Lead Engineer - GRC

GRC Lead

• This role plays a critical part in our commitment to information security and compliance with DPDPA/ ISO 27001/ GDPR Readiness and SOC2 Type II Audits.
• This role will be the primary focal point for all the internal and external audits. (Total of 12 recorded audits we do in a year 6 External and 6 Internal) and maintenance of the certificates.
• This role will oversee planning, implementation, and maintenance of all the controls pertaining to the standards we follow.
• This role will be the Org SPOC for Risk Management and treatment.
• He/She will hold responsibility to upkeep the external Audit portals for the Certificates and to manage corrective and preventive actions resulting from audits and assessments and work on overall development.
• He/She will be the deputy custodian of entire GRC Documents and upkeep them.
• Foster collaboration between the QAG, IT, business units, and management to ensure security goals are aligned.
• Facilitate and ensure training and awareness programs on information security best practices of Greytip are imparted.
• Collaborate and maintain a cohesive mode of operations with all Domestic and International legal entities.
• Designated PoC for CertIN/ DPDPA Directorate and other regulatory bodies