Specialist - GRC & Compliance

Role - Specialist GRC & Compliance

Location - Chennai

Are you a person who thrive on fearlessly experimenting, seizing opportunities, and pushing boundaries to turn our vision into reality.

Are you experienced in evaluating, ever evolving compliance requirements, and conducting gap assessments, documenting compliance related governance documents (policies, standards etc.) and experienced in third-party compliance audits.

Key responsibilities

• Lead risk management program, supporting planning and implementing compliance and risk assessment activities.
• This includes exception handling, Business Impact Assessment (BIA), and Business Continuity Planning (BCP).
• Security documentation governance - create, review, revise, and publish documents. Foster and sustain a positive security culture through security awareness initiatives.
• Support the development of the GRC framework and ensure its proper operation; define and formulate the necessary processes related to GRC.
• Review risk exceptions per security processes, maintain risk register, and liaise with business units for tracking and closure.
• Support emergency security response in the event of a company-wide security incident or discovery of a significant security risk.
• Build, review, and sustain information security metrics program with periodic dashboards and reports to management.
• Serve as subject matter expert on security policy, processes, standards and best practices.

Desired Skills and Experience

• Excellent communication and reporting skills.
• Information Security Specialist GRC should have extensive experience in the coordination of program.
• Perform risk assessments on internal systems, ITGC, ITAC, process, applications, vendors, outsourced agencies, third parties, partners and track open findings with business units for remediation and closure.
• Experienced in cloud security assessments and defining security controls.
• Ability to assess environments against a wide variety of security, privacy, and compliance frameworks - ISO27001, 27701, 22301, NIST CSF, SOC2.
• Experienced in third-party risk assessment - program management, reviews, and closure.
• Ability to handle end-user queries on information security matters independently. Hands-on experience in security GRC workflow process automation tools.
• Familiarity and experience in GDPR, SOX, PCI-DSS, SOC2, ISO 27001, Indian Digital Protection Data Protection Act and NIST Cybersecurity Framework.

Experience

• 5 to 10 yrs.

Education

• BE/BTech
• Good to have graduates in Information security or any certifications like CISM/CRISC

Who We Are?

Vivriti is a young, dynamic, and spirited institution that boasts of a large appetite for success through its vision of creating the largest and most valuable platform for enterprise finance. The word ‘Vivriti’ means progress or development and speaks volumes about our passion to continuously strive for results that add value to our ecosystem. At Vivriti, we are mission driven, challenging the status quo each day, reinventing the Indian debt market space and creating an industry in itself.

Over the last four years, the group that consists of two companies – Vivriti Capital, a unique enterprise fintech NBFC, and Vivriti Asset Management, India’s fastest growing digital alternate debt fund manager, has built significantly on its vision. Vivriti presently manages assets in excess of US $ 1.2 billion, has offices in Chennai, Mumbai, and Bangalore, and consists of a high-powered team of 350+.

Why Join Us?

The force driving the business prowess of Vivriti is, the powerful Talent Engine. We are a high energy and supremely passionate bunch of individuals. This is a diverse group of people, who would be best in what they do, are diverse and inclusive, are collaborative and extremely hardworking. Indeed, a very inspiring peer group. This is a team with a shared goal of reshaping the Indian Fixed Income market and change lives of millions of people through our work.

We have a keen eye for great Talent, have an appreciation for potential, and an environment which facilitates hyper-performance. Vivriti is known to present with the platform to excel for those who have a desire to reach great heights in their career. We nurture our Talent with great care, encourage ambition, we are compassionate in your failures and cheer your successes. We’re proud of our collaborative culture; everyone is ready to lend a helping hand, whether it’s your first day on the job or your thousandth.

Our Rewards mechanisms are aggressive. High Performance fetches non-linear Rewards. In addition to the fixed component and variable pay, we ensure long term wealth creation for our critical employees through employee stock options. Vivriti is the first tech focused NBFC and asset manager that has provided ESOP liquidity in the last 15 years.

We invest in our employees through developmental programs, Professional Development Allowances and Education Grants.

Our Benefits are better than the best. To list a few below –

• Medical Care, Life and Personal Accident Insurance, Critical illness cover.
• Interest free loans of up to INR 10 Lacs, with no questions asked.
• Promoting health and wellness at the office with a well-equipped sports and recreation room, regular fitness challenges and organizing leagues of sports events.
• Caring for your health nutritious food, fruits served round the clock, variety of beverages, etc.
• Ensuring maximum fun environment through Vivriti Premier League – a 10-month long series of sporting contests, recreation activities on the floor, cultural celebrations, etc.

Life at Vivriti: https://www.youtube.com/watch? v=_RVPWhJg1Fo

Technology Team at Vivriti: https://www.youtube.com/watch? v=auenzZFTSZE

Founder’s Talk: https://www.youtube.com/watch? v=pUxGWQMVj3U