Key Responsibilities :

- Support compliance programs across frameworks such as ISO 27001, ISO 27017, ISO 27018, ISO 27701, SOC 2 Type II, CASA

- Maintain compliance trackers, evidence sheets, and control status dashboards

- Identify risks, delays, or non-compliance and proactively follow up with stakeholders

- Assist in implementing Digital Personal Data Protection Act (DPDP) requirements

- Draft privacy notices, consent frameworks, and incident/breach response procedures

- Track evolving DPDP guidelines and align company practices accordingly

- Prepare documentation and evidence for internal and external audits

- Coordinate with auditors and certification bodies

- Monitor and ensure closure of corrective actions

- Apply CIS Benchmarks and NIST (CSF, 800-series) controls to strengthen system hardening and security posture

- Conduct employee training on compliance, privacy, and security best practices

- Collaborate with IT, HR, and Engineering teams to integrate compliance into daily operations

- Promote a compliance-first mindset across the company

Technical Skills :

- Working knowledge of at least one compliance/security framework : ISO 27001 / ISO 27701 / SOC 2 / CASA / GDPR / DPDP

- Understanding of CIS Benchmarks for system hardening

- Familiarity with NIST frameworks (CSF, 800-series)

- Basic understanding of IT systems, networking, cloud infrastructure, and cybersecurity controls

- Experience with compliance management tools, GRC platforms, or audit tracking software

- Ability to manage documentation and evidence for audits, including dashboards and trackers

- Knowledge of privacy management practices, incident response workflows, and data protection tools