Risk & Control Advisor
, India Job Family Group: Information Technology (IT) Worker Type: Regular Posting Start Date: July 7, 2026 Business Unit: Projects and Technology Experience Level: Experienced Professionals Job Description: Where you fit? The CISO organization is accountable for Information Security in Shell.
Each day we aim to deliver world-class cyber and information risk services to keep the company safe. Enterprise Risk Services is responsible for identifying, analyzing and influencing risk management across the organization. What’s the role?
This position is a role within the Governance Risk and Compliance team with risk advisory capability delivering for IGU PT and NOV business. What you’ll be doing? Serve as the primary Information Risk Management (IRM) advisor for the HR function, developing strong business partnerships while providing expert guidance on technology, cybersecurity, and risk management matters.
Collaborate closely with Business Information Security Officers (BISOs), CISOs, internal teams, project teams, and external stakeholders to ensure security and risk considerations are embedded into business and technology initiatives. Build and maintain strong relationships with senior business and IT stakeholders, providing strategic risk advisory support and influencing key decision-making processes.
Act as a trusted advisor to the business by identifying risks, evaluating potential impacts, and recommending appropriate mitigation strategies. Support BISOs in enabling current and future business activities while ensuring information and technology risks are effectively managed and controlled.
Drive the adoption and consistent application of Information Risk Management (IRM) and Cybersecurity strategies, standards, policies, processes, and guidelines across the HR portfolio. Facilitate and lead risk assessments, ensuring risks are identified, evaluated, documented, and addressed through appropriate controls and mitigation plans.
Design and implement controls aligned with organizational control objectives, regulatory requirements, security policies, and governance standards. Partner with project managers, business analysts, architects, support teams, and other stakeholders to ensure compliance with established Information Risk Management standards and best practices.
Assess and review information security risks associated with existing and new technology solutions, including cloud-based services and their integration within the enterprise environment. Provide risk and security oversight throughout the project lifecycle, ensuring secure delivery of technology and business initiatives.
Evaluate third-party and vendor solutions from a security and risk perspective, recommending appropriate safeguards and control measures. Promote a strong risk-aware culture by combining technical IT expertise, risk advisory capabilities, and business knowledge to deliver effective risk management outcomes.
Ensure compliance with internal security standards, external regulations, and relevant legal and compliance requirements. Support initiatives delivered through various project methodologies, including Agile, DevSecOps, and Waterfall, ensuring risk and security requirements are incorporated throughout delivery.
What we need from you? Bachelor's degree in Information Technology, Computer Science, Information Systems, Cybersecurity, Engineering, Business Information Systems, or a related discipline. At least 3-5 years proven experience of in Information Risk Management, IT Risk, Cybersecurity Risk, IT Controls, Governance, Risk & Compliance (GRC), or related discipline.
Prior experience supporting or managing risk within the HR technology portfolio is mandatory. Experience serving as a trusted advisor to business stakeholders on technology and information security risks. Strong background in conducting risk assessments, developing mitigation plans, and designing effective controls.
Experience working with cross-functional teams, including business stakeholders, project managers, architects, and technology support teams. Solid understanding of Information Risk Management frameworks, processes, and control environments.
Knowledge of cybersecurity principles, IT security standards, and governance frameworks. Experience with IT Controls Frameworks and technology risk management practices. Understanding of cloud security risks and controls, particularly in cloud-based services and integrations.
Familiarity with risk and compliance requirements in enterprise technology environments. Strong stakeholder management and relationship-building skills. Excellent communication and influencing abilities across technical and non-technical audiences.
Strong analytical and problem-solving skills with the ability to assess complex risk scenarios. Ability to balance business objectives with risk and security requirements. Experience working in Agile, DevSecOps, and traditional project delivery environments.
Ability to operate effectively in a global, matrixed organization with multiple stakeholders. What we offer You bring your skills and experience to Shell and in return you work with talented, committed people on one of the most important challenges facing our planet.
