Job
Description
Zoho is one of the world's most prolific software companies. With 55+ applications in nearly every major business category, including sales, marketing, customer service, accounting and back office operations, and an array of productivity and collaboration tools built from the ground up, Zoho has the depth and breadth to solve even the most complex business challenges. With more than 120 million+ users and over 18,000 employees across the globe, hundreds of thousands of companies rely on Zoho, every day to run their businesses, including Zoho itself. With 29 years of being private, bootstrapped and profitable, we understand what it takes to run a sustainable, resilient business . Job Title: Information Security Compliance Analyst Experience: 1 to 3 years Job Location: Chennai, Tamil Nadu Job Summary: The Information Security Compliance Analyst is responsible for ensuring the organization's adherence to all applicable laws, regulations, and internal policies, including PCI DSS, ISO standards, ISMS, QMS, and Incident Management. They will develop, implement, and manage compliance programs and processes to identify and mitigate compliance risks in these specific areas while incorporating RACI matrices, defining objectives, and establishing a communication plan. Roles and Responsibilities: Develop and maintain PCI DSS compliance programs and procedures. Ensure secure handling of payment card data and adherence to PCI DSS requirements. Develop and maintain RBI PA/PG regulations - SAR PSS PAPG & SAR DL compliance programs and procedures. Ensure frequent Board, IT strategy & IT steering committee meetings and adherence to RBI regulatory requirements. Periodic report to the RBI instructed reports on a regular basis about their activities and compliance with regulations. Develop and maintain ISMS & QMS to safeguard the organization's sensitive information and manage information security risks. Implement security controls and conduct regular security assessments and audits. Define and track specific compliance objectives and key results to measure the effectiveness of compliance programs. Develop and execute a communication plan to ensure that compliance-related information is effectively disseminated throughout the organization. Establish clear incident escalation procedures in the RACI matrix. Develop and update compliance policies, procedures, and standards for PCI DSS, ISO, ISMS, QMS, and Incident Management. Conduct regular risk assessments for compliance in all relevant areas to identify potential compliance risks. Collaborate with other departments to assess the impact of regulatory changes on the organization. Organize and conduct training sessions and workshops for employees to raise awareness of compliance requirements related to all areas mentioned above. Ensure that employees are knowledgeable about compliance policies and expectations in these areas. Qualifications: 1 - 3 years prior experience Excellent communication and interpersonal skills. Analytical and problem-solving abilities. Attention to detail and a strong sense of ethics. Strong knowledge of PCI DSS, ISO standards, ISMS, QMS, and Incident Management. Show more Show less
