GRC- Information security Expert

ECMS Requirement Format

Number of Openings

1

ECMS ID in sourcing stage

Assignment Duration

6 months+

Total Yrs. of Experience

5+

Relevant Yrs. of experience

5+

Detailed JD (Roles and Responsibilities)

Supporting the LISO in regular activities and security operations oversight

• Supporting the development teams in designing the architecture from security point of view, specifying the various parameters and defining the technical security requirements for integrating new systems or upgrading existing systems

• Performing security risk identification and assessments phases supporting also the threat modeling to prioritize risks on IT assets

• Ensuring the monitoring of the risks through GRC tools and performing control assessments against Allianz control framework.

• Conducting third party security risk assessments

• Supporting the annual assurance process for their area of responsibility and ensuring timely delivery of results

• Helping information gathering during audits

• Providing and maintaining Information Security Dashboards to the branches

Good experience in Information Security Governance (minimum 5 years in the role)

• Good knowledge in Enterprise Architecture, technology awareness (i.e. Cloud, AI...)

• Experienced in conducting security risk assessments and be familiar with threat modeling

• Experienced in Security frameworks

Mandatory skills

Desired/ Secondary skills

Domain

GRC- Information security Expert

Max Vendor Rate in Per Day (Currency in relevance to work location)

12000 INR / Day

Work Location given in ECMS ID

Pune

WFO/WFH/Hybrid WFO

WFO

BG Check (Before OR After onboarding)

Is there any working in shifts from standard Daylight (to avoid confusions post onboarding) YES/ NO