You’ll have the opportunity to develop the skills you need to grow in an environment where we value honesty, integrity, and respect for one another. You’ll be able to balance your priorities as you become the best version of yourself. Progress as a person as we work on the energy transition together.
Continuously grow the transferable skills you need to get ahead. Work at the forefront of technology, trends, and practices. Collaborate with experienced colleagues with unique expertise. Achieve your balance in a values-led culture that encourages you to be the best version of yourself.
Benefit from flexible working hours, and the possibility of remote/mobile working. Perform at your best with a competitive starting salary and annual performance related salary increase – our pay and benefits packages are considered to be among the best in the world.
Take advantage of paid parental leave, including for non-birthing parents. Join an organisation working to become one of the most diverse and inclusive in the world. We strongly encourage applicants of all genders, ages, ethnicities, cultures, abilities, sexual orientation, and life experiences to apply.
Grow as you progress through diverse career opportunities in national and international teams. Gain access to a wide range of training and development programmes. We'd like you to know that Shell has a bold goal: to become one of the world’s most diverse and inclusive companies.
You can get to know more about how we're working towards that goal, click here . IMPORTANT NOTE: After you submit your application, you will receive an email providing a link to an online assessment that is a mandatory part of the process. The email will come from HireVue - please check your spam/junk mailbox if you do not see the email.
Once completed, your application will be reviewed to determine next steps. Thank you for your interest in Shell. - Shell in India Shell is a diversified energy company in India with 13,000 employees, and presence in Integrated Gas, Downstream, Power, Renewable and Upstream.
Additionally, we have deep capabilities in R&D, digitalization, and business operations. Our global strategy, Powering Progress, is designed to generate value for our shareholders, customers, and the wider society, and focuses on creating more value with less emissions.
The strategy supports our purpose of providing more and cleaner energy solutions, with the aim of profitably transforming Shell into a net-zero emissions energy business by 2050. As India moves towards its target of net-zero emissions by 2070, Shell India aims to play a leading role in securing vital energy for today, while investing in, and helping to build, the energy system of the future through strategic investments in the country.
Our Lubricants business serves over 50,000 consumers through a strong network of over 200 distributors, and operates an end-to-end value chain that spans conceptualization, development, and production at a world-class blending plant at Taloja.
Through our 350-plus retail stations, we offer an integrated mobility experience including fuels, cafes, and convenience stores, with a prominent network of EV recharging facilities. Shell owns and operates an LNG re-gasification terminal at Hazira, Surat, with a capacity of 5 MTPA and an LNG truck-loading unit that plays a crucial role in helping meet India’s growing demand for gas across sectors.
In 2022, Shell acquired Spring Energy in a $1.55 billion deal to build an integrated energy transition business in the country. Spring is a leading renewable energy company in India which develops and manages solar, wind, and hybrid power generation facilities and infrastructure.
Our three capability centers across Bangalore and Chennai serve as a technology and innovation powerhouse for Shell globally, working as a delivery engine for core technical, digital, and finance processes: pioneering digital innovation and cutting-edge technologies across the energy sector.
We also have strong academic partnerships and collaborations with leading universities and technology institutes to accelerate decarbonization efforts within the energy sector. We are committed to positively contributing to the communities in which we operate through programs on STEM Education, Skilling, and Livelihood across India.
We nurture and invest in startups developing initiatives focused on accelerating energy innovation through programs such as Shell E4 and Shell Eco-marathon. We also have strategic investments in new energy companies such as Husk Power, d.light, Orb Energy, and Cleantech Solar.
DISCLAIMER: Please note: We occasionally amend or withdraw Shell jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Shell/Shell Group companies around the world.
The Shell Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Shell. Anyone who demands such a fee is not an authorised Shell representative and you are strongly advised to refuse any such demand.
Shell is an Equal Opportunity Employer.