CrawlJobs Logo

It Security Audit And Compliance

India, Noida · Job Posted June 29, 2026
Apply Position
Job Link Share

Job Responsibility

  • Develop and maintain an effective audit and compliance program strategy based on client requirements
  • Evaluate, interpret, and ensure clarity of contractual audit and compliance obligations and client objectives
  • Implement and drive governance, risk, and compliance approach to promote ongoing audit readiness and to contribute toward effective IT security hygiene and management of risk
  • Participate in audit lifecycle including internal/external audits and assessments
  • Provide oversight and guidance for internal/external audits and assessments
  • Drive recurring internal assessment of controls environment to ensure compliance with information security policies and established security controls
  • facilitate remediation
  • Maintain annual audit calendar for supported client
  • Maintain IT security controls library and documentation repository for supported client
  • Coordinate the collection of audit evidence and provide timely responses to support audits and/or assessments from internal/external auditors/assessors
  • Drive and monitor remediation efforts related to internal/external audit exceptions, findings, and other relevant scope
  • Coordinate and perform recurring logical access reviews and drive post-review actions
  • Work with technology teams and internal and external support staff to: Communicate and clarify audit evidence and/or compliance requirements
  • Socialize audit schedules and manage timelines and due dates
  • Develop, contribute, and/or improve process, policy, and procedure documentation
  • Track, maintain, and report on audit program requirements
  • Maintain alignment with contractual Service Level Agreements related to Audit & Compliance program including support tickets, remediation, and other key measures
  • Collaborate as part of a cross-functional team to evaluate audit and compliance scope to enable effective onboarding of new clients to the compliance program portfolio
  • Drive governance and lead effort to enable automation of key Compliance activities via GRC platform including building expertise to fully leverage toolset

Requirements

  • Ability to self-manage work schedule to ensure timely delivery of audit and compliance services
  • Ability to drive IT teams and escalate where necessary to ensure timely delivery of audit and compliance services
  • Solid critical thinking and problem-solving skills
  • Ability to manage competing priorities and comfortable to work through ambiguity
  • Minimum 2 years of hands-on information technology operations experience and a strong knowledge of IT security standards and best practices
  • Minimum of 2 years recent audit experience spanning at least two full cycles of any two of the following: SSAE16 SOC1 Type 2, SSAE16 SOC2 Type 2, SOX, ISO/IEC 27001:2005, or similar
  • Strong understanding and application of IT Security frameworks such as: PCI DSS, ISO/IEC 27001:2005, CIS, NIST 800-53 etc.
  • Strong understanding of IT general controls
  • Ability to work within a fast-paced environment within an ITO organization
  • Strong interpersonal relationship building and business acumen

Nice to have

  • Strong oral and written communications
  • Experience working in a matrixed cross-functional environment within a service organization
  • Experience in a client-facing role
  • One or more of the following professional certifications: CISA, CISSP, CISM, CRISC, CGEIT, ITIL, GSNA, GRCP, etc.

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

It Security Audit And Compliance

8 matching positions

Senior IT Security Compliance Analyst

The Compliance Analyst is a member of the Nintex Security Team and partners with...
Location
Location
Malaysia , Kuala Lumpur
Salary
Salary:
Not provided
nintex.com Logo
Nintex
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Information Technology, Risk Management, Business, or a related field, or equivalent practical experience.
  • A proven track of at least 5 years working experience with common compliance and assurance frameworks such as SOC 2, ISO/IEC 27001, GDPR, HIPAA, FedRAMP, or similar international regulatory standards.
  • Relevant certifications are preferred but not required, including: CISA, CRISC, CISSP, CCSK, ISO 27001 Lead Implementer/Auditor, or related compliance or risk certifications.
  • Familiarity with common IT infrastructure, SaaS based cloud services, identity and access management concepts, and security tooling sufficient to assess control design and operational effectiveness (hands‑on administration is not required).
Job Responsibility
Job Responsibility
  • Coordinate the full compliance lifecycle, including gap analysis, remediation planning, audit execution, and continuous compliance monitoring.
  • Prepare the organization for new and evolving compliance frameworks by coordinating assessments, audits, self-assessments, and evidence collection and review activities.
  • Develop, maintain, and review compliance related documentation to support training, awareness, and sustained operational effectiveness.
  • Support the Revenue team by answering Security-related questions from customers and prospects.
  • Assist with curating content for ongoing Security training requirements, ensuring completion targets are met.
  • Collaborate with globally distributed stakeholders across Engineering, IT, Product, HR, Legal, and other business functions to support consistent implementation of compliance requirements.
  • Serve as a primary liaison for audit coordination, including facilitating interviews, walkthroughs, and evidence requests.
  • Provide guidance and training to internal teams on compliance initiatives and audit readiness.
  • Support adherence to Nintex governance, risk, and compliance standards by assisting with the creation, review and updates of information security policies and procedures.
  • Ensure compliance activities align with internal guidelines and approved risk management practices.
What we offer
What we offer
  • Global Gratitude and Recharge Days
  • Flexible, paid time off policy
  • Employee wellness programs and counseling resources
  • Meaningful peer recognition and awards
  • Paid parental leave
  • Invention/patenting assistance
  • Community impact, paid volunteer time, and opportunities
  • Intercultural learning and celebration
  • Multiple tools through which to learn and grow, and an incredible global community
  • Fulltime
Read More
Arrow Right

