Risk Consultant

Title: Senior Consultant Risk (GRC Services)

Location: Gurugram, India (Onsite)

Duration: FTE Role

Department: Information Security / Risk & Compliance

Reports to: CTO / COO

Company Overview:

• Fluidech is a technology consulting and managed services firm focused on cybersecurity.
• Founded in 2014 and headquartered in Gurugramand today with a client base spanning over 100 organisations worldwideFluidech designs IT solutions aligned with business objectives, fostering trusted relationships and delivering measurable performance improvements.
• Established as a born-in-the-cloud company, Fluidech has evolved into a trusted technology partner that helps businesses build (Cloud & Infrastructure), automate (DevOps), and secure (Cyber Security services). Our solutions span diverse industry verticals, aligned with each clients business goals.
• In addition to holding ISO 9001 and ISO 27001 certifications and an award-winning cybersecurity team, the company has a strong value proposition in its GRC services across frameworks, including but not limited to NCIIPCs CAF, SEBIs CSCRF, and others.

Role Overview

We are seeking an experienced governance, risk, and compliance (GRC) professional to lead and manage implementation, audit readiness, and ongoing compliance operations for clients across multiple regulatory and security standards, including ISO/IEC 27001 and the Digital Personal Data Protection Act, 2023 (DPDPA).

This is a hands-on leadership role requiring strong implementation capability, client advisory experience, training expertise, and the ability to build and manage end-to-end GRC service frameworks.

Key Responsibilities:

GRC Program Implementation

• Lead end-to-end implementation of Information Security Management Systems (ISMS) aligned with ISO 27001.
• Conduct gap assessments, risk assessments, and control mapping exercises.
• Develop policies, procedures, SOPs, and governance documentation.

Regulatory & Compliance Management

• Drive compliance programs aligned with DPDPA and other applicable regulatory frameworks.
• Monitor compliance posture and recommend remediation plans.

Audit Readiness & Support

• Prepare organisations for internal and external audits.
• Coordinate with certification bodies and auditors.
• Manage corrective and preventive action (CAPA) tracking.

Risk Management

• Design and maintain enterprise risk management frameworks.
• Perform risk identification, analysis, evaluation, and treatment planning.

Client Advisory & Stakeholder Management

• Act as primary GRC advisor to client leadership and management.
• Present risk and compliance status to senior stakeholders.

Training & Awareness

• Design and deliver compliance training sessions.
• Build client capability for ongoing compliance management.

GRC Services Framework Development

• Establish standardised GRC service delivery models.
• Develop templates, toolkits, and methodologies for scalable delivery.
• Mentor junior consultants and manage service execution quality.

Required Skills & Experience

• 510+ years of experience in Governance, Risk & Compliance.
• Strong hands-on experience with ISO 27001 implementation and audit lifecycle.
• Working knowledge of DPDPA requirements and data privacy compliance.
• Experience in risk assessment methodologies and control frameworks.
• Strong documentation and policy drafting expertise.
• Experience interacting with external auditors and certification bodies.
• Excellent communication, client-facing, and presentation skills.
• Relevant information security and governance certifications (e.g., CEH, CISSP, CISM, CCSK, ISO 27001/22301/20000 LA/LI, ITIL, etc.) preferred.

Why Join FLUIDECH?

• Join a growing, award-winning company recognized for excellence in cybersecurity.
• Work alongside a passionate, innovative team focused on cutting-edge technologies.
• Lead strategic client relationships and high-impact deals.
• Be part of an organization that values transparency, trust, and growth.

Benefits:

• Competitive compensation with performance-based incentives
• Health insurance and wellness programs
• Training and certification support in relevant technologies and frameworks
• Opportunities for professional growth and internal career advancement
• Dynamic and collaborative work environment
• Regular team outings, recognition programs, and knowledge-sharing sessions
• Exposure to high-impact projects across diverse industry sectors