Senior associate compliance
- Full Time
- Gurgaon, India View on Map
- @Securejobs posted 8 hours ago
- Posted : February 5, 2025 -Accepting applications
- Salary: ₹1,200,000.00 - ₹1,700,000.00 / Yearly
- View(s) 8
Job Detail
-
Job ID 1162
Job Description
Experience Level: 3–6 years in Information Security, Compliance, or Risk Management
About the Role: Well established MNC
We are looking for a Senior Associate – ISO 27001 Compliance to support and enhance our information security management system (ISMS). The ideal candidate will play a key role in implementing, maintaining, and auditing ISO 27001 controls, ensuring that our organization adheres to international security standards and regulatory requirements.
Key Responsibilities:
🔹 ISO 27001 Implementation & Compliance
- Assist in the development, implementation, and maintenance of the ISO 27001-based Information Security Management System (ISMS).
- Conduct risk assessments, gap analysis, and internal audits to ensure continuous compliance with ISO 27001.
- Work closely with different teams to implement security controls and improve security posture.
🔹 Security Policies & Documentation
- Develop and update security policies, procedures, and standards as per ISO 27001 requirements.
- Maintain ISMS documentation and ensure alignment with business processes.
- Support the preparation of audit reports and compliance evidence for external audits.
🔹 Internal Audits & Risk Assessments
- Conduct ISO 27001 internal audits to evaluate the effectiveness of security controls.
- Identify non-conformities, recommend corrective actions, and track remediation efforts.
- Assist in third-party and supplier risk assessments to ensure vendor compliance with ISO 27001.
🔹 Security Awareness & Training
- Conduct ISO 27001 security awareness training for employees and key stakeholders.
- Promote a culture of security compliance and best practices across the organization.
🔹 Regulatory & Compliance Alignment
- Ensure ISO 27001 compliance is aligned with other security frameworks such as NIST, SOC 2, GDPR, RBI Guidelines, and PCI-DSS.
- Assist in preparing for external audits and certifications related to ISO 27001.
Required Skills & Experience:
✅ Education & Certifications:
- Bachelor’s/Master’s degree in Information Security, Cybersecurity, IT, or a related field.
- ISO 27001 Lead Auditor/Lead Implementer certification is preferred.
✅ Experience:
- 3–6 years of experience in ISO 27001 implementation, security compliance, or risk management.
- Hands-on experience with ISMS frameworks, security audits, and compliance assessments.
✅ Technical Knowledge:
- Strong understanding of ISO 27001 controls, risk management, and security governance.
- Familiarity with security tools such as Qualys Policy Compliance, SIEM, and DLP solutions.
- Knowledge of regulatory requirements like GDPR, HIPAA, and NIST frameworks.
✅ Soft Skills:
- Strong analytical and problem-solving abilities.
- Excellent documentation and report-writing skills.
- Ability to work independently and with cross-functional teams.
Why Join Us?
🚀 Gain hands-on experience in managing ISO 27001 compliance.
🔍 Work with a dynamic security team to enhance organizational security posture.
💡 Contribute to security audits, compliance programs, and risk assessments.
📈 Opportunities for professional growth and certification sponsorships.
