Overview
Security Analyst – GRC Jobs in Pune, Maharashtra, India at Exela Technologies
Title: Security Analyst – GRC
Company: Exela Technologies
Location: Pune, Maharashtra, India
Job Description
Global – Risk & Compliance – Security Analyst will play a significant role in our SOX Compliance Department to standardize and operationalize our Regulatory and internal Compliance framework.
Job Details:
▪ Role: Global – Risk & Compliance – Security Analyst
▪ Work Location: Pune
▪ Work Type: Work From Office
Responsibilities –
Collaborate with internal stakeholders to facilitate and review documentation for certifications like ISO 27001, PCI, SOC, and HiTrust.
Own and Initiate process improvement to Streamline Internal Assurance Process
Point of Contact for Client Security Questionnaires and RFP/RFI responses
Create and maintain Security Control documentation and knowledge repository
Develop, Contribute and participate in internal controls awareness within the organization
Participation in Risk & Security assessment activities across the organization, including 3rd party risk assessments
Maintains current knowledge of laws and regulations, keeping abreast of recent changes.
Maintains current knowledge of IT audit and risk methodologies.
Understanding Policy, Procedure & Standards within the organization.
Flexible to work in US/EU business hours
Qualifications –
Bachelor’s degree preferred.
Over all 5 – 8 years of Experience (Minimum 3 – 5 years of related experience)
Proficiency with Microsoft Office, Excel, Word, PowerPoint, Visio and SharePoint.
Good understanding on any one of the standard/certification PCI, DSS, ISO 27001, SOC, HIPAA / HITRUST, GDPR, NIST Framework
Ability to maintain organizational relationships with the business, Corporate Internal Audit, Global Security Office and IT
Demonstrated facilitation and project management skills
Ability to adapt to changing requirements
Attention to detail and ability to implement
Strong written and verbal communication skills
Willingness to learn
Preferred Skills –
Any one of the following or relevant security certification:
CompTIA Network+
CompTIA Security+
EC-Council CEH
ISO 27001 Lead Auditor
CISM
CISA
