Information Security & Compliance Analyst

Total Experience: 2-3 Years Industry Experience

Relevant Experience: 1 to 1.5 Years

Qualification: Any Graduate.

Location: Pune, India

Job Responsibilities:

• Coordinate/ facilitate periodic internal audits and compliance checks in alignment with ISO 27001, and organizational policies.
• Policy, SOP, and control documentation updates, ensuring continuous alignment with security frameworks.
• Ensure frequency-based controls are executed on time (e.g. Log Review, User Access Review, Firewall Rule Review, VAPT, log reviews
• Monthly Security Deck and presentation to senior Management
• Managing Risk Register, Security Incident & Issue tracker.
• Responding Client’s Vendor Risk Assessment Questionnaire, work with respective teams on security questionnaires and compliance documentation.
• Ensuring compliance of Onboarding Offboarding, Physical Security, Desktop Management, Access management, BCP, Incident, Change, Problem.
• Ensure Annual BCP/ DR Drill, Ransomware Simulation and Phishing simulation
• Identify and implement opportunities for automation to improve governance/audit controls.
• Strong attention to detail with a proactive and solution-oriented mindset.

Personal Skills:

• The candidate must be working for an IT company and have experience in IT audit, governance, and compliance.
• Should be very good in advanced Excel or Power Point. (Power BI and Excel VB Macros would be added advantages.).
• Good communication skills.
• Analytical Thinking.