GRC Specialist
Mumbai
Software Engineering – Information Security & Engineering /
Full Time /
On-site
About the Role:
We are looking for a highly motivated and skilled GRC Specialist to join Jiostar’s GRC team. This role is ideal for someone with 3+ years of experience in Governance, Risk & Compliance, who has a passion for automation, AI integrations, tool evaluation, and implementation. The candidate will play a key role in strengthening Jiostar’s security, privacy, and compliance posture by leveraging technology, automation, and innovative solutions.
Key Responsibilities:
- Governance, Risk & Compliance:
- Support the design, implementation, and monitoring of GRC frameworks across Jiostar entities.
- Assist in internal and external audits, risk assessments, and closure of findings.
- Privacy & Security:
- Work closely with privacy, legal, and security teams to ensure data protection and regulatory compliance (DPDPA, GDPR, PIPEDA, etc.).
- Contribute to privacy impact assessments, data retention reviews, and security control validations.
- Tool Evaluation & Implementation:
- Assess, compare, and recommend GRC, privacy, and security tools aligned with business needs.
- Lead proof-of-concept, vendor evaluations, and end-to-end implementation.
- Automation & AI Integration:
- Identify opportunities to automate repetitive GRC processes (e.g., audit evidence management, risk tracking, TPRM).
- Integrate AI-driven solutions for compliance monitoring, reporting, and risk analytics.
- Stakeholder Engagement & Collaboration:
- Interact with stakeholders across functions to present findings, progress, and outcomes of GRC initiatives.
- Collaborate with legal, security, and business teams to drive cross-functional initiatives and ensure alignment with compliance and privacy objectives.
Preferred Education and Experience:
- 3+ years of relevant experience in GRC, cybersecurity, risk, or privacy functions.
- Bachelor’s or Master’s degree in Computer Science or a related field.
Skills and Attributes for Success
- Hands-on experience with GRC or security tools (e.g., JIRA, Vanta, Smartsheet).
- Strong understanding of compliance frameworks and standards (ISO 27001, DPDPA, GDPR, PCI DSS).Proven ability to evaluate tools, run PoCs, and manage implementation projects.
- Experience with automation (workflows, integrations) and interest in AI adoption within GRC.
- Knowledge of privacy and data protection regulations and ability to apply them practically.
- Excellent communication skills and ability to present to and collaborate with diverse stakeholders.
- Proven ability to evaluate tools, run PoCs, and manage implementation projects.
- Exposure to cloud security (AWS/Azure/GCP) controls and compliance.
- Certifications (CISA, ISO 27001 LA/LI, CIPM, CCSK, etc.) are a plus.
About Us
Perched firmly at the nucleus of spellbinding content and innovative technology, JioStar is a leading global media & entertainment company that is reimagining the way audiences consume entertainment and sports. Its television network and streaming service together reach more than 750 million viewers every week, igniting the dreams and aspirations of hundreds of million people across geographies.
JioStar is an equal opportunity employer. The company values diversity and its mission is to create a workplace where everyone can bring their authentic selves to work. The company ensures that the work environment is free from any discrimination against persons with disabilities, gender, gender identity and any other characteristics or status that is legally protected
We may use artificial intelligence (AI) tools to support parts of the hiring process, such as reviewing applications, analyzing resumes, or assessing responses. These tools assist our recruitment team but do not replace human judgment. Final hiring decisions are ultimately made by humans. If you would like more information about how your data is processed, please contact us.