Compliance And Security Analyst

Robert Half is actively partnering with an Austin-based client to identify a Com...
Location
Location
United States , Austin
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2+ years of experience in compliance, security, or audit-related roles
  • Hands-on experience supporting SOC 2 (or similar) audits, including evidence collection
  • Experience with compliance automation or GRC tools (e.g., Drata or similar platforms)
  • Familiarity with vulnerability management and/or application security processes (e.g., penetration testing)
  • Experience working cross-functionally with technical teams such as Engineering, IT, or Security
  • Extensive organizational skills with high attention to detail
  • Ability to manage multiple priorities in a fast-paced environment
Job Responsibility
Job Responsibility
  • Collect, organize, and maintain documentation required for SOC 2 and similar compliance audits
  • Partner with Engineering, IT, Security, and other internal teams to gather required artifacts and documentation
  • Utilize compliance management platforms to track controls, monitor progress, and ensure timely completion of tasks
  • Assist in audit preparation by ensuring all materials are accurate, complete, and audit-ready
  • Collaborate with third-party auditors to fulfill requests and provide supporting documentation
  • Identify gaps or inconsistencies in compliance documentation and drive resolution with stakeholders
  • Support ongoing compliance initiatives and continuous process improvements
  • Track and assist in remediation of vulnerabilities identified through scans and penetration testing
  • Coordinate logistics for periodic security assessments, including scoping, scheduling, and documentation
  • Support documentation and validation of secure development practices and security controls
What we offer
What we offer
  • Healthcare (medical, dental, and vision plans)
  • 401(k) and retirement plans
  • Commuter benefits
  • Employee and vendor discounts
  • Employee Assistance Program (EAP)
Read More
Arrow Right

Data Governance, Compliance and Security Lead

Over the past 12 months, AO has seen incredible growth, and with ambitious plans...
Location
Location
United Kingdom , Bolton
Salary
Salary:
Not provided
ao.com Logo
AO
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Lead the charge on defining and delivering AO’s Data Governance, Security & Compliance strategies
  • Own the roadmap and drive the projects that bring your strategy to life
  • Get stuck in—implementing standards, tools and third-party tech
  • Take ownership of audit points, risk registers and security requirements for the Data team
  • Solve problems with impact—propose and deliver solutions to close audit gaps
  • Build the model—create and roll out our operating framework across Tech and the wider business
  • Shape the conversation—chair the Data Governance Board
  • Set the standard—define data processes, best practices and design patterns
  • Drive awareness—lead literacy initiatives to embed governance, security and compliance
  • Influence at every level—build strong relationships with senior leaders, stakeholders and teams
Job Responsibility
Job Responsibility
  • Take the lead on shaping and delivering our group-wide approach to Data Security, Compliance and Governance
  • Build something from the ground up
  • Bring together strategy, stakeholders and solutions under one roof
  • Define the roadmap, deliver the solutions, and make the case for scaling the team
  • Embed best practice into our 24/7 operations and every change project
  • Work closely with other Data leads and partner with teams across AO
  • Manage a portfolio of projects that improve how we govern data
  • Engage with stakeholders, vendors and third parties to keep our data capabilities sharp and scalable
What we offer
What we offer
  • 25 days holiday plus bank holidays (increasing to 27 days after 2 years)
  • Pension: Contribute 5% of annual salary and we'll do the same
  • Be a VIP at the AO Arena (opportunities to win free tickets and pre-sale access)
  • Health & wellbeing: discounted gym membership, onsite spa, Help @ Hand scheme (virtual GP’s, Mental Health support)
  • Discounts: exclusive discounts across our product range
  • Family leave: Enhanced Maternity, Paternity and Adoption leave
  • 2 fully paid days a year to donate time to any charity
  • On site perks: free on site parking, complimentary breakfast, subsidised in house coffee shop
  • Fulltime
Read More
Arrow Right

