5 Yrs - Bengaluru Only - IT Governance, Risk & Compliance (GRC) Specialist

We are seeking an experienced IT Governance, Risk & Compliance (GRC) Specialist to drive information security, compliance, audit readiness, and risk management initiatives across the organization. The ideal candidate will have hands-on experience managing compliance programs aligned to NIST CSF 2.0, ISO 27001:2022, GDPR, DPDP Act, Third-Party Risk Management (TPRM), and related security frameworks.

Key Responsibilities:

• Develop and implement GRC strategies to ensure compliance with relevant regulations and standards.
• Collaborate with IT, Security, Product, and Business teams to strengthen compliance and risk management practices.
• Conduct regular audits and assessments to evaluate compliance status and identify areas for improvement.
• Provide guidance on risk management processes and ensure effective mitigation strategies are in place.
• Maintain up-to-date knowledge of industry trends and regulatory changes affecting GRC.

Required Skills & Qualifications:

• Proven experience in IT governance, risk management, and compliance.
• Strong knowledge of frameworks such as NIST CSF, ISO 27001, GDPR, and TPRM.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills to effectively collaborate with cross-functional teams.
• Relevant certifications such as CISA, CISM, or CRISC are a plus.

Experience:

• 5-8 years of experience in IT GRC roles or related fields.

What we offer:

• Opportunity to work in a dynamic and collaborative environment.
• Professional development and training opportunities.
• A chance to make a significant impact on the organization’s compliance and risk management efforts.