| Hyderabad Jobs |
| Banglore Jobs |
| Chennai Jobs |
| Delhi Jobs |
| Ahmedabad Jobs |
| Mumbai Jobs |
| Pune Jobs |
| Vijayawada Jobs |
| Gurgaon Jobs |
| Noida Jobs |
| Hyderabad Jobs |
| Banglore Jobs |
| Chennai Jobs |
| Delhi Jobs |
| Ahmedabad Jobs |
| Mumbai Jobs |
| Pune Jobs |
| Vijayawada Jobs |
| Gurgaon Jobs |
| Noida Jobs |
| Oil & Gas Jobs |
| Banking Jobs |
| Construction Jobs |
| Top Management Jobs |
| IT - Software Jobs |
| Medical Healthcare Jobs |
| Purchase / Logistics Jobs |
| Sales |
| Ajax Jobs |
| Designing Jobs |
| ASP .NET Jobs |
| Java Jobs |
| MySQL Jobs |
| Sap hr Jobs |
| Software Testing Jobs |
| Html Jobs |
| Job Location | Mumbai City |
| Education | Not Mentioned |
| Salary | Not Disclosed |
| Industry | IT - Software |
| Functional Area | General / Other Software |
| EmploymentType | Full-time |
Position: Compliance Analyst Education: Any Degree / Graduate Experience: 5+ yrs Location: Mumbai Compliance Analyst Reports to Director of Information Security. Compliance analyst position s core responsibilities are to conduct technical Information Security assessments and reporting using ServiceNow Governance Risk and Compliance module against defined standards and controls. Also conducting Risk assessment through the information Security Management System and related ISO control framework. This position will be responsible to conduct internal audit against ISO 27001 and ISO 27701 standard. This position will also assist in all external audits such as ISO 27001, SSAE SOC I & SOC II and customer audits.Qualifications: A Security Certification in leading auditor security standards such as CISA/ ISO 27001 LI / LA / ISO 27701 LI and PCI DSS are preferred for this position.Skills and Experience:At least 5 years of full-time work experience in Information Security Audit and compliance as an analyst or/ lead At least 5 year experience on infosec audit and compliance reporting Technical ability to develop reports in various IT and security management systems Experience on GRC (Governance Risk & Compliance) system Experience in Risk assessment / management. Exposure with conducting or supporting technical assessment of Information Security Audits Knowledge of information security, cyber security best practices, such as ISO 27001/27002, ISO 27701, PCI-DSS, NIST, Data Protection and Privacy. Experience in Business Continuity and Disaster Recovery management.Core responsibilities: Technical Compliance review:Conduct periodic internal audit based on defined Information system and privacy control (ISO 27001 and ISO 2770), with various departments on defined frequency. Record Audit output in GRC system and present compliance dashboard Participate in Risk assessment exercise based on defined calendar. Conduct vendor risk assessment using defined module on ServiceNow on defined frequency. Help to develop controls and tests within the ServiceNow GRC module. Help to develop reports and dashboards to ensure that controls tests are executing and responses from responders are being tracked and completed. Perform the periodic review of IT/FM/other operation according to Datavail Policy and procedures. Document audit results and act as the point of contact for audit responsibilities. Review the following operational area of compliance per defined policy and procedures. Change management Capacity management Backup and restoration management Logging and Monitoring including Protection of logs Technical vulnerabilities and remediation Review the policies and share recommended changes /updates. Acts as a Compliance coordinator and participate in all activities relating to contingency planning, business continuity management and IT disaster recovery in conjunction with relevant functions and third parties Initiate security measures and drive initiatives in compliance with the security standards applicable to monitor, manage and improve the effectiveness of the controls. proactively identify opportunities to improve the quality of reporting and usability of the available information. Provide reporting and metrics to the Information Security team on a defined frequency to show results of the above activities. Assisting in dashboard creation and reporting on various elements from Cybersecurity and compliance. Assisting in periodic review and reporting of vulnerability management, DLP, Endpoint protection, SIEM.The successful candidate will possess the following attributes: Interpersonal skills - ability to build strong relationships with internal team members and to work across the organization to achieve results. Professional communication skills - Ability to work effectively with mid and senior level contacts face to face, electronically and over the phone. Integrity - Words and actions are always consistent and behaviour is always in accordance with highest ethical standards. Technical acumen - Ability to grasp technical concepts and establish credibility with technical contacts. Strong ability to troubleshoot issues and provide resolution. Customer service oriented Process orientation - Ability to recognize process deficiencies and implement improvements.,
Keyskills :
complianceamlaccountsappraisaldocumentationinformation security management systembuild strong relationshipsbusiness continuity management