Jiostar7mo ago

Senior GRC Engineer

Mumbai · MumbaiFull Timesenior

OtherGrc Engineer

0 views0 saves0 applied

Apply Now

Quick Summary

Overview

About the Role: We are looking for a highly motivated and skilled GRC Specialist to join Jiostar’s GRC team. This role is ideal for someone with 3+ years of experience in Governance,

Technical Tools

OtherGrc Engineer

About the Role:

We are looking for a highly motivated and skilled GRC Specialist to join Jiostar’s GRC team. This role is ideal for someone with 3+ years of experience in Governance, Risk & Compliance, who has a passion for automation, AI integrations, tool evaluation, and implementation. The candidate will play a key role in strengthening Jiostar’s security, privacy, and compliance posture by leveraging technology, automation, and innovative solutions.

Governance, Risk & Compliance:

Support the design, implementation, and monitoring of GRC frameworks across Jiostar entities.

Assist in internal and external audits, risk assessments, and closure of findings.

Privacy & Security:

Work closely with privacy, legal, and security teams to ensure data protection and regulatory compliance (DPDPA, GDPR, PIPEDA, etc.).

Contribute to privacy impact assessments, data retention reviews, and security control validations.

Tool Evaluation & Implementation:

Assess, compare, and recommend GRC, privacy, and security tools aligned with business needs.

Lead proof-of-concept, vendor evaluations, and end-to-end implementation.

Automation & AI Integration:

Identify opportunities to automate repetitive GRC processes (e.g., audit evidence management, risk tracking, TPRM).

Integrate AI-driven solutions for compliance monitoring, reporting, and risk analytics.

Stakeholder Engagement & Collaboration:

Interact with stakeholders across functions to present findings, progress, and outcomes of GRC initiatives.

Collaborate with legal, security, and business teams to drive cross-functional initiatives and ensure alignment with compliance and privacy objectives.

3+ years of relevant experience in GRC, cybersecurity, risk, or privacy functions.

Bachelor’s or Master’s degree in Computer Science or a related field.

Hands-on experience with GRC or security tools (e.g., JIRA, Vanta, Smartsheet).

Strong understanding of compliance frameworks and standards (ISO 27001, DPDPA, GDPR, PCI DSS).Proven ability to evaluate tools, run PoCs, and manage implementation projects.

Experience with automation (workflows, integrations) and interest in AI adoption within GRC.

Knowledge of privacy and data protection regulations and ability to apply them practically.

Excellent communication skills and ability to present to and collaborate with diverse stakeholders.

Proven ability to evaluate tools, run PoCs, and manage implementation projects.

Exposure to cloud security (AWS/Azure/GCP) controls and compliance.

Certifications (CISA, ISO 27001 LA/LI, CIPM, CCSK, etc.) are a plus.