Security Delivery Lead

Project Role :Security Delivery Lead

Project Role Description :Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets).
Must have skills :Governance Risk Compliance (GRC)

Good to have skills :NAMinimum
7.5 year(s) of experience is required

Educational Qualification :15 years full time education
Summary:As a GRC the individual is responsible for shaping and leading the enterprise GRC strategy, ensuring alignment with business goals and regulatory expectations. This role provides oversight across cybersecurity governance, enterprise risk, compliance, and audit readiness functions. Acts as a strategic partner to business units, drives risk-informed decisions, and leads large-scale compliance and risk initiatives. Also mentors junior team members and ensures consistent delivery and maturity of GRC capabilities.
Roles & Responsibilities- Lead the implementation and continuous improvement of the GRC framework aligned to standards like ISO 27001, NIST CSF, and industry-specific regulations.- Serve as the primary point of contact for internal and external audits, regulatory assessments, and executive risk reporting.- Define and govern cybersecurity policies, risk acceptance frameworks, and control standards across the organization.- Own the risk management lifecycle from risk identification and assessment to treatment and monitoring across IT and business functions.- Oversee third-party risk management processes, including onboarding assessments and ongoing monitoring.- Drive compliance initiatives such as SOX, GDPR, HIPAA, PCI-DSS, etc., ensuring adherence and risk mitigation.- Guide the selection, configuration, and optimization of GRC platforms like ServiceNow GRC, RSA Archer, MetricStream- Present risk posture and compliance status to leadership and steer decision-making through executive dashboards and reports.- Lead and mentor a team of GRC analysts and specialists; ensure delivery quality and continuous knowledge development.- Act as a trusted advisor to CISO, CIO, and business leadership on risk implications of strategic initiatives.Professional & Technical
Skills:

-Strong leadership in risk, compliance, and audit management.- Deep understanding of cybersecurity controls and enterprise risk principles.- Extensive knowledge of regulatory frameworks (SOX, GDPR, HIPAA, etc.) and standards (NIST, ISO, COBIT).- Hands-on experience with GRC tools and enterprise risk reporting.- Excellent communication, influencing, and stakeholder engagement skills.- Proven ability to translate complex risks into actionable and strategic decisions.- Experience leading cross-functional teams and managing multiple stakeholder expectations.
Additional Information:- The candidate should have minimum 7.5 years of experience in Governance Risk Compliance (GRC).- This position is based at our Bengaluru office.- A 15 years full time education is required.Qualification
15 years full time education