Location
Mumbai | India
Job description
Hi,
We are having an opening for Manager IT-GRC at our Mumbai Location.
Position: Manager
Company: Sun Pharmaceutical Industries Ltd.
Location: Mumbai
Job Summary:
As a Governance Risk and Compliance (GRC) Specialist, you will be responsible for strengthening cybersecurity governance and compliance program to ensure adherence with
regulatory requirements and industry best practices.
Areas of Responsibility:
- Develop comprehensive strategies and standard repeatable practices for governance, risk management, and compliance that meets industry standards, organizational needs, and necessary regulatory and compliance requirements.
- Design and built processes, procedures, guidelines considering industry standards and best practices.
- Identify and propose process improvements that positively impacts overall security posture.
- Direct the implementation, oversight, and contribute to the policies, procedures, and controls to mitigate risks and ensure regulatory adherence across all business operations.
- Understanding of Pharma Technology landscape
- Conduct regular audits and evaluations to monitor the effectiveness of risk management practices and recommend improvements as necessary to address potential risks.
- Update and maintain security risk register reflecting learnings and opportunities identified.
- Enhance existing controls framework, business impact analysis and business continuity plans.
- Facilitate the processes necessary to ensure that we have effective business continuity, incident response, disaster recovery, data protection and privacy.
- Partner with Human Resources, Legal, and Finance teams to ensure appropriate operational, technical, data privacy, and SOD controls are implemented and enforced.
- Act as the focal point for external auditor activity/assessments; driving accountability and efficiency across teams.
- Provide leadership and guidance in navigating complex regulatory landscapes, fostering transparency, and promoting a proactive approach to risk identification and mitigation.
- Lead and drive the Cybersecurity awareness programs across the organization
Educational Qualification:
BE/B.Tech, MCA/BCA
Specific Certification:
Security Certifications Preferred (Including but not limited to the following certifications): CISA, CISM, CRISC, ISO 27001, CGRC ISC2
Skills:
- Must be able to manage a team of resource and work independently.
- Communicate with business users and document requirements.
- Technical background with demonstrated skills in GRC.
- Good analytical and decision-making skills using data & experience.
- Good written & verbal - communication & presentation skills. Must have conflict resolution abilities.
- Teamwork. With effective teamwork, teams are more productive, deadlines are met, relationships with your team members are stronger and knowledge is shared.
- Problem solving.
- Willingness to travel
Experience:
10-12 Years
Job tags
Salary