Vice President - IT (GRC)

Role: Lead GRC Governance, Risk & Compliance)

Job Title: Deputy Vice President / Vice President

Work Experience: 12 years +

Education: BE / B Tech / MCA

Department: Information Technology

Work location: Goregaon (East), Mumbai

Position Overview:

The Lead IT GRC will be responsible for managing the IT Governance, Risk, and Compliance framework to ensure alignment with organizational objectives, industry standards, and regulatory requirements. This role involves leading cross-functional teams, developing and implementing policies, identifying risks, and driving compliance initiatives while ensuring seamless communication with stakeholders.

Key Responsibilities:

1.Governance:

oEstablish and maintain IT governance frameworks aligned with industry best practices (e.g., COBIT, ITIL).

oCollaborate with leadership to ensure IT strategy supports business objectives.

oDefine and implement metrics to monitor IT performance and compliance.

2.Risk Management:

oDevelop and maintain the IT risk management framework, including identifying, assessing, and mitigating risks.

oConduct regular risk assessments, audits, and reviews of IT systems and processes.

oImplement incident response protocols and oversee risk mitigation strategies.

3.Compliance:

oEnsure compliance with regulatory and legal requirements prescribed by IRDAI

oLead internal and external audits, ensuring timely resolution of findings.

oDevelop and manage policies, procedures, and controls to address compliance gaps.

4.Team Leadership:

oProvide training and awareness programs to promote a culture of compliance and risk awareness.

oCollaborate with IT and business units to integrate GRC practices into daily operations.

5.Stakeholder Engagement:

oAct as the primary liaison between IT, legal, internal audit, and external regulatory bodies.

oPrepare and present GRC reports to senior management and the board.

oStay updated on emerging IT risks, regulatory changes, and best practices.

Qualifications:

•Bachelor’s degree in Information Technology, Cybersecurity, Business Administration, or related field.

•5+ years of experience in IT governance, risk management, and compliance

•Professional certifications such as CISM, CRISC are highly desirable.

•Experience with GRC tools and platforms - ServiceNow

•Excellent communication, leadership, and analytical skills.