We are a $13+ billion global technology company, home to more than 224,000 people across 60 countries, delivering industry-leading capabilities centered around digital, engineering, cloud, and AI, powered by a broad portfolio of technology services and products.
HCLTech is a globally recognized leader in the Tech and IT industry, but we’ve never forgotten the startup mindset that got us here. We’ve always approached our work with an idea-first attitude because every one of our accomplishments —no matter how big or small —can be traced back to an idea’s single spark.
It’s that spark —that inner drive —that sets our people apart from our competitors. It enables us not just to pull off game-changing feat after game-changing feat but to better our world in the process. We want you to find your spark. Because that’s what drives you to be better, be more and ultimately, be more fulfilled.
Role- Regional Lead – Governance, Risk and Compliance & Business Resiliency
Location- UK, Edinburg
Job Type- Full Onsite (5 days a week)
Full time Employment - Permanent
KEY RESPONSIBILITIES & JOB DESCRIPTION:
Responsible for Business development of HCL Governance, Risk and Compliance
services and Business Resiliency services in UK & Europe region. This job
carries the booking targets and revenues to be achieved.
• Responsible for P&L and Client relationship management
• GRC opportunity farming in existing client accounts as well as working with
regional sales for developing new accounts.
• Responsible for client acquisition and CSAT for all GRC delivery engagements in
Europe & UK
• Managing sales, pre-sales and delivery team of consultants for all regional
engagements
• Manage Cyber Risk engagement on assessment and implementation of
frameworks such as NIST 800-53 r5, NIST CSF2.0, CIS, ISO27K
• Executing advisory & consulting engagements around regulatory risk &
compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data
Privacy, NHS, FFIEC etc.
• Program and project manage GRC delivery engagements
• Participate in strategic risk management and regulatory compliances transition
and transformation engagements.
• Develop knowledge base, re-usable components for GRC advisory services.
• Responsible for development and enhancements of GRC services, team and
delivery capabilities.
• Manage 3rd party/sub-contractors as part of the GRC delivery engagement.
• Manage local partners and develop partner sales channel
Skills:
Expertise in delivery of risk and compliance advisory services (preferable
candidates from Big4 organizations)
• Should have proven capabilities of executing atleast 3-4 advisory/consulting
engagements
• Excellent technical capabilities around information security, business continuity
and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc.
• Good compliance understanding of industry domains such as
BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.),
Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance),
Telecom, Retail,
Data Privacy (GDPR, CCPA)
Energy & Utilities (NERC, FERC)
Information Security (ISO 27000, NIST, CIS)
TPRM
• Business Resiliency & Cyber Recovery, ZTA
• GRC Project & Program Management
• Excellent written and verbal communications skills
• Should be able to travel 70%-80% on short as well as long term engagements.
PLATFORM /TOOL EXPERTISE
Experience on the below mentioned tools is not mandated but candidates having
exposure to these will be preferred:
• MetricStream, Archer, ServiceNow GRC & SecOps, OneTrust
QUALIFICATIONS
B.E/B.Tech with MBA preferred. Candidates with following Certifications will be
preferred:
• CISA/CGEIT/CISM/CISSP/CIPP E
• ISO 27001 Implementer, Lead Auditor
• ITIL V3.0