to lead and manage the organization's security compliance and risk management initiatives. The role focuses on ensuring adherence to regulatory, legal, and industry security standards while working closely with IT, security, and business teams. The ideal candidate will have strong expertise in governance, risk, and compliance (GRC) and experience managing audits and regulatory requirements.
Key Responsibilities
Develop, implement, and maintain security compliance programs, policies, and procedures.
Monitor and ensure compliance with regulations and standards such as HIPAA, PCI DSS, GDPR, PII, SOX, and ISO 27001.
Conduct regular risk assessments, internal audits, and compliance reviews.
Collaborate with IT, security, and business teams to identify and remediate compliance gaps.
Manage relationships with external auditors, regulators, and certification bodies.
Prepare compliance reports and present findings, risks, and recommendations to senior leadership.
Design and deliver compliance awareness and training programs for employees.
Track regulatory changes and update compliance programs to meet evolving requirements.
Key Requirements
Experience:
5-7 years of experience in security compliance, governance, risk management, or IT audit roles.
Proven experience managing regulatory audits and security certifications.
Hands-on experience with data privacy and security compliance programs (GDPR, HIPAA, PII, CCPA).
Educational Qualification:
Bachelor's degree in Cybersecurity, Information Systems, or Business (required).
Master's degree in Information Security, Risk Management, or a related field (preferred).
Skills:
Hard Skills:
Strong knowledge of security frameworks such as NIST, ISO 27001, and CIS.
Proficiency with GRC tools and compliance management platforms.
Experience conducting risk assessments and developing remediation plans.
Familiarity with cloud security, SaaS environments, and data privacy regulations.
Soft Skills:
Strong communication, documentation, and presentation skills.
High attention to detail with the ability to interpret complex regulations.
Problem-solving and critical thinking abilities.
Leadership and cross-functional collaboration skills.
Ability to influence stakeholders across technical and business teams.
Certifications
CISSP, CISM, or CISA (required).
CRISC or ISO 27001 Lead Implementer / Lead Auditor (preferred).
Preferred Qualifications
Experience leading cross-functional compliance initiatives.
Knowledge of emerging security and compliance requirements in cloud and SaaS environments.
Strong background in audit management and regulatory reporting.
Job Types: Full-time, Permanent
Pay: ₹45,000.00 - ₹55,000.00 per month
Benefits:
Provident Fund
Work Location: In person
Beware of fraud agents! do not pay money to get a job
MNCJobsIndia.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.