Talent.com
Lead Security and Compliance Analyst

Lead Security and Compliance Analyst

Energy ExemplarPune, Republic Of India, IN
12 days ago
Job description

About the Position

Energy Exemplar is looking for a Senior Security Compliance Analyst who will perform duties related to compliance certifications, continuous monitoring of the controls and operational security administration, analysis of security related incidents, vulnerabilities and events that may affect Energy Exemplar and its clients.

Key Responsibilities

  • Provide compliance guidance to cloud security offering business units and product teams
  • Support Internal / External ISO 27001 / 9001, SOC 2, SOC 1 and any new regional assessments requirements (e.G. IRAP) to support business growth.
  • Work effectively as part of a geographically distributed team
  • Develop and maintain security operations processes & documentation (e.G., runbooks, operating procedures, Cyber Incidence response)
  • Maintain event collection environment through health monitoring and logs from Fire Walls, VPN, Email protection, Network Analytics, access control cards system and CCTV.
  • Interact with various security products and platforms, including : O365, MimeCast, WorkspaceOne, Fortinet, Cloud Hosting Providers (Azure, AWS) and others.
  • Provide support for implementation and maintenance of SIEM, DLP, endpoint protection, and other security tool alerts.
  • Provide hands on based input of vendor proposals and emerging security technologies and systems.
  • Coordinate, track and Manage CEII compliance.
  • Provide technical expertise and support to IT management and staff in the implementation of security / protection technologies and network systems / applications.
  • Assist with penetration testing and vulnerability management efforts.
  • Participate in customer audits and respond to infosec questionnaires as part of the RFP process.
  • Participate in incident management activities which include associated investigations, ticket response, communications including periodic tabletop exercises..
  • Assist in Risk Management, Vendor Management, and governance of Information Security policies across the company.
  • Continuously improve our security practices and processes and keep company and customer data safe across our services and infrastructure.
  • Design and build metrics and dashboards to track security incidents, vulnerabilities, risks, and awareness
  • Perform continuous monitoring of the controls including but not limited to :
  • Track and Monitor ISO and SOC 2, SOC 1 and overall common control framework, gather and review evidences.
  • Vulnerability and hardening compliance scan monitoring, reporting and reviews
  • Driving vulnerability remediations within prescribed timeframes
  • Inventory management and reporting
  • Vulnerability deviation request processing, tracking and reviews
  • Plan of Action & Milestones (POA&M) updates and submissions
  • System Security Status reporting
  • Monthly Continuous-Monitoring Metrics reporting
  • Compliance review of Significant change requests

Candidate Requirements & Qualifications

  • At-least 6 years of related experience in Compliance and information security.
  • Well versed in technologies like Windows, Antivirus, Data loss prevention (DLP).
  • Must have experience in Firewalls, Cloud platforms and content filtering solutions.
  • Must have experience in the creating and maintaining security policy documents.
  • Good to have experience with regular vulnerability and web application scanning methodologies.
  • Crisis management (Incident Management) identification and reporting.
  • Network and cloud-based penetration testing experience required
  • Incident response experience and prepare relevant security metrics dashboards
  • 2-4 years’ experience with Firewall, Network, Anti-Virus, DLP, Azure, AWS, and Desktop security administration
  • Proficiency with security tools and platforms (e.G., SIEMs, vulnerability scanners, and malware analyzers)
  • Familiarity with IDS / IPS systems and endpoint Antivirus and EDR products
  • Insider Threat Hunting and Analysis
  • 2 + years of professional experience focused on ITIL standards and practices.
  • Knowledge of current security standards, including ISO 27001, ISO 9001, SOC2, SOC 1, FERC, CEII, GDPR
  • Ability to understand enterprise business computing operations / requirements, and cloud-based cybersecurity services.
  • Working knowledge DevOps concepts (e.G., Infrastructure as Code, Deployment Pipelines)
  • Must have a general hands-on IT background with the capability and enthusiasm of delving into new technologies.
  • Must be willing to work in different time zones.
  • Good communication, presentation, documentation skills.
  • Collaborate closely with Clous Ops, IT and Other function as a first line security point of contact within the GRC team.
    • Create a job alert for this search

    Lead Security Analyst • Pune, Republic Of India, IN

    Related jobs
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaNagpur, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Information Security and Compliance Analyst

    Information Security and Compliance Analyst

    DemandbaseRepublic Of India, IN
    Demandbase is seeking a motivated and detail-oriented GRC Sr Analyst to support its global Governance, Risk, and Compliance program. Reporting to the Senior Director of GRC, you’ll collaborate cross...Show moreLast updated: 21 days ago
    • Promoted
    L2 Security Analyst- Soc Advanced

    L2 Security Analyst- Soc Advanced

    Art Technology and SoftwareCochin, Republic Of India, IN
    Job Title : Infosec L2 Security Analyst (Security Operations Center - Advanced).Location : From Kochi Office (Onsite).The L2 Security Analyst is responsible for performing advanced incident analysis,...Show moreLast updated: 20 days ago
    • Promoted
    AML / KYC Compliance Lead

