Associate Infosec Consultant-Risk and Compliance - Cybersecurity
Job Description:
About the position
We are looking for people who are passionate about cyber security and have a knack for breaking the IT-systems and making a difference in the world.
An ideal candidate will be passionate about cyber security, have his/her basics clear, and will have the fire to learn.
The selected candidate will undergo rigorous training on different cybersecurity and GRC standards like ISMS, PCI DSS, SOC2 etc and will be expected to spend 10-12 hours learning & working on live projects.
After successful completion of training the candidate will be given the opportunity to work on various client engagements viz various GRC audits for Xiarch customers like SOC2, HIPAA, HItech, ISO 27001, PCI DSS, RBI, AUAKUA, SEBI etc.
They will also get an opportunity to travel across scenic locations both nationally and internationally like Leh-Ladakh, Kashmir, Himachal, Goa, Shillong etc while delivering projects for a short duration.
We are looking for enthusiastic and passionate candidates to join.
Responsibilities:
Developing the security and compliance strategy.
Delivery of and reporting on the status of all IT audit recommendations.
Preparing documentation based on ISO 27001, SOC2, PCI DSS, GDPR, and any regulatory compliances.
Conduct both self-assessments and coordinate third party risk assessments of technology infrastructure and operational processes and controls for assigned areas.
Conduct scheduled, targeted IT compliance audits vulnerability scans and pen tests for the organization.
Development and execution of User awareness and training program.
Performing Lead internal Audits on ISO27001:2013 standard.
Skills and Expertise:
Experience & knowledge of Infosec standards like ISO 27001, Cobit, PCIDSS and SOC2 Audit, implementation, risk management, IS audit, certification, and maintenance.
Excellent English communication skills (verbal and writing).
Good to have
Certification required like ISO 27001 LA, Privacy, CISA, etc.
Company Profile
Global Consultation and Implementation firm, We believe in precision and quality above everything else. The areas of our expertise include Information Security and Cyber Security. We are also certified by Cert-In for providing information security auditing services to government organizations.
Apply Now
- Interested candidates are requested to apply for this job.
- Recruiters will evaluate your candidature and will get in touch with you.