×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Business Analyst

GRC & ISO Specialists

Job in 400001, Mumbai, Maharashtra, India
Listing for: Kirtane & Pandit
Contract position
Listed on 2026-03-02
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Business Analyst
Job Description & How to Apply Below
Position: GRC & ISO Specialists (2-10 years)
Job Title:

GRC & ISO Specialists (2-10 years)
Company:
Kirtane & Pandit LLP

Location:

Mumbai (Dadar, On site)

Role Overview
Kirtane & Pandit LLP is seeking experienced GRC & ISO Cybersecurity Professionals to join its Cybersecurity Division. The role involves designing, implementing, and assessing Governance, Risk & Compliance (GRC) frameworks and leading ISO certification engagements for clients across sectors.

Key Responsibilities

Governance, Risk & Compliance (GRC):

• Design, implement, and assess GRC frameworks aligned with business and regulatory requirements

• Conduct IT risk assessments, control gap assessments, and maturity assessments

• Support clients in developing cybersecurity policies, procedures, and standards

• Perform third-party/vendor risk assessments

• Support regulatory and compliance initiatives (e.g., RBI, SEBI, IRDAI, DPDP Act, etc.)

ISO & Standards Implementation:

• Lead and execute ISO certifications and audits such as:
o ISO/IEC 27001 (ISMS)
o ISO 22301 (BCMS)
o ISO 27701 (Privacy)
o ISO 20000-1 (ITSM)
– good to have

• Conduct internal audits, readiness assessments, and surveillance audits

• Support clients through certification and recertification cycles

• Coordinate with certification bodies and external auditors

Client & Project Management:

• Interact with client stakeholders for requirement gathering and reporting

• Prepare risk assessment reports, audit reports, and management dashboards

• Manage multiple client engagements and ensure timely delivery

• Provide advisory recommendations and remediation roadmaps

Required

Skills & Qualifications

• Bachelor’s degree in IT, Computer Science, Cybersecurity, or related field

• 2-10 years of experience in GRC, ISO implementation, or cybersecurity consulting

• Strong understanding of:
o Information Security & Risk Management
o ISO 27001 controls and risk treatment methodology
o Cybersecurity governance frameworks

Hands-on experience in ISO audits and documentation Preferred Certifications (One or more):
• ISO/IEC 27001 Lead Implementer / Lead Auditor

• CISA / CRISC / CISSP (preferred)

• CEH or equivalent cybersecurity certifications (good to have)

Key Competencies

• Strong analytical and documentation skills

• Client-facing and stakeholder management abilities

• Good communication and presentation skills

• Ability to work independently and in teams

Attention to detail and structured approach to problem-solving
Position Requirements
10+ Years work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search