Cybersecurity Consultant - GRC

Description

About the job 

Join our Team - Your career journey starts here – not just a job, but a future. 

Our Potential Opportunity  

INTECH Automation Intelligence is seeking an experienced Cybersecurity Consultant with expertise in Governance, Risk, and Compliance (GRC), Vulnerability Management and Incident Management to join our OT Cybersecurity Product Team. This role is pivotal in delivering and implementing OT Cybersecurity Solutions to ensure the protection of critical industrial infrastructure across industries such as Oil & Gas, Petrochemicals, Utilities, and Manufacturing. The ideal candidate will work closely with portfolio manager, product managers, developers, and security engineers to ensure that security is embedded throughout the projects, product design, development, and testing lifecycle. The consultant will also be responsible for consulting for GRC application, customer focused GRC Consulting, automation, streamlining compliance workflows, and enhancing the security posture of the product.

 INTECH’s commitment to delivering cutting-edge OT cybersecurity services, including Resident, On-Call, and Remote services, ensures you will be part of transformative projects that safeguard critical infrastructure and enable secure, reliable operations. 

Our OT Cybersecurity Services reflect our dedication to ensuring the safety and reliability of industrial operations. Through our Platform Expertise, Engagement Methodology, and Competency Management, we strive to mitigate risks and safeguard against evolving cyber threats, all while delivering exceptional, innovative solutions for our clients in key industries 

What You’ll Lead and Deliver 

1. Security Governance, Risk, and Compliance (GRC)

• Design, implement, and maintain security risk management frameworks aligned with ISO 27001, NIST, ISA 62443, and other industry standards.
• Lead GRC automation efforts to streamline security risk, audit, and compliance processes within the product lifecycle.
• Work with internal and external stakeholders to align product security controls with industry and regulatory requirements.
• Develop policies, procedures, and security documentation for compliance with global security standards.
• Perform assessments and develop roadmaps for assigned for clients and product based work

2. Product Security and Vulnerability Management

• Provide security guidance throughout the product lifecycle, from requirements gathering to deployment.
• Collaborate with development teams to ensure secure software design (SDLC) practices are followed.
• Support and manage automated vulnerability scanning and manual penetration testing of applications and infrastructure.
• Define risk-based security testing strategies to identify vulnerabilities before release.
• Lead incident response planning and threat modeling exercises for new and existing products.

3. GRC Automation & Security Testing Tools

• Implement and manage GRC platforms (e.g., Archer, OneTrust, LogicGate, ServiceNow GRC) to track risks, compliance gaps, and audit workflows.
• Configure security testing tools such as Nessus, Qualys, Burp Suite, OWASP ZAP, and others.
• Develop custom security dashboards and reporting mechanisms to provide real-time visibility into vulnerabilities and compliance status.
• Automate compliance and risk reporting to support audits, certifications, and regulatory assessments.

4. Collaboration with Development & Engineering Teams

• Work closely with product managers to integrate security requirements into product roadmaps.
• Provide security awareness training for developers and DevOps teams.
• Define secure coding practices and conduct code reviews to detect security flaws.
• Conduct security architecture reviews for new product features and integrations.
• Help teams respond to security incidents, customer security assessments, and compliance requests.

Requirements

 To Be Successful in This Role, You Must Have: 

Experience: 

• 10+ years of cybersecurity experience, with a strong background with industrial customers
• Worked with multiple companies/clients in GRC consulting.
• Experience working in a product development or SaaS company is highly preferred.
• Proven ability to automate security processes and improve compliance workflows

Education: 

• Computer sciences, BS or MS in cybersecurity etc

Competencies: 

• CISSP – Certified Information Systems Security Professional
• CISM – Certified Information Security Manager
• CRISC – Certified in Risk and Information Systems Control
• CEH – Certified Ethical Hacker
• ISO 27001 Lead Implementer/Auditor

Technical Skills

• Strong knowledge of GRC frameworks (ISO 27001, NIST 800-53, NIST CSF, SOC 2, ISA 62443).
• Experience implementing and managing GRC platforms (e.g., Archer, OneTrust, ServiceNow GRC, LogicGate).
• Expertise in vulnerability management tools (e.g., Tenable Nessus, Qualys, Rapid7, OpenVAS).
• Deep understanding of application security testing (e.g., SAST, DAST, SCA).
• Hands-on experience with security automation 
• Strong documentation and policy-writing skills.

Soft Skills

• Strong problem-solving and analytical skills.
• Excellent communication and stakeholder management skills.
• Ability to train and mentor development teams in secure coding practices.
• Experience working in cross-functional teams (Engineering, Compliance, IT, Legal).

We Offer Competitive Benefits: 

• Global Exposure: Opportunities to work on international projects and collaborate with global teams. 
• Competitive Compensation: A salary package that recognizes your expertise and contributions. 
• Annual Bonus: Performance-driven rewards based on your gross pay to celebrate your achievements and contributions. 
• In-House Lunch: Delicious meals provided during work hours to keep you fueled and focused. 
• Health Insurance: OPD coverage for you and your parents, plus IPD coverage for you and your dependents. 
• Learning Opportunities: Access to training programs, workshops, and certifications to enhance your skills. 
• Work-Life Balance: Paid time off, including annual leave and holidays. 
• Inclusive Environment: A workplace that celebrates diversity and fosters collaboration. 

Why Join INTECH Automation Intelligence? 

At INTECH, you will have the opportunity to work with a globally renowned industrial automation and digitalization technology company. For nearly 30 years, INTECH has partnered with major oil and gas global giants to deliver innovative solutions. As we continue to lead in the Industry 4.0 era, you will be at the forefront of transformative technologies that solve real-world challenges. 

What to Expect After Applying? 

Explore how INTECH’s Talent Acquisition team ensures a seamless hiring journey. From embracing talent with a passion for innovation to fostering a culture of continuous learning and growth, we’re dedicated to finding and supporting the best minds in the industry.  

Click Here to learn more about our hiring process and discover your path to success with us. 

Our hiring process is designed to assess your skills and potential in a fair and inclusive manner. After applying, you will be guided through a structured evaluation process to ensure mutual alignment. 

INTECH Automation Intelligence is proud to be an Equal Opportunity Employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.