Manager - IT Compliance

Job Title: Manager- IT Compliance

Job Description:

The IT Compliance Specialist is responsible for ensuring that an organization's information technology systems and processes comply with relevant regulations, policies, and standards. They play a critical role in maintaining the security, integrity, and confidentiality of data within the organization.

Responsibilities:

Develop and implement IT compliance policies and procedures: The IT Compliance Specialist is responsible for creating and maintaining policies and procedures that align with applicable regulations and standards. They ensure that all employees are aware of these policies and procedures and follow them consistently.

Conduct compliance audits: The IT Compliance Specialist performs regular audits of the organization's IT systems, processes, and controls to assess compliance with internal and external requirements. They identify any non-compliance issues and recommend corrective actions to address them. Serve as the subject matter expert on PCI DSS requirements and ensure the organization's compliance with the standard. Evaluate and enhance the organization's ITGC framework to ensure the effectiveness of internal controls and risk management.

Monitor regulatory changes: The IT Compliance Specialist stays up to date with relevant laws, regulations, and industry standards related to IT compliance. They assess the impact of these changes on the organization and make necessary updates to policies and procedures.

Provide compliance training and awareness: They develop and deliver training programs to educate employees on IT compliance requirements, best practices, and the importance of data security. They also promote a culture of compliance and raise awareness of potential risks and vulnerabilities.

Collaborate with IT and other departments: The IT Compliance Specialist works closely with IT teams, legal departments, and other relevant stakeholders to ensure that compliance is integrated into IT processes, system design, and implementation. They provide guidance and support in implementing necessary controls and security measures.

Assist in compliance reporting: They prepare and submit compliance reports to regulatory bodies or external auditors as required. They gather and analyse data, generate reports, and ensure accuracy and completeness of information.

Incident response and investigation: In the event of a security breach or violation, the IT Compliance Specialist participates in incident response activities, conducts investigations, and assists in implementing corrective measures to prevent future occurrences.

Stay informed about emerging trends and technologies: They continuously update their knowledge and skills regarding IT compliance, emerging technologies, and industry best practices. They assess the applicability of new technologies and ensure that compliance considerations are adequately addressed.

Requirements:

· Bachelor's degree in computer science, information systems, or a related field (or equivalent work experience).

· Strong understanding of IT compliance frameworks, regulations, and standards (e.g., GDPR, HIPAA, ISO 27001).

· In-depth knowledge and experience with PCI DSS compliance requirements and implementation.

· Strong understanding of IT General Controls (ITGCs), including access controls, change management, and segregation of duties.

· Experience in conducting compliance audits and assessments.

· Knowledge of data privacy and security principles and practices.

· Familiarity with IT risk management and control frameworks.

· Excellent communication skills, both written and verbal, to effectively convey compliance requirements and recommendations.

· Strong analytical and problem-solving skills.

· Attention to detail and ability to work independently.

· Relevant certifications (e.g., CISA, CISSP, CISM) are a plus.

Job Types: Full-time, Permanent

Pay: Up to ₹1,200,000.00 per year

Benefits:

• Health insurance
• Paid sick time
• Provident Fund

Education:

• Bachelor's (Preferred)

Experience:

• IT Compliance: 5 years (Required)

License/Certification:

• CISM, CISA (Required)

Willingness to travel:

• 25% (Preferred)

Work Location: In person