Security and Compliance Analyst

As a Security and Compliance Analyst with 2-4 years of experience, you will be an integral part of our dynamic and challenging team. Your role will entail the following responsibilities: - Quick learner to grasp the requirements and translate them into actions. - Liaison with various business teams and vendor teams. - Motivated to take on any challenge of duties assigned and explore and learn through such opportunities. - Good analytical and research skills. - Excellent problem-solving skills. - Multitasking skills and team-oriented. - Good communication skills. - Deliver and report on the status of all IT audit recommendations. - Maintain, monitor, and follow up on BUs Risk Assessment program according to regulatory requirements. - Assist with the development of control frameworks to meet business and regulatory requirements. - Develop and maintain security baseline for various platforms and tech/tools used. - Assisting in developing security and compliance strategies. - Manage, and coordinate external and internal audits, and due diligence checks. - Maintain Risk Assessment and Treatment tracker as per calendar. - Well-versed with local regulatory and international standards like ISO27001-2013, HiTrust, HIPAA, SOC1, SOC2, GDPR, US Privacy Law, Indian Privacy Law, India IT Act, NIST800-53, NIST Supply Chain Security framework, NIST framework to address Vendor and Supplier Security management, etc. Your skills and qualifications should include: - BE/BTech/B.Sc Comp/BCA/MCS/M.Sc Comp/IT. - 2-4 years experience along with certs in CEH, CHFI, or attended training of SANS. - Basic knowledge of WINDOWS, Linux, GP, AD, Network techs, and tools. - Ability to understand and develop an approach and framework for Cloud security and monitoring. - Experience with SIEM, FIM, Symantec AV, SOAR, EDR, Access Control. - Experience on SOC dashboards, developing SOPs and documents for tools/techs/workflows. - Threat Hunting and threat modeling are a plus. - Secure SDLC exposure is nice to have and should be aware of the cloud, and DevOps. - Well-equipped with the process of monitoring, examining, investigating, and managing security incidents. - Experience in MIS reporting through presentations and dashboards. If you have any questions, please direct your inquiries to careers@simplifyhealthcare.com.,