Governance, Risk & Compliance Cybersecurity Consultant (GRC)

About the role

This is a fast-moving cybersecurity environment and role.

Are you a talented GRC Cyber Security Consultant who is looking for the next step in their career? Or are you a motivated individual with cybersecurity professional services experience who is looking for a change into GRC consulting? Do you have strong interpersonal skills, project management experience, and a passion for cyber security and customer satisfaction? Then this role is for you!

We are looking for an exceptional individual to be based in our Noida office, to ensure our business remains a cutting-edge leader of the cyber security field. Additionally, you will use your passion for cyber security to provide compliance consultancy and client support.

Key responsibilities

• Responsible for the assessing and documenting the compliance and information risk posture, producing recommendation reports for Red Piranha as well as for clients within the context of consulting services.
• Provide highly skilled technical and information security expertise for development and implementation of information security management systems
• Work with internal and external auditors and outside consultants as appropriate on required security assessments and audits.
• Assess the status of complex multi-location security projects, as well as identify and implement appropriate corrective measures to resolve issues as they arise.
• Assess computer hardware, software and systems for security risks or violations and work with relevant internal or client’s personnel to recommend solutions.
• Execute strategy for dealing with increasing number of audits, compliance checks and external assessment processes for various compliance frameworks.

About you

• Excellent English, verbal and written communication skills (as you will be communicating with our international audience) while delivering a customer centric approach.
• Must have industry certifications CRISCO, CISA, ISO 27001 Lead Implementer / Auditor or similar
• Must have 4+ years’ experience as a GRC consultant or in a technical cybersecurity position dealing with cybersecurity governance, risk and compliance
• Knowledge of cyber and information security frameworks, policies, and standards e.g., ISO/IEC 27001:2022, NIST, ISM (and Essential 8), and PCI DSS (certifications preferable)
• Understanding of regulatory compliance requirements such as CPS234
• Demonstrated understanding of how controls relate to risk
• Strong customer service, report writing, and presentation skills
• Strong analytical thinking and problem-solving skills
• Strong attention to detail and the ability to explain complex technical concepts in clear concise language.
• Demonstrated experience in project management
• Ability to work autonomously and drive responsibilities independently whilst still serving as a valued team member
• Adherence to regulations and proactive in keeping up to date with legislations
  ​​​​​​​
  

Clearance Requirements

• Ability to obtain and maintain a Police Clearance