7+ Risk Management Jobs in Mumbai | Risk Management Job openings in Mumbai

Job Title: Project Manager

Location: Mumbai

Experience: 2 to 4 years

Job Type: Full-time

Job Description:

We are looking for a motivated and experienced Project Manager to lead software development projects in an Agile environment. The ideal candidate will have 2 to 4 years of experience managing projects, working closely with development teams, and ensuring timely and high-quality delivery aligned with business goals.

Key Responsibilities:

• Lead and manage end-to-end software development projects.
• Facilitate Agile ceremonies like daily stand-ups, sprint planning, reviews, and retrospectives.
• Collaborate with Product Owners to manage and prioritize the backlog.
• Remove impediments to ensure smooth workflow and timely delivery.
• Track project progress using Agile metrics (e.g., burndown charts, velocity).
• Communicate project status, risks, and issues effectively to stakeholders.
• Encourage a culture of collaboration, continuous improvement, and accountability.
• Ensure adherence to Agile methodologies and the Software Development Life Cycle (SDLC).

Required Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Technology, or a related field.
• 2 to 4 years of experience in a Project Manager or Scrum Master role.
• Strong understanding of Agile and Scrum frameworks.
• Basic knowledge of SDLC and understanding of software development practices.
• Familiarity with project tracking tools like JIRA and Confluence.
• Strong communication, problem-solving, and leadership skills.

Preferred Qualifications:

• Certification in Scrum (CSM) or Agile methodologies.
• Basic coding knowledge or understanding of software project structures.
• Experience in IT or software development environments.

What will you do every day?

As a Security & Compliance Specialist, you are responsible for helping the implementation of the organization's information security and compliance programs. You will also help in implementing and reviewing data protection and privacy controls through technical, operational, and administrative measures. The ideal candidate will have good experience in Security in SaaS products, a deep understanding of regulatory requirements, and a proactive approach to managing security threats and third-party risks; someone who enjoys security work and possesses both deep and wide expertise in the security space.

Job Responsibilities

• Develop and Implement Security & Privacy Policies (Primary | Must have)
• Create and maintain comprehensive security policies and procedures for cloud environments and application security that align with organizational goals and regulatory requirements
• Ensure policies are regularly updated and communicated to relevant stakeholders; should be an SME for Enterprise Security and Privacy related activities
• Third-Party Risk Management (Primary | Must have)
• Handle the third-party risk management activities (TPRM) covering both inbound and outbound assessments (through the Customer & Vendor lifecycles)
• Collaborate with procurement and legal teams to ensure third-party contracts include appropriate security and compliance requirements (this includes reviews of MSA, Bids, RFP’s)
• Compliance Oversight (Primary | Must have)
• Ensure the organization’s compliance with relevant laws, regulations, and standards (e.g., GDPR, HIPAA, ISO 27001, ISO 27701, DPDP, SOC 2); should be an SME for compliance
• Implementation of minimum 3 standards from GDPR, HIPAA, ISO 27001, ISO 27701, DPDP, SOC 2
• Lead internal and external audits and manage responses to audit findings
• Product Security Practices (Primary | Must have)
• Integrate security practices into the software development lifecycle (SDLC) and review the releases based on the established Secure SDLC processes
• Review the Products from time to time checking the availability of enterprise security features
• Cloud & Infra Security (Secondary | Good to have)
• Implement, review and maintain robust security controls for cloud platforms (AWS/Azure/GCP) as per the industry best practices (DevSecOps)
• Perform security assessments/reviews and VA scans (non-mandatory) on cloud infra.
• Cybersecurity (Secondary | Good to have)
• Knowledge on Cyber Attack Vectors, Cyber Threat Intelligence, Attack Surface Mgmt., etc.
• Adequate knowledge on Incident Response, Business Resilience and Risk Management

Other responsibilities

• To act as a Security & Privacy champion/catalyst for all functions/BUs within the Company
• This role needs an avert-risk mindset and should handle Incident Management (able to Identify, Analyze, and Resolve Security Incidents)
• Contribute to the Cloud & CyberSecurity roadmap and act as an internal advisory/consultant
• Training entire staff about security and privacy best practices whenever necessary

