GRC Consultant @ Germany - Frankfurt

 StepStone ·  11.01.2019 ·  Frankfurt am Main ·  HCL GREAT BRITAIN LIMITED

HCL Technologies is the fastest growing IT services company (Brand Finance Global 500, 2017) in the world; a $6.9 Bn global company operating out of 33 countries that specializes in    transformation of IT and engineering services.   HCL provides an integrated portfolio of services underlined by its Mode 1 - 2 - 3 growth strategy. Mode 1 encompasses core services in the areas of Applications, Infrastructure, BPO and Engineering & R&D services. Mode 2 focuses on experience -centric and outcome -oriented services such as Digital and Analytics Services, cybersecurity, cloud and AI. Mode 3 is ecosystem-driven,  creating innovative IP -partnerships to build products and platforms business. With this in mind, HCL has invested heavily in building solutions and partnerships that cater to businesses of the 21st century.   Our success is built on our core engineering strength and strong domain competency, spanning retail & corporate banking, capital markets and insurance sectors and catering to the IT and operational needs of leading financial services companies. HCL focuses on creating real value for customers by taking - Relationships Beyond the Contract; a philosophy which places our customers at the heart of every digital transformation, pushing the envelope and being pioneers in the FinTech industry. KEY RESPONSIBILITIES & JOB DESCRIPTION  · Executing advisory & consulting engagements around regulatory risk & compliances such as SOX ITGC, PCI-DSS, HIPAA, Data Privacy, FFIEC etc. · Program and project manage GRC delivery engagements · Execute information security assessment, business continuity assessment, risk assessments pertaining to clients IT environment · Participate in GRC product evaluation as deemed fit for the client organization · Execute technical risk assessments around applications, control testing etc. · Document policies & procedures meeting the regulatory compliance and risk management requirements · Develop knowledge base, re-usable components for GRC advisory services · Responsible for development and enhancements of GRC services, team and delivery capabilities.  Manage 3rd party/sub-contractors as part of the GRC delivery engagement Skills · Expertise in delivery of risk and compliance advisory services (preferable candidates from Big4 organizations) · Should have proven capabilities of executing atleast 3-4 advisory/consulting engagements · Excellent technical capabilities around information security, business continuity and technology risk assessments · Good compliance understanding of industry domains such as  BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail,  Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST, CIS · GRC Project & Program Management · Excellent written and verbal communications skills Should be able to travel 70%-80% on short as well as long term engagements PLATFORM /TOOL EXPERTISE Experience on the below mentioned tools is not mandated but candidates having exposure to these will be preferred: · MetricStream · RSA-Archer ServiceNow GRC & SecOps QUALIFICATIONS B.E/B.Tech with MBA preferred. Candidates with following Certifications will be preferred: · CISA/CGEIT/CISM/CISSP  · ISO 27001 Implementer, Lead Auditor · ITIL V3.0 · Six Sigma · CBCP, BS22301 GRC Platform Specific CertificationsBetter chances of Growth Good Working Environment — ein Projekt von DIPLANET Digital Solutions Impressum