Install TAL
Jobs on TAL
All jobsOnsiteEngineeringcybersecurity5+ yearsiso 27001
OnsiteSeniorcybersecurity

Governance, Risk, and Compliance (GRC)

Sonata SoftwarePune, Maharashtra, IndiaPosted 20 May 2026

Sonata Software is seeking a GRC Analyst to manage security governance across its portfolio companies. The role involves developing security policies, managing risk registers, conducting vendor assessments, and ensuring regulatory compliance like SOC 2 and ISO 27001. Candidates must have experience in GRC tools and strong communication skills to report risks to executive stakeholders. This position requires working across 17 distinct portfolio entities to mature security programs.

Matched by TAL

50k new jobs listed every day. Install TAL to find more jobs like this.

Install TAL

Experience

5+ years

Function

Engineering

Work mode

Onsite, India

Company

Tier 2

What you will work on

Sonata Software is seeking a GRC Analyst to manage security governance across its portfolio companies. The role involves developing security policies, managing risk registers, conducting vendor assessments, and ensuring regulatory compliance like SOC 2 and ISO 27001. Candidates must have experience in GRC tools and strong communication skills to report risks to executive stakeholders. This position requires working across 17 distinct portfolio entities to mature security programs.

TAL's take

Quality 60/1005/5 clarityTier 2 company

Solid tier-2 company with a well-defined GRC scope and clear requirements for multi-entity governance.

The JD provides a highly specific set of responsibilities and required GRC frameworks/tools with clear context.

Salaries at Sonata Software

12.1 LPA average

Based on 23 Grapevine salary entries for Sonata Software.

View all salaries

Engineering

0 - 2 years | L1

4 LPA average

Range: 4 - 4 LPA

Engineering

6 - 8 years | B

18 LPA average

Range: 18 - 18 LPA

Engineering

10 - 12 years

20 LPA average

Range: 20 - 20 LPA

Engineering

12 - 14 years

36 LPA average

Range: 28 - 44 LPA

Must haves

  • 5+ years in GRC, audit, or InfoSec compliance roles
  • Strong knowledge of ISO 27001, NIST CSF, SOC 2, GDPR frameworks
  • Experience with GRC tools (ServiceNow, Archer, Vanta, Drata, OneTrust)
  • Excellent documentation and policy writing skills
  • Experience in multi-entity or portfolio-level governance environments

Tools and skills

iso 27001nist csfsoc 2gdprservicenowarchervantadrataonetrustmicrosoft purviewjirapower bi

Nice to have: cism, cisa, crisc, iso 27001 lead implementer.

About the company

Sonata Software is an established IT services and product company.

Posts mentioning Sonata Software

Encore sonata software

How is encore sonata work culture hike and job security Please share your suggestions

Office Gossip60