Governance & Risk and Compliance Analyst

1 Day ago • 4-5 Years

Job Summary

Job Description

This is a hybrid role at Tekion, focusing on Risk and Compliance management, requiring a deep understanding of SaaS companies and frameworks like ISMS, PIMS, SOC 1 & SOC 2, PCI DSS, GDPR, and CPRA. Responsibilities include vendor risk assessment, due diligence, documentation and reporting, policy development, training and awareness, collaboration across departments, and responding to security questionnaires. The role involves managing the Information Security and Privacy framework, ensuring adherence to industry best practices and regulatory requirements. The role requires strong knowledge of information security, cybersecurity, control testing, network security and infrastructure assessments.
Must have:
  • Knowledge of information security and cybersecurity.
  • Bachelor's degree in a related field.
  • 4-5 years of experience in Risk Management.
  • 2+ years of experience in a team management role.
  • Experience in assessing cloud and application security.
  • Good knowledge of ISO 27001, SOC 1, SOC 2 etc.
  • Certified CRiSP/ISO 27001/ISO 27701 Lead Auditor.
  • Excellent written and verbal communication skills.

Job Details

About Tekion:

Positively disrupting an industry that has not seen any innovation in over 50 years, Tekion has challenged the paradigm with the first and fastest cloud-native automotive platform that includes the revolutionary Automotive Retail Cloud (ARC) for retailers, Automotive Enterprise Cloud (AEC) for manufacturers and other large automotive enterprises and Automotive Partner Cloud (APC) for technology and industry partners. Tekion connects the entire spectrum of the automotive retail ecosystem through one seamless platform. The transformative platform uses cutting-edge technology, big data, machine learning, and AI to seamlessly bring together OEMs, retailers/dealers and consumers. With its highly configurable integration and greater customer engagement capabilities, Tekion is enabling the best automotive retail experiences ever. Tekion employs close to 3,000 people across North America, Asia and Europe.

This is a hybrid role comprising Risk and Compliance management duties. This requires an in-depth understanding of SaaS companies and ISMS, PIMS, SOC 1 & SOC 2 PCI DSS, GDPR, and CPRA frameworks. We're looking for talented professionals who love challenges, push boundaries, and are passionate about successfully managing the Information Security and Privacy framework.

Location: Chennai only

Responsibilities:

  • Vendor Risk Assessment: Conduct thorough due diligence on potential third-party vendors to assess their cyber security, Data privacy, operational capabilities, and compliance with legal and regulatory requirements.
  • Due Diligence: Perform due diligence reviews of vendors, including reviewing security policies, audit reports, and compliance documentation.
  • Documentation and Reporting: Maintain comprehensive documentation of risk assessments, findings, processes, and recommendations.
  • Prepare reports for management and stakeholders on third-party risk status including critical data breaches, security incidents, and service disruptions.
  • Policy Development: Assist in the development and implementation of third-party risk management policies and procedures in line with industry best practices and regulatory requirements.
  • Training and Awareness: Provide training and support to internal teams on third-party risk management practices and the importance of vendor assessments.
  • Collaboration: Collaborate with various departments, including IT, legal, compliance, and procurement, to ensure a cohesive approach to third-party risk management. Support internal and external audits related to vendor cybersecurity.
  • Security Questionnaire Response: Responds to information security-related questions, RFP's, RFI's SIG, and inquiries using established information security tools and procedures.

Requirements:

  • Strong knowledge of information security and cybersecurity, including control testing, network security, and infrastructure assessments.
  • Bachelor's degree in information technology, Computer Science, or a related/applicable field.
  • Have 4-5 years of work experience related to Risk Management, procurement, and third-party risk management.
  • 2+ years of experience in a team management role.
  • Experience in assessing cloud security and application security for third-party vendors.
  • Good knowledge of ISO 27001 ISO 27701 SOC 1 SOC 2 CPRA, GDPR, and PCI DSS.
  • Certified CRiSP/ISO 27001/ISO 27701 Lead Auditor.
  • Excellent written and verbal communication skills.

Tekion is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, victim of violence or having a family member who is a victim of violence, the intersectionality of two or more protected categories, or other applicable legally protected characteristics. 

For more information on our privacy practices, please refer to our Applicant Privacy Notice here.

Similar Jobs

Zscaler - Staff Network Engineer

Zscaler

(Remote)
9 Hours ago
Zscaler - Principal Engineer (ZDX Platform)

Zscaler

San Jose, California, United States (Hybrid)
9 Hours ago
Google - Software Engineering Manager II

Google

Kirkland, Washington, United States (On-Site)
2 Days ago
Zscaler - Sr Staff Software Development Engineer

Zscaler

Bengaluru, Karnataka, India (Hybrid)
9 Hours ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Britive - Software Engineer (Cloud)

Britive

(Remote)
1 Day ago
Google - Network Security Engineer

Google

Austin, Texas, United States (On-Site)
3 Days ago
Google - Workspace Engineer

Google

Bengaluru, Karnataka, India (On-Site)
2 Weeks ago
Zscaler - Manager, Site Reliability Engineering

Zscaler

McLean, Virginia, United States (Hybrid)
9 Hours ago
ION - Senior DevSecOps Engineer, Italy

ION

Pisa, Tuscany, Italy (On-Site)
6 Months ago
Microsoft - Software Engineer II/Senior Software Engineer - CTJ - POLY

Microsoft

Redmond, Washington, United States (On-Site)
2 Weeks ago
Axinous - Associate, Strategic Finance/Investor Relations

Axinous

Hyderabad, Telangana, India (Remote)
1 Month ago
Zscaler - Sr. Staff Software Development Engineer

Zscaler

Bellevue, Washington, United States (Hybrid)
9 Hours ago
Google - Senior Cyber Security Consultant

Google

Sydney, New South Wales, Australia (On-Site)
1 Week ago
PwC - Senior Security Engineers (Entra ID/AD)

PwC

Sofia, Sofia City Province, Bulgaria (On-Site)
7 Months ago

Get notifed when new similar jobs are uploaded

Jobs in Chennai, Tamil Nadu, India

NVIDIA - Senior CAD Engineer

NVIDIA

Bengaluru, Karnataka, India (Hybrid)
1 Month ago
Techstar group - Dotnet Developer

Techstar group

Chennai, Tamil Nadu, India (On-Site)
1 Day ago
Enverus - Senior Analyst, Research (Intelligence)

Enverus

Bengaluru, Karnataka, India (On-Site)
1 Day ago
Capgemini - Technical Architect

Capgemini

Bengaluru, Karnataka, India (On-Site)
1 Day ago
Oriserve - Senior DevOps Engineer (4+ Yrs exp)

Oriserve

Noida, Uttar Pradesh, India (On-Site)
6 Months ago
Glean - Business Development Representative

Glean

Bengaluru, Karnataka, India (On-Site)
8 Hours ago
Fluence - Senior Mechanical Engineer – FEA

Fluence

Bengaluru, Karnataka, India (Hybrid)
3 Months ago
Google - Site Reliability Engineer, Databases

Google

Bengaluru, Karnataka, India (On-Site)
2 Weeks ago
Zscaler - Escalation Engineer

Zscaler

Bengaluru, Karnataka, India (Hybrid)
9 Hours ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Bengaluru, Karnataka, India (On-Site)

United States (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

View All Jobs

Get notified when new jobs are added by Tekion Corp

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug