GRC Analyst- information Security- New

Headquartered in San Mateo, Yellow.ai is a global leader in Conversational AI, delivering autonomous, human-like experiences for customers and employees to accelerate enterprise growth. We believe that memorable conversations are at the heart of every meaningful brand engagement. Over 1100 enterprises, including Sony, Domino's, Hyundai, Sephora, Waste Connections, Ferrellgas, and Randstad, trust our generative AI-powered, no-code Dynamic Automation Platform (DAP).

DAP’s proprietary multi-LLM AI engine, DynamicNLP™, empowers us to handle 2Bn conversations every quarter across 35+ channels in 135+ languages. We're passionate about delivering conversational experiences via our Dynamic AI agents that help enterprises achieve higher customer satisfaction and employee engagement. We were recently recognized as a Challenger in the 2023 Gartner® Magic Quadrant™ for Enterprise Conversational AI Platforms and have raised more than $102M from blue-chip investors with offices across six countries.

The purpose of this position is to provide highly skilled technical and Information Security expertise for development and implementation of the Information Security risk management program. Responsibilities require leadership and project management experience, as well as expertise to ensure effective system-wide security analysis; intrusion detection; standards and testing; risk assessment; awareness and education; and development of policies, standards and guidelines.
Responsibilities:
  • Governance, Risk & Compliance resource with extensive experience in multiple domains of Information Security.
  • Experienced in client & program management.
  • Working knowledge in Vulnerability Assessment, Penetration Testing & Application Security Assessment.
  • Handles Vulnerability Management for entire organisation.
  • Assist organisation in internal compliance for ISO 27001, SOC2, GDPR, HIPAA, PCI DSS, NIST, etc.
  • Support in fulfilling vendor risk assessment requirements from clients of yellow.ai.
  • Assist in Risk assessment & management.
  • Assist in policies review and updates.
  • Assist in Change Management reviews.
  • Provide support in Exception management.
  • Understanding of secure development processes, S-SDLC etc.
  • Well versed in regulatory cybersecurity compliance and technical cybersecurity operations.
  • Has thorough understanding of infrastructure, application & technology stack.
  • Manages ongoing projects & stakeholder communication.
  • Prepares monthly dashboards, statistics & executive reports for Leadership.
  • Conducts relevant internal trainings, exercises, discussions etc.
  • Provides relevant subject matter expertise in cybersecurity matters.
  • Quarterly awareness trainings to be conducted.
  • Skills required:
  • Advanced IT skills with high level of Information Security experience and expertise.
  • Graduation Degree from an accredited University. Specialisation no bar.
  • Knowledge of Information Security risk management frameworks and compliance practices.
  • Knowledge of securing network technologies, client, and server operating systems.
  • Ability to develop security standards and guidelines based on best practices and industry standards.
  • Experience responding to, analyzing, and communicating information security incidents.
  • 1-3 years of planning and managing security projects.
  • Excellent interpersonal, communication, and presentation skills, including formal report writing experience.
  • Understanding of common security standards and regulations relating to a higher education environment (e.g., PCI DSS, HIPAA, ISO2700x, NIST, etc.)
  • Must be well versed with laws affecting the higher education environment in the following areas:
  • - Privacy
    - Health Care
    - Finance
    - Research
    - Compliance
    - Local & Global Regulations
    Our Company's Values

    Execute with Clarity & Focus - Pursue objectives with precision and unwavering focus.
    Create Customer Success - Create a customer-centric culture that prioritises experience and satisfaction.
    Move the Needle Everyday - Drive continuous improvement and make tangible progress each day.
    Demonstrate Grit - Exhibit resilience, determination and tenacity in overcoming challenges.
    Do More with Less - Maximize productivity and outcome while operating within resource constraints
    One Yellow.AI Team - Foster a culture of unity and collaboration across the workforce of Yellow.AI.


    Read more about us here.

    yellow.ai provides Equal Employment Opportunity to all employees and applicants for employment without regard to race, colour, religion, gender identity or expression, sex, sexual orientation, national origin, age, disability, genetic information, or marital status in accordance with applicable federal, state and local laws. 
    Apply for this job
    logo Yellow.ai Information Security Full-time Onsite 📍 Bengaluru, India Apply Now
    Your subscription could not be saved. Please try again.
    Your subscription has been successful.

    Newsletter

    Subscribe and stay updated.

    Your subscription could not be saved. Please try again.
    Your subscription has been successful.

    Join our newsletter