Grc consultantPosted: April 5, 2021, 9:43 a.m. - Full Time - Bangalore
To be part of the Professional Services Team in Bengaluru focussed on delivering projects across ASIA,. these projects include Readiness drives, Security assessments & Compliance requirements driven by different regulatory requirements, to be acting as the Trusted advisory for our customers through the best of knowledge & skill application.
Only candidates with prior PCI DSS knowledge around implementation & assessment are eligible for this vacant position, kindly restrain from applying if you don’t meet the qualification requirement stated below.
Candidates with more than 11 Years of experience are requested to restrain from applying for this vacancy as this is not a Senior GRC consultant role, an humble request is to restrain from applying if you are overqualified or you don’t fit into the stated prerequisite’s.
Why join our GRC vertical competence?
Our GRC consultants are focussed on delivering quality, creating value proportions by focussing on the set objectives, we talk apples & we deliver them.
Further, our GRC consultants are trained in-house on multiple streams of knowledge base to ensure they deliver the best for our customers.
We believe the quality check is an end-to-end process, so quality checks are to be embedded in the cycle.
If you are passionate about security assessments, if you have the right skills & the patience in writing the best report, then it’s the right place for you to be.
Last but not the least, we just don’t deliver No’s, we deliver Quality, we are concerned with end results from a value propositions perspective.
Experience: 5 to until 11 Years only
Level: Mid Level
Summary of Role
Undertake PCI DSS audits and assessments.
Be passionate about delivering quality audits & assessments.
Provide strategic information security advisory and consulting services for all clients.
The role encompasses the delivery and management of Professional Services engagements, technical consultation and implementation, and internal strategic initiatives. Managing team members as deemed necessary.
To independently execute audits, work in the background with Senior team members to be able to deliver quality & commitment to the best.
Protect confidentiality & deliver the highest integrity at all times, without compromising on the quality of assessment.
Scope security engagements and support the development of proposals and statements of work, effectively translating customer requirements into an engagement to meet those needs.
The GRC Consultant role leads and delivers the following compliance type engagements as a minimum:
Scoping, design, implementation, and operation of PCI DSS, and related Information Security framework/ standards.
Conduct of PCI DSS Gap Analysis or assistance in the completion of the ROC.
Conduct of Internal Audit (against internal information security policies and procedures, or industry standards) engagement.
The GRC Consultant role is heavily focused on all facets of Information Security, across all industries. These include:
Data Centre IT
IT Governance, Risk, and Compliance
Network and Security Architecture
Secure Logic’s Managed Security Services
Internal business initiatives
Manage external relationships from clients, vendors, and business partners at all levels as required.
Mandatory Pre-requisites :
Technology Domain expertise :
System & Application architecture
Security devices - Firewall, IPS , IDS , NAC, DDOS, Threat Management appliances, SIEM ..etc
Platform knowledge - Unix, Linux & windows
Secure Software development
Identity & Access Management system.
Security Testing - VA/PT.
Qualifications & Certification:
Bachelors Science Degree or a Master’s.
CISA Preferably or ISO 27001.
CISM /CISSP or SANS Certification.
If already a QSA it will be a Plus.
Strong analytical, communication, and quantitative skills
Strong communication & written skills.
Very good articulation & analytical capabilities, along with good report writing skills.
Equal Employment Opportunity & Diversity
We’re proud to be an equal opportunity employer - and celebrate our employees’ differences, including race, color, religion, sex, sexual orientation, gender identity, national origin, age & specially enabled capabilities. Different makes us better.