This job offer is not available in your country.

Immediate Start : Security and Compliance Analyst

AnumanaIndia

2 days ago

Job description

Position : Security and Compliance Analyst

Experience Range : 3 to 5 yrs

Job Location : Bangalore

Work Mode : Hybrid (3 days in the office, 2 days remote)

Job Summary

Anumana is seeking a detail-oriented and proactive Security and Compliance Analyst to ensure our organization’s adherence to international security standards and regulatory requirements. The successful candidate will play a key role in the development, implementation, and continuous improvement of Anumana's Information Security Management System (ISMS) in compliance with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.

This role involves close collaboration with multiple departments—HR, Legal, IT, Engineering, and Quality / Regulatory teams—to maintain a robust security and compliance posture. The Security and Compliance Analyst will also be responsible for managing third-party risk assessments, ensuring compliance with global privacy regulations (such as GDPR), and supporting the overall Information Security Program.

Key Responsibilities

Compliance Management

Maintain and continuously improve the Information Security Management System (ISMS) to comply with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.
Coordinate with the Quality and Regulatory team to align security controls with ISO 13485 requirements for medical device software.
Develop and update policies, procedures, and documentation necessary for maintaining certification status.
Conduct internal audits and prepare for external audits, ensuring that all necessary evidence is documented and accessible.

Cross-Department Collaboration

Work closely with HR, Legal, IT, Engineering, and other departments to ensure that information security requirements are consistently integrated across the organization.

Provide guidance on security and compliance matters, including secure practices, policy enforcement, and risk mitigation.

Assist in the development of training materials and conduct regular security awareness sessions for staff.

Third-Party Risk Management

Respond to third-party risk management questionnaires, ensuring that external parties meet Anumana’s security standards.

Perform risk assessments on vendors, suppliers, and partners, evaluating their adherence to security requirements.

Maintain and update a database of third-party risk assessments and ensure regular monitoring of vendor compliance.

Privacy and Confidentiality Management

Monitor and enforce privacy compliance across the organization, focusing on GDPR, CCPA, and other relevant global data protection regulations.

Track data protection incidents and coordinate response and remediation activities.

Work with Legal and HR teams to ensure confidentiality agreements are properly managed and enforced.

Security Program Oversight

Support the overall information security program by conducting risk assessments, tracking key performance indicators (KPIs), and managing security metrics.

Develop and maintain security policies, standards, and guidelines based on best practices and relevant frameworks.

Monitor and assess compliance with organizational policies, industry standards, and applicable regulations.

Identify areas of improvement in security controls and recommend mitigation strategies.

Audit Preparation & Evidence Management

Gather, organize, and maintain documentation of control evidence required for internal and external audits.

Track audit findings, follow up on remediation actions, and ensure they are completed on time.

Prepare reports summarizing compliance activities, audit results, and risk assessments for management review.

Qualifications Required :

Bachelor's degree in Information Security, Computer Science, Risk Management, or a related field (or equivalent experience).

3+ years of experience in information security, compliance, risk management, or related fields.

Strong understanding of ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.

Experience with information security frameworks (e.g., NIST, HITRUST) and best practices.

Knowledge of data protection regulations, including GDPR, CCPA, and other privacy laws.

Ability to respond to third-party risk assessments and manage vendor compliance.

Familiarity with GRC (Governance, Risk, and Compliance) tools and methodologies.

Preferred :

Professional certifications such as CISSP, CISM, CRISC, CCSK, or ISO / IEC 27001 Lead Auditor / Implementer.

Experience working in the medical device or healthcare sector, with familiarity in Software as a Medical Device (SaaMD).

Knowledge of security assessment tools and vulnerability management practices.

Understanding of secure software development and DevSecOps practices.

Skills :

Strong analytical and problem-solving skills with attention to detail.

Excellent communication skills, with the ability to present complex information clearly to technical and non-technical stakeholders.

Highly organized, with strong project management skills and the ability to prioritize tasks effectively.

Demonstrated ability to work collaboratively with cross-functional teams.

Create a job alert for this search

Compliance Analyst • India

Related jobs

Promoted
New!

Apply in 3 Minutes! Cyber Security Analyst

Quess Corp LimitedIndia

About the Role : The purpose for this role ‘SOAR Developer’ is to provide SOAR development expertise and contribute to the success of the Cyber Security Operations center’s (CSOC) SOAR enhancement p...Show moreLast updated: 5 hours ago

Promoted
New!

Cyber Security Analyst (Apply in 3 Minutes)

Quess Corp LimitedNagpur, Maharashtra, India

Exp - 5+ Notice - Immediate - 15days Work Mode - Remote About the Role : The purpose for this role ‘SOAR Developer’ is to provide SOAR development expertise and contribute to the success of the C...Show moreLast updated: 3 hours ago

Promoted
New!

