Riskpro India
Location
Coimbatore | India
Job description
Hiring -Compliance Engineer
Location -Coimbatore.Channai
Candidate can be from Coimbatore or Chennai,
7+ years of experience.
With strong SOC IT internal audit, compliance implementation, documentation policies, etc.
Can join Immediate.
Position Overview:
A Security Compliance Engineer plays a critical role in ensuring that an organization's information systems and processes comply with relevant security standards, regulations, and policies. This role involves assessing, implementing, and maintaining security controls to safeguard sensitive data and protect the organization from potential security threats. The Security Compliance Engineer collaborates with cross-functional teams to identify and address security compliance gaps, conducts risk assessments, and recommends improvements to enhance overall security posture.
Key Responsibilities:
1. Security Compliance Assessments:
· Conduct regular security assessments to evaluate the organization's compliance with industry-specific regulations, standards, and internal policies.
· Identify and document security vulnerabilities, weaknesses, and non-compliance issues.
2. Policy Development and Implementation:
· Develop and implement security policies, procedures, and guidelines to ensure compliance with applicable laws and industry standards.
· Work closely with stakeholders to communicate and enforce security policies across the organization.
3. Risk Management:
· Conduct risk assessments to identify potential security risks and recommend mitigation strategies.
· Collaborate with IT and business units to prioritize and address identified risks.
4. Regulatory Compliance:
· Stay abreast of changes in security regulations, laws, and industry standards.
· Ensure the organization's security practices align with regulatory requirements and proactively address compliance issues.
5. Security Audits:
· Coordinate and participate in internal and external security audits.
· Prepare documentation and evidence to demonstrate compliance during audits.
6. Security Awareness and Training:
· Develop and deliver security awareness training programs for employees.
· Foster a culture of security awareness and compliance throughout the organization.
7. Incident Response:
· Collaborate with the incident response team to develop and implement security incident response plans.
· Participate in incident investigations related to compliance breaches.
8. Documentation and Reporting:
· Maintain accurate and up-to-date documentation of security compliance activities.
· Generate reports and metrics to communicate the status of security compliance to relevant stakeholders.
Qualifications:
· Bachelor's degree in Computer Science, Information Security, or a related field.
· Relevant certifications such as CISSP, CISA, or CISM are preferred.
· Proven experience in security compliance, risk management, or a related field.
· Strong understanding of security frameworks, standards, and regulations (e.g., ISO 27001, SOC 2, PCI DSS , NIST, GDPR , CCPA ).
· Knowledge of security technologies, network protocols, and information security best practices.
· Excellent communication and interpersonal skills.
Personal Attributes:
· Analytical mindset with attention to detail.
· Ability to work independently and collaboratively in a team.
· Strong problem-solving and decision-making skills.
· Commitment to staying current with industry trends and advancements in security
Job tags
Salary
