Information Security Risk & Compliance Professional

We are looking for a skilled Information Security Risk and Compliance professional to join our team in Bangalore or Chennai. The ideal candidate will have a strong background in information security, risk management, and compliance frameworks. This role will focus on identifying, assessing, and mitigating security risks while ensuring adherence to regulatory requirements and industry best practices. Key Responsibilities: - Conduct risk assessments to identify vulnerabilities and potential security threats within the organization. - Develop and implement information security policies, procedures, and controls to mitigate identified risks. - Monitor compliance with regulatory requirements, such as GDPR, HIPAA, or PCI-DSS, and ensure that security practices align with these standards. - Collaborate with cross-functional teams to integrate security and compliance considerations into business processes and IT projects. - Conduct security awareness training for employees to promote a culture of security and compliance within the organization. - Prepare and present reports on risk assessments, compliance status, and security incidents to senior management and stakeholders. - Stay updated on the latest security threats, trends, and regulatory changes to inform the organization's risk management strategies. - Participate in incident response and investigations, ensuring that security incidents are handled effectively and documented properly. Key Skills : - Strong understanding of information security principles, risk management frameworks (such as NIST, ISO 27001), and compliance standards. - Experience with risk assessment tools and methodologies. - Excellent analytical and problem-solving skills to identify security vulnerabilities and develop mitigation strategies. - Strong communication skills, with the ability to convey complex security concepts to non-technical stakeholders. - Experience with security audits and compliance assessments. Qualifications : - Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or a related field. - 4 to 8 years of relevant experience in information security risk and compliance roles. - Relevant certifications (e.g., CISSP, CISM, CISA, CRISC) are highly desirable. (ref:hirist.tech)

Location: chennai, IN

Posted Date: 11/24/2024