[{"Remote_Job":false , "Posting_Title":"IT Compliance and Security Analyst" , "Is_Locked":false , "City":"Noida" , "Industry":"IT Services","Job_Description":"
Greetings from SDG!!
SDG is a global cybersecurity, identity governance, risk consulting, and advisory company that advises and partners with clients to address their complex security, compliance, and technology needs and delivers on strategy, transformation, and long-term management of their cybersecurity and IAM programs.
We help some of the largest brands in the world realize their business vision through a mix of strategic advice, expert systems integration, relevant technology recommendations, and smart managed services. Our value proposition to our customers is that we bring thought leadership to the table in each of our domains, a passion for customer success, and an eye to risk management in everything we do.
We are looking for you to join our SDG family!! Job Summary:
The IT Compliance and Security Analyst is responsible for ensuringthe organization\u2019s IT infrastructure, policies, and processes comply withregulatory and industry security standards. This role involves conducting riskassessments, managing audits, enforcing security policies, and mitigatingpotential vulnerabilities to protect organizational assets.
Key Responsibilities:
1. IT Compliance & Risk Management
- Ensure adherence to IT security compliance frameworks such as SOC 2, ISO 27001, NIST, HIPAA, GDPR, and PCI-DSS.
- Conduct risk assessments and gap analyses to identify compliance risks and recommend mitigation strategies.
- Assist in the development, implementation, and maintenance of IT security policies and procedures.
- Stay updated on evolving compliance regulations and security best practices.
2. Security Monitoring & Incident Response
- Review security alerts and investigate potential threats or incidents.
- Support incident response activities, including forensic analysis, reporting, and mitigation plans.
- Work with IT teams to ensure security controls are implemented and maintained effectively.
3. Audit & Documentation
- Own internal and external security audits from IT perspective, including evidence collection and audit coordination and track to closure.
- Maintain records and documentation related to security controls, compliance reports, and risk assessments.
- Liaise with stakeholders and follow up diligently until issues are fully resolved or mitigated.
- Take a 360-degree approach to identifying and prioritizing required evidence, ensuring it is provided correctly the first time (FTR \u2013 First Time Right).
- Ensure all compliance tasks are completed on time and tracked properly, preventing any delays or breaches that could lead to non-compliance.
- Track audit findings and ensure timely remediation of identified gaps.
- Conduct rigorous follow-ups on all ongoing tasks, ensuring nothing is overlooked and providing timely updates to the respective stakeholders.
4. Security Awareness &Training
- Conduct compliance awareness training programs for employees.
- Educate teams on compliance best practices, requirements.
5. Vendor & Third-PartyCompliance
- Assess third-party vendors for compliance risks.
- Ensure vendor contracts align with IT security policies and regulatory requirements.
- Technical understanding of IT infrastructure-related compliances ensures adherence to compliance standards and all processes.
Requirements Required Qualifications & Skills:
- Bachelor\u2019s degree in information security, IT, Computer Science, or a related field.
- 5+ years of experience in IT compliance, risk management, or audit functions.
- Able to discuss past role(s) to demonstrate capabilities for this role.
- Knowledge of security frameworks such as ISO 27001, SOC 2, NIST, GDPR, HIPAA, or PCI-DSS.
- Experience with IT governance, risk assessment, and regulatory compliance.
- Strong analytical, problem-solving, and communication skills.
- Certifications such as CISA, CEH, or Security+ are a plus.
Preferred Skills:
- Familiarity with security tools such as SIEM, vulnerability scanners, patch management, and endpoint protection
- Experience in cloud security compliance (AWS, Azure, GCP).
- Understanding of Data Loss Prevention (DLP) and Identity & Access Management (IAM).
- Ability to work collaboratively with IT, Legal, and business teams.
Benefits - Amazing People
- Amazing Customers
- Career growth
- Supports lifelong learning
- Opportunity to work on new technologies
- Flexible work environment
- Work-Life Balance
- Employee Centric
- Supportive Leadership Team
- Start-up environment in an established company of over 25 years.
","Job_Type":"Full time","Job_Opening_Name":"IT Compliance and Security Analyst","State":"Uttar Pradesh" , "Currency":"INR" , "Country":"India" , "Zip_Code":"201301" , "id":"35682000009343011" , "Publish":true , "Date_Opened":"2025-06-23" , "Keep_on_Career_Site":false}]
