Manager Risk & Compliance

Hi All,

We are hiring for Manager Risk & Compliance role for Chennai location. Please find the job details below:

Qualification- Any Graduate

Total experience- 10+Years

Work Model- WFO

• Experience in Compliance management, Risk Management, Information Security, Infosec Training & awareness, incident management and internal & external audit in financial Market.
• Required to have excellent understanding of the client MSA obligations, data privacy laws (CCPA, GDPR, Digital Personal Data Protection Act, 2022), IT Control framework & risk assessment.
• Working experience in compliance programs i.e. (PCI DSS, , ISO 27001, ISO 22301, SSAE-18 SOC 1 & 2, SOX)
• Lead teams and efforts to ensure effective execution of periodic risk assessments and drive integration of remediation efforts with the risk management process
• Partner with service delivery leadership to both communicate and manage risk in delivery to an acceptable level
• Partner with awareness and training elements to develop and ensure rollout of programs to increase the level of awareness of compliance with policy and process
• Lead and perform activities to help measure and monitor compliance with contractual security requirements, company policies and procedures to ensure the account is compliant and audit ready
• Lead different compliance & audit testing programs and support successful completion of various external compliance certification programs and internal compliance assessments
• Proven ability to lead small teams dedicated to the performance of risk management and assessment responsibilities.
• Ability to provide effective management of junior employees.
• Develops and provides appropriate guidance on solutions to mitigate risks and enhance system security
• Deep understanding of privacy and business continuity requirements and support R&C Privacy and BCM teams in execution of their respective program
• Demonstrates ability to work in virtual team with help of tools and technologies
• Demonstrates ability to handle conflicting situation & should have strong verbal, written communication & analytical skills
• Must have systematic and pragmatic approach to problem solving
• Demonstrates good inter-personal skills, high standards of professional behavior in dealings with business customers, colleagues, and staff
• Have a good technical awareness and the aptitude to remain up to date with information security and IT developments
• Ability to communicate Risk to non-IT business owners and support function such as delivery, HR, Admin, Legal, Contracting and others
• Ability to communicate risk at all levels of management up to and including C-Level executives.
• Translate business, industry, and regulatory requirements into information security objectives and associated tactical/strategic information security initiatives
• Certification such as ISO 27001/ ISO 22301/ PCI DSS/ GDPR/ Certified in Risk and Information Systems Control (CRISC) / Certified Information Security Manager (CISM) /or any other security related certifications are preferred.