Talent.com
This job offer is not available in your country.
Security and Compliance Analyst (Only 24h Left)

Security and Compliance Analyst (Only 24h Left)

AnumanaIndia
2 days ago
Job description

Position : Security and Compliance Analyst

Experience Range : 3 to 5 yrs

Job Location : Bangalore

Work Mode : Hybrid (3 days in the office, 2 days remote)

Job Summary

Anumana is seeking a detail-oriented and proactive Security and Compliance Analyst to ensure our organization’s adherence to international security standards and regulatory requirements. The successful candidate will play a key role in the development, implementation, and continuous improvement of Anumana's Information Security Management System (ISMS) in compliance with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.

This role involves close collaboration with multiple departments—HR, Legal, IT, Engineering, and Quality / Regulatory teams—to maintain a robust security and compliance posture. The Security and Compliance Analyst will also be responsible for managing third-party risk assessments, ensuring compliance with global privacy regulations (such as GDPR), and supporting the overall Information Security Program.

Key Responsibilities

Compliance Management

  • Maintain and continuously improve the Information Security Management System (ISMS) to comply with ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.
  • Coordinate with the Quality and Regulatory team to align security controls with ISO 13485 requirements for medical device software.
  • Develop and update policies, procedures, and documentation necessary for maintaining certification status.
  • Conduct internal audits and prepare for external audits, ensuring that all necessary evidence is documented and accessible.

Cross-Department Collaboration

  • Work closely with HR, Legal, IT, Engineering, and other departments to ensure that information security requirements are consistently integrated across the organization.
  • Provide guidance on security and compliance matters, including secure practices, policy enforcement, and risk mitigation.
  • Assist in the development of training materials and conduct regular security awareness sessions for staff.

    • Third-Party Risk Management

  • Respond to third-party risk management questionnaires, ensuring that external parties meet Anumana’s security standards.
  • Perform risk assessments on vendors, suppliers, and partners, evaluating their adherence to security requirements.
  • Maintain and update a database of third-party risk assessments and ensure regular monitoring of vendor compliance.

    • Privacy and Confidentiality Management

  • Monitor and enforce privacy compliance across the organization, focusing on GDPR, CCPA, and other relevant global data protection regulations.
  • Track data protection incidents and coordinate response and remediation activities.
  • Work with Legal and HR teams to ensure confidentiality agreements are properly managed and enforced.

    • Security Program Oversight

  • Support the overall information security program by conducting risk assessments, tracking key performance indicators (KPIs), and managing security metrics.
  • Develop and maintain security policies, standards, and guidelines based on best practices and relevant frameworks.
  • Monitor and assess compliance with organizational policies, industry standards, and applicable regulations.
  • Identify areas of improvement in security controls and recommend mitigation strategies.

    • Audit Preparation & Evidence Management

  • Gather, organize, and maintain documentation of control evidence required for internal and external audits.
  • Track audit findings, follow up on remediation actions, and ensure they are completed on time.
  • Prepare reports summarizing compliance activities, audit results, and risk assessments for management review.

    • Qualifications Required :

  • Bachelor's degree in Information Security, Computer Science, Risk Management, or a related field (or equivalent experience).
  • 3+ years of experience in information security, compliance, risk management, or related fields.
  • Strong understanding of ISO / IEC 27001, ISO / IEC 27002, and ISO 13485 standards.
  • Experience with information security frameworks (e.g., NIST, HITRUST) and best practices.
  • Knowledge of data protection regulations, including GDPR, CCPA, and other privacy laws.
  • Ability to respond to third-party risk assessments and manage vendor compliance.
  • Familiarity with GRC (Governance, Risk, and Compliance) tools and methodologies.

    • Preferred :

  • Professional certifications such as CISSP, CISM, CRISC, CCSK, or ISO / IEC 27001 Lead Auditor / Implementer.
  • Experience working in the medical device or healthcare sector, with familiarity in Software as a Medical Device (SaaMD).
  • Knowledge of security assessment tools and vulnerability management practices.
  • Understanding of secure software development and DevSecOps practices.

    • Skills :

  • Strong analytical and problem-solving skills with attention to detail.
  • Excellent communication skills, with the ability to present complex information clearly to technical and non-technical stakeholders.
  • Highly organized, with strong project management skills and the ability to prioritize tasks effectively.
  • Demonstrated ability to work collaboratively with cross-functional teams.
    • Create a job alert for this search

    Security Compliance Analyst • India

    Related jobs
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    ArcanaNagpur, IN
    As our Lead Security Engineer, you'll own and elevate Arcana's overall security posture - cloud, on-prem, and everything in between. You'll design and enforce policies, automate controls, and harden...Show moreLast updated: 30+ days ago
    • Promoted
    (Urgent) Compliance Analyst

    (Urgent) Compliance Analyst

    ACA GroupIndia
    ACA Group is the leading governance, risk, and compliance (GRC) advisor in financial services.We empower our clients to reimagine GRC and protect and grow their business. Our innovative approach int...Show moreLast updated: 13 days ago
    • Promoted
    • New!
    (Apply in 3 Minutes) Cyber Security Analyst

    (Apply in 3 Minutes) Cyber Security Analyst

    Quess Corp LimitedNagpur, Maharashtra, India
    Exp - 5+ Notice - Immediate - 15days Work Mode - Remote About the Role : The purpose for this role ‘SOAR Developer’ is to provide SOAR development expertise and contribute to the success of the C...Show moreLast updated: 4 hours ago
    • Promoted
    Lead Security Engineer

