GRC Lead
Ushur
Bengaluru, Karnataka, India
Posted on May 29, 2025
About Us
Ushur is transforming the way enterprises communicate and engage with customers. Fueled by consumer’s self-service demands, enterprises are modernizing customer engagement and experience models. Ushur is fast becoming the platform of choice for Customer Experience Automation™, enabling these enterprises to leapfrog their digital native counterparts and deliver delightful customer and employee experiences. With cutting-edge Conversational AI, Machine Learning and Intelligent Process Automation technologies, Ushur has enabled Fortune 100 enterprises including some of the world’s most well known brands in healthcare, insurance, banking and financial services sectors to automate their customer engagement. Cloud-native, 100% no-code and purely workflow-driven, Ushur empowers citizen developers within business operations teams to build AI-powered, fully-automated and omni-channel experience to digitally transform customer journeys end-to-end.
Location: Bangalore
Work Mode: Hybrid
The Role
Ushur is looking for a motivated, passionate, GRC Lead. The GRC Lead will be working with the GRC Director to implement GRC initiatives and charter for Ushur. Implement processes to ensure that protection, compliance & certifications are maintained in the organization in an ongoing manner. Where necessary, the consultant should assist the GRC director to acquire new certifications & compliances, to initiate & support ongoing audits, to mention a few. You will collaborate across various teams and offer support & guidance to product management, customer success & support, system architects, engineering development and quality assurance teams.
Responsibilities
● Responsible for implementing the GRC charter in order to improve the overall security & compliance posture of the organization
● Work with external security & related disciplines consultants and will be a part of developing the security mindset of our teams
● Support & nurture regulations such as CCPA, GDPR, HIPAA, HITRUST, etc.
● Support certification and compliance audit activities e.g., SOC2, HITRUST, ISO 27001 and PCI-DSS
● Contribute towards organization security, focusing on our product & our corporate security hygiene
● Establish policies, procedures, and guidelines.
● Subject matter expert when it comes to security & GRC practices
● Continuous alignment and improvement of the GRC processes with various stakeholders, leveraging existing GRC tools in place, finding out what more is required to support our business processes and keep working around overall security governance, risk management, and various audits all year around.
Qualifications
● At least 8-10 years of experience in IT with a minimum 3 years in security/ GRC
● Skills in Cloud Concepts, Cloud Security and SaaS Security
● Experience working in an AWS cloud environment is a must
● Experience in drafting policies, procedures, and reports
● Experience with Security Operations will be an advantage
● Must have performed compliance Tasks e.g., involved in assessments, risk management, audits, drafting policies, procedures, and reports
● Knowledge of organization accreditation/certifications e.g., SOC2/ ISO 27001/ PCI DSS etc.
● Knowledge of different types of frameworks, regulations, standards, and best practices e.g., NIST CSF, CSA, CIS, HITRUST etc.
● Prior experience using the GRC tool will be an advantage
● DevSecOps/ DevOps Skills
● Security Testing Knowledge e.g., SAST, DAST, VAPT etc.
● Vulnerability Management Skills
● Knowledge of Data Security and Privacy
● Knowledge of the Incident Response process
● Prior experience of involvement in control implementation will be an advantage
● Knowledge of DR, BCP, Malware campaign, advisory etc.
● Knowledge of EDR, MDR, DLP and any other endpoint protection tool
● Knowledge of any automation, standardization and templatization skills will be an advantage
● Knowledge of industry regulation on security and privacy e.g., GDPR, CCPA, DPDP etc.
Benefits
● Great Company Culture. We pride ourselves on having a values-based culture that is welcoming, intentional, and respectful.
● Bring your whole self to work. We are focused on building a diverse culture, with innovative ideas where you and your ideas are valued. We are a start-up and know that every person has a significant impact!
● Rest and Relaxation. 20 days of flexible leaves per year, Monthly Wellness Day (aka a day off to care for yourself) and more!
● Health Benefits. Preventive health checkups, Medical Insurance covering the dependents, wellness sessions, and health talks at the office
● Keep learning. One of our core values is Growth Mindset - we believe in lifelong learning. Certification courses are reimbursed. Ushur Community offers wide resources for our employees to learn and grow.
● Flexible Work. In-office or hybrid working model, depending on position and location. We seek to create an environment for all our employees where they can thrive in both their profession and personal life.
Why join us?
We are passionate about Ushur, our product, and helping our employees grow and develop in their career in a caring, collaborative environment. We offer a very competitive compensation plan & stock options for the ideal candidates.