Governance Risk Compliance & Security Manager
Bengaluru, Karnataka, India
Applications have closed
ColorTokens
Location: Bengaluru,Karnataka,India
Experience: 12 -15 YearsLocation: Bangalore Primary Responsibilities
- Document the ISMS/IMS, FedRAMP and TX-RAMP policies and Delivery Plan documents related to GRC& Secuirty and IMS functions and review and publish within ColorTokens.
- Identify & evaluate necessary compliance and standards to meet the business requirements for the organization location wise.
- Define, Develop RACI charts for GRC& Security function as well as compliance for IMS initiative.
- Establish Internal Audit team to perform Internal audits within the organization as per the predefined plan and frequency.
- Demonstrate a practical approach to the tasks and to promote and implement best practices.
- Co-ordinate in evaluating the External vendors to be involved in compliance related IMS activities.
- Regular interaction with project teams to close dependencies
- Lead training & staff awareness sessions
- Participate and co-ordinate in External Audits and Certifications
- Track the compliance progress and report to management biweekly/monthly.
- Co-ordinate with the other functions to evaluate the vendors for various compliance activities.
- Track regulatory changes or the updates.
- Evangelize IMS & FedRAMP tasks within ColorTokens.
- Conduct Risk Assessment
- Conduct Internal Audits
- Experience in ISO/IEC 27001, SOC2, GDPR, FedRAMP as well as those from NIST, including 800-53 and cybersecurity framework.
- Experience in ISO27001, SOC2 & FedRAMP Internal & external audit.
- Professional security management certification is desirable, such as
- ISO 27001:2013 Lead auditor,
- CISSP - Certified Information Systems Security Professional,
- CISM - Certified Information Security Manager,
- CISA - Certified Information Systems Auditor
- CCSP - Certified Cloud Security Professional or other similar credentials.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences at various hierarchical levels, ranging from Functional Heads to professional specialists.
- 12-15 Years of relevant experience in Information Security, Risk and Compliance.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CCSP CISA CISM CISSP Cloud Compliance FedRAMP GDPR Governance ISMS ISO 27001 NIST Risk assessment SOC 2
Region:
Asia/Pacific
Country:
India
Job stats:
12
0
0
Categories:
Compliance Jobs
Leadership Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs