Performing daily random audits of computer systems to check the effectiveness of IT controls
Own and drive compliance activities for each location operates from and be responsible for Compliance
Review and update all mandatory MR/ISM manuals, and procedure documents
Minimize audit observations (NC's) and ensure good rating for in external /client audits.
Plan and conduct Risk & Compliance awareness test to employees at 6-month interval
To monitor and ensure continual improvement on QMS/ISMS/SOC and other security audits
Coordination with software team/other process owners on any requirements related to Security and Quality
Coordinate and guide the stakeholders in reporting and closing Audit observations and incidents.
Drive SOC Assessments, ISO 27001 audits and HITRUST Certification assessments and direct teams according to the control requirements.
Coordinate with multiple stakeholders and complete all Client Security questionnaires on time.
Qualification:
Any graduate with good communication skills
Overall IT experience of 8 to 12 years, with a minimum of 6 to 8 years in IT Security, Audit, or Compliance roles.
Experience in handling SIEM tools, knowledge of ISO 27001 requirements, HITRUST and HIPAA Controls and Vulnerability assessments are a plus
Certifications like ISO 27001, Security+, or any Security certification is an added advantage