It Security & Compliance Lead (Healthcare) - Administration

Premium Health’s Information Technology (IT) department is based in our Administ...
Location
Location
United States , Brooklyn
Salary
Salary:
Not provided
premiumhealth.org Logo
Premium Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in IT security, compliance, or risk management
  • Experience in healthcare or regulated environments (HIPAA strongly preferred)
  • Experience managing or supporting security programs, audits, and compliance initiatives
  • Strong understanding of identity and access management, vendor risk, and security controls
  • Ability to work cross-functionally and translate security requirements into practical processes
  • Hands-on experience administering or supporting security technologies and operational controls, including areas such as identity and access management, endpoint protection, email security, MFA/conditional access, DLP, or SaaS security administration
Job Responsibility
Job Responsibility
  • Own and operate the organization's security program, ensuring policies, procedures, and controls are consistently implemented
  • Maintain and update security policies, standards, and procedures
  • Ensure alignment with regulatory and organizational requirements
  • Support ongoing maturation of the organization's security posture and controls framework, including alignment with industry-standard practices such as NIST
  • Stay current on emerging cybersecurity threats, vulnerabilities, technologies, AI-related risks, and evolving industry best practices
  • Administer and support security technologies and operational controls across the environment, including email security, endpoint protection, identity and access management, MFA, conditional access, DLP, and firewall/security platforms
  • Configure, tune, monitor, and maintain security rules, alerts, policies, and protections across Microsoft 365, SaaS, endpoint, and network security platforms
  • Support email security administration, including phishing protection, impersonation protection, quarantine management, and coordination of SPF/DKIM/DMARC-related controls
  • Coordinate and manage phishing simulations, user remediation, and security awareness follow-up activities
  • Support SaaS application governance and review of third-party application access, permissions, and security risks
What we offer
What we offer
  • Paid time Off
  • Medical
  • Dental and Vision plans
  • Retirement plans
  • Public Service Loan Forgiveness (PSLF)
  • Fulltime
Read More
Arrow Right

Senior IT Security Compliance Engineer

The Senior IT Security Compliance Engineer is responsible for developing, mainta...
Location
Location
Egypt , Cairo
Salary
Salary:
Not provided
arrow.com Logo
Arrow Electronics
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of information security principles, risk management, and compliance frameworks, with a solid understanding of ISO 27001 requirements and controls
  • Hands-on experience supporting audits and compliance programs for frameworks such as ISO 27001, SOC 2, CMMC, NIST, or similar
  • GRC-related certification (e.g., CISSP, CISA, CRISC, ISO 27001 Lead Implementer/Lead Auditor) is preferred
  • Experience working in SaaS or technology-driven environments is highly desirable
  • Familiarity with cloud computing platforms and cloud security principles
  • Excellent written and verbal communication skills, with proven ability to produce clear, high-quality security documentation and reports
  • Minimum of 5 years of professional experience in cybersecurity, information security, or compliance-related roles
  • Bachelor’s degree in Computer Engineering, Computer Science, Information Security, or a related field
Job Responsibility
Job Responsibility
  • Develop, review, and maintain IT security policies, standards, procedures, and guidelines in alignment with industry best practices and regulatory requirements
  • Lead and coordinate compliance initiatives for security frameworks and standards, including but not limited to ISO 27001, SOC 2, CMMC, NIST, and internal security assessments
  • Manage audit readiness activities, including documentation preparation, evidence collection, stakeholder coordination, and remediation tracking for internal and external audits
  • Respond to customer and partner security questionnaires, ensuring accurate, consistent, and timely responses
  • Conduct periodic security and risk assessments to evaluate the effectiveness of security controls and identify improvement opportunities
  • Track, manage, and follow up on vulnerability remediation efforts in collaboration with IT, engineering, and operations teams
  • Prepare and deliver security metrics, compliance reports, and executive-level summaries
  • Provide security awareness, training, and education to employees to promote a strong security culture across the organization
  • Support continuous improvement of governance, risk, and compliance (GRC) processes and tooling
  • Fulltime
Read More
Arrow Right