Workday Security System Analyst (Apply in 3 Minutes)

AvalaraIndia

Avalara is an AI-first company.We expect every engineer, manager, and to actively leverage AI to enhance productivity, quality, innovation, and customer value. AI is embedded in our workflows, and p...Show moreLast updated: 5 hours ago

Promoted
New!

(Apply in 3 Minutes) Cyber Security Analyst

Quess Corp LimitedIndia

Promoted
New!

▷ [Apply in 3 Minutes] Cyber Security Analyst

CoforgeIndia

Ensure all the security parameters of a network are intact at any given point in time.Analyses the security requirements of a new network or a network that requires an upgrade.Plans, implements and...Show moreLast updated: 5 hours ago

Promoted

Workday Security System Analyst

AvalaraIndia, India

Promoted

QA Analyst - Immediate start

ConfidencialIndia, India

We are looking for an QA Supporting UK hours for one of the clients.Strong Communicator is a must, Max salary is 11 LPA.Bachelor’s degree in Computer Science, Engineering, or a related field (or eq...Show moreLast updated: 6 days ago

Promoted
New!

▷ Immediate Start! Senior Security Analyst

Exela TechnologiesIndia

Enterprise Risk & Compliance - Security Analyst will play a significant role in our SOX Compliance.Regulatory and internal Compliance framework. Role : Enterprise Risk & Compliance – Security Analyst...Show moreLast updated: 5 hours ago

Promoted
New!

Product Security Analyst, APAC [Apply in 3 Minutes]

HackerOneIndia

HackerOne is a global leader in offensive security solutions.Our HackerOne Platform combines AI with the ingenuity of the largest community of security researchers to find and fix security, privacy...Show moreLast updated: 5 hours ago

Promoted

▷ 15h Left : Security Analyst

Tata Consultancy ServicesIndia

Sailpoint identity engineer certification - Minimum 8+ Years of Experience on Sailpoint IIQ product, java and Angular - In-Depth knowledge of Sailpoint Integration with 3rd party tools.DevOps skill...Show moreLast updated: 9 days ago

Promoted
New!

Immediate Start : Privacy Risk and Security Specialist [T500-20667]

McDonald'sIndia

One of the world’s largest employers with locations in more than 100 countries, McDonald’s Corporation has corporate opportunities in Hyderabad. Our global offices serve as dynamic innovation and op...Show moreLast updated: 5 hours ago

Promoted
New!

Workday Security System Analyst (High Salary)

AvalaraIndia

Promoted

Application Security Engineer

Foodsmartnagpur, maharashtra, in

Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 3 days ago

Promoted
New!

Immediate Start! Compliance and Process Excellence

EXLIndia

Knowledge in Advanced excel, visualization tools, powerpoint , macros, process excellence and compliance.Experience in internal audit will be an added advantage. Assist in preparation of critical do...Show moreLast updated: 5 hours ago

Promoted

[Immediate Start] Senior Application Security Engineer

QualiZealIndia

Conduct Static Application Security Testing (SAST) and Software Composition Analysis (SCA) - Perform Dynamic Application Security Testing (DAST) and Interactive Application Security Testing (IAST) ...Show moreLast updated: 15 days ago

Promoted
New!

▷ Immediate Start : Senior Malware Analyst

LTIMindtreeIndia

Looking for Senior Malware Analyst.Skills – Malware Analyst / Malware RE - Exp – 3-6 Yrs - Notice – Immediate – 30 days - Location – Hyderabad / Chennai / Pune. Bachelor's degree in Computer Science, a re...Show moreLast updated: 5 hours ago

Promoted
New!

▷ Immediate Start : Senior Compliance Analyst

SignzyIndia

Signzy is a digital trust system.We provide identification, background checks, forgery detection.Our biometric user authentication system and blockchain-based digital trail.This increases complianc...Show moreLast updated: 5 hours ago

Promoted
New!

Apply in 3 Minutes : Security Operations Center Analyst

Tata Consultancy ServicesIndia

Establish goals and priorities by working closely with your team to identify the most critical focus areas.These include : - Improving incident response times - Reducing false positives and other ex...Show moreLast updated: 5 hours ago

Promoted

Cyber Security Analyst

Quess Corp LimitedNagpur, IN

The purpose for this role ‘SOAR Developer’ is to provide SOAR development expertise and contribute to the success of the Cyber Security Operations center’s (CSOC) SOAR enhancement program by implem...Show moreLast updated: 5 days ago

Promoted
New!

[Immediate Start] Data Compliance and Security Lead

IDfyIndia

IDfy is Asia’s leading TrustStack, trusted by the best, with global expertise and enterprise-grade tech, we’re solving trust challenges, making compliance easy, fraud detection smarter, and onboard...Show moreLast updated: 5 hours ago