Talent.com
IT GRC Lead
IT GRC LeadENGIE India • Pune, Republic Of India, IN
No longer accepting applications
IT GRC Lead

IT GRC Lead

ENGIE India • Pune, Republic Of India, IN
19 days ago
Job description

The Deputy Manager - IT GRC (Governance, Risk, and Compliance) role at ENGIE India is crucial in ensuring the organization's Digital & IT landscape is secure, compliant, and aligned with business objectives. This role involves developing, implementing, and managing IT GRC, risk management, and ensuring compliance with regulations and internal controls. This is an individual contributor role based in Pune, India, with occasional onsite travel to support Digital & IT audits.

Main Objectives

The primary objective is to ensure the IT landscape is secure, compliant, and aligned with business goals. This involves :

  • Implementing comprehensive IT GRC strategies.
  • Implementing INCOME framework for D&IT function
  • Implement and Manage - Risk management processes.
  • Ensuring adherence to regulations and standards.
  • Maintain Digital &IT internal control requirements
  • Lead the Digital & IT Internal Control and Compliance

Key Responsibilities

  • Audit Preparation and Management : Prepare processes, teams, and documents for internal and external audits. Track and remediate audit observations with corrective and preventive actions.
  • Risk Management : Manage and track all technology-related risks for timely closure. Oversee formal risk analysis and self-assessment programs for various systems and processes.
  • Compliance : Ensure compliance with privilege access management processes and relevant IT regulations and standards, such as ISO 27001 and NIST CSF.
  • Documentation and Communication : Maintain strong documentation and communication skills. Ensure clear communication with stakeholders and effective conflict resolution.
  • Implementing Initiatives : Coordinate with various departments to ensure smooth execution and monitor progress.
  • Continuous Improvement : Foster a culture of continuous improvement within the IT GRC team.
  • Stakeholder Engagement : Engage with key stakeholders, including management and department heads, to ensure IT GRC strategies are well-supported and integrated.
  • Conducting Risk Assessments : Oversee comprehensive risk assessments to identify potential risks.
  • Developing Mitigation Strategies : Implement controls and safeguards to reduce the likelihood and impact of risks.
  • Monitoring and Reporting : Establish effective monitoring mechanisms and regularly report on risk status to management.
  • Collaboration with Departments : Work closely with various departments to ensure effective implementation of risk management strategies.
  • Adhering to Regulations : Ensure compliance with all relevant IT regulations and standards.
  • Implementing Best Practices : Promote the adoption of industry best practices within the organization.
  • Internal and External Audits : Conduct regular internal audits and manage relationships with external auditors and regulatory bodies.
  • Policy Development : Develop and maintain comprehensive IT GRC policies.

    • Coordination and Collaboration

  • Cross-Departmental Collaboration : Collaborate with various departments to ensure effective implementation of GRC initiatives.
  • Stakeholder Communication : Ensure stakeholders are informed about the progress and impact of GRC activities.
  • Conflict Resolution : Resolve conflicts that arise during the implementation of GRC initiatives.
  • Internal Audits : Conduct internal audits to assess the effectiveness of IT GRC controls and processes.
  • Managing External Audits : Ensure the organization is well-prepared for external audits and address any findings promptly.
  • Audit Preparation : lead the preparation for audits to ensure a smooth process.
  • Addressing Audit Findings : Develop and implement action plans to resolve audit findings and prevent recurrence.
  • Continuous Improvement : Use audit insights to drive continuous improvement in GRC practices.
  • Regular Reporting : Provide regular reports on IT GRC activities to management and the board.
  • Clear Communication : Ensure GRC-related information is communicated clearly and consistently.
  • Training and Awareness : Promote awareness of GRC policies and practices within the organization through training sessions and resources.

    • Technical Knowledge and Skills

  • Understanding IT Systems : Strong understanding of IT systems, including Cloud services, IT-OT convergence, hardware, software, networks, and data management practices.
  • Security Principles : Deep understanding of security principles, including encryption and access control.
  • Risk Management Frameworks : Familiarity with frameworks such as ISO 31000 and NIST RMF.
  • Emerging Technologies : Stay updated on emerging technologies and their impact on IT GRC practices.
  • Technical Certifications : Relevant certifications such as CRISC are valuable.
  • Compliance Knowledge
  • Regulatory Requirements : Deep knowledge of relevant regulatory requirements, such as CEA guidelines, Internal Controls (ITGC), IT Act, Indian and global Energy sector compliance, GDPR, HIPAA, and SOX.
  • Industry Standards : Familiarity with industry standards like ISO 27001 and NIST CSF.
  • Compliance Assessment : Conduct regular compliance assessments and develop comprehensive compliance policies.
  • Training and Awareness : Promote awareness of compliance requirements within the organization.

