GRC Professional is responsible for supporting the implementation and maintenance of security measures, assisting in vulnerability assessments, and monitoring activities, and staying updated on emerging threats. He/she collaborates with teams to ensure compliance and contribute to incident response efforts, helping protect digital information and systems.
Security Awareness Compliance
- Continuously assigns, monitor and drive security compliance exams on LMS for all employees.
- Coordinate, schedule, and conduct Information Security awareness sessions for all new joiners and resolve queries of the associates related to awareness.
- Ensure employees are following the best security practices of the industry
Security Standard Compliance- ISO 27001: 2022, ISR v2.0
- Ensures completeness of all Security Standard documents and records
- Continuously monitors compliance status and ensures necessary support is available for successful completion of Internal and
- External Audits.
- Support the operation, maintenance, and improvement of the existing certified Information Security Management System based on the ISO 27001 Standard, ISR v2.0 across the department.
- Facilitates Internal (third party) and External Audits
- Assists various departments with Information Classification
Requirements
Academic, Vocational Qualification:
- Bachelor degree from an accredited college or university in Computer Science, Information Security or related fields
