Information Security GRC Leader
ConfidentialBengaluru / Bangalore, India4 days ago
Job descriptionImplement and maintain GRC frameworks aligned with industry standards and regulatory requirements. Support internal and external audits, including evidence collection and gap remediation. Maintain risk registers and track mitigation plans across business units. Facilitate risk assessments and control testing activities. Lead initiatives to align with HiTrust CSF requirements. Coordinate with stakeholders to ensure documentation, controls, and evidence meet HiTrust standards. Support readiness assessments and certification processes. Define and document governance policies, procedures, and workflows. Ensure consistent application of governance principles across projects and operations. Conduct training and awareness sessions on governance best practices. Evaluate and monitor third-party vendors for InfoSec compliance and risk exposure. Conduct due diligence, risk assessments, and periodic reviews of vendor security posture. Maintain third-party risk inventory and ensure contractual obligations are met. Bachelor's degree in information security, Risk Management, or related field. 5+ years of experience in GRC, cybersecurity, or IT compliance roles. Strong understanding of HiTrust CSF, ISO 27001, NIST, and other regulatory frameworks. Experience with GRC tools (e.g., Archer, ServiceNow GRC, MetricStream). Excellent analytical, documentation, and communication skills. Ability to work independently and collaboratively in a fast-paced environment. Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (CRISC) HiTrust Certified Professional (HCP) ISO 27001 Lead Implementer or Auditor
About Sagility
Sagility is a tech-enabled BPM services provider, a thought partner providing a broad spectrum of transformational services, to enable our clients provide efficient and hi-quality care across the healthcare system. Sagility combines industry-leading technology and transformation-driven BPM services with decades of healthcare domain expertise to help clients draw closer to their members. We optimize the entire member / patient experience through service offerings for clinical, case management, member engagement, provider solutions, payment integrity, claims cost containment, and analytics.
Leading industry analyst firms have consistently cited our service excellence, breadth of offerings, and ability to execute. The most recent being recognized as a leader for Healthcare Payer Operations in 2022 & 2023 as a part The Healthcare Payer Operations PEAK Matrix® Assessment report by Everest Group. To learn more about our recognitions please visit our AWARDS SECTION
We have 40,000+ employees in 15 cities across 5 countries – India, Philippines, USA, Jamaica, and Colombia.
Role Overview
The InfoSec GRC Officer will be responsible for driving and maintaining the organization's governance, risk, and compliance framework. This includes ensuring robust account hygiene practices, managing account-level GRC reporting, aligning with HiTrust certification requirements, overseeing governance processes, and mitigating third-party risks. The role demands a proactive and detail-oriented professional with strong analytical and communication skills.
Key Responsibilities
Account Hygiene & GRC Reporting
- Monitor and enforce account hygiene standards across infrastructure and application layers.
- Develop and maintain dashboards and reports for account-level GRC metrics.
- Collaborate with IT and security teams to ensure timely remediation of hygiene issues.
- Conduct periodic reviews and audits of account configurations and access controls.
Governance, Risk & Compliance (GRC)
HiTrust Compliance
Governance Processes
Third Party Risk Management
Qualifications & Skills :
Preferred Certifications
Skills Required
Iso 27001, Archer, Grc, nist, It Compliance, Cybersecurity
Create a job alert for this search
Information Security • Bengaluru / Bangalore, India
Related jobs
- Promoted
Senior Manager - Information Security (Governance, Risk and Compliance)
NaviBengaluru, Karnataka, India At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data.
We lead the charge on cyber risk management, regu...Show moreLast updated: 1 day ago
- Promoted
Mashreq - Senior Manager - Information Security - Risk Management - GRC
Mashreq Global Services Private LimitedBangalore, India Security Risk Management : - Develop, implement, and maintain the Information Security Risk Management Framework, ensuring alignment with the banks enterprise risk management (E...Show moreLast updated: 13 days ago
- Promoted
Senior Manager - Information Security (Governance, Risk And Compliance)
NaviBengaluru, Republic Of India, IN At Navi, the InfoSec team safeguards our digital ecosystem - ensuring the confidentiality, integrity, and availability of critical systems and data.
