Personiv - Manager - Governance/Risk & Compliance

As a manager - GRC you will be reporting to the EVP and Site Head and you will be responsible for:

1. Evaluate and provide assurance that risk management, control, and governance systems are functioning as intended and will enable the organization's objectives and goals to be met.

2. Reports risk management issues and internal controls deficiencies identified and provide recommendations for improving the organization's operations, in terms of both efficient and effective performance

3. Evaluate information security and associated risk exposures and organization's readiness in case of business interruption

4. Implementation, operation and maintenance of the Information Security Management System including ISO 9001, ISO 27001 and PCI DSS standards.

5. Design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies and applicable laws and regulations

6. Liaison with and offer strategic recommendations to functions such as Physical Security/Facilities, Risk Management, IT, Application Development and HR.

7. Conduct periodic internal reviews or audits to ensure that compliance procedures are followed.

8. Conduct or direct the internal investigation of compliance issues.

9. Assess application, compliance, or operational risks and develop risk management strategies.

10. Identify compliance issues that require follow-up or investigation.

11. Disseminate written policies and procedures related to compliance activities.

12. Evaluate testing procedures to meet the specifications of PCI DSS & ISO 9001, ISO 27001 standards.

13. Verify that applicable technology is in place to adequately provide oversight and monitoring in all required areas.

14. Maintain documentation of compliance activities, such as complaints received or investigation outcomes.

15. Discuss emerging compliance issues with management or employees.

16. Collaborate with human resources departments to ensure the implementation of consistent disciplinary action strategies in cases of compliance standard violations.

17. Advise internal management or business partners on the implementation or operation of compliance programs.

18. Provide employee training on compliance related topics, policies, or procedures.

19. Provide assistance to internal or external auditors in compliance reviews.

20. Prepare management reports regarding compliance operations and progress.

21. Oversee internal reporting systems such as corporate compliance email and inform employees about these systems.

22. Keep informed regarding industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes.

23. Design or implement improvements in communication, monitoring, or enforcement of compliance standards.

24. Verify that all policies and procedures have been documented, implemented, and communicated.