Expoint - all jobs in one place

Finding the best job has never been easier

Limitless High-tech career opportunities - Expoint

EY TC-CS-SRCR-Risk Compliance-Risk Analyst-Senior 
India, Karnataka, Bengaluru 
943409320

15.09.2024

Responsibilities

  • Work with information system experts and cybersecurity practitioners in the GRC space to analyze and document findings and coordinate the writing and tracking of remediation/mitigation plans.
  • Work with information system experts and cybersecurity practitioners in the GRC space to analyze and document residual control deficiencies and associated risk based on qualitative and quantitative frameworks.
  • Manage escalations for tasks that are not being completed when expected.
  • Participate in team review meetings and process improvement activities.

Basic Qualifications:

  • Excellent problem solving, analytical, critical thinking, decision-making, communication, organization, task, and time management skills.
  • Strong interpersonal skills, having the ability to work independently and as part of a team and the ability to work with appropriate subject matter expects (security architects, IT owners, etc.).
  • Ability to adjust to multiple demands, changing priorities, ambiguity, and rapid change, while multitasking effectively

Key Competencies:

  • Process-oriented and strong organizational skills
  • Excellent written and verbal communication skills
  • Proficient in Microsoft O365 products

Ideal Candidate Will Also Have:

  • Experience with ServiceNow GRC or IRM module.
  • Broad exposure to systems, operating software, applications, storage, networks, application development, scripting languages and database management.
  • CISSP, CTPRP, CISM, CRISC or other security-related certification or ability and willingness to obtain within one year.
  • 5+ years’ experience with assessments focused on information security compliance.
  • Experience working within ISO 27000 series frameworks.
  • Experience working in a security environment including cybersecurity procedures, standards, technology controls and industry leading practices including information security risk assessment.
  • Exposure to other frameworks such as COBIT, ITIL, NIST



EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.