Talent.com
This job offer is not available in your country.
Only 24h Left : Security and Compliance Analyst

Only 24h Left : Security and Compliance Analyst

AnumanaIndia
13 hours ago
Job description

Position : Security and Compliance Analyst

Experience Range : 2 to 4 yrs

Job Location : Bangalore

Work Mode : Hybrid (3 days in the office, 2 days remote)

Job Summary

Anumana is seeking a detail-oriented and proactive Security and Compliance Analyst to ensure our organization’s adherence to international security standards and regulatory requirements. The successful candidate will play a key role in the development, implementation, and continuous improvement of Anumana's Information Security Management System (ISMS) in compliance with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.

This role involves close collaboration with multiple departments—HR, Legal, IT, Engineering, and Quality / Regulatory teams—to maintain a robust security and compliance posture. The Security and Compliance Analyst will also be responsible for managing third-party risk assessments, ensuring compliance with global privacy regulations (such as GDPR), and supporting the overall Information Security Program.

Key Responsibilities

Compliance Management

  • Maintain and continuously improve the Information Security Management System (ISMS) to comply with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.
  • Coordinate with the Quality and Regulatory team to align security controls with ISO 13485 requirements for medical device software.
  • Develop and update policies, procedures, and documentation necessary for maintaining certification status.
  • Conduct internal audits and prepare for external audits, ensuring that all necessary evidence is documented and accessible.

Cross-Department Collaboration

  • Work closely with HR, Legal, IT, Engineering, and other departments to ensure that information security requirements are consistently integrated across the organization.
  • Provide guidance on security and compliance matters, including secure practices, policy enforcement, and risk mitigation.
  • Assist in the development of training materials and conduct regular security awareness sessions for staff.

    • Third-Party Risk Management

  • Respond to third-party risk management questionnaires, ensuring that external parties meet Anumana’s security standards.
  • Perform risk assessments on vendors, suppliers, and partners, evaluating their adherence to security requirements.
  • Maintain and update a database of third-party risk assessments and ensure regular monitoring of vendor compliance.

    • Privacy and Confidentiality Management

  • Monitor and enforce privacy compliance across the organization, focusing on GDPR, CCPA, and other relevant global data protection regulations.
  • Track data protection incidents and coordinate response and remediation activities.
  • Work with Legal and HR teams to ensure confidentiality agreements are properly managed and enforced.

    • Security Program Oversight

  • Support the overall information security program by conducting risk assessments, tracking key performance indicators (KPIs), and managing security metrics.
  • Develop and maintain security policies, standards, and guidelines based on best practices and relevant frameworks.
  • Monitor and assess compliance with organizational policies, industry standards, and applicable regulations.
  • Identify areas of improvement in security controls and recommend mitigation strategies.

    • Audit Preparation & Evidence Management

  • Gather, organize, and maintain documentation of control evidence required for internal and external audits.
  • Track audit findings, follow up on remediation actions, and ensure they are completed on time.
  • Prepare reports summarizing compliance activities, audit results, and risk assessments for management review.

    • Qualifications Required :

  • Bachelor's degree in Information Security, Computer Science, Risk Management, or a related field (or equivalent experience).
  • 2+ years of experience in information security, compliance, risk management, or related fields.
  • Strong understanding of ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.
  • Experience with information security frameworks (e.g., NIST, HITRUST) and best practices.
  • Knowledge of data protection regulations, including GDPR, CCPA, and other privacy laws.
  • Ability to respond to third-party risk assessments and manage vendor compliance.
  • Familiarity with GRC (Governance, Risk, and Compliance) tools and methodologies.

    • Preferred :

  • Professional certifications such as CISSP, CISM, CRISC, CCSK, or ISO / IEC 27001 Lead Auditor / Implementer.
  • Experience working in the medical device or healthcare sector, with familiarity in Software as a Medical Device (SaaMD).
  • Knowledge of security assessment tools and vulnerability management practices.
  • Understanding of secure software development and DevSecOps practices.

    • Skills :

  • Strong analytical and problem-solving skills with attention to detail.
  • Excellent communication skills, with the ability to present complex information clearly to technical and non-technical stakeholders.
  • Highly organized, with strong project management skills and the ability to prioritize tasks effectively.
  • Demonstrated ability to work collaboratively with cross-functional teams.
    • Create a job alert for this search

    Only Left Compliance • India

    Related jobs
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaNagpur, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    Cloud Security Architect

    Cloud Security Architect

    CloudThatnagpur, maharashtra, in
    Strategic role ensuring secure cloud design by reviewing infrastructure, tools, and practices across full cloud lifecycle. Own end-to-end security in project life cycle.Perform security design revie...Show moreLast updated: 28 days ago
    • Promoted
    SAP Security Specialist (WFH - Contract)

    SAP Security Specialist (WFH - Contract)

    DSAPRO IT Private Limitednagpur, maharashtra, in
    Remote
    We have a SAP Security Specialist position (Contract - Work-from-Home) for one of our clients who is a niche US product company. Design, implement, and maintain SAP security roles and authorizations...Show moreLast updated: 2 days ago
    • Promoted
    Cyber Security Instructor

    Cyber Security Instructor

    AccredianNagpur, IN
    Accredian is a leading edtech company dedicated to empowering professionals with industry-relevant, practical, and cutting-edge technology training. Our goal is to bridge the skill gap through exper...Show moreLast updated: 30+ days ago
    • Promoted
    Cloud Security Engineer