Experience & Other Requirements

• Degree/Diploma in Computer Science / Information Technology / Cybersecurity or equivalent
• 3+ years (3-7) of experience in information security, with a focus on compliance
• Proven track record in implementing security and compliance policies & controls in a Product based Product company (preferably in a SaaS-based company)
• At least 3 years of working and implementation knowledge for any three of the compliances (ISO 27001, 27701, GDPR, HIPAA, SOC 2, DPDP)
• Good to have working knowledge of Cloud security practices & involved in DevSecOps activities
• Good research mindset with a zeal to explore, learn, share, and implement
• Preferable who can join in 30 days

About Yocket

Founded in 2015, Yocket is India’s largest and most active platform for students planning to study abroad. We’ve helped over 1 million students connect with top universities like Harvard, MIT, Stanford, Oxford, and UC Berkeley.

Our platform simplifies the entire journey from test prep to university shortlisting, admissions counseling, loans, and visa assistance. With partnerships spanning 12+ lenders and having facilitated loans worth over ₹1,500 Crores, Yocket is reshaping the international education experience for Indian students.

About the Role

We’re looking for a Growth Associate to lead and scale our pre-sales and engagement efforts for undergraduate students. If you're someone who thrives on crafting growth strategies, enjoys working with data, and can execute campaigns that move the needle this role is for you.

What You’ll Do:

• Design and implement growth strategies to increase student acquisition and engagement.
• Analyze the market and competitors to identify new opportunities.
• Lead campaigns across digital channels to attract and convert undergraduate users.
• Optimize onboarding flows and engagement strategies to reduce churn and increase lifetime value.
• Track and report on key growth metrics from conversion rates to user retention.
• Collaborate closely with marketing, sales, product, and counseling teams.
• Propose new ideas to scale impact and improve student experience.

What You Bring:

• 1–3 years of experience in growth, marketing, user acquisition, or customer lifecycle roles.
• Strong understanding of funnels, engagement metrics, and campaign performance tracking.
• A data-driven mindset comfort with tools like Excel, dashboards, or CRMs.
• Excellent communication and collaboration skills.
• Bonus points for EdTech, startup, or subscription-based experience.

Why Join Yocket?

• Work at the forefront of India’s EdTech revolution in study abroad.
• High ownership, fast-paced environment with room for innovation.
• Collaborative and transparent culture your voice matters.
• Hybrid work flexibility.
• Medical insurance and mental health support included.

Ready to drive real impact in students' lives?

Apply now and be part of a mission-driven team helping the next generation of global learners.

Exposure to Capital Market is mandatory. Risk Management experience in brokerage technology side

- Proven experience with complete product life cycle

- Deep understanding of software development life cycle and software teams.

- Experience with Software/Platform as a service, APIs, Integration,

- Experience working with regulators,

- Clear communication, decision-making, understanding and explaining decisions and

trade-offs

- Capacity to break complex problems and work on abstract problems

- Discipled, self-managed, ownership, and motivated

About the company

KPMG International Limited, commonly known as KPMG, is one of the largest professional services networks in the world, recognized as one of the "Big Four" accounting firms alongside Deloitte, PricewaterhouseCoopers (PwC), and Ernst & Young (EY). KPMG provides a comprehensive range of professional services primarily focused on three core areas: Audit and Assurance, Tax Services, and Advisory Services. Their Audit and Assurance services include financial statement audits, regulatory audits, and other assurance services. The Tax Services cover various aspects such as corporate tax, indirect tax, international tax, and transfer pricing. Meanwhile, their Advisory Services encompass management consulting, risk consulting, deal advisory, and other related services.