Senior E2e Network Security And Compliance

As a Senior Manager Network Strategy and Architecture, you will be responsible f...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Deep expertise in network security architecture and strategy across fixed and mobile networks
  • Strong understanding of regulatory frameworks and industry standards (3GPP, GSMA, ETSI)
  • Proven experience in risk management, compliance, and audit processes
  • Familiarity with network technologies and their security implications, including legacy and next-gen platforms
  • Skill in vendor engagement and security solution evaluation
  • Ability to influence senior stakeholders and collaborate across technical and commercial teams
  • Comfortable operating in complex, fast-changing environments with high accountability
Job Responsibility
Job Responsibility
  • Define and drive VodafoneThree’s network security strategy across all network domains
  • Strengthen resilience, ensure compliance, and reduce risks by working closely with engineering and security teams
  • Develop and maintain the end-to-end Network Security Strategy and Architecture, covering RAN, Fixed, and Transport domains
  • Lead risk management activities, including identification of risk owners, remediation planning, and governance reporting
  • Embed security and resilience requirements into high-level architectures (HLAs) and designs for all network layers
  • Support delivery of VF3 Network Zoning architecture compliance and ensure delivery of Charm Requirements across Network
  • Work with OSS and other teams to leverage or introduce existing processes and tools for Life Cycle Management
  • Conduct network security audits and assessments, driving continuous improvement and adherence to best practices
  • Perform impact assessments for new products and services, ensuring security requirements are integrated into solution designs
  • Work with key stakeholders to maintain the Service Continuity reference document and carry out necessary tests
What we offer
What we offer
  • Great pay
  • bonuses
  • up to 28 days off plus bank holidays
  • paid time for charity work
  • discounts
  • vouchers
  • pension plan
  • learning tools
  • parental leave policies
  • Fulltime
Read More
Arrow Right

IT Audit & Compliance Analyst

We are seeking a skilled IT Audit & Compliance Analyst to support our client bas...
Location
Location
United States , Tustin
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Systems, Computer Science, Accounting, or a related discipline
  • 3+ years of experience in IT audit, risk management, or compliance-focused roles
  • Solid understanding of IT general controls (ITGCs) and common cybersecurity frameworks
  • Proven track record supporting audits and compliance initiatives within complex organizations
  • Strong analytical mindset with the ability to identify issues and resolve them with attention to detail
  • Excellent communication skills, with the ability to work effectively with both technical teams and business stakeholders
Job Responsibility
Job Responsibility
  • Execute end-to-end IT audits to assess internal controls, operational processes, and security protocols
  • Conduct thorough risk evaluations to uncover system vulnerabilities and process gaps
  • Maintain compliance with established frameworks including SOX, COBIT, and other relevant standards
  • Design and manage audit plans that support organizational objectives and compliance mandates
  • Track and validate remediation activities to ensure audit findings are addressed in a timely manner
  • Act as a primary point of contact for external auditors during reviews and regulatory assessments
  • Drive improvements to compliance programs, governance structures, and internal policies
  • Work alongside IT and cybersecurity teams to reinforce data protection and security best practices
  • Monitor evolving regulatory landscapes and evaluate their impact on current processes
  • Recommend and implement process enhancements to improve audit effectiveness and efficiency
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right

IT Compliance and Governance Analyst

Software Resources has an immediate, long term contract job opportunity for an I...
Location
Location
United States , Orlando
Salary
Salary:
Not provided
softwareresources.com Logo
Software Resources
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years of experience
  • Associate’s degree or higher, Bachelor’s degree preferred
  • Extensive experience working in IT with 5+ years in a Compliance role that includes defining strategy, implementing new processes, project management, vendor and contract management
  • Experience with hardware/software compliance lifecycle including regulations such as PCI, HIPAA, SOX etc.
  • ITIL Foundations preferred
  • IT Business Continuity planning experience preferred, especially IT Disaster Recovery planning
  • Working understanding of IT system platforms
  • Extensive process documenting experience is preferred
  • Extensive knowledge and experience working with applicable data security, compliance and privacy practice laws
  • One Trust experience would be great but 3+ years of experience in IRR/CMPs works
Job Responsibility
Job Responsibility
  • Acts as a subject matter expert for IT Compliance items
  • Assists with the administration and maintenance of policies and procedures for effective compliance management for all applicable IT related rules and regulations
  • Creates and monitors systems and management processes for effective compliance reporting and remediation
  • Manages remediation activities to ensure ongoing regulatory processes are followed
  • Collaborates with internal customers including HR, Security and Internal Audit, users, staff members, and IT colleagues to assist in the definition, development, and documentation of compliance related business requirements
  • objectives
  • deliverables
  • and specifications for projects and activities
What we offer
What we offer
  • medical, dental, and vision coverage
  • a 401(k) with company match
  • short-term disability
  • life insurance with AD&D
Read More
Arrow Right