Senior GRC Consultant - Standard Frameworks

IndiaFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page

Job Details

Experience
5+ years
Required Skills
Risk ManagementHIPAA

Requirements

  • 5+ years of experience in GRC/security consulting or ownership of internal compliance programs.
  • Proven hands-on experience delivering ISO 27001, SOC 2 Type I/II, and GDPR compliance initiatives.
  • Experience managing multiple client engagements simultaneously with strong ownership and accountability.
  • Deep knowledge of ISO 27001, SOC 2, and GDPR frameworks.
  • Working knowledge of additional frameworks such as PCI DSS, HIPAA, and ISO 42001 is a plus.
  • Experience using AI tools to improve efficiency, standardize documentation, and optimize compliance workflows.
  • Ability to translate technical and regulatory expertise into reusable templates, processes, and guided systems.
  • Strong understanding of service delivery operations, including pricing, utilization, margin management, and forecasting.
  • Excellent written and verbal communication skills, with confidence facilitating client workshops independently.
  • Strong judgment, problem-solving ability, and comfort working in ambiguous environments.
  • Preferred certifications include ISO 27001 Lead Auditor/Lead Implementer, CISA, or CISM.

Responsibilities

  • Lead delivery of standard-framework engagements, including ISO 27001 implementation and surveillance, SOC 2 Type I/II readiness, GDPR programs, PCI DSS compliance initiatives, gap assessments, control mapping, internal audits, policy reviews, and audit readiness support.
  • Manage multiple concurrent client engagements while maintaining high-quality standards, timelines, and customer satisfaction.
  • Develop and maintain reusable compliance assets, including templates, control-mapping libraries, workshop materials, checklists, and quality assurance frameworks.
  • Keep compliance playbooks updated based on evolving standards and regulatory requirements, including ISO 27001 updates, SOC 2 criteria changes, and GDPR guidance.
  • Expand framework capabilities into adjacent areas such as HIPAA, PCI DSS, and ISO 42001 based on business needs.
  • Support commercial initiatives by contributing to pricing models, service packaging, utilization planning, and delivery forecasting.
  • Partner with Sales, Solutions Engineering, and Customer Success teams to support technical validation, service adoption, and renewals.
  • Build AI-assisted compliance workflows, including structured assessments, control mapping processes, internal audit checklists, and guided delivery systems.
  • Establish quality standards, review checkpoints, and acceptance criteria for client deliverables.
  • Identify risks, scope changes, and ambiguous compliance requirements, escalating issues appropriately to protect delivery quality and customer outcomes.
View Full Description & ApplyYou'll be redirected to the employer's site
View details
Apply Now