GRC - Specialist (Cybersecurity)

Job Responsibilities

Review practices followed by Monitoring, Incident Response, Platform Engineering, Service Management, Threat Intelligence, Red Teaming and Penetration Testing and ensure they are aligned to GSOC policy universe through dashboards.

Enrich the practices across all operational functions with good practices and create data visibility and build correlating models.

Gather inputs from OpCos, projects (ie., Insurance study, Risk Management, OpCo BOD / Risk Committee papers) and ensure SOC / OpCos / Projects are in sync.

Report Governance - Ensure all reports to OpCos and other entities are completed on time and track the issues and inconsistencies.

Continuously review the data sources.

Candidate profile

• Up to 3 years' experience in Cybersecurity Governance, Risk and Compliance reporting, conduct maturity assessments, with a good knowledge on security concepts aligned with NIST Cyber Security Framework, ISO 27001, and SOC.
• Bachelor's degree in information security / computer science or equivalent.
• Good to have certifications CISA / CISM / CRISC.
• Problem resolving skills.
• Report writing skills.
• Project management skills.
• Power BI / Excel modelling