    • Analytical and Problem-Solving

  • Risk Analysis : Conduct formal risk analysis to identify potential vulnerabilities.
  • Problem-Solving : Develop and implement effective solutions to mitigate risks.
  • Data Analysis : Analyze data to identify trends, assess risks, and make informed decisions.
  • Decision-Making : Make informed decisions based on risk and compliance analysis.
  • Continuous Improvement : Promote a culture of continuous improvement in GRC practices.

    • Qualifications and Experience

  • Strong background in Information Technology, Cybersecurity, or a related discipline.
  • Knowledge of frameworks like ISO 27001, NIST, GDPR, and HIPAA.
  • 5-8 years in IT GRC, preferably in the Energy sector.
  • Hands-On Experience : Identifying, assessing, and mitigating risks.
  • Practical Application : Applying GRC principles in energy sector

    • Work Environment & Physical Requirements : -

  • Location : Pune, India, with intermittent travel to sites.
  • Team Size : Individual Contributor role.
  • Physical Activity : Extended periods of concentration, technical hands-on work, and physical activity during site visits.
  • Reports to : Cyber Security & IT Infrastructure Manager

    • Why Join ENGIE?

    As a Deputy Manager IT-GRC at ENGIE, you will play a pivotal role in safeguarding and improving the Digital & IT landscape of a global leader in energy and sustainability. Drive ENGIE’s mission to achieve a carbon-neutral world through innovative technology solutions. Join us to contribute to a sustainable future and be part of a transformative journey towards a more efficient and eco-friendlier world.

    Visit us at www.Engie.Com and www.Engieindia.Com

    Create a job alert for this search

    It Lead • Pune, Republic Of India, IN

    Related jobs
    Partnership Lead - IT

    Partnership Lead - IT

    Kansal Corporate Solutions • Remote, India
    Remote
    If you are expecting a working playbook that you can scale, Zenskar is probably not the right fit for you at this point.However, if you are excited about creating the playbook from scratch, we woul...Show more
    Last updated: 30+ days ago • Promoted
    US IT Recruiter

    US IT Recruiter

    Afterkarma Inc • India, India
    At Afterkarma, we provide tailored recruitment solutions, mentorship, and expert guidance to help candidates secure their ideal job. Our success is built on aligned incentives, where you thrive, we ...Show more
    Last updated: 30+ days ago • Promoted
    Team Lead - IT Infrastructure

    Team Lead - IT Infrastructure

    Elektrobit • India
    The IT Infrastructure team has the task of positioning IT as an enabler of company-important customer projects through high-quality input. One of the most important tasks is to support the Elektrobi...Show more
    Last updated: 9 days ago • Promoted
    Cyble - GRC Lead - Information Security

    Cyble - GRC Lead - Information Security

    Cyble • , India
    About Cyble : - Cyble is revolutionizing the landscape of cybersecurity intelligence.Founded in 2019, Cyble began as a visionary college project and has quickly transformed into...Show more
    Last updated: 30+ days ago • Promoted
    It Officer – Scg India

    It Officer – Scg India

    SCG • Republic Of India, IN
    SCG’s India growth is supported by.SCG provides IT professionals with opportunities to support and enhance critical business systems. The IT Officer ensures smooth operation of SCG’s digital systems...Show more
    Last updated: 11 days ago • Promoted
    SAP GRC

    SAP GRC

    Tata Consultancy Services • India
    TCS Virtual Drive for SAP GRC on 8 November 2025.Education : Minimum 15 years of full-time education (10th, 12th and any graduation). Note : Require Candidates with Immediate joiner or with 45 days’ N...Show more
    Last updated: 9 days ago • Promoted
    Global IT Projects Sourcing Partner

