Cyber Security – GRC for Technology (BDTS) function

Job description:

Governance, Risk and Compliance: To support in Governance, Risk and Compliance function for Technology (BDTS) function.

Regulatory advisories, alerts, questionnaire, circulars, communiques, releases, publications etc.

  • Knowledge of various regulatory advisories, alerts, questionnaire, circulars, communiques, releases, publications etc. from RBI, CSITE, NPCI, BSE, NSE, SEBI, CDSL, NSDL, NCIIPC, FIMMDA, MHA and others.- Reviewing and Understanding above for their applicability to Technology department (BDTS) and assigning them within internal stakeholders for compliance thereto.
  • Maintaining MIS of every above communication received from bank’s Compliance Department.
  • Follow up with internal stakeholders and gathering of artefacts/evidences to corroborating the regulatory ask in the said advisories, alerts, questionnaire, circulars, communiques, releases, publications etc.
  • Management of compliance and storing of artefacts / evidences for easy reference over the period.
  • Ensuring our department (BDTS) submissions to advisories, alerts, questionnaire, circulars, communiques, releases, publications etc. are within timelines, without any exceptions.

Monitoring and Compliance to Observations/Actionable under IT Examination, RBS RAR, RBI CSITE, Reg Communications and Audits

  • Ongoing tracking of open observations or actionable arose out of IT Examination, RBS RAR, RBI CSITE, Regulatory Communications and Audits.
  • Maintaining MIS of every above communication received from bank’s Compliance Department and updation on SharePoint.
  • Follow up with internal stakeholders and gathering of artefacts/evidences for those which are due for closure and submission with Compliance thereto before timelines, without any exceptions.
  • Management of compliance and storing of artefacts / evidences for easy reference over the period.
  • Gathering recent updates on progress of said actionable from internal stakeholders and proper documentation on SharePoint.
  • Monthly updates to Compliance on status of all open observations before timelines.

Management Updates – IT Strategy Committee, IT Steering Committee and Board Meeting

  • Summarization and Preparation of BDTS Risk, Governance and Compliance dashboards, which is outcome of above detailed tasks.
  • Required for Monthly IT Steering Committee and quarterly IT Strategy Committee and Board Meeting.
  • Management and documentation of above agendas and meeting for easy reference over the period or as required by regulators.

Qualification:

  • BE (any Stream),
  • Certificates like ISO 27001 LA, ISO 27001 LI, CISA will be added advantage
  • Should be aware of IT infrastructure , Server and other devices management skills and related risks

Note: we are looking to hire candidates willing to join us Immediately or in one month notice