Senior GRC Manager

📋 Description

• Serve as the primary GRC contact for the Pune office.
• Support internal controls inventory; update controls as needed.
• Document control owners, testing procedures, and policies for Pune controls.
• Collaborate with Pune control owners to document and update narratives annually.
• Lead monthly/quarterly control activities; ensure on-time completion and audit evidence.
• Advise across teams to foster a risk-aware security/compliance culture.

🎯 Requirements

• 4+ years of relevant GRC, security, or compliance experience.
• Knowledge of security, privacy, and compliance (SOC 1/2, ISO 27001, ISO 27701, ISO 42001, PCI, HIPAA).
• Understanding of information security and privacy fundamentals.
• Certs: CompTIA, CISSP, CISA, CISM; cloud certs (AWS/Azure/GCP) preferred.
• Confident and proactive in raising issues and asking questions.
• AI governance knowledge to improve compliance and audits.

🎁 Benefits

• Familiarity with NIST, CIS frameworks a bonus.
• Experience in a software development company a bonus.
• Highly collaborative, detail-oriented, organized, approachable.
• Builder mindset; share ideas; focused on team and company goals.
• Flexible and adaptable in a high-growth startup.
• Excellent communicator and stakeholder management.