About Us:
LTIMindtree is a global technology consulting and digital solutions company that enables enterprises across industries to reimagine business models, accelerate innovation, and maximize growth by harnessing digital technologies. As a digital transformation partner to more than 700+ clients, LTIMindtree brings extensive domain and technology expertise to help drive superior competitive differentiation, customer experiences, and business outcomes in a converging world. Powered by nearly 90,000 talented and entrepreneurial professionals across more than 30 countries, LTIMindtree — a Larsen & Toubro Group company — combines the industry-acclaimed strengths of erstwhile Larsen and Toubro Infotech and Mindtree in solving the most complex business challenges and delivering transformation at scale. For more information, please visit www.ltimindtree.com
Job Title: GRC Consultant
Work Location: Cleveland, Ohio(Onsite)
Job Description
Seeks an experienced Governance Risk Compliance GRC Lead to serve onsite as the primary cybersecurity governance point of contact This role will oversee the GRC program interface with CISO coordinate with offshore delivery and drive measurable maturity uplift aligned to NIST CSF 20 and other standards The lead will ensure governance across all cybersecurity domains policy risk assurance and technical tracks while maintaining strong stakeholder engagement
Key Responsibilities
Program Leadership Stakeholder Management
Act as onsite GRC owner working closely with CISOs team facilitating governance forums risk reviews and executive updates
Navigate complex stakeholder conversations and maintain trust based relationships with senior leaders
Framework Alignment Control Governance
Map Customer policies and controls to NIST CSF 20 define target tiers and evidence expectations
Maintain control library RACI and attestation processes for audits and compliance
Risk Management
Operate the risk register drive prioritization and remediation timelines and escalate material risks
Third Party Risk Assess vendor risk posture review contracts for compliance obligations and track remediation
Compliance Management Testing
Lead internal control testing and preaudit readiness support external audits with complete evidence packs
Ensure compliance with ISO 27001 SOC 2 GDPR and other regulatory frameworks
Cybersecurity Tracks Brief Coverage
Network Security Governance of segmentation firewall rules and monitoring
Endpoint Vulnerability Management Patching hardening and drift reporting
Cloud Application Security Compliance for SaaSIaaS and secure SDLC practices
Data Protection Privacy Encryption retention and regulatory alignment
Identity Access Management Governance of JML RBAC and privileged access
Incident Response Resilience Playbooks tabletop exercises and recovery readiness
CISO Dashboards Reporting
Develop and publish dashboards for executive visibility on risk posture compliance status and audit readiness
Cybersecurity Awareness Training
Drive awareness programs and targeted training for control owners and employees to strengthen security culture
Operating Model Offshore Coordination
Work with offshore teams to plan sprints assign actions and publish governance scorecards
Policy Lifecycle Awareness
Maintain policy lifecycle and drive awareness among control owners
Outcomes KPIs
Achieve uplift against Customers NIST CSF 20 baseline by closing gaps in documented processes and evidence
Closure of high risk findings with approved remediation plans
Green audit readiness status for scoped audits
Timely delivery of CISO dashboards and governance reports
Required Qualifications
10-14 years in cybersecurity with 6 years leading GRC programs
Expertise in NIST CSF 20 ISO 27001 SOC 2 and CIS benchmarks
Strong stakeholder management and audit assurance experience
Familiarity with third party risk frameworks and compliance testing
Preferred Experience
Certifications such as CISSP CISM CRISC are highly desirable
Skills
Mandatory Skills : GRC Risk Assessment
Benefits/perks listed below may vary depending on the nature of your employment with LTIMindtree (“LTIM”):
Benefits and Perks:
- Comprehensive Medical Plan Covering Medical, Dental, Vision
- Short Term and Long-Term Disability Coverage
- 401(k) Plan with Company match
- Life Insurance
- Vacation Time, Sick Leave, Paid Holidays
- Paid Paternity and Maternity Leave
The range displayed on each job posting reflects the minimum and maximum salary target for the position across all US locations. Within the range, individual pay is determined by work location and job level and additional factors including job-related skills, experience, and relevant education or training. Depending on the position offered, other forms of compensation may be provided as part of overall compensation like an annual performance-based bonus, sales incentive pay and other forms of bonus or variable compensation.
Disclaimer: The compensation and benefits information provided herein is accurate as of the date of this posting.
LTIMindtree is an equal opportunity employer that is committed to diversity in the workplace. Our employment decisions are made without regard to race, colour, creed, religion, sex (including pregnancy, childbirth or related medical conditions), gender identity or expression, national origin, ancestry, age, family-care status, veteran status, marital status, civil union status, domestic partnership status, military service, handicap or disability or history of handicap or disability, genetic information, atypical hereditary cellular or blood trait, union affiliation, affectional or sexual orientation or preference, or any other characteristic protected by applicable federal, state, or local law, except where such considerations are bona fide occupational qualifications permitted by law.
Safe return to office: In order to comply with LTIMindtree’ s company COVID-19 vaccine mandate, candidates must be able to provide proof of full vaccination against COVID-19 before or by the date of hire. Alternatively, one may submit a request for reasonable accommodation from LTIMindtree’s COVID-19 vaccination mandate for approval, in accordance with applicable state and federal law, by the date of hire. Any request is subject to review through LTIMindtree’s applicable processes.