    Cloud Security Engineer

    AquanowNagpur, IN
    Aquanow, a leading infrastructure and liquidity provider that provides institutional and enterprise application platforms for digital assets, is looking for a Cloud Security Engineer to join our te...Show moreLast updated: 29 days ago
    • Promoted
    Cyber Security Consultant

    Cyber Security Consultant

    DautomNagpur, IN
    Act as the technical consultant for assigned cybersecurity tasks and milestones.Plan, deploy, and manage Trellix products : . Trellix DLP (Data Loss Prevention).Trellix ePO (ePolicy Orchestrator).Trel...Show moreLast updated: 3 days ago
    • Promoted
    • New!
    Security Lead (Only 24h Left)

    Security Lead (Only 24h Left)

    Eventus SecurityNagpur, Maharashtra, India
    Job Title : Security Lead (SOC) Location : Ahmedabad and Navi Mumbai Experience : 5+ yrs Responsibility Areas – Security Lead (L3) – SOC Security Incident Leadership Lead high-priority security i...Show moreLast updated: 3 hours ago
    • Promoted
    APM Data Integration Analyst

    APM Data Integration Analyst

    TribolaTech IncNagpur, IN
    Title - APM Data Integration Analyst.This role ensures data integrity, integration, and governance across the APM ecosystem. The Data Integration Analyst will manage application metadata completenes...Show moreLast updated: 10 days ago
    • Promoted
    Senior Compliance Specialist

    Senior Compliance Specialist

    CESNagpur, IN
    Senior Compliance Analyst / Team Lead / AM / Manager and I think you could be a good fit.We are looking for 5+ years of experience in Compliance - Code of Ethics, I’d like to tell you a little more abou...Show moreLast updated: 22 days ago
    • Promoted
    Lead Regional Compliance Specialist

    Lead Regional Compliance Specialist

    Securitas GroupNagpur, IN
    Lead Regional Compliance Specialist - APAC.India – open to Chennai / Hyderabad / Pune.We are a dynamic, dedicated team that provides management and support for a global guarding services account that s...Show moreLast updated: 29 days ago
    Offsite Security Analyst

    Offsite Security Analyst

    ProficioIN
    Remote
    Quick Apply
    We provide 24 / 7 security monitoring, investigation, alerting and response services to organizations in healthcare, financial services, manufacturing, retail and other industries.Security Operations...Show moreLast updated: 1 day ago
    • Promoted
    Cyber Security Engineer with Splunk

    Cyber Security Engineer with Splunk

    IntraEdgeNagpur, IN
    This role will lead the development and implementation of intelligent security solutions using SIEM, SOAR, and machine learning to enhance detection, response, and operational efficiency across the...Show moreLast updated: 30+ days ago
    • Promoted
    IT / Computer security Analyst as Admin Executive

    IT / Computer security Analyst as Admin Executive

    KMM Infotech Solutions Private LimitedNagpur, IN
    Job Title : IT / Computer Security Analyst as Admin Executive.We are seeking a proactive, detail-oriented .Security Consultant in driving key security initiatives across the organization.This role i...Show moreLast updated: 8 days ago
    • Promoted
    Senior Security Consultant

    Senior Security Consultant

    Claranet IndiaNagpur, IN
    Founded at the beginning of the dot.CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP)...Show moreLast updated: 26 days ago
    • Promoted
    JD Edwards Security Consultant

    JD Edwards Security Consultant

    IT ConsultingNagpur, IN
    JD Edwards Security Consultant.Collaborate with global business stakeholders to understand business processes and security requirements within JD Edwards. Design and document standardized user roles...Show moreLast updated: 10 days ago
    • Promoted
    IAM Analyst

    IAM Analyst

    Dexian IndiaNagpur, IN
    Contractual Role / Freelancer-3 Months.Skills-IAM, Data analysis or validation (Excel, VLookup, Macro), Query Language (SQL or PowerShell) , Python (Good-to-Have). Need basic IAM conceptual Knowledge....Show moreLast updated: 3 days ago
    • Promoted
    Security Engineer (Remote)

    Security Engineer (Remote)

    DigiHelic Solutions Pvt. Ltd.Nagpur, IN
    Remote
    We are looking for a proactive and experienced.In this role, you will design, implement, and maintain.The ideal candidate will have deep. Monitor cloud environments for.AWS-native and third-party to...Show moreLast updated: 3 days ago
    • Promoted
    Tactical Analyst

    Tactical Analyst

    MAX SecurityNagpur, IN
    Max is Global Risk Management organization based out in Tel Aviv, Israel and its APAC HQ is based out of Mumbai.Led by veterans from Israeli Military Special Forces, Intelligence, Cyber and Secret ...Show moreLast updated: 30+ days ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.aiNagpur, IN
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 29 days ago
    • Promoted
    Third Party Risk Management - Cyber Security (Pune, Bangalore, Gurgaon)

    Third Party Risk Management - Cyber Security (Pune, Bangalore, Gurgaon)

    DigiHelic Solutions Pvt. Ltd.Nagpur, IN
    Lead the end-to-end third-party risk assessment process including initial due diligence, onboarding, and periodic reviews. Collaborate and lead discussions with various departments from client’s tea...Show moreLast updated: 3 days ago