Compliance auditor

Posted: Nov. 5, 2022, 9:18 a.m. - Full Time - Pune


  • Graduation in IT or Computers/ Expertise in Information Security
  • Certified Information Systems Security Professional (CISSP), or
  • Certified Lead Assessor for ISMS (Ex. LA ISO 27001 / LI ISO 27001), or
  • Certified Information Security Manager (CISM) of ISACA, or
  • Certified Information Systems Auditor (CISA) of ISACA, or
  • Diploma in Information Systems Audit (ISA or DISA) of ICAI or
  • Any other formal IT Security related qualification



  • Lead the project and maintain &; track the project progress and submit progressreport on daily basis.
  • Planning, organizing, and performing Internal/Client audits for conducting
  • Monthly/Quarterly Compliance Audit, Bank Audit (IS Audit &; VAPT), Branch Audit,
  • Migration Audit, Consistency Audit, SOC 2, ISO 27001, GDPR, TISAX
  • implementation, and other Audits &; Implementations as per project need.
  • Responsible for GAP Analysis &; recommend GAP Implementation process to clients wherever possible.
  • Manage project timelines, deadlines, and expectations - including customer interactions
  • Gain knowledge through various courses whenever necessary and be updated to current Tools &; Techniques used in the market.
  • Research emerging security topics and new attack vectors
  • Create and delivers presentations to senior management on project goals and plans, progress reporting, updates, milestones, metrics, risks, and issues.
  • Develop proposals, project initiation documents, and revise complex project plans and budgets, work with client to understand complex problems and focus on bringing issues to resolution, escalating as necessary to meet timelines.
  • Perform risk assessment and in-depth cyber security audit for Banks with respect to the guidelines laid down by RBI
  • Representing the Company for Company presentations and assisting in handling Client questionnaire.
  • Plan and Conduct Training and awareness sessions along with workshops for schools/colleges/corporates for information security awareness.
  • Responsible for generating vulnerability assessment reports
  • Creates and updates documentation related to assessments
  • Identify and resolve false positive findings in assessments
  • Assisting with testing of the software’s used to conduct Audits and tracking actions.
  • Constantly Updating &; Establishing IT Policies for the organization and Clients as per requirement.
  • Assisting other departments in any segment of Company work.