    AML / KYC Compliance Lead

    TPRepublic Of India, IN
    Lead and manage a team of financial crime analysts and investigators.Ensure timely and accurate review of suspicious transactions and alerts. Maintain compliance with AML, KYC, CFT, and other regula...Show moreLast updated: 20 days ago
    • Promoted
    Risk Analysis Lead

    Risk Analysis Lead

    WSP in IndiaRepublic Of India, IN
    Provide Risk Management professional advice to Project and Programme Managers.Application of risk management processes and systems. Lead the identification of risks on behalf of the Project Manager,...Show moreLast updated: 28 days ago
    • Promoted
    Information Security Analyst

    Information Security Analyst

    Exela TechnologiesPune, Republic Of India, IN
    Enterprise Risk & Compliance - Security Analyst will play a significant role in our SOX Compliance.Regulatory and internal Compliance framework. Role : Enterprise Risk & Compliance – Security Analyst...Show moreLast updated: 18 days ago
    • Promoted
    Security and Compliance Analyst

    Security and Compliance Analyst

    aecc - digital innovation hubRepublic Of India, IN
    Support the organisation’s security posture through monitoring, incident response coordination, and compliance activities. Work closely with IT operations, engineering, and leadership to ensure syst...Show moreLast updated: 10 days ago
    • Promoted
    Senior Security Analyst

    Senior Security Analyst

    Exela TechnologiesPune, Republic Of India, IN
    Enterprise Risk & Compliance - Security Analyst will play a significant role in our SOX Compliance.Regulatory and internal Compliance framework. Role : Enterprise Risk & Compliance – Security Analyst...Show moreLast updated: 18 days ago
    • Promoted
    Senior Security Compliance Analyst(6+ Years Minimum) Pune

    Senior Security Compliance Analyst(6+ Years Minimum) Pune

    Energy ExemplarPune, Republic Of India, IN
    Energy Exemplar is looking for a Senior Security Compliance Analyst who will perform duties related to compliance certifications, continuous monitoring of the controls and operational security admi...Show moreLast updated: 12 days ago
    • Promoted
    Governance, Risk, And Compliance Analyst

    Governance, Risk, And Compliance Analyst

    Art Technology and SoftwareCochin, Republic Of India, IN
    As a GRC Analyst, you will play a pivotal role in supporting and enabling Governance, Risk, and Compliance (GRC) operations across our cybersecurity services. Your primary focus will be to enhance r...Show moreLast updated: 20 days ago
    • Promoted
    Security Incident Response Analyst (Contract)

    Security Incident Response Analyst (Contract)

    Dexian IndiaChennai, Republic Of India, IN
    Bachelor's degree in Cybersecurity, Information Technology, or related field.SOC operations or cybersecurity roles.Experience with license management and compliance processes.Hands-on experience wi...Show moreLast updated: 10 days ago
    • Promoted
    Senior Security Engineer

    Senior Security Engineer

    CBTSnagpur, maharashtra, in
    Senior level roles as IT Security Architect, IT Security Engineer, IT Security Auditor, Cyber-Security Analyst, Cyber-Intelligence Analyst. Certifications, Accreditations, Licenses.One or more of th...Show moreLast updated: 12 days ago
    • Promoted
    Senior Security Operations Analyst

    Senior Security Operations Analyst

    Art Technology and SoftwareCochin, Republic Of India, IN
    Job Title : Infosec L2 Security Analyst (Security Operations Center - Advanced).Location : From Kochi Office (Onsite).The L2 Security Analyst is responsible for performing advanced incident analysis,...Show moreLast updated: 20 days ago
    • Promoted
    Governance, Risk, and Compliance Analyst

    Governance, Risk, and Compliance Analyst

    AmagiRepublic Of India, IN
    This role has been established to support the business in building sustainable governance andcompliance practices at Amagi. The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 8 days ago
    • Promoted
    Security Analyst

    Security Analyst

    Bahwan CyberTekChennai, Republic Of India, IN
    VAPT, preferably in both application and infrastructure testing.Perform manual verification and risk assessment of identified vulnerabilities. Track and validate remediation efforts in collaboration...Show moreLast updated: 12 days ago
    • Promoted
    Security and Compliance Analyst

    Security and Compliance Analyst

    LexitasChennai, Republic Of India, IN
    Lexitas is a high growth company.The Company is built on a belief that having strong personal relationships with our clients, and providing reliable, accurate and professional services, is the driv...Show moreLast updated: 30+ days ago
    • Promoted
    Enterprise Risk and Compliance Analyst

    Enterprise Risk and Compliance Analyst

    Exela TechnologiesPune, Republic Of India, IN
    Enterprise Risk & Compliance - Security Analyst will play a significant role in our SOX Compliance.Regulatory and internal Compliance framework. Role : Enterprise Risk & Compliance – Security Analyst...Show moreLast updated: 18 days ago
    • Promoted
    Risk and Compliance Analyst

    Risk and Compliance Analyst

    Art Technology and SoftwareCochin, Republic Of India, IN
    As a GRC Analyst, you will play a pivotal role in supporting and enabling Governance, Risk, and Compliance (GRC) operations across our cybersecurity services. Your primary focus will be to enhance r...Show moreLast updated: 20 days ago