GRC Specialist – Governance, Risk & Compliance (Information Security)

Role Overview TJSB Bank is seeking a seasoned GRC (Governance, Risk and Compliance) professional to strengthen its Information Security framework. This is a full-time, permanent opportunity based in Thane for a cybersecurity expert with deep expertise in regulatory compliance, risk assessment, and audit management within the banking sector. The ideal candidate will serve as a key driver of the bank's information security governance initiatives, ensuring alignment with national and international regulatory standards. Key Responsibilities The selected candidate will be responsible for reviewing and updating Information Security policies, procedures, and associated documentation to ensure ongoing alignment with applicable regulatory mandates and best practices. You will lead end-to-end compliance activities — both regulatory and non-regulatory — including timely submissions to regulatory bodies and management of the internal compliance portal. A critical part of the role involves conducting Third Party Risk Assessments to evaluate and mitigate vendor-related security risks. You will manage internal and external audits, SWIFT CSCF Assessments, and statutory audits pertaining to information security domains. Additionally, you will oversee Information Security Council Meetings, track action-taken reports (ATRs), and prepare board-level committee presentations, notes, and trackers. The role also encompasses InfoSec budget collation and management, as well as periodic user access reviews across systems. Required Qualifications A Bachelor's degree in Computer Science, Information Technology, or Cyber Security is required. Candidates must bring 7 to 12 years of hands-on experience in information security compliance and governance roles, preferably within the banking or financial services industry. Strong working knowledge of SWIFT CSCF Assessment frameworks, Vulnerability Assessment and Penetration Testing (VAPT), and third-party risk management is essential. Why Join Us TJSB Bank offers a stable and growth-oriented environment where compliance and cybersecurity professionals can make a meaningful impact. You will have the opportunity to work at the intersection of banking operations and information security, collaborating with senior leadership and regulatory stakeholders. Join a reputed institution that values security governance and offers a platform to lead critical compliance initiatives across the organisation.

Bachelor's degree in Computer Science, Information Technology, or Cyber Security (B.Tech / B.E.) 7 to 12 years of experience in Information Security GRC or a related compliance role Proven expertise in SWIFT CSCF Assessment methodology Hands-on experience with Vulnerability Assessment and Penetration Testing (VAPT) Strong understanding of third-party and vendor risk assessment processes Experience managing internal, external, and statutory audits for InfoSec domains Ability to draft and review information security policies and procedures Experience handling regulatory compliance submissions and ad-hoc regulatory returns Skills in preparing board-level presentations, committee notes, and tracking documents Experience conducting User Access Reviews and managing InfoSec budgets Familiarity with banking sector regulatory frameworks and compliance requirements

Full-time permanent employment with a reputed scheduled bank Exposure to high-impact regulatory and governance projects Opportunity to work directly with senior leadership and board-level stakeholders Professional growth in a structured banking environment Competitive compensation as per industry norms