Senior Analyst – ISMS Governance, Risk & Compliance (GRC)

Curapersonal Private Limited

Pune

3-5 Years

5 - 7 LPA

Save

Posted 16 hours ago
Be among the first 20 applicants

Early Applicant

Quick Apply

Job Description

Job title : Senior Analyst – ISMS Governance, Risk & Compliance (GRC)

Location : Pune

Experience : 3–5 Years

Job Description :

We are looking for a Senior Analyst – ISMS GRC professional responsible for designing and managing Information Security Management System (ISMS) governance, risk, and compliance frameworks. The role involves ensuring ISO 27001:2022 compliance, supporting audits, managing risk assessments, and driving continuous improvement in security governance across the organization in alignment with regulatory and business requirements.

Key Responsibilities :

Implement and manage ISMS governance aligned with ISO 27001:2022 standards
Conduct ISMS risk assessments and define key risk indicators (KRIs)
Support internal and external audits, ensuring compliance readiness
Develop and maintain ISMS policies, procedures, and documentation
Collaborate with cross-functional teams including security, legal, and business units

Required Skills :

Strong understanding of ISMS governance, risk, and compliance frameworks
Experience with ISO 27001:2022 standards and audit processes
Knowledge of risk assessment methodologies and regulatory compliance
Strong documentation, reporting, and analytical skills
Experience in stakeholder management and cross-functional coordination

Preferred Qualification :

Bachelor's degree in Computer Science, Information Systems, or related field
Experience in regulated industries such as BFSI, healthcare, or IT services
Exposure to SOC1, SOC2, HITRUST, ISO 42001, or PCI DSS frameworks
ISO 27001 Lead Implementer / Lead Auditor certification preferred
Experience in client audits, due diligence, and enterprise compliance programs

Spotlight

Professional degree assistance

Education

Bachelor Of Technology (B.Tech/B.E), Masters in Technology (M.Tech/M.E), Master of Public Administration (MPA), Master OF Business Administration (M.B.A), Bachelor of Business Administration (B.B.A), PGDM, Post Graduate Programme in Management for Executives (PGPX), Master of Library & Information Science (MLIS), Post Graduate Diploma in Computer Applications (PGDCA), Master in Computer Application (M.C.A), PGP, Doctor of Business Administration (DBA), Bachelor Of Computer Application (B.C.A)