IRM Compliance and Assurance Advisor

You must Sign In before continuing to the company website to apply.

Smart SummaryPowered by Roshi

Coordinate and oversee IT and digital solution Assurance for the enterprise. Single contributor with a broad range of stakeholders. Coordinate cross-functional teams and execution of assurance queries. Maintain assurance knowledge base and Supplier Assurance Process. Demonstrate alignment with business objectives.

Where You Fit In

This role reports to the Supplier Assurance Manager and oversees the Assurance of IT and digital solutions for the enterprise, coordinating assurance efforts across LoD1/LoD2 and LoD3. Also, you are a single contributor with no direct reports yet with a broad range of stakeholders across LoDs.

What is the Role

As the Assurance Advisor, you will coordinate and will be part of cross-functional teams that will support, execute and ensure the activities are working with your peers across LoD1/LoD2 and LoD3. You will be end-to-end accountable for execution assurance queries arising from LoD1 and LoD3.
In cases, where such requests will turn into full-fledged audits, facilitate the execution of audit activities. Oversee remediation activities, by embracing the power of market standard assurance.
Additional Accountabilities include:
End-to-end accountability for timely execution of assurance activities
Act as the functional specialist for IDT space responding to assurance queries coming from LoD1/LoD3;
Work hand in hand with BIRMs, IDT community and business orchestrating the execution of assurance queries from LoD1 and LoD3 stakeholders;
Keep track of assurance queries ensuring timely execution;
Work with natural teams across IDTMs, BIRMs and SOMs ensuring timely and sufficient responses to SIA queries.
Reviewing and improving the response methodology for external queries with respect to IRM.
Monitor the accuracy and validity of the Assurance knowledge base to ensure information maintained is not redundant.
Maintain oversight of the established Supplier Assurance Process and work towards maturity of the overall process.
Provide periodic updates to leadership to identify trends in requests from external sources and demonstrate alignment with business objectives.

What We Need From You

Graduate with a Bachelor's Degree with a minimum of 5 years of working experience in audit function
Has the ability to balance IRM, IDT and customer needs and standards considering risk and affordability to the Business as well as business impact
Has knowledge & relevant experience with industry-recognized standards and practices i.e., ISO, COBIT, NIST
Ability to interface with different stakeholder groups across LoDs and negotiating skills with all levels of staff
Good to have certifications like CISM, CISA, and CRISC
Good to have knowledge of PentTrust toolset and have security rating experiences
Display excellent communication and influencing skills
Display analytical and problem-solving skills
Be proactive and self-motivated

Set alert for similar jobsIRM Compliance and Assurance Advisor role in Bengaluru, India

Company

Shell

Job Posted

10 months ago

Job Type

Full-time

WorkMode

On-site

Experience Level

3-7 Years

Related Jobs

Senior Risk and Control Advisor

Shell

Bengaluru, Karnataka, India

Posted: 10 months ago

Where you fit in The Information Risk Management function is accountable for Information Risks and Information Security in the RDS Group as an independent function within the IDT function. With more than 45,000 sites in around 80 countries, Shell is the world’s largest mobility retailer and one of the largest single-branded retailers of any kind on the planet. Retail is the face of Shell, touching the lives of 30 million customers every single day. Serving all our customers is only possible if they trust Shell. Most customers use their credit card to pay for Shell products. It is our job to continue to earn the trust of our customers by ensuring credit card transactions are safe and secure. The IRM PCI team provides assurance that all required controls are in place to meet the payment card industry (PCI) requirements. What’s your role Act as the functional specialist for IT Information Risk Management (IRM) within the Retail Class of Business (COB) Proactively review Shell’s information security and related risks, threats and vulnerabilities, legal and regulatory and Payment Card Industry (PCI) compliance Support in development of tooling to support IRM and PCI processes and ensuring this is fit for purpose Active participation in the Assurance and Architecture level discussions in the engagements Ensure and support that PCI Attestations of Compliance (AoC’s) and Reports on Compliance (RoC’s) are created and reviewed where relevant. This includes supporting Market Self-Assessment Questionnaires and external assessments where relevant Actively participate in IRM team and community meetings, representing IRM and Business interests in applying setting standards and policies for the Group and the businesses, leading to a fit for purpose, evergreen IRM framework Support maintenance and development of the PCI Control Framework and related processes and procedures What we need from you Minimum 10 years in IRM or security functions, preferably aligned with the IT control framework best practices and risk management related to PCI Knowledge in PCI DSS 3.2.1 or 4.0 Certification in ISO27001, PCI professional (PCIP) or PCI ISA/QSA Bachelor's Degree related to IT or equivalent Good understanding of, and experience with Information Risk Management, Audit (internal and external), and Business (IT) Controls Advanced understanding of internal and external IT security standards, PCI standards and relevant legal compliance aspects Robust understanding of, and solid experiences with the impact of IRM on application development and operations as well as the IT Infrastructure Solid understanding of Downstream and Retail business processes Ability to balance IRM/PCI needs and standards in light of risk and affordability to the Business as well as business impact Ability to promote high performance teams, working with inclusiveness and cultural diversity, across organizational boundaries Ability to interface with different groups (Third parties, Business and IT) internal and external to IT (security) and to network globally across Group businesses, as well as with external groups Technical knowledge & relevant experience in security domains /technologies related to Infrastructure/Network security, Identity and Access Management, Business Impact Assessment, Application security, Data Leakage Prevention, End Point Protection, Web filtering technologies, Proxies and firewalls, Vulnerability Assessment / Penetration Testing, or Cloud security.

