Hiring For GRC Consultant

🚀 Matayo AI Solutions Pvt Ltd (Matayo 360� GRC Service Division) is looking for a passionate GRC Consultant to join our fast-growing compliance advisory team.

If you live and breathe ISO , SOC 2, PCI DSS can think like an auditor, and love solving risk management puzzles - we want to meet you!

🌟 Position:

📍 Location: Hybrid (Bangalore/ Remote - India)

🕓 Experience: 1-2 Years in GRC / ISO Implementation

🎓 Qualification: ISO Lead Implementer or Lead Auditor (Mandatory)

CTC: 4,50,000 PA to 6,00,000 PA

🧠 Key Skills Required:

- Hands-on experience in implementing and auditing ISO/IEC :2022

- Familiarity with ISO Risk Management principles

- Understanding of Annex A controls and Statement of Applicability (SoA)

- Experience conducting Internal Audits, Risk Assessments, and GAP Analysis

- Documentation skills - policies, procedures, risk registers, audit checklists

- Exposure to SOC 2 readiness, GDPR, or DPDPA (added advantage)

- Excellent written and verbal communication skills

🔧 Roles & Responsibilities:

1️- Governance & Compliance

- Assist clients in implementing ISO :2022 ISMS framework, including defining scope, policy documentation, control implementation, and management review.

- Conduct GAP assessments and prepare SoA and Risk Treatment Plans.

- Align controls with frameworks like SOC 2, PCI DSS, HIPAA, and GDPR as needed.

2️- Risk Management

- Perform risk identification, analysis, and evaluation in line with ISO .

- Develop and maintain Risk Register using impact-likelihood matrices.

- Recommend and track risk treatment plans and mitigation actions.

3️- Internal Audit & Assurance

- Plan and execute Internal Audits based on ISO :2022 Annex A controls.

- Collect and review evidence from business, IT, and HR departments.

- Prepare audit reports, NC (Nonconformity) logs, and CAPA (Corrective Action) tracking.

- Support clients in external certification audits with CBs.

4️- Documentation & Reporting

- Draft and maintain compliance documents: ISMS Manual, Policies, Procedures, Risk Register, SoA, and Audit Checklists.

- Prepare MIS dashboards, compliance status reports, and management review summaries.

5️- Client Engagement & Delivery

- Support end-to-end GRC project execution - from scoping to closure.

- Coordinate with cross-functional teams and external auditors.

- Deliver presentations and training to clients on ISMS and Risk Management concepts.

💼 Project Exposure:

- Should have successfully executed at least two (2) complete ISO or integrated GRC implementation projects (from GAP to certification stage).

🌐 Soft Skills:

- Strong analytical, problem-solving, and documentation capabilities

- Ability to manage multiple client projects simultaneously

- High integrity, confidentiality, and attention to detail

📈 Career Path:

- Growth into Senior GRC Consultant / vCISO Track within 2-3 years

- Exposure to global frameworks - SOC 2, PCI DSS, HITRUST, ISO (AI Governance), NIST

💰 Compensation:

Competitive salary based on experience and certification level

- performance-based incentives per project completion

📩 How to Apply:

- Send your resume and certification copies to

• Experience

  1 - 2 Years

• No. of Openings

  1

• Education

  Post Graduate (Other Master Degree, Post Graduate Diploma)

• Role

  GRC Consultant

• Industry Type

  IT-Hardware & Networking / IT-Software / Software Services

• Gender

  [ Male / Female ]

• Job Country

  India

• Type of Job

  Full Time

• Work Location Type

  Work from Office