Cyber Security Consultant GRC

Overview

You will:

● Conduct IT General Controls (ITGC) testing covering Access Management, Change Management, IT Operations, and Backup/DR.

● Support SEBI Cyber Security Framework (CSF) audits for market participants such as brokers, mutual funds, and exchanges.

● Assist in Vendor / Third-Party Risk Management audits, assessing governance, cybersecurity controls, and risk posture.

● Perform ISO 27001:2022 gap assessments, risk assessments, internal audits, and documentation (SoA, Risk Register, Policies).

● Assist organizations with ISO 27001 implementation including ISMS documentation, control mapping, training, and readiness assessment.

● Participate in vendor audits & third-party security assessments, including reviewing SLAs, SOC reports, and security controls.

● Prepare audit working papers, evidence logs, audit reports, and compliance dashboards.

● Communicate findings and remediation recommendations to stakeholders in a clear and in an actionable manner.

● Track closure of open findings and perform follow-up audits.

● Stay updated with regulatory changes and cybersecurity best practices.

You Have

● Bachelor’s degree in Engineering / Computer Science / IT / Cybersecurity or related field.

● 1–2 years of experience in IT audit, compliance, cybersecurity, or governance.

● Understanding of ITGC frameworks and internal audit processes.

● Good knowledge of ISO 27001:2022 requirements, ISMS documentation & risk management.

● Familiarity with SEBI Cyber security and Cyber Resilience Framework and/or RBI cyber security guidelines (preferred).

● Awareness of industry standards: NIST CSF, COBIT, SOC 2, GDPR, DPDP (added advantage).

● Strong analytical, documentation, and report writing skills.

● Strong communication and stakeholder management abilities.

Preferred Certifications (Nice to Have)

• ISO 27001 LA(Lead Auditor) / LI(Lead Implementer)
• CISA / CISM (in progress or planned acceptable)
• CEH / Security+
• COBIT Foundation / ITIL Foundation

We Are:

Software development and consulting firm; Subsidiary of Choice International Limited which is a multi-diversified business enterprise; established in India in March 1993. The group operates from its head office in Mumbai and has zonal offices across the country and has several business verticals like Investment Banking, Broking, Hospitality, E-commerce, Energy sector etc.

We are fast emerging in the field of innovation to help accelerate the digital transformation journey by providing credible web solutions to foster business growth. We assist in business by offering Cloud, Mobile & IT solutions that foster efficiency, growth, and ROI. We keep in mind the goals of the organisation while simultaneously enhancing efficiency. Our dynamic team comprises Web Software Developers, Cloud Architects, Technical Consultants, Data Administrators, IT Security experts, DevOps Professionals & Digital Marketing.

You & We:

Will make the internet a better place by creating stunning websites. Together will help take the business to the next level with our dynamic digital marketing strategies and give our undivided attention to design, analysis, planning and strategy. You & We will make use of proven methodology and technical expertise to provide the most dynamic web solution. We will help grow the business after acquiring clear comprehension of requirements