted
    Cyber Security Solutions Architect

    Cyber Security Solutions Architect

    Black BoxKarnataka, India
    Cybalt (a Black Box company) provides comprehensive, innovative, and full-lifecycle cybersecurity services such as Consulting, Professional Services, and 24 / 7 Managed Security Services.We believe ‘...Show moreLast updated: 6 days ago
    • Promoted
    Senior Security Analyst

    Senior Security Analyst

    Softcell Technologies Global Pvt. Ltd.Karnataka, India
    Job Title : Senior Security Analyst.Location – Mumbai, Hyderabad & Bangalore.Softcell Global Technologies Pvt.Senior Security Analyst with strong offensive security capabilities across the Web, Netw...Show moreLast updated: 6 days ago
    • Promoted
    Enterprise Applications Security Engineer

    Enterprise Applications Security Engineer

    AviatrixKarnataka, India
    For enterprises struggling to secure cloud workloads, Aviatrix® offers a single solution for pervasive cloud security.Where current cybersecurity approaches focus on securing entry points to a trus...Show moreLast updated: 6 days ago
    • Promoted
    Vulnerability Management - L3

    Vulnerability Management - L3

    ITC InfotechKarnataka, India
    On the portal where vulnerabilities are listed, each vulnerability must be analyzed;.Within each record of each vulnerability, analyze the required fixes and the vendor involved.Contact the vendor ...Show moreLast updated: 6 days ago