Summary: -
As the part of IT Security and Compliance, you need to ensure Compliance activities of HCIN as per the established procedures, applicable regulations, and business demands
Job Responsibilities: -
- Develop corporate security policies, standards, and procedures. Propose changes to existing policies and procedures to ensure operating efficiency and regulatory compliance.
- Perform technical audits of (IT General Controls, Information Security, SDLC, Application Security, and Operation), vendor audits, system audits
- Determine audit scope, design testing strategies, test, evaluate, and document controls, identify control gaps and report audit issues based on significance, risk, and impact.
- Performs periodic reviews of process controls and technical controls to ensure continuous adherence to processes and regulations. Collects and analyzes relevant documentation, including past audit findings, policies and standards, business process flows, and technical diagrams.
- Manage follow-up on open audit issues and facilitate agreements with business process owners to ensure timely closure of action plans.
- Prepares and presents audit status reports to all levels of management periodically.
- Well versed with different compliance standards like ISO 27001, RBI regulations etc.
Desired Skills: -
- Proficient with BE / B. Tech / MBA degree with work experience in related field preferred.
- Should have relevant experience of more than 5 Years.
- IT Risk framework knowledge.
- Information technology controls for financial and other systems
- Information of regulatory compliance (e.g. RBI, SEBI, UIDAI)
- Good analytical reasoning and problem-solving skills
- Knowledge of web application and mobile application architecture will be an advantage
- ISO 27001 or CISA certification preferred
