8+ Risk assessment Jobs in Mumbai | Risk assessment Job openings in Mumbai
Apply to 8+ Risk assessment Jobs in Mumbai on CutShort.io. Explore the latest Risk assessment Job opportunities across top companies like Google, Amazon & Adobe.
Job Summary
We are looking for an Information Security & Compliance Officer to own and drive information security governance, risk management, audit readiness, compliance execution, and cybersecurity coordination.
The person will maintain compliance readiness across ISO 27001, PCI DSS, DL-SAR, CICRA, bank/partner audits, RBI requirements, Digital Lending Guidelines, and data protection requirements, while supporting readiness for ISO 27701, SOC 2 Type 2, DPDP, and other future compliance needs.
Responsibilities
· Own and drive information security governance, risk management, compliance, and audit readiness.
· Manage the audit and compliance calendar, including bank audits, regulatory reviews, partner reviews, security questionnaires, and external assessments.
· Maintain audit and compliance readiness for ISO 27001, PCI DSS, DL-SAR, CICRA, RBI Cyber Security Framework, Digital Lending Guidelines, DPDP/data privacy, and other applicable requirements.
· Maintain policies, procedures, risk registers, audit evidence, compliance trackers, security documentation, and closure reports.
· Conduct and coordinate internal reviews for access control, privileged access, policy compliance, vendor security, cloud security, and security configurations.
· Coordinate VAPT, source code reviews, cloud security reviews, configuration reviews, SAST/DAST activities, and remediation tracking.
· Work with Technology, DevOps, IT, Compliance, HR/Admin, vendors, and business teams to close vulnerabilities, audit findings, security gaps, incidents, and risks.
· Own and drive security incident response execution, including escalation coordination, RCA tracking, corrective actions, evidence documentation, closure reports, and periodic drills.
Required Skills
· Good understanding of information security, GRC, IT risk, audits, compliance, and cybersecurity controls.
· Working knowledge of application security, API security, cloud security, IAM, vulnerability management, incident response, secure SDLC, and vendor security.
· Understanding of ISO 27001, PCI DSS, RBI Cyber Security Framework, Digital Lending Guidelines, banking/fintech requirements, and data protection requirements.
· Ability to assess technical security risks, define controls, and coordinate remediation with technical teams.
· Strong audit handling, evidence management, documentation, communication, follow-up, and ownership.
· Ability to work independently with auditors, banks, vendors, technical teams, and business stakeholders.
Required Qualification
· 3–8 years of experience in information security, GRC, IT risk, cybersecurity coordination, audit, or compliance.
· Experience handling bank audits, regulatory audits, ISO 27001, PCI DSS, VAPT coordination, access reviews, risk registers, audit evidence, and remediation tracking is preferred.
· Experience in fintech, banking, NBFC, payments, lending, or regulated technology environments is preferred.
· Bachelor’s degree in Computer Science, IT, Information Security, or a related field.
Relevant certification preferred, such as ISO 27001 LA/LI, CISA, CISM, PCI DSS, ISO 27701, Security+, CEH, or equivalent.
Role Overview:
The Safety Manager will be responsible for implementing and monitoring safety policies at construction sites to ensure compliance with statutory regulations and maintain a safe working environment for all employees and workers.
Key Responsibilities:
Develop and implement site safety policies and procedures.
Conduct regular safety inspections and risk assessments.
Ensure compliance with MBOCW/BOCW rules and other statutory safety regulations.
Investigate accidents, incidents, and near-miss cases and recommend corrective actions.
Conduct safety training programs and toolbox talks for workers and staff.
Monitor the use of PPE and ensure safety standards are followed on-site.
Maintain safety records, reports, and compliance documentation.
Coordinate with project managers and site teams to implement safety measures.
Identify potential hazards and implement preventive actions.
Ensure emergency response and safety preparedness at the construction site.
Qualifications:
Degree/Diploma in Engineering or Science.
