Information Security Analyst – Bangalore - 3+ years
Overview - Compliance and Security Spoc will assume responsibilities for risk, compliance and regulatory activities within an account.
Experience: 3-5 years of Compliance & Infosec experience.
Understand and interpret the contractual compliance and information security requirements.
Plan and implement the Compliance and Security requirements
Provide periodic updates on Compliance posture to Steering Committee and Client
Be the single point of contact for all Compliance requirements - Review and approve the SOPs
Work closely with the Corporate Support Functions to implement the Client security requirements
Provide pre-audit and post-audit support for both internal audits and external audits
Facilitate / Drive Root Cause Analysis (RCA), identification of corrective and preventive actions and follow-up for closure
Maintain and monitor IT Security Metrics for Account
Ensure incidents are tracked and reported appropriately
Perform periodic Risk Reviews & Update the risk register
Provide early warnings on potential non-compliances.
Conduct compliance education / awareness programs for delivery teams on a periodic basis or as per requirement.
Ensure Business continuity requirements of the client are met
Competencies and Skills
The candidate must have a firm understanding of typical risk and compliance requirements in an IT services company
Have a good understanding of Industry Best Practices & Regulatory Requirements; ISO27001, SOC 2, Data Privacy, etc.
Knowledge and preferred experience on security policy and implementation.
One or more relevant IT Security Certifications (CISA, CISM, CISSP, ISO27001 LA, Etc.) preferable
Ability to manage and prioritize tasks efficiently
Solid resource planning and problem-solving skills
Readiness to demonstrate a proactive attitude
Excellent verbal and written communication skills
Reach Us – If you think the role will add value to your career, kindly write me along with your uploaded CV on Anshit.email@example.com
Disclaimer – Crescendo Global is an ISO 9001:2015 certified Leadership Hiring consulting arm of Crescendo Group with expertise in mid to senior level niche recruitment. We are passionate about empowering job seekers and employers with an engaging memorable job search and leadership hiring experience. Crescendo Global does not discriminate on the basis of race, religion, color, origin, gender, sexual orientation, age, marital status, veteran status or disability status.
Profile Keywords – information Security, Risk, Risk and Compliance, SOC 2, ISO27001, Data Privacy, IT Audit, Internal Audit, External Audit.