Senior GRC Consultant - Standard Frameworks
IndiaFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- Risk ManagementHIPAA
Requirements
- 5+ years of experience in GRC/security consulting or ownership of internal compliance programs.
- Proven hands-on experience delivering ISO 27001, SOC 2 Type I/II, and GDPR compliance initiatives.
- Experience managing multiple client engagements simultaneously with strong ownership and accountability.
- Deep knowledge of ISO 27001, SOC 2, and GDPR frameworks.
- Working knowledge of additional frameworks such as PCI DSS, HIPAA, and ISO 42001 is a plus.
- Experience using AI tools to improve efficiency, standardize documentation, and optimize compliance workflows.
- Ability to translate technical and regulatory expertise into reusable templates, processes, and guided systems.
- Strong understanding of service delivery operations, including pricing, utilization, margin management, and forecasting.
- Excellent written and verbal communication skills, with confidence facilitating client workshops independently.
- Strong judgment, problem-solving ability, and comfort working in ambiguous environments.
- Preferred certifications include ISO 27001 Lead Auditor/Lead Implementer, CISA, or CISM.
Responsibilities
- Lead delivery of standard-framework engagements, including ISO 27001 implementation and surveillance, SOC 2 Type I/II readiness, GDPR programs, PCI DSS compliance initiatives, gap assessments, control mapping, internal audits, policy reviews, and audit readiness support.
- Manage multiple concurrent client engagements while maintaining high-quality standards, timelines, and customer satisfaction.
- Develop and maintain reusable compliance assets, including templates, control-mapping libraries, workshop materials, checklists, and quality assurance frameworks.
- Keep compliance playbooks updated based on evolving standards and regulatory requirements, including ISO 27001 updates, SOC 2 criteria changes, and GDPR guidance.
- Expand framework capabilities into adjacent areas such as HIPAA, PCI DSS, and ISO 42001 based on business needs.
- Support commercial initiatives by contributing to pricing models, service packaging, utilization planning, and delivery forecasting.
- Partner with Sales, Solutions Engineering, and Customer Success teams to support technical validation, service adoption, and renewals.
- Build AI-assisted compliance workflows, including structured assessments, control mapping processes, internal audit checklists, and guided delivery systems.
- Establish quality standards, review checkpoints, and acceptance criteria for client deliverables.
- Identify risks, scope changes, and ambiguous compliance requirements, escalating issues appropriately to protect delivery quality and customer outcomes.
View Full Description & ApplyYou'll be redirected to the employer's site