Talent.com
Risk Manager – GRC

Risk Manager – GRC

SMC GroupDelhi, India, India
3 days ago
Job description

Hiring for Information Security – Risk Manager – GRC (BCP & ISO 27001 : 2022 Implementation)

Experience required for the Job : 5 - 10 years

Job Location : Delhi

Position : Risk Manager – GRC

Job Summary :

The Risk Manager – GRC (ISO 27001 : 2022 & BCP) is responsible for overseeing the implementation, maintenance, and continual improvement of the Information Security Management System (ISMS) in alignment with ISO 27001 : 2022 standards . This role ensures that the organization’s information security practices meet regulatory requirements, client expectations, and industry best practices, while also mitigating risks to the confidentiality, integrity, and availability of information.

Education :

  • Bachelor’s degree in Information Security, Computer Science, or a related field.
  • A Master’s degree is a plus.

Experience :

  • 5+ years of experience in information security management, with a focus on ISO 27001 implementation and compliance.
  • Proven experience in leading ISMS implementation and managing information security compliance audits.

    • Certifications :

  • ISO 27001 Lead Implementer or Lead Auditor certification.
  • Additional certifications such as CISSP, CISM, or CISA are advantageous.

    • Skills :

  • In-depth knowledge of ISO 27001 : 2022 standards and information security best practices.
  • Strong understanding of risk management and incident management processes.
  • Excellent communication, documentation, and project management skills.
  • Ability to work collaboratively with cross-functional teams and influence decision-making.
  • Knowledgeable and experienced in crisis management best practices.
  • Experience with cloud (AWS) environments, SaaS provider architecture, and cloud-based disaster recovery methodologies.

    • Key Responsibilities :

    1. ISMS Implementation & Maintenance

  • Lead the development, implementation, and continuous improvement of the Information Security Management System (ISMS) in accordance with ISO 27001 : 2022 standards.
  • Ensure that all policies, procedures, and controls are documented, communicated, and enforced throughout the organization.
  • Collaborate with various departments to integrate ISO 27001 requirements into business processes and operations.

    • 2. Risk Management

  • Conduct regular risk assessments to identify, analyze, and evaluate information security risks.
  • Develop and implement risk treatment plans to mitigate identified risks.
  • Monitor the effectiveness of risk treatment plans and adjust them as necessary to ensure ongoing risk mitigation.

    • 3. Compliance & Audit Management

  • Prepare and maintain compliance documentation required for ISO 27001 : 2022 certification.
  • Coordinate and facilitate internal and external audits to ensure compliance with ISO 27001 standards.
  • Address non-conformities identified during audits by developing and implementing corrective and preventive actions.

    • 4. Training & Awareness

  • Develop and deliver information security awareness training programs to educate employees about their roles in maintaining the ISMS.
  • Ensure that staff members understand and comply with ISO 27001 : 2022 policies and procedures.

    • 5. Incident Management

  • Oversee the incident management process, ensuring that information security incidents are promptly identified, reported, and managed.
  • Conduct post-incident reviews to identify root causes and implement corrective actions to prevent recurrence.

    • 6. Continuous Improvement

  • Monitor and evaluate the effectiveness of the ISMS, identifying areas for improvement.
  • Lead initiatives to enhance the organization’s information security posture, staying up to date with industry trends, emerging threats, and changes in the regulatory environment.

    • 7. Stakeholder Communication

  • Act as the primary point of contact for all matters related to ISO 27001 : 2022 compliance.
  • Communicate ISMS performance, compliance status, and risk management activities to senior management and relevant stakeholders.

    • 8. Vendor and Third-Party Management

  • Evaluate and monitor third-party vendors and service providers to ensure they meet the organization's information security requirements.
  • Develop and maintain vendor risk assessments and ensure that third-party agreements align with ISO 27001 : 2022 standards.

    • 9. Coordinate business continuity and technology disaster recovery drills and tabletop exercises as appropriate.

    10. Identify critical systems and categorize them based on enterprise and operational risks crucial to continued business operations in the event of a disaster.

    11. Create reports as needed for different levels of leadership, covering all aspects of BCP.

    12. Conduct weekly status reports, DR readiness reviews, milestone reviews, and post-exercise reviews.

    Note : This role is 60% documentation and process-oriented.

