GRC Lead Auditor

Alphawave Technologies Private Limited · 1 week ago
Opening closed.
Location
Bangalore
Department
Technology - ATPL
Employment Type
Full-time
Applications Received
0
Closed On
1 Jul, 2025

Job description

About Mitigata

Mitigata is a leading Compliance + Insurance + Security company, helping businesses

mitigate cyber risks through a combination of risk assessments, compliance consulting,

cyber insurance, and security solutions. We work with clients to strengthen their security

posture, ensure regulatory compliance, and provide tailored cyber insurance policies to

minimize financial exposure from cyber threats.


About the Role:

We are seeking an experienced GRC (Governance, Risk, and Compliance) Lead Auditor with strong domain expertise in conducting audits, assessing risk frameworks, and ensuring enterprise-wide compliance with internal policies, regulatory requirements, and international standards. The ideal candidate will lead audits, develop risk management strategies, and act as a trusted advisor on all GRC matters.


Key Responsibilities:

  1. Lead and execute internal audits across IT, operational, and regulatory domains in line with defined audit plans.
  2. Review and assess the effectiveness of governance, risk management, and compliance frameworks.
  3. Identify process risks, control gaps, and suggest mitigation strategies.
  4. Ensure compliance with standards such as ISO 27001, NIST, SOC 2, GDPR, HIPAA AND SEBI etc.
  5. Prepare detailed audit reports, risk assessments, and executive summaries with actionable recommendations.
  6. Collaborate with business and technical teams to address and remediate audit findings.
  7. Stay updated with global regulations and compliance trends to ensure proactive GRC alignment.
  8. Assist in developing policies, procedures, and control documentation.
  9. Manage and mentor junior auditors or team members, if applicable.


Key Skills & Expertise:

  1. Strong expertise in GRC frameworks and risk-based auditing.
  2. Deep understanding of compliance standards: ISO 27001 & 9001, SOC 2, NIST, PCI-DSS, GDPR, etc.
  3. Hands-on experience with GRC platforms (e.g., SOX 404, ITGC, ITAC, RSA Archer, MetricStream, ServiceNow GRC).
  4. Excellent report writing, documentation, and stakeholder communication skills.
  5. Strong analytical and problem-solving abilities.
  6. Proven leadership in audit execution and team coordination.


Qualifications:

  1. Minimum 5+years of experience in internal audit, risk, or GRC roles, with at least 3 years in a lead role.
  2. Bachelor’s or Master’s degree in Information Security, Risk Management, Finance, or a related field.
  3. Professional certifications such as CISA, CISM, CRISC, ISO Lead Auditor or equivalent are strongly preferred.


Why Join Mitigata?

  1. Work at the intersection of Cyber Insurance, Compliance, and Security, a rapidly growing industry engagements.
  2. Be part of a fast-paced, high-growth environment with exciting client
  3. Competitive salary as per industry standards with performance-based incentives.
  4. Opportunity to work with top industry experts and global partners.
  5. Office-based role in Bellandur Layout, Bangalore, fostering collaboration and career

Growth.

📩 To Apply: Send your resume to Anil.k@mitigata.com with the subject "Application for

GRC - Lead Auditor – Bangalore"


Opening closed.