NEED ONLY IMMEDIATE CANDIDATES
Functional experience in domain of Governance, Enterprise Risk Management and Regulatory Compliance.
Experience in atleast one or more regulatory compliance like, ISAE3402, SOC 2, Sarbanes-Oxley Act (SOX), General Data Protection Regulation (GDPR), NSA Compliance etc.
Good understanding of IT control frameworks and IT general controls
Working knowledge of overall risk management process that is conducting/participating on internal/external risk assessments and remediation process.
Must have participated in risk, compliance & audit programs
Knowledge on various Information Security domain i.e. IT Regulatory/policy Compliance, IS Governance, Risk Management, IT Infrastructure Security
Technical awareness on Information security & IT network/infrastructure components
Good written and spoken communications skills
Performing independent Assessment & recommend mitigation strategies on client’s Governance Risk & compliance environments like SOX, GDPR, NSA Compliance etc.
Participates in process and control documentation pertaining to controls implementation.
Participates in regulatory audits (process and IT) and management reporting.
Facilitates IT governance implementation.
Liaise on with Client counterparts for compliance reporting & continually enhancing the risk & compliance framework implemented for the project.
Participate in different Risk, Compliance & Audit program and support all external/internal compliance assessment
Drive / Assist closure of audit non-conformities
Monitor compliance with various contractual IT security requirements, customer policies/procedures
CISA/ CISM/CISSP certification, ISO 27001 Certification will be added advantage
Location : Krakow, Poland
Position : Governance, Risk and Compliance (GRC) – Risk & Compliance Manager/ (Relevant Experience 3-5 Years. Total Experience 4-7 years)
Key Words to look for:
ISAE-3402, SOC-2, SOX, GDPR, ISO9001, Cybersecurity Governance, IT Infrastructure, Datacenter