Security Risk & Control Consultant (SRCC) With GRC

Maxima Consulting Inc

Security Risk & Control Consultant (SRCC)

The Security & Compliance (S&C) Competency Centre (CC) Lead is responsible for supporting the following:

Education

Graduate degree plus recognized information security certifications like CISSP, CCSP, SSCP, CRISC, GSEC, etc. are good to have

Project Review and Technical Advice

- Review all new high-risk projects; new technical designs; for Information risks and advise on suitable controls and mitigations at early stages of the program.

- Lead the S&C Analyst for specific technology and advice on the Information security for their projects.

- Offer advice to Shell and suppliers to assist in resolving questions and issues around how to manage risk

- Provide Subject Matter Expertise for projects and business stakeholders, in combination with the Improvement Program.

- Work with the architecture community to review new technology and architecture innovations.

Risk Management and Mitigation

- Assess and classify all potential business and infrastructure information risks.

- Execute, with suppliers, risk analyses on IT application/services.

- Develop and socialize our overall risk profile and action plans to mitigate risks

- Review and recommend approval project charters.

- Facilitate smooth conduct of Risk Assessment (including Legal & Regulatory) on Applications, Network& Systems

- Perform end to end Security Assessment on vendor offerings – New/Leveraging existing (SAAS / PAAS/IAAS) services including integration with Shell environment.

- Translate Technical, legal and Regulatory Compliance obligations into a cohesive collection of Security Controls and provides the respective stakeholders with the IRM requirements and its implementation methodologies.

- Support in development of tooling to support IRM processes and ensuring this is fit for purpose.

- Actively participate in S&C team and community meetings, representing S&C and Business interests in other CC forums.

- Support during Internal /External Audit

• Experience

  7 - 13 Years

• No. of Openings

  25

• Education

  Diploma, Any Bachelor Degree

• Role

  Security Risk & Control Consultant

• Industry Type

  IT-Hardware & Networking / IT-Software / Software Services

• Gender

  [ Male / Female ]

• Job Country

  India

• Type of Job

  Full Time

• Work Location Type

  Work from Office