IT Risk & Compliance Specialist

Location:

Bengaluru, Karnataka, India

Job ID:

R0053290

Date Posted:

2024-11-22

Company Name:

HITACHI ENERGY TECHNOLOGY SERVICES PRIVATE LIMITED

Profession (Job Category):

General Management

Job Schedule: 

Full time

Remote:

No

Job Description:

Mission Statement:

As Risk & Compliance Specialist, your mission is to keep Information Technology risks and compliance issues away from Hitachi Energy. To accomplish this mission, you will liaise with internal customers and subject matter experts across the company. You will be responsible to govern IT risk and compliance actions portfolio and steer IT departments risk exposure optimization. You will contribute to ensuring proper data protection and IT risk governance for the company.

Your Responsibilities:

• Act as champion for specific IT risk and compliance categories in regulatory, operational, etc.

  
  

• Facilitate IT risk and compliance actions portfolio reviews with internal customers and experts.

  
  

• Ensure prompt completion of all agreed actions needed for the risk exposure optimization.

  
  

• Maintain actions portfolio related documentation in risk register, meeting minutes & task log

  
  

• Support internal customers in data collection, risk analysis, control activities & risk response.

  
  

• Manage continuous improvements of the IT risk and compliance management framework.

  
  

• Drive efforts to enable process automation (e.g. automated controls, data quality assurance).

  
  

• Review and prioritize risk assessment requests, control attestations and indicator results.

  
  

• Living Hitachi Energy’s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business.

  
  

Your Background:

• Bachelor’s or Master’s degree in Information Management Systems or Business Administration.

  
  

• 5+ years of working experience in areas of IT Risk Management, IT Audit, Compliance.

  
  

• Comprehensive understanding of Unified Control Framework (UCF) with regards to IT related controls.

  
  

• Working knowledge of ServiceNow Integrated Risk Management (IRM / GRC) applications.

  
  

• Familiarity with data protection and risk management best practices, laws and regulations.

  
  

• Ability to assess Information Technology risks together with cross-functional teams.

  
  

• Ability to communicate effectively with technical and non-technical audiences.

  
  

• Proficiency in both spoken & written English language is required.