Business Compliance Advisor

ExxonMobil

Bengaluru, Karnataka, India

Posted: a year ago

What role you will play in our team   The PE/PP Business compliance Advisor is responsible for engaging with EMPS Sales and Marketing & Technology functions to assess and develop Safety Data Sheets (SDS), Product Regulatory Statements, & related Chemical Management information to support our customers and maintain compliance across the markets and segments we operate.  The support provides our employees and customers in the safe cradle-to grave handling of our products as well as compliance with the Corporate Product Safety Policy and regulations in the countries in which we do business.  In addition, the BCA provides insight to the rapidly evolving regulatory frameworks to the business lines to inform product design and marketing strategies.   What you will do Manages Safety Data Sheets within the PE/PVE portfolio- Coordinates authoring, ensuring composition is accurate and reviews and finalize SDS. Responsible for providing regulatory compliance statements required by customers to support sensitive end use applications (SEUS)  Aligns with product line on new/revised product regulatory statements Leads product determinations Leads development of cross functional communication to inbound customer regulatory and marketing compliance questions. Evaluate and refine test statements from SEUS team to be shared with customers Coordinate REACH volume tracking process Ensure compliance for registered substances On-going monitoring to proactive react/register new substances/bands as warranted Assess impact to compliance strategies of proposed material/supplier/formulation changes  Validate final product composition against compliance strategies Responsible for reviewing and recommending actions in response to proposed management of change requests Develops and informs business of recommended product design choices to positively position finished product in the evolving regulatory framework inclusive of sustainability initiatives/targets About you Skills and Qualifications:   Bachelors of Science or Master of Science degree in Chemistry, Toxicology, Engineering, or other science-based discipline Minimum 3 years of experience in petrochemical, refinery, or R&D laboratories, or equivalent experience in product stewardship, industrial hygiene, or chemical safety function. Strong English communication skills Familiarity with common software including MS Excel, Word, PowerPoint and ability to learn additional software Self motivated with ability to work independently and with global teams to meet customer needs Well organized with attention to detail and concern for accuracy   Preferred Qualifications/Experience   Chemical or petroleum industry Product Stewardship Compliance experience strongly preferred. REACH dossier development, submission and compliance experience preferred. Petrochemical laboratory, quality control, manufacturing experience preferred. Familiarity with regulations for Chemical Classification and Labelling and Product Transportation Classification Your benefits An ExxonMobil career is one designed to last. Our commitment to you runs deep: our employees grow personally and professionally, with benefits built on our core categories of health, security, finance and life. We offer you:  Competitive compensation  Medical plans, maternity leave and benefits, life, accidental death and dismemberment benefits  Retirement benefits  Global networking & cross-functional opportunities Annual vacations & holidays Day care assistance program Training and development program Tuition assistance program Workplace flexibility policy Relocation program Transportation facility Please note benefits may change from time to time without notice, subject to applicable laws. The benefits programs are based on the Company’s eligibility guidelines. 

IT Compliance Specialist

Thermo Fisher Scientific

Bangalore Urban, Karnataka, India

Posted: 10 months ago

Key Responsibilities: Implement, upgrade, and support software development Cycle while ensuring compliance with ISO 9001:2015, ISO 27001:2013, GxP and with Corporate Guidelines.   Mature, administer, and maintain the Quality Management System (QMS) and Information Security Management System (ISMS).   Provide technical and strategic support and guidance regarding ISO 9001:2015, ISO 27001:2013, ISO 27001:2022. Document, report, and schedule audit activities in the Organization. Support to Coordinate with all shared services areas and Development Teams to ensure compliance with Corporate Guidelines. Support the Periodic Review of all applicable data sources, documentation. Maintain internal and external audit schedules and audit files for Compliance activities for Bangalore teams. Ensure completion of audits are performed on time (Review, track and maintain internal and external audits findings towards closure with teams and leaders). Active participation and ownership through all necessary efforts including planning, running, and managing QMS, ISMS and Agile activities Related.   Required Current Lead/internal Auditor certification for ISO 9001:2015 and ISO 27001:2013 Bachelor’s degree in business administration, Engineering or related. Fluent in English Preferred Agile Certifications (ex. Scrum, Agile, SAFe) 2+ years of experience using Atlassian (JIRA and Confluence) 4-5+ years ISO Audit experience  Experience in conducting training sessions and workshops for teams and Shared Services Areas. Work experience in IT Knowledge, skills: Strong analytical skills Strong organizational skills and attention to detail Strong time management skills Highly effective verbal and written communication skills at all levels. Excellent communication skills to establish and maintain effective working relationships at all levels. Ability to work in a fast-paced environment.

Quality Assurance & Compliance Specialist

Alight Solutions

Hyderabad, Telangana, India

Posted: 5 months ago

Quality Assurance & Compliance Specialist responsible for driving quality with test automation focus, leading QA activities, and ensuring high-quality delivery. Convert test scenarios into automation scripts, review requirements, and provide end user perspective. Work on-site with Alight Solutions in Hyderabad, India.

Quality Assurance & Compliance Specialist

Alight Solutions

Hyderabad, Telangana, India

Posted: 5 months ago

Quality Assurance & Compliance Specialist responsible for driving End-to-End (E2E) Testing quality, focusing on functional testing. Role includes reviewing requirements, developing test strategies, and leading QA activities within Agile teams.

Compliance Specialist

Teradata

Hyderabad, Telangana, India

Posted: 10 months ago

The GRC compliance Specialist is responsible for the implementation, monitoring and compliance reporting of the Teradata IT security policies. The Specialist focuses on prevention of security risks and issues and works closely with managers and stakeholders to ensure information security risks and compliance are under control. The Specialist leads the implementation of security policies and conducts risk assessments. They are responsible for incident response, awareness training, and coordinating with relevant functions and senior managers.