Senior Risk Analyst

New
IndiaFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page

Job Details

Experience
Minimum of 6 years of experience in Governance, Risk, and Compliance (GRC), information security, enterprise risk management, or IT audit.
Required Skills
Risk ManagementData analytics

Requirements

  • Minimum of 6 years of experience in Governance, Risk, and Compliance (GRC), information security, enterprise risk management, or IT audit.
  • At least 4 years of hands-on experience building or significantly maturing risk management programs, including risk registers, scoring methodologies, and quantitative risk practices.
  • Strong knowledge of security and compliance frameworks, including SOC 2, ISO 27001, NIST CSF, CIS Controls, ISO 31000, ISO 27005, ISO 42001, and NIST AI RMF.
  • Demonstrated experience leveraging AI tools, automation platforms, or data analytics solutions.
  • Experience developing Key Risk Indicators (KRIs), quantitative risk models, and data-driven reporting frameworks.
  • Proficiency with GRC platforms such as Drata, Vanta, AuditBoard, ServiceNow GRC, or similar solutions.
  • Working knowledge of cloud environments (AWS, Azure, or GCP) and related security technologies.
  • Experience supporting security and privacy audits, including evidence collection and control walkthroughs.
  • Strong understanding of privacy regulations and data protection frameworks, including GDPR and CCPA/CPRA.
  • Familiarity with third-party risk management practices and vendor risk assessment methodologies.
  • Excellent analytical, documentation, and communication skills.

Responsibilities

  • Design, implement, and continuously mature a comprehensive enterprise risk management framework, including risk taxonomies, scoring methodologies, risk appetite definitions, and escalation processes.
  • Build and maintain the enterprise risk register as a dynamic operational tool, ensuring risks are accurately documented, assigned, tracked, and regularly updated.
  • Facilitate risk identification workshops with cross-functional stakeholders to uncover emerging risks and drive effective mitigation strategies.
  • Develop AI-assisted workflows to monitor threat landscapes, analyze risk trends, automate reporting processes, and enhance risk visibility across the organization.
  • Assess and manage risks related to artificial intelligence technologies, including model governance, privacy concerns, third-party dependencies, and regulatory compliance requirements.
  • Support third-party risk management activities, including vendor assessments, risk scoring, and alignment of external risks with enterprise risk frameworks.
  • Produce executive-level dashboards, reports, and risk summaries that translate technical findings into business impact and actionable recommendations.
  • Develop and monitor Key Risk Indicators (KRIs) and establish reporting mechanisms connected to live data sources for real-time risk insights.
  • Provide advisory support on process improvements, technology implementations, remediation initiatives, and security governance activities.
  • Partner with technical and business teams to embed risk management practices into day-to-day operations and strategic initiatives.
  • Contribute to audit readiness activities, evidence management, and compliance initiatives across security and privacy domains.
View Full Description & ApplyYou'll be redirected to the employer's site
View details
Apply Now