Governance, Risk and Compliance (GRC)Analyst

Rockwell Automation is a global technology leader focused on helping the world’s manufacturers be more productive, sustainable, and agile. With more than 28,000 employees who make the world better every day, we know we have something special. Behind our customers - amazing companies that help feed the world, provide life-saving medicine on a global scale, and focus on clean water and green mobility - our people are energized problem solvers that take pride in how the work we do changes the world for the better.

We welcome all makers, forward thinkers, and problem solvers who are looking for a place to do their best work. And if that’s you we would love to have you join us!

Job Description

Position Description Rockwell Automation is seeking a GRC analyst who will be responsible for implementing information management systems (ISMS)across a diverse range of products and business operations and jurisdictions. The candidate will participate in efforts to establish and test cybersecurity controls, generate and manage ISMS documentations such as policies, procedures and metrics, and coordinate certification audits. They will also work on risk assessment, analysis and evaluations and communicate broadly with multiple internal and external auditors. Ultimately, they work with external auditors to deliver compliance certifications and attestations.

Key Responsibilities

• Supports organizational compliance strategies by contributing information, analysis, and recommendations to strategic thinking and direction, establishing functional objectives in line with organizational objectives.
• Design and monitor cybersecurity controls to ensure compliance with framework requirements and internal policies.
• Collaborate with process owners to align business operations with security and privacy compliance frameworks
• Establishing strategies to align global and regional regulations.
• Regularly assess the efficacy of controls, recommend remediation steps and drive continuous improvement.

Key Responsibilities:

• Perform audits on internal processes and systems, benchmarking them against multiple standards such as ISO 27001, SOC 2, SOX, TiSAX etc. and internal policies.
• Develop and document processes that reduce potential for introduction of security risks, provide opportunities to automate, and benefit from multiple cycles of improvement.
• Respond to qualifying compliance incidents and invoke appropriate resources to deal with the incidents.
• Support external audits and evaluations by external assessors.
• Conduct risk assessments and vulnerability assessments and provide effective recommendations.
• Help maintain and improve the ISMS through periodic sustaining activities

Basic Qualifications

• Degree or Equivalent Relevant Experience in Cybersecurity Governance Risk and Compliance.
• 2-3 years of experience in control and assurance related role
• Good understanding of Software-as-a-Service (SaaS) business model and operations
• CISA, CISSP, ISO 27001 Lead Auditor or Implementer certification
• Understanding of different security frameworks and standards such as NIST 800 series, SOC 2, ISO 27001, and TiSAX.
• Great ability to explain technical concepts to business users

Benefits:

• The ability to collaborate with, learn from colleagues in a highly complex, global organisation.
• We provide a working environment with a creative company, paired with a great compensation package, great benefits, and a supportive atmosphere where you can sharpen with new challenges and development opportunities.
• Hybrid work-from-home and at a determined Rockwell Automation facility.
• Corporate Social Responsibility opportunities,
• Support from our 24/7 employee assistance program.
• Reporting will to Technical Lead.

Primary work location: Noida/Pune/Bangalore, India.

We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender, gender identity or expression, or veteran status. We are proud to be an equal opportunity workplace.

At Rockwell Automation we are dedicated to building a diverse, inclusive and authentic workplace, so if you're excited about this role but your experience doesn't align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right person for this or other roles.

#LI-PS2

#LI-Hybrid

Rockwell Automation’s hybrid policy aligns that employees are expected to work at a Rockwell location at least Mondays, Tuesdays, and Thursdays unless they have a business obligation out of the office.