Advanced Diploma in Industrial Safety (CLI/RLI/State Board approved)
OR Diploma in Construction Safety Management from NICMAR.
Experience Required:
Minimum 8–15 years of experience in construction safety management.
REVIEW CRITERIA:
- Strong Credit & Risk strategist profile
- Must have 2.5+ years of experience as credit and risk strategist/analyst in unsecured personal loan in B2C Fintech Product Companies (or NBFC)
- Must have strong understanding of automated underwriting and SMS underwriting for lending
- Must have experience with scorecards, rule engine, bureau data, device signals and behavioural insights
- B2C Fintech Product companies
ROLE & RESPONSIBILITIES:
We are looking for a Credit & Risk Lead who can craft smart, data-driven credit strategies to scale the app while keeping delinquencies low.
WHAT YOU’LL DO:
- Build and refine credit strategies for short-tenure, small-ticket unsecured personal loans.
- Work with Data Science to improve decision engines, scorecards, rules, and real-time underwriting models.
- Create sharp risk segmentation using behaviour, device signals, bureau data, fraud patterns, and portfolio trends.
- Analyse bounce rates, roll rates, early-bucket trends, and cohort behaviour to identify segments driving delinquencies.
- Share clear insights with Collections to boost pre-due and early DPD performance and improve cure rates.
- Track vintages, cohorts, and DPD curves to iterate policies, limits, and approval logic continuously.
- Strengthen fraud detection, identity checks, and thin-file underwriting frameworks to ensure clean approvals.
- Own policy governance, compliance, documentation, and alignment with RBI Digital Lending Guidelines.
- Stay ahead of market trends, competitor practices, and regulatory shifts to keep the risk engine future-ready.
IDEAL CANDIDATE:
- 2.5+ years in unsecured personal loan risk within a fintech or NBFC.
- Strong understanding of digital underwriting, policy design, and credit decisioning for short-tenure PL.
- Experience working with scorecards, rule engines, bureau data, device signals, and behavioural insights.
- Ability to work closely with Data Science, interpret large datasets, and convert insights into clear credit actions.
- Strong communication, cross-functional collaboration, and a proactive, analytical mindset.
PERKS, BENEFITS AND WORK CULTURE:
- Work directly with Founders: Mikhil Innani, former co-founder of PharmEasy and ex-Product Head at Hotstar, and Diksha Nangia, a former banker and CFA Charterholder.
- Best of both worlds: startup energy + listed company stability.
- Competitive pay and fast-track growth.
REVIEW CRITERIA:
- Strong Credit & Risk strategist profile
- Must have 2.5+ years of experience as credit and risk strategist/analyst in unsecured personal loan in B2C Fintech Product Companies (or NBFC)
- Must have strong understanding of automated underwriting and SMS underwriting for lending
- Must have experience with scorecards, rule engine, bureau data, device signals and behavioural insights
- B2C Fintech Product companies
ROLE & RESPONSIBILITIES:
We are looking for a Credit & Risk Lead who can craft smart, data-driven credit strategies to scale the app while keeping delinquencies low.
WHAT YOU’LL DO:
- Build and refine credit strategies for short-tenure, small-ticket unsecured personal loans.
- Work with Data Science to improve decision engines, scorecards, rules, and real-time underwriting models.
- Create sharp risk segmentation using behaviour, device signals, bureau data, fraud patterns, and portfolio trends.
- Analyse bounce rates, roll rates, early-bucket trends, and cohort behaviour to identify segments driving delinquencies.
- Share clear insights with Collections to boost pre-due and early DPD performance and improve cure rates.
- Track vintages, cohorts, and DPD curves to iterate policies, limits, and approval logic continuously.
- Strengthen fraud detection, identity checks, and thin-file underwriting frameworks to ensure clean approvals.
- Own policy governance, compliance, documentation, and alignment with RBI Digital Lending Guidelines.
- Stay ahead of market trends, competitor practices, and regulatory shifts to keep the risk engine future-ready.
