No more applications are being accepted for this job
- Candidate must be located within commuting distance of
- Bachelor's degree or foreign equivalent required from an accredited institution. Will also consider three years of progressive experience in the specialty in lieu of every year of education.
- At Least 4 years of experience in Information Technology.
- At Least 3 years of experience of Risk Management and Policy experience
- U.S. citizens and those authorized to work in the U.S. are encouraged to apply. We are not able to sponsor currently.
- Minimum 3 years of professional experience within IT risk management, Regulatory Compliance and/or IT Audit related activities of the financial industry.
- Maturity Assessment based on industry standard RMF (Risk Management framework).
- Implementation and Development of at least two Risk Management Framework Project.
- Knowledge about Risk Management Framework ( NIST CSF, ISO27001 etc)
- Familiarity with HIPPA, SOX, GLBA, GDPR, PCI DSS etc.
- Reviews risk assessments analyzes the effectiveness of information security control activities, and reports on them with actionable recommendations.
- Participates in security investigations and compliance reviews as requested.
- Conducts and reports on internal investigations of possible security violations.
- Consults with clients on security violations.
- Coordinates all IT internal and external assessment components.
- Provide guidance and ensure Privacy Management Program implementation including privacy policies, procedures and mechanisms.
- Conduct privacy assessments in line with the applicable Privacy Laws and regulations
- Ensure privacy regulatory compliance with all applicable privacy Laws, including GDPR and the California Consumer Privacy Act.
- Conduct Trainings and awareness sessions on Privacy principles and industry best practices
- Conduct Privacy Risk assessments (PIA/DPIA) as per the desired frequency
- Liaising with multiple stakeholders to drive data privacy requirements
- Participates in privacy incident investigations and compliance reviews as requested.
- Provide strategic guidance to ensure Privacy by design is incorporated in all products and projects.
GRC Lead - Atlanta, United States - Infosys
Description
You have successfully copied the job share URL to clipboardJob details
Country
USA
State / Region / Province
Georgia
Work Location
Atlanta, GA
Domain
Delivery
Interest Group
Skills
Domain|Enterprise Risk Management|Regulations & Compliance
Company
ITL
USA
Requisition ID
117577BR
Infosys is seeking for a
GRC Lead .
This position you would require interacting with Key stakeholders to enable the Defining of the Policies, procedures, Controls and successfully establish (Design and Implement) the IT Risk Management Function as per the IT security standards and regulations applicable.
The e-GRC implementation for the above established framework also within the scope.Required Qualifications:
or be willing to relocate to the area. This position may require travel in the US.
Preferred Qualifications:
About Us
Infosys is a global leader in next-generation digital services and consulting. We enable clients in 50 countries to navigate their digital transformation.
With over three decades of experience in leading the systems and workings of global enterprises, we expertly steer our clients through their digital journey.
We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver outstanding levels of performance and customer delight.Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise, and ideas from our innovation ecosystem.
Infosys is an equal opportunity employer and all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, spouse of protected veteran, or disability.
#J-18808-Ljbffr