    Create a job alert for this search

    Risk Manager • Delhi, India, India

    Related jobs
    • Promoted
    Manager- SACCR / Counterparty Credit Risk

    Manager- SACCR / Counterparty Credit Risk

    EvalueserveGhaziabad, IN
    Elevate Your Impact Through Innovation and Learning.Evalueserve is a global leader in delivering innovative and sustainable solutions to a diverse range of clients, including over 30% of Fortune 50...Show moreLast updated: 18 days ago
    • Promoted
    Governance, Risk, and Compliance (GRC) Manager

    Governance, Risk, and Compliance (GRC) Manager

    DigileDelhi, India
    We are seeking a highly experienced Governance, Risk, and Compliance (GRC) Manager to lead our enterprise risk management and compliance initiatives across regulated industries.The ideal candidate ...Show moreLast updated: 4 days ago
    • Promoted
    Risk Manager – GRC

    Risk Manager – GRC

    SMC Groupdelhi, India
    Hiring for Information Security – Risk Manager – GRC (BCP & ISO 27001 : 2022 Implementation).Experience required for the Job : . Risk Manager – GRC (ISO 27001 : 2022 & BCP).Information Security Management...Show moreLast updated: 4 days ago
    • Promoted
    Deputy Manager Risk Management

    Deputy Manager Risk Management

    WNSDelhi, India
    Execute and manage the audit assignments including performing fieldwork following the planned audit approach while delivering quality work in line Group standards - Evaluate internal processes and ...Show moreLast updated: 4 days ago
    • Promoted
    Business Risk Manager (Savings)

    Business Risk Manager (Savings)

    RevolutGhaziabad, IN
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 25 days ago
    • Promoted
    Enterprise Risk Manager

    Enterprise Risk Manager

    Generali Central Life InsuranceDelhi, India
    Responsible for Financial and Operational Risk related Reporting to Region / Group 2.Adoption and Implementation of Generali Group Policies and Guidelines 3. Carry out annual Operational Risk Assessme...Show moreLast updated: 30+ days ago
    • Promoted
    Third Party Risk Management

    Third Party Risk Management

    Tata Consultancy ServicesDelhi, India
    Should be able to develop and manage a comprehensive third party risk management framework / program.Should be able to drive regulatory compliance / remediation programs such as Digital Operational...Show moreLast updated: 4 days ago
    • Promoted
    Analyst - GRC (Governance, Risk & Compliance)

    Analyst - GRC (Governance, Risk & Compliance)

    AmagiDelhi, India
    This role has been established to support the business in building sustainable governance andcompliance practices at Amagi. The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 13 days ago
    • Promoted
    Business Risk Manager (Fincrime)

    Business Risk Manager (Fincrime)

    RevolutMeerut, IN
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 2 days ago
    • Promoted
    Business Risk Manager (Technology)

    Business Risk Manager (Technology)

    RevolutGhaziabad, IN
    People deserve more from their money.More visibility, more control, and more freedom.Since 2015, Revolut has been on a mission to deliver just that. Our powerhouse of products — including spending, ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager Enterprise Risk Management

    Senior Manager Enterprise Risk Management

    Gangahar Consulting Pvt.Ltd.South Delhi, Delhi, India
    Enterprise Risk Management - Client of GCPL , India.This is a full-time on-site role for a Manager / Senior Manager Enterprise Risk Management with a client in Hyderabad, Mumbai and Bangalore.The S...Show moreLast updated: 3 days ago
    • Promoted
    Sr. Client Consulting Manager(Credit Risk Manager)

    Sr. Client Consulting Manager(Credit Risk Manager)

    VisaDelhi, India
    Visa Consulting & Analytics (VCA) is Visa's client-facing consulting division, serving Visa's clients (including card issuers, acquirers and merchants) and solving their strategic problems linked t...Show moreLast updated: 22 days ago
    • Promoted
    SAP GRC & Security Manager

    SAP GRC & Security Manager

    DeloitteDelhi, India, India
    As a Manager in our T&T team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. Decision making with engagement managem...Show moreLast updated: 18 days ago
    • Promoted
    Senior Manager-Risk Assessment

    Senior Manager-Risk Assessment

    HCLTechDelhi, India
    The position is a member of Risk & Compliance team within HCL Technologies.The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accord...Show moreLast updated: 30+ days ago
    • Promoted
    SAP GRC Solutions Lead

    SAP GRC Solutions Lead

    DeloitteDelhi, Republic Of India, IN
    SAP GRC PC Professional should have : .As a GRC PC Manager in our Risk Advisory team, you’ll build and nurture positive working relationships with teams and clients with the intention to exceed clien...Show moreLast updated: 5 days ago
    • Promoted
    Manager Enterprise Risk

    Manager Enterprise Risk

    Ujjivan Small Finance BankDelhi, India
    ROLE PURPOSE & OBJECTIVE (These responsibilities are representative and the role holder is also responsible for any other job assigned by the superior authorities from time to time.This section in ...Show moreLast updated: 30+ days ago
    • Promoted
    Credit Risk Manager

    Credit Risk Manager

    Ujjivan Small Finance BankDelhi, India
    SUB-DEPARTMENT Credit TYPE OF POSITION Full-time.To ensure implementation of the credit risk management policy approved by the Board. To formulate, review and implementation of risk appetite Monitor...Show moreLast updated: 4 days ago
    • Promoted
    Risk Manager

    Risk Manager

    Motilal Oswal Financial Services LtdDelhi, India
    The Treasury & Investment Risk Manager is responsible for identifying, assessing, and managing risks associated with the organization’s treasury activities and investment portfolio.This role ensure...Show moreLast updated: 13 days ago