Manager Information Security (Cyber GRC)

As a Manager - Information Security (Cyber GRC), your role will involve the following key responsibilities: - Governance, Risk, and Compliance (GRC): - Develop and implement governance, risk, and compliance frameworks for cybersecurity. - Ensure alignment of frameworks with industry standards, regulatory requirements, and internal policies. - Continuously improve the GRC process to enhance risk management and compliance. - Take ownership of Trust Center and Cyber GRC controls under the overall controls framework. - Cyber Risk Assessments and Audits: - Conduct comprehensive cyber risk assessments and support internal audits. - Evaluate security controls, processes, and compliance. - Identify gaps in cybersecurity practices and recommend remediation measures. - Provide evidence and documentation for certifications and compliance audits. - Vendor Risk Assessments: - Perform vendor risk assessments with a focus on information security and cybersecurity practices. - Provide input on vendor risk to clients and internal teams. - Ensure vendors meet cybersecurity requirements. - Regulatory Compliance Monitoring: - Monitor changes in cybersecurity regulations, industry standards, and best practices. - Ensure organizational compliance with relevant laws and regulatory requirements. - Update policies and procedures to reflect changes and provide training to stakeholders. - Cybersecurity Policy Development and Maintenance: - Develop, review, and maintain all cybersecurity-related policies and procedures. - Communicate policies to all employees and integrate them into day-to-day operations. - Regularly review and update policies to address emerging threats and new regulations. - Reporting and Risk Mitigation: - Prepare reports on cybersecurity risks, compliance levels, and vendor assessments. - Collaborate with cross-functional teams to develop strategies for risk mitigation and enhance the organization's cybersecurity posture. If you are interested in this opportunity, please share your CV with renuka.bi@peoplefy.com. As a Manager - Information Security (Cyber GRC), your role will involve the following key responsibilities: - Governance, Risk, and Compliance (GRC): - Develop and implement governance, risk, and compliance frameworks for cybersecurity. - Ensure alignment of frameworks with industry standards, regulatory requirements, and internal policies. - Continuously improve the GRC process to enhance risk management and compliance. - Take ownership of Trust Center and Cyber GRC controls under the overall controls framework. - Cyber Risk Assessments and Audits: - Conduct comprehensive cyber risk assessments and support internal audits. - Evaluate security controls, processes, and compliance. - Identify gaps in cybersecurity practices and recommend remediation measures. - Provide evidence and documentation for certifications and compliance audits. - Vendor Risk Assessments: - Perform vendor risk assessments with a focus on information security and cybersecurity practices. - Provide input on vendor risk to clients and internal teams. - Ensure vendors meet cybersecurity requirements. - Regulatory Compliance Monitoring: - Monitor changes in cybersecurity regulations, industry standards, and best practices. - Ensure organizational compliance with relevant laws and regulatory requirements. - Update policies and procedures to reflect changes and provide training to stakeholders. - Cybersecurity Policy Development and Maintenance: - Develop, review, and maintain all cybersecurity-related policies and procedures. - Communicate policies to all employees and integrate them into day-to-day operations. - Regularly review and update policies to address emerging threats and new regulations. - Reporting and Risk Mitigation: - Prepare reports on cybersecurity risks, compliance levels, and vendor assessments. - Collaborate with cross-functional teams to develop strategies for risk mitigation and enhance the organization's cybersecurity posture. If you are interested in this opportunity, please share your CV with renuka.bi@peoplefy.com.