Information Security & Compliance Specialist (SOC 2 / ISO 27001)

Company Description

ThreatXIntel is a growing Cybersecurity, IT Staffing, and Consulting company delivering end-to-end technology and security solutions. Our services include cloud security, web and mobile application security testing, DevSecOps, vulnerability assessments, IT consulting, and professional staffing services.

We support global corporate clients by hiring and deploying skilled professionals across IT and cybersecurity domains while helping organizations strengthen security, optimize operations, and scale efficiently. ThreatXIntel is committed to enabling business growth through secure, reliable, and high-quality technology solutions.

Role Overview

We are seeking an experienced Information Security & Compliance Specialist with strong expertise in SOC 2 and ISO 27001 ISMS frameworks. The ideal candidate will be responsible for maintaining compliance programs, managing security audits, and ensuring alignment with global regulatory standards. This role requires hands-on experience in implementing and maintaining security frameworks within regulated environments such as consulting or healthcare organizations.

Key Responsibilities

• Lead and support SOC 2 and ISO 27001 implementation and maintenance activities.
• Manage and maintain Information Security Management System (ISMS) processes and documentation.
• Conduct risk assessments, security audits, and internal compliance reviews.
• Ensure compliance with global security frameworks including ISO 27001, NIST, CIS, and GDPR.
• Coordinate with internal teams and external auditors during SOC 2 and ISO audits.
• Implement security controls, policies, and procedures aligned with regulatory requirements.
• Monitor and ensure compliance with regional regulatory frameworks such as NESA, DESC, ISR, ADSIC, and SEBI.
• Provide security governance, risk management, and compliance support across business units.

Required Qualifications

• Minimum 4+ years of experience in Information Security or Compliance roles.
• Hands-on experience maintaining SOC 2 and ISO 27001 ISMS certifications.
• Proven experience supporting security audits and compliance programs.
• Experience working in Consulting, Healthcare, or other regulated industries.
• Strong understanding of information security frameworks and risk management practices.

Technical & Regulatory Knowledge

• ISO/IEC 27001
• SOC 2
• NIST Cybersecurity Framework
• CIS Controls
• GDPR and global data protection standards
• UAE regulatory frameworks including NESA, DESC, ISR, ADSIC, and SEBI

Preferred Certifications

• CISSP (Certified Information Systems Security Professional)
• CISM (Certified Information Security Manager)
• CISA (Certified Information Systems Auditor)
• PCI-DSS Implementer
• ISO 27001 Lead Auditor / Lead Implementer