Information Security Analyst

Experience Required: 3–5 Years

Location: Gurgaon

Department: Information Security

Reporting To: Information Security Leader

Role Overview:

We are seeking a dynamic and detail-oriented Information Security Analyst to join our growing information security team. The ideal candidate will have 3–5 years of hands-on experience in information security frameworks, cyber risk management and stakeholder engagement. This role demands strong analytical capabilities, excellent communication and presentation skills, and the ability to influence and collaborate with senior stakeholders across the organization.

Key Responsibilities:

• Identify, assess, and manage risks across business units and technology environments.
• Support the development and implementation of information security policies, standards, and procedures.
• Collaborate with cross-functional teams to ensure security controls are embedded in business processes and IT systems.
• Prepare and deliver clear, concise, and impactful presentations to senior leadership and stakeholders.
• Monitor compliance with internal security policies and external regulatory requirements (e.g., ISO 27001, NIST, GDPR).
• Develop and execute the annual ISMS internal audit plan covering ISO/IEC 27001 clauses and Annex controls.
• Compile evidence for audits, management reviews, and KPIs.
• Maintain up-to-date knowledge of emerging threats, technologies, and regulatory changes.

Required Skills & Qualifications:

• Bachelor's degree in Computer Science, Information Security, or related field.
• 3–5 years of experience in cyber risk management, information security, or related domains.
• Strong understanding of security frameworks (e.g., ISO 27001, NIST CSF, CIS Controls).
• Excellent verbal and written communication skills.
• Proven ability to engage and influence senior stakeholders.
• Strong presentation skills with experience in preparing executive-level reports and dashboards.
• Certifications such as CISSP, CISM, CRISC, or equivalent are a plus.

Preferred Attributes:

• Proactive and self-driven with a problem-solving mindset.
• Ability to work independently and as part of a team.
• Comfortable working in a fast-paced and dynamic environment.
• Experience in GRC tools and platforms is an advantage.