Develop and implement an information security compliance program based on regulatory requirements and industry best practices, such as ISO 27001, SOC2, TISAX etc. Collaborate with client’s internal team/stakeholders to establish policies, procedures, and controls to ensure compliance with applicable regulatory requirements. Develop and implement policies and procedures to address information security risks, incidents, and data protection requirements. Conduct a risk assessment to identify and evaluate the risks associated with the organization's information assets, systems, and processes and develop remediation plan. Provide guidance to internal team to ensure that employees understand their roles and responsibilities in protecting the organization's information assets. Ensure that the organization complies with relevant laws, regulations, and standards related to information security, data protection, and privacy. Conduct periodic audits and assessments of the organization's information security compliance posture to ensure adherence to regulatory requirements and industry best practices. Monitor and track remediation efforts and progress to ensure compliance issues are addressed in a timely and effective manner. Provide guidance and support to internal teams to ensure compliance with information security policies and procedures. Develop and implement an incident response plan to handle information security incidents in a timely and effective manner. Develop and implement business continuity plan to ensure the business continuity in the event of a disruptive incidents. Stay up-to-date with the latest regulatory changes and industry best practices related to information security compliance and make recommendations for process improvements.