This job offer is not available in your country.

Security and Compliance Analyst (Urgent)

AnumanaBengaluru, Karnataka, India

11 days ago

Job description

Position : Security and Compliance Analyst

Experience Range : 3 to 5 yrs

Job Location : Bangalore

Work Mode : Hybrid (3 days in the office, 2 days remote)

Job Summary

Anumana is seeking a detail-oriented and proactive Security and Compliance Analyst to ensure our organization’s adherence to international security standards and regulatory requirements. The successful candidate will play a key role in the development, implementation, and continuous improvement of Anumana's Information Security Management System (ISMS) in compliance with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.

This role involves close collaboration with multiple departments—HR, Legal, IT, Engineering, and Quality / Regulatory teams—to maintain a robust security and compliance posture. The Security and Compliance Analyst will also be responsible for managing third-party risk assessments, ensuring compliance with global privacy regulations (such as GDPR), and supporting the overall Information Security Program.

Key Responsibilities

Compliance Management

Maintain and continuously improve the Information Security Management System (ISMS) to comply with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.
Coordinate with the Quality and Regulatory team to align security controls with ISO 13485 requirements for medical device software.
Develop and update policies, procedures, and documentation necessary for maintaining certification status.
Conduct internal audits and prepare for external audits, ensuring that all necessary evidence is documented and accessible.

Cross-Department Collaboration

Work closely with HR, Legal, IT, Engineering, and other departments to ensure that information security requirements are consistently integrated across the organization.

Provide guidance on security and compliance matters, including secure practices, policy enforcement, and risk mitigation.

Assist in the development of training materials and conduct regular security awareness sessions for staff.

Third-Party Risk Management

Respond to third-party risk management questionnaires, ensuring that external parties meet Anumana’s security standards.

Perform risk assessments on vendors, suppliers, and partners, evaluating their adherence to security requirements.

Maintain and update a database of third-party risk assessments and ensure regular monitoring of vendor compliance.

Privacy and Confidentiality Management

Monitor and enforce privacy compliance across the organization, focusing on GDPR, CCPA, and other relevant global data protection regulations.

Track data protection incidents and coordinate response and remediation activities.

Work with Legal and HR teams to ensure confidentiality agreements are properly managed and enforced.

Security Program Oversight

Support the overall information security program by conducting risk assessments, tracking key performance indicators (KPIs), and managing security metrics.

Develop and maintain security policies, standards, and guidelines based on best practices and relevant frameworks.

Monitor and assess compliance with organizational policies, industry standards, and applicable regulations.

Identify areas of improvement in security controls and recommend mitigation strategies.

Audit Preparation & Evidence Management

Gather, organize, and maintain documentation of control evidence required for internal and external audits.

Track audit findings, follow up on remediation actions, and ensure they are completed on time.

Prepare reports summarizing compliance activities, audit results, and risk assessments for management review.

Qualifications Required :

Bachelor's degree in Information Security, Computer Science, Risk Management, or a related field (or equivalent experience).

3+ years of experience in information security, compliance, risk management, or related fields.

Strong understanding of ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.

Experience with information security frameworks (e.g., NIST, HITRUST) and best practices.

Knowledge of data protection regulations, including GDPR, CCPA, and other privacy laws.

Ability to respond to third-party risk assessments and manage vendor compliance.

Familiarity with GRC (Governance, Risk, and Compliance) tools and methodologies.

Preferred :

Professional certifications such as CISSP, CISM, CRISC, CCSK, or ISO / IEC 27001 Lead Auditor / Implementer.

Experience working in the medical device or healthcare sector, with familiarity in Software as a Medical Device (SaaMD).

Knowledge of security assessment tools and vulnerability management practices.

Understanding of secure software development and DevSecOps practices.

Skills :

Strong analytical and problem-solving skills with attention to detail.

Excellent communication skills, with the ability to present complex information clearly to technical and non-technical stakeholders.

Highly organized, with strong project management skills and the ability to prioritize tasks effectively.

Demonstrated ability to work collaboratively with cross-functional teams.

Create a job alert for this search

Compliance Analyst • Bengaluru, Karnataka, India

Related jobs

Promoted

Sap Basis Security Consultant

Hexad Infosoft INBengaluru, Karnataka, India

Only candidates who are immediate joiners or have a notice period of 15 days or less will be considered and can apply for this role. SAP Security & Basis Consultant (GRC, HANA & Authorization Specia...Show moreLast updated: 30+ days ago

Promoted

Security Engineer (Red Team)

Crossing Hurdleshosur, tamil nadu, in

Your focus will be to uncover vulnerabilities, prompt-injection pathways, and data-exfiltration risks before adversaries do. Design and automate multi-turn attacks involving browser, terminal, and A...Show moreLast updated: 10 days ago

Promoted

Junior Geo-Political Risk Analyst (Europe)

MAX Securityhosur, tamil nadu, in

MAX is Global Risk Management organization based out in Tel Aviv, Israel and its APAC HQ is based out of Mumbai.Led by veterans from Israeli Military Special Forces, Intelligence, Cyber and Secret ...Show moreLast updated: 22 days ago

