IT Governance and Risk Manager

Job Description: IT Governance and Risk Manager

Location: HDFC Securities Ltd

Role Title: Senior Manager / AVP

Experience: 10–12 years

Qualification: B.Tech/ BE in Computer Science or Cybersecurity

Certifications: CISA, CISM, or CISSP (Required)

ISO 27001: 2022 LI or ISO 27001: 2022 LA (Preferable)

About HDFC Securities Ltd:

HDFC Securities Ltd is a leading player in the financial sector, known for offering innovative and reliable investment solutions. At HDFC Securities Ltd, we have an unrelenting commitment to maintaining high standards of security, governance, and risk management. We are seeking an experienced IT Governance and Risk Manager to lead our efforts in strengthening our IT frameworks and ensuring the highest levels of security across the organisation.

Position

Summary:

We are looking for a skilled and experienced IT Governance and Risk Manager to oversee the IT risk management framework, governance processes, and security initiatives within HDFC Securities Ltd. This critical role involves managing risk mitigation strategies and driving IT governance initiatives. The ideal candidate will have a strong background in governance, risk management and information security within a Securities and Asset management Services industry context.

Key Responsibilities:

•Governance & Risk Management:

oDevelop and maintain IT governance frameworks, policies, and procedures that align with industry standards and regulatory requirements.

oLead risk management processes to identify, assess, and mitigate IT risks across all business units and functions.

oEnsure continuous monitoring and reporting of IT risk exposure to senior leadership, proposing action plans to address high-risk areas.

oEnsure compliance with global and regional standards such as ISO 27001, ITIL, SEBI & NSE guidelines and frameworks, DPDP etc.

•Audit & Reporting:

oCollaborate with internal and external auditors to facilitate governance and risk assessments.

oPrepare and present IT governance and risk management reports to senior management, highlighting key risks, compliance issues, and mitigation strategies.

•Team Leadership & Stakeholder Management:

oCollaborate with cross-functional teams, including IT, operations, and risk departments, to ensure effective integration of IT governance and risk management practices.

oEngage with regulatory bodies, third-party vendors, and other external stakeholders to manage security risks and ensure compliance.

•Continuous Improvement:

oContinuously evaluate and improve the organisation’s IT governance and risk management practices to align with emerging threats, best practices, and business needs.

oStay updated on the latest developments in IT governance, risk management, and cybersecurity to drive proactive risk strategies.

Required Skills & Qualifications:

•Educational Qualifications:

oB.Tech / BE in Computer Science, Information Technology, Cybersecurity, or a related field.

•Certifications:

oMinimum of one certification from CISA (Certified Information Systems Auditor), CISM (Certified Information Security Manager), or CISSP (Certified Information Systems Security Professional).

oISO 27001: 2022 LI and/ or ISO 27001: 2022 LI (Preferable)

•Professional Experience:

o10–12 years of experience in IT governance, risk management, and/ or cybersecurity, preferably in the Securities and Asset management services industry.

oProven experience in implementing and managing risk management frameworks and governance policies.

oStrong understanding of security frameworks and standards such as ISO 27001, NIST, and ITIL.

oExperience working with regulatory requirements SEBI & NSE guidelines and frameworks, DPDP, etc.

•Technical Skills:

oExpertise in IT GRC tools, dashboards and risk management software tools and technologies.

oFamiliarity with network security, cloud security, application security, and enterprise risk management.

oStrong knowledge of IT infrastructure, application security, and data protection strategies.

Key Competencies:

•Strong leadership and team management abilities.

•Excellent communication and interpersonal skills.

•Strategic thinking with the ability to translate governance and risk management concepts into actionable plans.

•Detail-oriented with a focus on compliance and process improvement.

•Ability to influence and work with senior stakeholders to drive risk management initiatives.

Why Join Us:

•Be part of a leading organisation in the Securities and Asset management Services sector with a strong commitment to security and risk management.

•Opportunity to shape and lead the IT governance and risk management at HDFC Securities Ltd.

•Work in a dynamic, fast-paced environment with a focus on continuous growth and learning.

This role offers a fantastic opportunity for professionals passionate about IT governance and risk management to make an impactful contribution at a senior level within the financial industry. If you meet the qualifications and are ready to take on this challenging and rewarding role, we encourage you to apply!