Apraava - Cyber Security Compliance Specialist

Role : Cybersecurity Compliance Responsibilities :

• Conduct internal cybersecurity compliance assessments and assist with external audits (e.g., ISO 27001, NIST, DPDP, CEA) by collecting evidence, documenting controls, and coordinating with auditors.
• Monitor and analyze emerging cybersecurity regulations and standards, evaluate their impact on business operations, and recommend compliance adjustments.
• Develop, review, and maintain cybersecurity policies, procedures, and comprehensive documentation aligned with regulatory requirements and best practices.
• Collaborate with IT, legal, and business units to implement security controls and enforce compliance across the organization.
• Identify cybersecurity compliance gaps and risks; propose and track practical remediation plans.
• Prepare and present clear, concise reports and presentations on compliance status and audit outcomes to both technical and non-technical :
• Minimum 3 years of relevant experience in cybersecurity compliance, with proven involvement in internal and external audits.
• Strong knowledge of cybersecurity frameworks and regulations such as ISO 27001, NIST, DPDP, CEA, or equivalent.
• Relevant certifications (e.g., CISA, CISM, CISSP, or equivalent) are a plus.
• Proficient in conducting and managing cybersecurity audits and compliance assessments.
• Solid understanding of risk management and remediation strategies in cybersecurity.
• Ability to interpret and apply complex regulatory requirements into practical controls.
• Strong documentation skills including policy writing and evidence gathering.
• Excellent communication skills for effectively liaising with auditors, technical teams, and business stakeholders.
• Analytical mindset with keen attention to detail and problem-solving capabilities.
• Familiarity with tools and platforms used in compliance tracking and audit management (e.g., GRC tools).

(ref : hirist.tech)