IDEAL CANDIDATE:
- 2.5+ years in unsecured personal loan risk within a fintech or NBFC.
- Strong understanding of digital underwriting, policy design, and credit decisioning for short-tenure PL.
- Experience working with scorecards, rule engines, bureau data, device signals, and behavioural insights.
- Ability to work closely with Data Science, interpret large datasets, and convert insights into clear credit actions.
- Strong communication, cross-functional collaboration, and a proactive, analytical mindset.
PERKS, BENEFITS AND WORK CULTURE:
- Work directly with Founders: Mikhil Innani, former co-founder of PharmEasy and ex-Product Head at Hotstar, and Diksha Nangia, a former banker and CFA Charterholder.
- Best of both worlds: startup energy + listed company stability.
- Competitive pay and fast-track growth.
We are looking for an experienced and strategic Chief Financial Officer (CFO) to oversee the company’s financial operations, planning, and risk management. The CFO will play a key leadership role in driving financial performance, supporting business growth, and ensuring financial stability.
Key Responsibilities:
- Lead and manage all financial functions including accounting, budgeting, forecasting, and financial reporting
- Develop and execute financial strategies aligned with business goals
- Monitor cash flow, profitability, and financial performance
- Prepare and present financial reports to the CEO, Board of Directors, and stakeholders
- Ensure compliance with financial regulations, tax laws, and company policies
- Manage financial risk, audits, and internal controls
- Support strategic initiatives such as investments, mergers, and acquisitions
- Oversee relationships with banks, auditors, and financial institutions
Minimum Qualifications/Experience:
1. B. Pharma, B.Sc./M.Sc. (Chemistry/Microbiology)
2. 8+ Years of experience in QA process in Pharmaceutical / food processing / cosmetics / chemical industries.
Job Responsibilities:
C1. Principal thrust area:
You shall be responsible for maintaining and improving all QMS activity, GMP and GLP across the company.
C2. Key Deliverables:
1. Ensure manufacturing practices as per cGMP and GLP standards.
2. Handling QMS activities like change control, validations, stability, qualifications, APQR and Risk assessment etc.
3. Applications for AHC to AQCS, EIA and Capexil and coordinate related activities. (AHV/SPD: This is exclusive knowledge related to Capsule and companies manufacturing animal origin products. We have mentioned this as the candidate on joining will be responsible for this work though he/she may not be having exposure to same.)
4. Organize internal and external audits for ISO, GMP+, FDA, Capexil, GMP+, EIA and others. Maintain the documents required for those audits.
5. Organize internal and external audits for ISO, GMP+, FDA, Capexil, GMP+, EIA and others. Maintain the documents required for those audits.6. Evaluation and approval of Suppliers for RM, PM, testing labs and service providers.
7. Assisting HOD in customer complaint analysis and preparation of customer complaint report.
8. Investigation of incidents, deviations, OOS and ensure corrective actions in place.
9. Reviewing the daily availability of operators and allocating work to them.
10. Maintaining and review BMR documents, guide for relevant changes if required.
11. Label artwork review and management.
Competencies:
D1. Technical Competencies:
a) Analytical skills (spotting trends and patterns)
b) Report writing skills
c) Problem solving abilities
d) GMP and GDP knowledge
e) Good English communication skills (verbal & written).
Behavioural Competencies:
a) Quality and Service Orientation
b) Delivering consistent results
c) Ability to prioritize, organize, manage work and time.
d) Customer Centric
e) Cross Functional Team Working
Reporting & Responsibility:
Position Reports to: Plant Head (M03)
Reportees to this position: Assistant Officer QA – M12 (2 nos)
Job Location:
1. Tarapur MIDC. Tarapur MIDC, Boisar, Dist. Palghar, Maharashtra.
Preference will be given to candidates in Tarapur/Boisar area or willing to relocate.
2. For outstation bachelors, Company provides a subsidized bachelor’s flat. For outstation families, Company provides subsidized accommodation in company owned buildings. Relocation allowance is offered.
