BriefCase
BriefCase

Grc (soc1, Soc2 ,sox) Job in Mindtree

Grc (soc1, Soc2 ,sox)

Mindtree 4+ weeks ago
Apply Now
Job Summary Description :

  • 8-12 years of experience in design and implementation of GRC, ISO 27002, SOC1 and SOC 2 security controls.
  • Experience in Designing SSAE 18 SOC 1 and SOC 2 security controls for both on-prem and cloud environments is a must.
  • Reviewing Information security policies and procedures identify gaps, consolidating information security policies and procedures into group policy.
  • Should have good experience in performing risk assessments, creating and maintaining risk registers, liaising with risk officers and getting risk register updated with remediation steps.
  • Should have experience in performing IT General controls review/audits. SSAE 18 SOC 1 & SOC 2 Audits
  • Should have good understanding of IT Risk management frameworks like COSO, COBIT, NIST 800 series, ISO 27001, ISO 31000, NIST CST
  • Should have good understanding of regulatory compliance requirements such as SOX, GDPR, SSAE18/ISAE3202 PCI-DSS, FISMA, HIPAA, and HITRUST, RBI Cybersecurity requirements, IT Act 2000.
  • Should have good understanding of data protection & privacy laws in various countries like US, UK, Europe, APAC- Singapore, Australia, and India.
  • Should have implemented GRC solutions like ServiceNow GRC, Archer, Metric stream, Logic manager, Oracle GRC, SAS GRC solutions.
  • Should have experience working and responding to RFI/RFP requirements for global customers, writing SOW, effort estimation.
  • Should be to analyze Business requirements and translate them to technical security solutions and create security solutions architecture patterns.
  • Should have experience creating , whitepapers, POVs, Presentation documents.
  • Should have excellent communication skills, team management skills, stake holder managment skills. Should be a go-getter and expert in speaking about GRC with top management executives.
  • Should be having any two of them CISSP, ISO 27001, CISA, CISM, CRISC, CCSK and CGEIT Certified professional.
  • Good to have SOX, GDPR, Privacy training and certifications

Good Understanding of Cloud Security Concepts.
Experience Required :

8 to 12 Years

Vacancy :

2 - 4 Hires

Similar Jobs for you

See more recommended jobs