    Lead Security Engineer

    interface.ainagpur, maharashtra, in
    Our cutting-edge Generative AI-powered platform serves over 100 banks and credit unions, delivering hyper-personalized customer interactions across voice, chat, and employee-assisting solutions.To ...Show moreLast updated: 30+ days ago
    • Promoted
    Security Architect

    Security Architect

    Tata Consultancy Servicesnagpur, maharashtra, in
    Experience in datacentre, cloud and network.Hands-on experience in AWS and GCP cloud.Experience in Containers, Kubernetes and micro services. Experience in advance networking in public cloud.Terrafo...Show moreLast updated: 5 days ago
    • Promoted
    Compliance Analyst

    Compliance Analyst

    PhenomIndia
    We're seeking a full-time, phenomenal Compliance Analyst to ensure Phenom's adherence to regulatory and industry information security and privacy standards. This role involves conducting audits, man...Show moreLast updated: 5 days ago
    • Promoted
    Business Analyst – SOC 2 Compliance - contract

    Business Analyst – SOC 2 Compliance - contract

    Gravity Infosolutions, Inc.Nagpur, IN
    Role : Business Analyst – SOC 2 Compliance profiles.We are seeking a highly skilled Business Analyst with strong expertise in process assessment, compliance frameworks, and system mapping to support...Show moreLast updated: 5 days ago
    • Promoted
    Lead Regional Compliance Specialist

    Lead Regional Compliance Specialist

    Securitas GroupNagpur, IN
    Lead Regional Compliance Specialist - APAC.India – open to Chennai / Hyderabad / Pune.We are a dynamic, dedicated team that provides management and support for a global guarding services account that s...Show moreLast updated: 30+ days ago
    • Promoted
    ▷ 15h Left : Security Analyst

    ▷ 15h Left : Security Analyst

    Tata Consultancy ServicesIndia
    Sailpoint identity engineer certification - Minimum 8+ Years of Experience on Sailpoint IIQ product, java and Angular - In-Depth knowledge of Sailpoint Integration with 3rd party tools.DevOps skill...Show moreLast updated: 9 days ago
    • Promoted
    Application Security Engineer

    Application Security Engineer

    FoodsmartNagpur, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 3 days ago
    • Promoted
    IAM Analyst

    IAM Analyst

    Dexian IndiaNagpur, IN
    Contractual Role / Freelancer-3 Months.Skills-IAM, Data analysis or validation (Excel, VLookup, Macro), Query Language (SQL or PowerShell) , Python (Good-to-Have). Need basic IAM conceptual Knowledge....Show moreLast updated: 20 days ago
    • Promoted
    Lead Data Engineer & ML Analyst

    Lead Data Engineer & ML Analyst

    Eltropynagpur, maharashtra, in
    We’re looking for someone with.Design and manage scalable ETL / ELT pipelines using AWS Glue, Redshift, S3, and Kafka / Kinesis. Architect and implement data lake and warehouse solutions following best ...Show moreLast updated: 20 days ago
    • Promoted
    • New!
    ▷ Immediate Start : Senior Compliance Analyst

    ▷ Immediate Start : Senior Compliance Analyst

    SignzyIndia
    Signzy is a digital trust system.We provide identification, background checks, forgery detection.Our biometric user authentication system and blockchain-based digital trail.This increases complianc...Show moreLast updated: less than 1 hour ago
    • Promoted
    Cyber Security Analyst

    Cyber Security Analyst

    Quess Corp LimitedNagpur, IN
    The purpose for this role ‘SOAR Developer’ is to provide SOAR development expertise and contribute to the success of the Cyber Security Operations center’s (CSOC) SOAR enhancement program by implem...Show moreLast updated: 5 days ago
    • Promoted
    Forward Deployed Analyst (Ex-IB / PE / HF / Buyside)

    Forward Deployed Analyst (Ex-IB / PE / HF / Buyside)

    ArcanaNagpur, IN
    Forward-Deployed Analyst – Portfolio Intelligence.Arcana builds institutional-grade analytics for leading hedge funds and asset managers. We’re hiring exceptional analysts to partner with portfolio ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Security Compliance Analyst(6 to 8 Years) Pune

    Senior Security Compliance Analyst(6 to 8 Years) Pune

    Energy ExemplarIndia
    Energy Exemplar is looking for a Senior Security Compliance Analyst who will perform duties related to compliance certifications, continuous monitoring of the controls and operational security admi...Show moreLast updated: 5 days ago
    • Promoted
    Workday Security System Analyst

    Workday Security System Analyst

    AvalaraNagpur, IN
    Avalara is an AI-first company.We expect every engineer, manager, and to actively leverage AI to enhance productivity, quality, innovation, and customer value. AI is embedded in our workflows, and p...Show moreLast updated: 5 days ago
    • Promoted
    Security Engineer (Detection and Response)

    Security Engineer (Detection and Response)

    FoodsmartNagpur, IN
    Foodsmart is the leading telenutrition and foodcare solution, backed by a robust network of Registered Dietitians.Our platform is designed to foster healthier food choices, drive lasting behavior c...Show moreLast updated: 3 days ago
    • Promoted
    Senior Workday SCM Analyst

    Senior Workday SCM Analyst

    Intellectt IncNagpur, IN
    Role : Workday SCM (Senior Analyst role - Project and O&M).Primary Responsibilities may include : .Compliance with business unit requirements. Build supply Chain optimizations and new features.Build an...Show moreLast updated: 4 days ago
    • Promoted
    Cyber Security Architect

    Cyber Security Architect

    Tata Consultancy Servicesnagpur, maharashtra, in
    In depth knowledge of IAM for AWS.Architect and automate the management of AWS Cloud IAM services.Support the Identity and Access Management team within the Technology Risk & Information Security O...Show moreLast updated: 5 days ago