Information Security Analyst
Bengaluru, Karnataka, India - Remote
Decision Foundry
Welcome to Decision Foundry!
We are both a high growth startup and one of the longest tenured Salesforce Marketing Cloud Implementation Partners in the ecosystem. Forged from a 19-year-old web analytics company, Decision Foundry is the leader in Salesforce intelligence solutions.
We win as an organization through our core tenets. They include:
- One Team. One Theme.
- We sign it. We deliver it.
- Be Accountable and Expect Accountability.
- Raise Your Hand or Be Willing to Extend it.
https://decisionfoundry.com/
About Role:
The Information Security Analyst will mainly assist InfoSec & IT Department in managing Governance, Risk, Compliance and Privacy related activities. Further ensuring the Continuous Improvement activities are taken in timely basis and monitored. Working closely with the Internal and External Auditors in managing the Certification programs.
Job Description:
- Manage the organization's adherence to industry standards and regulations such as ISO, SOC, GDPR, DPDP, and HIPAA.
· Participate in internal and external audits to ensure successful compliance and certification programs.
- · Develop IT security policies, standards, procedures, and controls, and enhance them periodically to meet organizational and industry requirements.
- Serve as the sole point of contact for managing all client questionnaires related to the organization's IT security and risk posture.
- Develop data flow diagrams and manage data security controls throughout the organization.
- Respond to privacy-related requests from internal and external stakeholders.
- Manage the Information Security portal for continuous compliance, fulfilling all requirements of the compliance program.
- Coordinate and follow up with respective departments to ensure adherence to the Information Security Program.
- Develop and conduct the Information Security Awareness and Employee Training Program.
- Monitor and report on Security Dashboards, IT & Security Metrics, Risk Register, etc.
Requirements
- Experience in IT Security & GRC Domain.
- Experience in managing data security and controls.
- Knowledge of various industry standards and best practices, as well as legal acts and policies.
- Interest in creative designs and content writing related to Information Security.
- Experience in managing reporting operations.
- Effective communication skills.
- Flexibility to work in different time zones as per project requirements (This does not imply night shifts).
Should have -
- 4-6 years of experience in the Information Security domain, preferably in the GRC domain.
- Degree or Diploma in IT is essential.
- Certifications like CISM, CISA, or Security+ are preferred.
- Proficiency in English is required for content and policy drafting.
- ISO 27001 Lead Implementor/Auditor Certification is an added advantage
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits CISA CISM Cloud Compliance GDPR Governance HIPAA ISO 27001 Privacy SOC
Perks/benefits: Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open DoD-related jobs