T

GRC - Security Compliance Specialist

Tata Consultancy Services · Mumbai, Maharashtra, India

3–9 yrs experiencefull_timePosted 3w ago
Apply now →

Job description

**Job Description** **Experience- 6- 10 yrs** **location-Mumbai,Indore** **Responsibilities** - Requirement gathering and analysis – by collaborating with stakeholders (Architects, cloud and containers engineer, capability leads, control owners) to capture and document functional and nonfunctional requirements. - Define and prioritise epics within agile sprints - outlining the goal, completion criteria, and any dependencies – with enough technical details for an engineer to execute. - Work closely with CNAPP engineering and other engineering stakeholders (Cloud services, Containers team, Cyber) to maintain traceability between business requirements, technical specifications and delivered features. - Provide advice to stakeholders new to CNAPP on how to achieve their goals and support them with requirements elicitation. - Conduct workshops and demos with key stakeholders to agree the design approach and to validate the solution – sign-off design and implementation. - Define acceptance criteria to ensure requirements agreed with stakeholders are met. - Map integrations and APIs between CNAPP solution components and HSBC systems e.g. downstream reporting, data lake integrations etc. **Knowledge, Qualifications & Experience** **Technical Skill Set Required** - 5+ years’ experience as Business Analyst in cybersecurity, security and compliance platforms (SaaS/On-premise). - Hands on knowledge in cyber security vulnerability scanning, configuration baseline, compliance, inventory e.g. CNAPP, APSM, CSPM etc. - Proven experience in Agile/Scrum environments writing epics, features, and user stories. - Excellent stakeholder management, facilitation, and communication skills. - Experience with API integrations, microservices, and container orchestration (Kubernetes, AWS, GCP cloud) and DevOps processes - Preferred familiarity with regulatory framework e.g. PCI-DSS, CIS benchmarks, etc. - Preferred relevant certifications e.g. public Cloud (AWS, GCP), certified business analyst **Soft Skill Required** - Ability to work in fast paced environment and ever-changing priorities and having extremely flexible to manage workload. - Able to support aggressive delivery timelines without compromising on quality. - Quick learner - Work with different stakeholders (HSBC Vendors, Project Manager, ITSO & ITSO Delegates, Support teams) & resolve all technical queries in timely manner. - Excellent communication skills – both written and verbal (English) - Proactive, collaborative, and self-motivated - Ability to manage competing priorities and drive consensus