Senior Security Engineer, GRC - India

New Delhi, Delhi, India

Apply with AI Apply

Not SpecifiedCompensation

Senior (5 to 8 years)Experience Level

Full TimeJob Type

UnknownVisa

Information Technology, Software DevelopmentIndustries

Requirements

Candidates must have 5+ years of experience in a GRC, information security, or compliance-focused role and experience writing Golang or an equivalent language. Proven experience in designing, implementing, and managing GRC programs, demonstrated experience with risk assessments, audit management, and policy development, and familiarity with various regulations and data privacy laws such as GDPR and CCPA are required. Strong analytical, problem-solving, and project management skills, with the ability to manage multiple projects and priorities simultaneously, are essential. Excellent written and verbal communication skills are also necessary, along with fluency in English. CISSP, CRISC, or CISM certifications are considered a bonus.

Responsibilities

The Senior Security Engineer, GRC will ensure GRC objectives align with the organization’s business strategy and risk appetite, and ensure compliance with regulatory and security frameworks like ISO 27001, SOC 2, PCI DSS, GDPR, and DORA. Responsibilities include developing and implementing processes for continuous compliance monitoring and evidence collection, coordinating and facilitating internal and external audits, and maintaining the risk register. The role also involves collaborating with business units and technical teams to develop risk mitigation strategies and controls, and tracking/managing audit findings and control gaps to drive remediation efforts.

Skills

GRC

Information Security

Compliance

ISO 27001

SOC 2

PCI DSS

GDPR

DORA

Risk Assessment

Audit Management

Policy Development

Golang

JumpCloud

Cloud-based identity and access management services

About JumpCloud

JumpCloud offers cloud-based directory services that help businesses manage user identities and access to IT resources like applications, networks, and devices from a single platform. It serves a variety of clients, including small and medium-sized businesses and larger enterprises, particularly in sectors that require strong IT security. The company operates on a subscription model with different service tiers, allowing clients to choose features that fit their needs and budgets. JumpCloud's goal is to simplify identity management and access control, enhancing security and operational efficiency for its users.

Louisville, ColoradoHeadquarters

2012Year Founded

$371.3MTotal Funding

SERIES_FCompany Stage

Enterprise Software, CybersecurityIndustries

501-1,000Employees

Benefits

Health Insurance

Dental Insurance

Vision Insurance

Life Insurance

Disability Insurance

Health Savings Account/Flexible Spending Account

Unlimited Paid Time Off

401(k) Company Match

Remote Work Options

Risks

Increased competition from established IAM providers like Okta and Microsoft.

Rapid technological advancements may strain JumpCloud's resources to keep up.

Economic uncertainties could impact spending on IAM solutions, affecting revenue.

Differentiation

JumpCloud offers a unified platform for identity and device management.

The company provides Zero Trust security models for remote and hybrid work environments.

JumpCloud's SaaS Management capabilities address the rising importance of cloud-based applications.

Upsides

The global IAM market is projected to grow at a CAGR of 13.1% until 2030.

Increased demand for Zero Trust models aligns with JumpCloud's offerings.

Growing need for SME cybersecurity solutions supports JumpCloud's market presence.

Land your dream remote job 3x faster with AI

Try Jobo Free