Risk Management Consultant

Location

Bangalore | India

Job description

Job Description:

As an Information Risk Management Lead Consultant, you will play a crucial role in ensuring the security and compliance posture of our clients. You will be responsible for developing and implementing effective risk management strategies and frameworks, conducting comprehensive assessments, and providing expert guidance to mitigate potential risks. If you are passionate about information security, possess strong analytical skills, and thrive in a dynamic environment, we invite you to join our team.

Role: Lead Consultant- Risk Management

Experience :15 -20 Year

Job Type : Contractual

Job Duration: 1 year + Extendable

Payroll Company : NAZZTEC

Work Type (Remote/Onsite/Hybrid): Onsite

Work Location : Riyadh, Saudi Arabia

Client Industry : Core Banking and Finance

Client Location: Saudi Arabia

Work Timings (KSA): 9am to 6pm

Working Days & Weekly off : Sunday to Thursday ( Friday And Saturday weekly off)

Roles and Responsibilities:

• Develop the unified compliance assessment framework (UCF) with dashboard, control library, and control mapping for the in scope identified standards and regulations. Ensure UCF can provide overall UCF compliance status as well as against individual sources included as part of UCF.
• Conduct detailed gap assessment for the in-scope standard and regulations.
• Develop recommendation identifying documentation gaps that need to be addressed as well as process / technical control enhancement / implementation recommendations.
• Performing risk assessment for business applications, business processes, and specific scenarios (when outsourcing is considered, for critical changes, prior to projects, and when considering a new product or technology) following our Information Security Risk Management Methodology.
• Participate in Security Assessments/Compliance of infrastructure, systems and applications, changes and provide required advise from risk perspectives.
• Work on improvements for provided security services, including the continuous enhancement of existing risk practice and methodology material.
• Work on measuring the effectiveness of Risk KPI/KRI and work to improve it on regular basis.

Qualifications:

• Bachelor's degree in Information Security, Computer Science, or related field; Master's degree preferred.
• 8-10 years of experience in information risk management, compliance, or related field.
• Strong understanding of regulatory requirements and industry standards (e.g., GDPR, ISO 27001, NIST, PCI DSS).
• Proven experience in developing and implementing compliance frameworks and risk management methodologies.
• Excellent analytical and problem-solving skills, with the ability to interpret complex information and make strategic decisions.
• Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and communicate technical concepts to non-technical stakeholders.

Job tags

Salary