3.Tarapur- Railway station Boisar takes 1.5 hrs. by train from Borivali Station or by road via Western Express Highway.
4. Suburban local trains direct from Churchgate to Boisar Railway station available.
G. What’s in it for You:
1. Opportunity to be part of a growing organization offering niche products to Pharma industry.
2. Opportunity to work at Head Office location.
3. Intimate small company culture with MNC professionalism.
4. Company value programs TrANSSCEnD.
5. Employee events like festival celebrations, family fun events etc.
6. Five days working (alternate weeks).
7. Medical Insurance for your immediate family.
8. Housing accommodation for Bachelors & family.
Policies, Systems, Processes & Procedures
- Review and ensure the India information security policies are aligned with group policies and practices.
- Review and provide recommendations to India policies, standards, guidelines/ processes concerning RBI (Reserve Bank of India) regulatory requirements
- Coordinate with business units to define SLA for India
- Formulate the security strategy and roadmap for India
Information Security
- Identify and ensure compliance to unique security requirements for RBI (Reserve Bank of India) related to RBI cyber security framework and RBI Guidelines on Information security.
- Establish contacts with RBI (Reserve Bank of India) regulators to receive security updates, circulars
- Coordinate for the group for various regulatory security audits at the Singapore location.
- Monitor and track all India open issues with IT and concerned international SPOCS
- Assist the GSO office and BU in attaining information security compliance objectives.
- Identify issues that could impact the bank and escalate any serious issues/ breaches/ violations; develop/monitor action plans for its closure in liaison with local, and overseas branches, and business groups.
- With the support of the Head office GSO team, perform risk assessments for locally implemented IT solutions and track open issues to closure
- Instigate and maintain contact with RBI Regulatory Authorities, Regulatory compliance department, and ensure good & healthy working relationships.
- Review new regulatory legislations; promptly communicate all regulatory notices/circulars to all concerned areas, provide interpretations if necessary; develop/monitor action plans towards its implementation.
- Assist Head office during Regulatory Examinations; ensure implementation/regularization of observations linked to compliance while meeting the deadline(s).
- Respond to queries that are sought by local Regulatory Authorities / Law Enforcement Agencies Head Office & Overseas branches, in a timely manner with complete and accurate information.
Job Context
- Security Compliance requirements at the India location.
- Highlight security status & concerns to management.
- Consult with IT and information security staff to ensure that an implementation plan is established.
- Actively participate and contribute to GSO initiatives
- Track open Audit issues on information security to closure
- Risk assessments for local implementations
- Inform HO of any new 3rd party technology vendor for vendor assessment
Qualifications & Responsibilities
Year of Experience : 3- 8 yrs
Location : Bangalore, Delhi, Mumbai, Pune
Work on ISO 27001 & NIST based Information Security Management System implementation and sustenance.
- Responsible for SOX (IT Security Controls) and track the monthly/quarterly/annual control reports and drive effectiveness of SOX controls.
- Work on Business Continuity Planning, IT Disaster Recovery as per ISO27001 & NIST requirements
- Assess information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk
- Conduct Information Systems audits covering IT infrastructure assets
- Working knowledge in security domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection
- Experience in leveraging industry standards and frameworks such as ISO/IEC 27001, NIST CSF/800-171, etc.
- Possesses certifications such as ISO27001 LA. CISSP, CISA certification- preferred
Why NCG?
WHO WE ARE DRIVES WHAT WE DO!
We Don't build the organization; we create an everlasting family. Our people express a sense of winning together when times are good and sticking together when times are tough.
Are you a Doer or Achiever?
Well, at NCG, our doors are Open for Doers and Achievers alike. We are a Cult where we create, innovate, learn and Contribute in a comfortable, transparent, and fair environment.
Joining NCG means contributing to a shared ambition for reliable work culture, tackling extraordinary technological challenges in multicultural teams, preserving your work/life balance, and more!




