Sr. Consultant - GRC (Governance, Risk and Compliance) Job
Indore, IN
Yash Technologies
YASH Technologies is a leading Digital Solution Company for Business IT Solutions. YASH is a Right Sized Technology Partner of Choice.YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation.
At YASH, we’re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth – bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future.
We are looking forward to hire GRC (Governance, Risk and Compliance) Professionals in the following areas :
Job Description
Experience:- 5-7 years
Overview
The GRC Manager is responsible for overseeing and implementing a comprehensive Governance, Risk, and Compliance (GRC) program. This role involves identifying, assessing, and mitigating risks across the organization while ensuring adherence to regulatory requirements and industry standards. The GRC Manager will collaborate with various departments to develop, maintain, and monitor GRC policies, procedures, and frameworks.
Responsibilities
- GRC Program Development and Implementation:
- Develop and implement a robust GRC program aligned with organizational objectives and industry best practices.
- Establish and maintain a GRC framework, including risk assessment methodologies, incident response plans, and compliance monitoring processes.
- Develop and manage a GRC toolkit, including policies, procedures, templates, and training materials.
- Risk Management:
- Identify, assess, and prioritize risks across the organization using appropriate risk assessment methodologies.
- Develop and implement risk mitigation strategies to address identified risks.
- Monitor and report on risk exposure and effectiveness of risk mitigation measures.
- Compliance Management:
- Ensure compliance with applicable laws, regulations, and industry standards.
- Conduct regular compliance audits and assessments to identify and address non-compliance issues.
- Develop and implement compliance training programs for employees.
- Governance Framework:
- Establish and maintain a governance framework to ensure effective oversight and accountability.
- Facilitate governance committee meetings and provide updates on GRC activities.
- Develop and implement governance policies and procedures.
- Incident Management:
- Develop and implement incident response plans to address security breaches, data breaches, and other incidents.
- Coordinate incident response efforts and ensure timely communication to stakeholders.
- Conduct post-incident reviews to identify lessons learned and improve incident response capabilities.
- Stakeholder Engagement:
- Build and maintain relationships with key stakeholders across the organization.
- Communicate effectively with stakeholders regarding GRC initiatives, risks, and compliance requirements.
- Provide GRC advisory services to support business decision-making.
- Reporting and Analysis:
- Prepare and deliver regular GRC reports to executive management and the board of directors.
- Analyze GRC data to identify trends, assess performance, and inform decision-making.
- Continuous Improvement:
- Stay updated on industry trends, best practices, and regulatory changes.
- Identify opportunities for improvement in the GRC program and implement necessary changes.
Qualifications and Experience
- Bachelor's degree in business administration, finance, or a related field.
- 5+ years of experience in GRC, risk management, or compliance roles.
- Strong understanding of GRC frameworks and methodologies (e.g., COSO, ISO 27001, NIST Cybersecurity Framework).
- Experience with risk assessment tools and techniques.
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team.
Additional Skills (Preferred)
- Certification in GRC (e.g., CGRC, CRISC, CISM)
- Experience with GRC software and tools
- Knowledge of data privacy and security regulations (e.g., GDPR, CCPA)
Note: The specific responsibilities and qualifications for a GRC Manager role may vary depending on the size and industry of the organization.
At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale.
Our Hyperlearning workplace is grounded upon four principles
- Flexible work arrangements, Free spirit, and emotional positivity
- Agile self-determination, trust, transparency, and open collaboration
- All Support needed for the realization of business goals,
- Stable employment with a great atmosphere and ethical corporate culture
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits CCPA CGRC CISM Compliance CRISC Finance GDPR Governance Incident response ISO 27001 Monitoring NIST Privacy Risk assessment Risk management
Perks/benefits: Career development Flex hours Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.