We lead the charge on cyber risk management, regu...Show moreLast updated: 23 hours ago
- Promoted
Information Security GRC Leader
SagilityBengaluru, Karnataka, India Sagility is a tech-enabled BPM services provider, a thought partner providing a broad spectrum of transformational services, to enable our clients provide efficient and hi-quality care across the h...Show moreLast updated: 21 days ago
- Promoted
Information Security Analyst
SmarshBengaluru, Republic Of India, IN Smarsh empowers its customers to manage risk and unleash intelligence in their digital communications.Our growing community of over 6500 organizations in regulated industries counts on Smarsh every...Show moreLast updated: 1 day ago
- Promoted
GRC & Security Lead
ConfidentialBengaluru / Bangalore, India We're Pentland Brands; a dynamic, global family business, and proud owners and licensees of many iconic active and footwear brands.
With a community of over 1,300 team members worldwide, we embrace ...Show moreLast updated: 4 days ago
- Promoted
Information Security Director
PixisBengaluru, Republic Of India, IN Pixis is a global AI technology company transforming how brands plan, create, and optimize marketing.Our flagship marketing operating system, Prism, sits at the core of the Pixis platform, using AI...Show moreLast updated: 30+ days ago
- Promoted
Information Security Lead
AmpleBengaluru, Republic Of India, IN Location - Jakkur (Yehalanka) | 5 days working from office.We are seeking a skilled and proactive Information Security Specialist to join our Internal IT team.
This role will be pivotal in developin...Show moreLast updated: 1 day ago
- Promoted
Information Security Grc Leader
SagilityBengaluru, Republic Of India, IN Sagility is a tech-enabled BPM services provider, a thought partner providing a broad spectrum of transformational services, to enable our clients provide efficient and hi-quality care across the h...Show moreLast updated: 22 days ago
- Promoted
Principal Information Security - GRC
ConfidentialBengaluru / Bangalore, India FC Global Services India LLP (First Citizens India), a part of First Citizens BancShares, Inc.Our India-based teams benefit from the company's over 125-year legacy of strength and stability.First C...Show moreLast updated: 4 days ago
- Promoted
Lead, Information Security and Compliance
sliceBengaluru, Republic Of India, IN The individual will be responsible for executing IT security audits, ensuring adherence to ISMS and ITGC controls, and identifying potential security risks.
The role involves conducting security ass...Show moreLast updated: 14 days ago
- Promoted
Lead Information Security Risk Management & GRC
ConfidentialBengaluru / Bangalore, India Lead Information Security Risk Management & GRC.This role is responsible for developing, managing, and executing the Information Security Risk Management program.
The incumbent will play a critical ...Show moreLast updated: 4 days ago
- Promoted
AVP - Governance Risk & Compliance - Information Security Group
Mashreq Global Services Private LimitedBangalore, India Key Responsibilities : 1.Information Security Governance - Develop, implement, and maintain the Information Security Governance Framework in alignment with ...Show moreLast updated: 13 days ago
- Promoted
Mashreq - Manager - Information Security
Mashreq Global Services Private LimitedBangalore, India Management : - To Strategize, develop and implement Data Protection Controls in coordination with stakeholders across the Organization globally.
To ensure compliance of the Organ...Show moreLast updated: 28 days ago
- Promoted
- New!
Information Security & Controls Lead
Dairy DayBengaluru, India Dairy Day is one of India’s largest ice cream brands.Over the last 22+ years, we have built a formidable presence across South & West India and are continuously expanding across the country, sellin...Show moreLast updated: 15 hours ago
- Promoted
Lead Information Security Engineer -GRC
ConfidentialBengaluru / Bangalore, India InMobi is the leading provider of content, monetization, and marketing technologies that fuel growth for industries around the world.
Our end-to-end advertising software platform, connected content,...Show moreLast updated: 4 days ago
- Promoted
Security GRC 2LoD
ConfidentialBengaluru / Bangalore, India Governance, Risk, and Compliance) 2nd Line of Defense (.The role involves monitoring risk remediation efforts, providing expert guidance, and supporting the first line of defense (1LoD) in achievin...Show moreLast updated: 4 days ago
- Promoted
Information Security Lead
Narayana HealthBengaluru, Karnataka, India The Information Security Lead will be responsible for developing and implementing the organization’s information security framework to safeguard patient data, clinical systems, and enterprise IT in...Show moreLast updated: 30+ days ago