Job Description

Hi, We are having an opening for Manager IT-GRC at our Mumbai Location. Position: Manager Company: Sun Pharmaceutical Industries Ltd. Location: Mumbai Job Summary: As a Governance Risk and Compliance (GRC) Specialist, you will be responsible for strengthening cybersecurity governance and compliance program to ensure adherence with regulatory requirements and industry best practices. Areas of Responsibility: Develop comprehensive strategies and standard repeatable practices for governance, risk management, and compliance that meets industry standards, organizational needs, and necessary regulatory and compliance requirements. Design and built processes, procedures, guidelines considering industry standards and best practices. Identify and propose process improvements that positively impacts overall security posture. Direct the implementation, oversight, and contribute to the policies, procedures, and controls to mitigate risks and ensure regulatory adherence across all business operations. Understanding of Pharma Technology landscape Conduct regular audits and evaluations to monitor the effectiveness of risk management practices and recommend improvements as necessary to address potential risks. Update and maintain security risk register reflecting learnings and opportunities identified. Enhance existing controls framework, business impact analysis and business continuity plans. Facilitate the processes necessary to ensure that we have effective business continuity, incident response, disaster recovery, data protection and privacy. Partner with Human Resources, Legal, and Finance teams to ensure appropriate operational, technical, data privacy, and SOD controls are implemented and enforced. Act as the focal point for external auditor activity/assessments; driving accountability and efficiency across teams. Provide leadership and guidance in navigating complex regulatory landscapes, fostering transparency, and promoting a proactive approach to risk identification and mitigation. Lead and drive the Cybersecurity awareness programs across the organization Educational Qualification: BE/B.Tech, MCA/BCA Specific Certification: Security Certifications Preferred (Including but not limited to the following certifications): CISA, CISM, CRISC, ISO 27001, CGRC ISC2 Skills: Must be able to manage a team of resource and work independently. Communicate with business users and document requirements. Technical background with demonstrated skills in GRC. Good analytical and decision-making skills using data & experience. Good written & verbal - communication & presentation skills. Must have conflict resolution abilities. Teamwork. With effective teamwork, teams are more productive, deadlines are met, relationships with your team members are stronger and knowledge is shared. Problem solving. Willingness to travel Experience: 10-12 Years

foundit