Senior Director - Governance, Risk, & Compliance (GRC)
Unisys — Bangalore, KA, India
What success looks like in this role: The Senior Director – GRC is a strategic leadership role responsible for Creating the vision for the GRC program Clear understanding of the business and how the GRC function can be a business enabler Support the CISO This role ensures alignment with regulatory requirements, industry standards, and business objectives while providing executive oversight across risk, audit, compliance, and assurance functions. The position partners closely with the internal teams - CISO, BISO’s, Corporate IT and cross-functional teams (Privacy, Legal, HR, Procurement, Corporate Real Estate), and external teams - Vendors and Customers to drive a risk-aware culture, strengthen control frameworks, and enable secure business growth. Key Responsibilities 1. GRC Strategy & Governance Define and execute the enterprise GRC strategy aligned to cybersecurity and business objectives Establish governance frameworks, policies, standards, and operating models across GIS Provide executive reporting to CISO, senior leadership, and Board-level committees on risk posture and compliance status Drive continuous improvement of GRC maturity leveraging frameworks such as NIST CSF and ISO 27001 2. Risk Management (Cyber & IT Risk) Own the Cybersecurity area within the Enterprise Risk Management (ERM) program including risk identification, assessment, mitigation, and reporting Maintain and govern the centralized risk register in the GRC tool and ensure timely updates across BUs through the BISOs and other corporate functions. Define risk appetite, tolerance, and escalation mechanisms Facilitate risk-based decision-making processes including Policy exception and risk acceptance processes and criteria. 3. Compliance & Regulatory Management Ensure compliance with global and regional regulatory requirements (e.g., SOX ITGC, NIS2, DORA, GDPR, CRA as applicable) Govern adherence to industry standards and certifications: ISO 27001, ISO 22301, ISO 20000 and ISO 9000 Corporate SOC
View on HireSetu