Application Link for quick response-  https://forms.gle/wFPNPLK4XE5L7MRk8

Job Description

Position: Chief Risk Officer 

Education Qualification: Bachelor's degree in finance, business administration, economics, or a related field

Experience: 12-14 years

Location:  Pan India with potential requirement to travel to the middle east

Employment Type:  contract for 6-12 months (Hybrid)

Responsibilities:

1. Enterprise Risk- ERM Framework: Implement a comprehensive risk management framework addressing operational, financial, and reputational risks.
2. Operational Risk: Identify and mitigate risks from internal processes and external threats (e.g., cybersecurity) and produce annual entity specific Risk Assessment.
3. Compliance Risk: Ensure adherence to QFCRA regulations and collaborate with the CCO and MLRO to manage compliance risks.
4. Risk Reporting: Provide regular risk reports to senior management and the board.
5. Produce annual entity specific Risk Appetite Statement.
6. Portfolio Investment Risk
7. Risk Assessment: Regularly analyze and monitor market, credit, and liquidity risks in the investment portfolio.
8. Risk Limits: Set and enforce risk limits aligned with the firm’s strategy and regulatory requirements.
9. Performance Monitoring: Track portfolio performance against risk benchmarks and report exposures to senior management.
10. Mitigation Strategies: Advise on hedging, diversification, and other techniques to manage investment risks.

Designation: Financial Manager 

• Exp: 8-10 Years
• CTC: up tp 30 LPA

Regulatory, Contractual & US Healthcare compliances:

• Ensure compliance to HIPAA & Hi-Tech requirements framework through audits, policy updates, external certifications, internal awareness, etc.
• Periodically update policies and document new procedures / guidelines to update the compliance plan in line with operating changes.
• Work with legal & training teams to drive the compliance programs for awareness and update of important US healthcare regulations as applicable to business.
• Work with VP, Finance, HR & Legal team across all locations to consolidate & present the compliance to regulatory requirements periodically to LT and Audit Committee.
• Update the customer contractual checklists and monitor compliance to same through periodic reviews
• Train the team on compliance programs to deliver standard compliance experience across the locations.
• Enterprise risk management (ERM), Management reviews, Investigations & Internal Audits

Cab Boundary line- 

• Navi Mumbai to Ghatkopar
• Navi Mumbai to Panvel (Ulwe not covered)
• Navi Mumbai to Kalyan

Role/ Job Title: Specialist-IT Governance & Compliance (IT Operational Risk Management)

Function/ Department: Information Technology

Roles & Responsibilities:

• Review of Policies, Product Notes, Product notes / Standard Operating Procedures from Operational Risk perspective and documentation of risk register for banking channels/products for e.g. Internet banking, Mobile Banking, UPI, Corporate Internet Banking, ENACH, E-Toll, SMS, IVR Banking etc. and IT & ISG
• Control Self testing to be conducted, to evaluate efficiency of controls claimed as per the Risk and Control Matrix.
• Identification and monitoring of Key Risk Indicators (KRI’s) for units ensuring that deteriorating KRIs are tracked for resolution and remedial measures for getting back to acceptable levels.
• Tracking & Monitoring of Incidents reported, corrective/preventive actions taken in timely manner by assigned units for e.g. Digital banking units, IT and ISG. Investigating the same and assuring that necessary corrective action and preventive action are provided by the unit before finalizing the same with the ORM team.
• Review of the action points implemented and leading the remediation of the Audit observations to closure whereby the controls implemented stand the test of review and avoidance of recurrence.
• Defining, implementing and functionalizing a Risk Management Frameworks and Programs in collaboration with various stake holders.
• Strengthen Operational Risk Framework and ensure implementation and governance process through periodic MIS and engagements with stake holders on remedial plans.
• Help and train stakeholders in ensuring adherence to Operational Risk Frameworks.
• Senior Management reporting work such as preparation of presentations, minutes of meeting etc.
• Excellent written and verbal communications skills.

Required Skills:

• Technical, functional knowledge and experience of working in risk team and have relevant experience of working in Banking channels for e.g. Internet Banking & Mobile banking, UPI etc and IT and ISG areas.
• Shall have good knowledge and experience of Information Technology (IT) applications and IT/Information Security risks and controls review.
• Shall have good knowledge and understanding of Third party/vendor involvement and various fintech models involved in digital banking space.
• Ability to drive periodic updates to senior management and remediation programs in line with Risk Management Practices
• Ability to Drive Remediation Programs on corrective Action plans in a timely manner through effective governance.

Education Qualification (Fulltime):

Certified Chartered Accountant (CA)

Preferred Certifications: CISA, ISO27001/002 (ISMS), ISO22301(BCMS), CISM, CRISC.

Experience:

Minimum of 5+ Years in IT ORM, IT applications risks and controls reviews.