Risk Compliance and Governance Analyst - Montréal, Canada - Wipro Limited

Wipro Limited

Verified Company

Montréal, Canada

3 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Montreal, Canada

Tech Hiring

Job Description:

Wipro Limited (

NYSE:
WIT,

BSE:
507685,

NSE:
WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs.

We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help clients realize their boldest ambitions and build future-ready, sustainable businesses.

A company recognized globally for its comprehensive portfolio of services, strong commitment to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries.

We deliver on the promise of helping our customers, colleagues, and communities thrive in an ever-changing world.
-
A PROUD HISTORY OF OVER 75 YEARS:

FY22 REVENUE 10.

4 BN USD:
-
WE'RE PRESENT IN 66 COUNTRIES:

OVER 1,400 ACTIVE GLOBAL CLIENTS

JOB DESCRIPTION:

Demonstrates thorough knowledge and/or a proven record of success in:

Performing vendor security assessments, including site assessments.
Performing security control reviews across security domains, both physical and logical.
Performing control reviews against industry standards or regulations like ISO 27001, NIST, GDPR, etc. and against master service agreements/contracts.
Defining control requirements and test procedures.
Documenting/Generating compliance/gap assessment report.
Identify gaps, evaluate risk, provide risk recommendations and create action plans.

Issue management

Identification, tracking and coordination to closure.
Performing rootcause analysis/investigations for the identified issues/gaps.
Facilitating/Supporting external audits.
Conduct security awareness sessions (both generic and issuebased).

Demonstrates thorough abilities and/or a proven record of success in:

Supporting client engagements that identify and address client needs;
Facilitating and leading client discussions and meetings;
Assisting with engagement management activities;
Preparing concise and accurate documents, leveraging and utilizing MS Office, Google Suite and Power BI to complete related project deliverables;
Utilization of common GRC platforms such as Archer, ServiceNow, etc.
Assisting with the creation and maintenance of project deliverables as needed;
Providing candid, meaningful feedback in a timely manner to team members where necessary;
Keeping managers and engagement leadership informed of progress and issues; and,
Designing KRIs/KPIs and metrics to build risk reports for management.
Plan engagement objectives, strategize to comply with professional standards, and mitigate risks inherent in the engagement
Demonstrate excellent project management skills, promote teamwork and individual accountability with engagement team members, and use available technology, tools, and Information Security assets to enhance the effectiveness of deliverables and services

Technical "must-have" Skills:

Strong knowledge and experience NIST, ISO, security best practices as relates to Vendor security assessments.
Familiarity with Information Security domains and related controls and solutions/tools
Compliance testing and Control test procedure creation and updates
Compliance reports, including risk identification and remediation plans.

Requirements:

Bachelor's degree in Computer or Information Security with minimum 3 7 years' experience in information security and vendor security assessments, regulatory/standards compliance.
GRC Process

Any complaints or concerns regarding unethical/unfair hiring practices should be directed to our Ombuds Group at

We are an Equal Opportunity Employer.

All qualified applicants will receive consideration for employment without regard to race, color, caste, creed, religion, gender, marital status, age, ethnic and national origin, gender identity, gender expression, sexual orientation, political orientation, disability status, protected veteran status, or any other characteristic protected by law.