Job Title: Senior Manager – Governance, Risk & Compliance (Global Security) Job Description We are seeking an experienced Security professional to support and enhance the organization’s Governance, Risk & Compliance (GRC) program across HITRUST, HIPAA, Cyber Essentials (CE/CE+), AI Risk Management, and Cloud Security domains. The role is responsible for maintaining compliance documentation, supporting certification and audit readiness, driving security control assessments, and ensuring consistent governance across business and technology environments. This position will also provide advisory and support to global security programs such as ISO 27001, ISO 42001, and other standards to ensure alignment and harmonization of security practices across the enterprise. Key Responsibilities: Develop, maintain, and review security policies, procedures, and control documentation for GRC and regulatory alignment. Conduct risk assessments across IT, Cyber, Cloud, and AI environments, ensuring mitigation and follow-up on open risks. Contribute to AI Risk Management by assessing risks and controls related to Generative AI and automated systems. Support Cloud Security Governance, ensuring configurations and controls align with organizational standards and client commitments. Coordinate with global teams to support ISO 27001, ISO 42001, and related compliance programs. Assist in internal and client audits, preparing responses, evidence, and corrective action documentation. Maintain GRC dashboards, reports, and metrics to communicate risk and compliance posture to stakeholders. **Job Title:** **Senior Manager – Governance, Risk & Compliance (Security)** **About the Role** We are seeking an experienced **Security professional** to strengthen our **Governance, Risk & Compliance (GRC)** program across **IT Security and Risk Management** , **AI Risk Management and System Impact Assessments** , and **Cloud Security** domains. This role will be responsible for maintaining compliance documentation, supporting certification and audit readiness, conducting security control assessments, and driving consistent governance practices across technology and business environments. You will collaborate with cross-functional teams globally to support enterprise security initiatives and ensure alignment with recognized frameworks and standards. **Key Responsibilities** + Support **IT Security and Risk Management** activities, including control testing, evidence collection, and remediation tracking. + Develop, maintain, and review **security policies, procedures, and control documentation** for regulatory and organizational alignment. + Conduct **risk assessments** across IT, Cyber, Cloud, and AI environments, ensuring timely mitigation of identified risks. + Contribute to **AI Risk Management** , evaluating risks and controls related to Generative AI, LLMs, and automated systems. + Support **Cloud Security Governance** , ensuring configurations and controls meet internal standards and client expectations. + Coordinate with global teams to support **HITRUST, HIPAA, Cyber Essentials** , and related security and compliance programs. + Assist in **internal and client audits** , preparing responses, audit evidence, and corrective action documentation. + Maintain **GRC dashboards, reports, and risk metrics** to communicate control effectiveness and compliance posture. **Qualifications & Experience** + **10+ years** of experience in **IT Security, Cyber Risk, or GRC** roles. + Hands-on experience with **IT and Cloud Risk Management** programs. + Strong understanding of **security controls** , **risk management principles** , and **cloud security** (AWS, Azure, GCP). + Working knowledge of **AI governance** and emerging regulatory frameworks (e.g., **ISO 42001** , **EU AI Act** ). + Familiarity with **ISO 27001** , **NIST CSF** , and related security frameworks. + Excellent analytical, documentation, and communication skills. **Preferred Certifications:** CISA, CISSP, CISM, HCISPP, CRISC, ISO 27001 Lead Implementer, or equivalent. **Why Join Us** You will be part of a dynamic global security team working at the intersection of **technology, risk, and innovation** . This role offers the opportunity to influence how emerging technologies such as **Cloud and Generative AI** are governed securely and responsibly across a leading global enterprise. Location: IND Gurgaon - Bld 14 IT SEZ Unit 1, 17th C & D and Gd Flr D Language Requirements: Time Type: Full time **If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents (https://www.concentrix.com/resource/job-applicant-privacy-notice-for-california-residents/)**