    Global IT Projects Sourcing Partner

    im24x7 Delta Solutions FZCO • India, India
    Global IT Projects Sourcing Partner.IT projects, clients, and technology opportunities to IM24x7 Delta Solutions.This role is ideal for professionals who have strong connections in the IT industry,...Show more
    Last updated: 20 days ago • Promoted
    Problem Manager

    Problem Manager

    Mphasis • India
    Problem Manager & Major Incident Manager.The Problem Manager, following ITIL V4 best practices, is responsible for the efficient and effective management of IT problems and incidents to minimize th...Show more
    Last updated: 8 days ago • Promoted
    Oracle Cloud HCM Functional Lead

    Oracle Cloud HCM Functional Lead

    Hiresquad Resources • India, India
    Hiring for Oracle Fusion HCM Lead.Module- Benefits / / Compensation / / US payroll / / Core HR / / Absence Management / / OTL / / Talent Management. Must have done minimum 2 Implementation in Fusion.Immediate joiners...Show more
    Last updated: 30+ days ago • Promoted
    IDMC Lead

    IDMC Lead

    LumenData • India, India
    LumenData is a recognized leader in modern data architecture and cloud data management.We specialize in implementing cutting-edge solutions using Informatica’s Cloud Data Management suite, deliveri...Show more
    Last updated: 30+ days ago • Promoted
    Senior Technical Recruiter – Engineering & Non-IT

    Senior Technical Recruiter – Engineering & Non-IT

    ITCO Solutions, Inc. • India, India
    US Senior Technical Recruiter – Engineering & Non-IT.Long Term (Years) Contract / Commission / Spread.We are currently seeking experienced Recruiting Professionals with expertise in.Engineering and...Show more
    Last updated: 30+ days ago • Promoted
    Senior IT Delivery Recruiter

    Senior IT Delivery Recruiter

    Amroute • India, India
    Senior US IT Delivery Recruiter (7+ Years Experience).India (Remote / Hybrid / On-site – customize as needed).We are seeking a highly experienced. The ideal candidate will have strong expertise in IT re...Show more
    Last updated: 9 days ago • Promoted
    Senior Role - Grc & Infosec

    Senior Role - Grc & Infosec

    NPCI Bharat BillPay Limited • Republic Of India, IN
    Job Description – GRC (Infosec).The selected candidate will lead the development, implementation, and continuous improvement of the organization's governance, risk management, and compliance framew...Show more
    Last updated: 22 days ago • Promoted
    Senior Manager – IT Risk, Audit & Compliance (ITGC / SOX / ERP Controls)

    Senior Manager – IT Risk, Audit & Compliance (ITGC / SOX / ERP Controls)

    RGP • India, India
    RGP is seeking a highly experienced.Senior IT Risk & Assurance Consultant.SOX 404 / ICOFR Assessments, IT General Controls, ERP Security & Controls, Cybersecurity, Data Privacy, and Risk Advisory s...Show more
    Last updated: 19 hours ago • Promoted • New!
    Technical Lead

    Technical Lead

    RapidBrains • India, India
    We are looking for an experienced Technical Lead who can architect scalable systems, mentor development teams, and guide complex projects from concept to deployment. You’ll partner closely with Prod...Show more
    Last updated: 19 hours ago • Promoted • New!
    IT Project Bidder

    IT Project Bidder

    im24x7 Delta Solutions FZCO • India, India
    Location : Remote | Flexible Engagement.We’re looking for a proactive IT Project Bidder to join our growing team — someone who can identify new project opportunities, communicate with clients, and h...Show more
    Last updated: 30+ days ago • Promoted
    Sap Grc Consultant

    Sap Grc Consultant

    KPMG India • Republic Of India, IN
    Experience in SAP GRC and SAP Security working in SAP ECC environment and GRC Implementation Experience.Experienced working with different types of reports in SAP GRC Access Controls.Knowledge of S...Show more
    Last updated: 29 days ago • Promoted
    IT Risk and Compliance Leader

    IT Risk and Compliance Leader

    RGP • Republic Of India, IN
    RGP is seeking a highly experienced.Senior IT Risk & Assurance Consultant.SOX 404 / ICOFR Assessments, IT General Controls, ERP Security & Controls, Cybersecurity, Data Privacy, and Risk Advisory s...Show more
    Last updated: 18 hours ago • Promoted • New!