DE | EN
← Back to overview

GRC and Information Security Lead

The candidate has 16 years of experience in IT security, governance risk and compliance and delivering enterprise wide cybersecurity programs. He led GRC programs across…

Request profile Print / PDF Share on LinkedIn
Usually within 24h (business days).
Anonymised profile – details after NDA/on request.
GRC and Information Security Lead

Executive snapshot

  • Experience: 16 Jahre Erfahrung in Governance Risk and Compliance, Cybersecurity Management, SIEM Governance, Vulnerability Management, Incident Response und Cloud Security
  • Seniority: Senior IT Security Manager, Senior GRC Leader, Senior Cybersecurity Specialist
  • Work mode: Möglich
  • Availability: Ab 1. August 2026
  • Region: Indien
  • Focus: Governance Risk and Compliance, Cybersecurity Management, ISO 27001 und 27701, TISAX

At a glance

Profile ID
DP-18275
Role
GRC Manager, IT Security Manager, Cybersecurity Manager, Compliance Lead, SIEM Governance Lead, Vulnerability Management Lead, Incident Response Lead, Cloud Security Governance Specialist
Seniority
Senior IT Security Manager, Senior GRC Leader, Senior Cybersecurity Specialist
Experience
16 Jahre Erfahrung in Governance Risk and Compliance, Cybersecurity Management, SIEM Governance, Vulnerability Management, Incident Response und Cloud Security
Work mode
Möglich
Availability
Ab 1. August 2026
Region
Indien
Radius
Deutschlandweit
Languages
Englisch: C2, German: A2 (B1 in Planung)
Engagement models
Festanstellung
Indicative rate
Nicht angegeben

Short profile

The candidate has 16 years of experience in IT security, governance risk and compliance and delivering enterprise wide cybersecurity programs. He led GRC programs across more than 170 accounts in regulated markets and implemented ISO 27001 and 27701 frameworks. His expertise includes SIEM governance, vulnerability management, incident response, cloud security, IAM, endpoint security and DLP. He works effectively with technical teams, audit stakeholders and C level leadership. He has strong knowledge of GDPR, TISAX, NIS2 and DORA and is experienced with Azure cloud security. He holds multiple relevant certifications including CISA, ISO 27001 Lead Auditor, CEH and GIAC GISF.

Focus (domains)

Governance Risk and ComplianceCybersecurity ManagementISO 27001 und 27701TISAXGDPRNIS2DORASIEM GovernanceVulnerability ManagementIncident ResponseCloud Security AzureIAMEndpoint SecurityDLPThird Party Risk Management

Core skills

GRC Programme LeadershipISO 27001 ImplementationPolicy DesignIT Risk AnalysisSIEM Log AnalysisThreat ManagementVulnerability Lifecycle ManagementIncident ResponseCloud Security GovernanceIAM ReviewsEndpoint SecurityEmail SecurityDLPAudit PreparationStakeholder ManagementProcess Design

Tools & technologies

Azure Cloud SecuritySIEM ToolsVulnerability ScannersIAM ToolsEndpoint Security ToolsDLP SolutionsEmail Security ToolsNetwork Security ToolsITIL FrameworkCIS Controls

Track record & project highlights

Led GRC programs across 170 accounts in regulated markets. Source: lead GRC programs across 170 accounts in 5 regulated markets Implemented ISO 27001 and 27701 frameworks improving compliance maturity by approximately 30 percent. Executed more than 200 control assessments annually ensuring audit readiness. Governed SIEM monitoring programs including log analysis threat detection and SOC escalation. Led vulnerability and threat management lifecycle including risk rating and remediation tracking. Developed security policies technical security concepts and IT risk analyses. Led incident response including root cause analysis escalation and lessons learned. Managed Azure cloud security governance including IAM controls and baseline reviews. Partnered with legal audit and executive stakeholders on GDPR PCI DSS SOX and NIS2. Improved incident response efficiency by approximately 25 percent through process redesign.
Interested? We can share details quickly (NDA-ready) — just request the profile.
Request profile Print / PDF