Senior Risk Analyst
New
IndiaFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- Minimum of 6 years of experience in Governance, Risk, and Compliance (GRC), information security, enterprise risk management, or IT audit.
- Required Skills
- Risk ManagementData analytics
Requirements
- Minimum of 6 years of experience in Governance, Risk, and Compliance (GRC), information security, enterprise risk management, or IT audit.
- At least 4 years of hands-on experience building or significantly maturing risk management programs, including risk registers, scoring methodologies, and quantitative risk practices.
- Strong knowledge of security and compliance frameworks, including SOC 2, ISO 27001, NIST CSF, CIS Controls, ISO 31000, ISO 27005, ISO 42001, and NIST AI RMF.
- Demonstrated experience leveraging AI tools, automation platforms, or data analytics solutions.
- Experience developing Key Risk Indicators (KRIs), quantitative risk models, and data-driven reporting frameworks.
- Proficiency with GRC platforms such as Drata, Vanta, AuditBoard, ServiceNow GRC, or similar solutions.
- Working knowledge of cloud environments (AWS, Azure, or GCP) and related security technologies.
- Experience supporting security and privacy audits, including evidence collection and control walkthroughs.
- Strong understanding of privacy regulations and data protection frameworks, including GDPR and CCPA/CPRA.
- Familiarity with third-party risk management practices and vendor risk assessment methodologies.
- Excellent analytical, documentation, and communication skills.
Responsibilities
- Design, implement, and continuously mature a comprehensive enterprise risk management framework, including risk taxonomies, scoring methodologies, risk appetite definitions, and escalation processes.
- Build and maintain the enterprise risk register as a dynamic operational tool, ensuring risks are accurately documented, assigned, tracked, and regularly updated.
- Facilitate risk identification workshops with cross-functional stakeholders to uncover emerging risks and drive effective mitigation strategies.
- Develop AI-assisted workflows to monitor threat landscapes, analyze risk trends, automate reporting processes, and enhance risk visibility across the organization.
- Assess and manage risks related to artificial intelligence technologies, including model governance, privacy concerns, third-party dependencies, and regulatory compliance requirements.
- Support third-party risk management activities, including vendor assessments, risk scoring, and alignment of external risks with enterprise risk frameworks.
- Produce executive-level dashboards, reports, and risk summaries that translate technical findings into business impact and actionable recommendations.
- Develop and monitor Key Risk Indicators (KRIs) and establish reporting mechanisms connected to live data sources for real-time risk insights.
- Provide advisory support on process improvements, technology implementations, remediation initiatives, and security governance activities.
- Partner with technical and business teams to embed risk management practices into day-to-day operations and strategic initiatives.
- Contribute to audit readiness activities, evidence management, and compliance initiatives across security and privacy domains.
View Full Description & ApplyYou'll be redirected to the employer's site