Promoted

Sector Intelligence Analyst

Rational Equityhosur, tamil nadu, in

We're Hiring : Sector Intelligence Analyst.Are you obsessed with uncovering trends? Do you love digging through data, trade reports, and government sites to find insights no one else is seeing?.Buil...Show moreLast updated: 30+ days ago

Promoted

Security Consultant

World Wide TechnologyBengaluru, IN

Be the primary lead in cybersecurity delivery engagements for a wide variety of clients in different industry verticals.Evaluate and recommend security strategies for networks, systems, operations,...Show moreLast updated: 10 days ago

Promoted

OCI Security Consultant

Protiviti India Member FirmBengaluru, Karnataka, India

Work Location Protiviti Offices : .Mumbai, Bangalore, Coimbatore, Chennai, Hyderabad, Noida, Gurgaon, Bhubaneshwar, Kolkata, Ahmedabad. Protiviti India, a member of the global Protiviti network, partn...Show moreLast updated: 22 days ago

Promoted

Security Researcher

Altered SecurityBangalore, IN

Altered Security is an information security startup with focus on edtech, hands-on learning and focused security assessments. It has offices in India and Singapore.We are experts in information secu...Show moreLast updated: 30+ days ago

Promoted

Security Researcher

VehereBengaluru, Karnataka, India

We are seeking a seasoned Security Researcher with deep expertise in malware analysis, reverse engineering, and cloud threat research. The ideal candidate will have extensive hands-on experience ana...Show moreLast updated: 14 days ago

Promoted

Senior Penetration Tester

AppSecure Securityhosur, tamil nadu, in

Appsecure is a leading offensive cybersecurity and red-team services company trusted by Fortune 500s, high-growth startups, and global enterprises. Our team consists of top bug bounty hunters, seaso...Show moreLast updated: 20 days ago

Promoted

Artificial Intelligence Intern

BPR AIhosur, tamil nadu, in

We’re an AI-first consultancy reimagining how organisations work.Our mission is to help businesses integrate Artificial Intelligence into their core operations — making them faster, smarter, and mo...Show moreLast updated: 7 days ago

Promoted

Security Analyst

Tata Consultancy ServicesBengaluru, Karnataka, India

Experience range : 6 to 8 years.Location : Bengaluru, Hyderabad, Chennai, Pune, Kolkata.Provide BAU support for secrets management applications like. Collaborate with various internal and external st...Show moreLast updated: 21 days ago

Promoted

Senior Security Consultant

Claranet IndiaBengaluru, IN

Founded at the beginning of the dot.CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP)...Show moreLast updated: 30+ days ago

Promoted

Security Advisor

Verdant Grouphosur, tamil nadu, in

Verdant Group is a group of companies operating in several states in India and head quartered in Mumbai.This is a remote role for a Security Advisor. The Security Advisor will be responsible for ana...Show moreLast updated: 19 days ago

Promoted

Ethical Hacker

MAI Labshosur, tamil nadu, in

We're building something audacious, something global, in next tech at.Our mission? To distribute participatory power to billions of people in the digital economy. What this actually means : We have b...Show moreLast updated: 14 days ago

Promoted

Cyber Security Consultant

Paramount Computer Systemshosur, tamil nadu, in

As a IAM Consultant in Access Management, your role will involve : .Designing, implementing, optimizing and supporting.IAM) solutions for enterprise clients. Single Sign-On (SSO), Multi-Factor Authent...Show moreLast updated: 10 days ago

Promoted

JD Edwards Security Consultant

IT ConsultingBengaluru, IN

JD Edwards Security Consultant.Collaborate with global business stakeholders to understand business processes and security requirements within JD Edwards. Design and document standardized user roles...Show moreLast updated: 22 days ago

Promoted

Cyber Security Engineer

Paramount Computer Systemshosur, tamil nadu, in

Identity Governance and Administration (IGA).The role involves designing, implementing, and supporting enterprise-grade IGA solutions to ensure secure, efficient, and compliant identity lifecycle m...Show moreLast updated: 10 days ago

Promoted

Senior Penetration Tester

Vista Applied Solutions Group Inchosur, tamil nadu, in

Client is looking for Senior PenTester and this is remote position from India.Security and Penetration Testing.OSCP Certification - Industry-standard credential demonstrating practical penetration ...Show moreLast updated: 10 days ago

Promoted

Artificial Intelligence Researcher

Infosyshosur, tamil nadu, in

We are looking for a passionate and talented Researcher to join Infosys Applied AI research team.As an Researcher, you will work on architecting, building, refining, and optimizing state-of-the-art...Show moreLast updated: 30+ days ago

Promoted

Cyber Security Specialist

Tiger Advisoryhosur, tamil nadu, in

Tiger Advisory provides premier cybersecurity consulting services, helping clients manage risks, strengthen resilience, and achieve compliance in an ever-evolving digital landscape.Our mission is t...Show moreLast updated: 10 days ago