Lead Auditor - Gurugram, India - Xiarch Solutions Pvt Ltd

    Xiarch Solutions Pvt Ltd
    Xiarch Solutions Pvt Ltd Gurugram, India

    3 weeks ago

    Default job background
    Description
    Job Description:

    As a Compliance and Lead Auditor at our cybersecurity company, you will play a crucial role in ensuring our clients systems and processes adhere to industry standards and regulatory requirements. Your responsibilities will encompass conducting comprehensive audits, assessing compliance levels, and providing strategic guidance to enhance cybersecurity posture.

    Key Responsibilities:

    1. Conduct Audits: Plan, execute, and lead cybersecurity compliance audits for clients across various industries. Evaluate adherence to regulatory frameworks such as ISO 27001, NIST, GDPR, HIPAA, etc.

    2. Compliance Assessment: Assess clients systems, policies, and procedures to ensure compliance with relevant cybersecurity standards and regulations. Identify gaps and provide actionable recommendations for improvement.

    3. Documentation Review: Review and analyze documentation including policies, procedures, risk assessments, and incident response plans to verify compliance and effectiveness.

    4. Risk Management: Collaborate with clients to identify, evaluate, and prioritize cybersecurity risks. Develop risk mitigation strategies tailored to clients business objectives and compliance requirements.

    5. Lead Audit Teams: Manage audit teams during on-site assessments. Coordinate activities, delegate tasks, and ensure audits are conducted efficiently and effectively.

    6. Client Communication: Serve as the primary point of contact for clients throughout the audit process. Communicate audit findings, risks, and recommendations clearly and effectively to key stakeholders.

    7. Regulatory Guidance: Stay updated on evolving cybersecurity regulations, standards, and best practices. Provide guidance and recommendations to clients to ensure ongoing compliance and readiness for regulatory changes.

    8. Continuous Improvement: Drive continuous improvement initiatives within the compliance auditing process. Identify opportunities to streamline procedures, enhance efficiency, and deliver greater value to clients.

    9. Training and Education: Provide training and awareness sessions to clients personnel on cybersecurity best practices, compliance requirements, and audit preparedness.

    Qualifications:
    • Bachelors degree in Information Technology, Cybersecurity, or a related field.
    • Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or equivalent certification required.
    • Proven experience in conducting cybersecurity compliance audits, preferably in a consulting or advisory role.
    • In-depth knowledge of cybersecurity standards and regulations such as ISO 27001, NIST, GDPR, HIPAA, etc.
    • Strong understanding of risk management principles and methodologies.
    • Excellent communication and interpersonal skills, with the ability to interact effectively with clients and team members.
    • Strong analytical and problem-solving skills, with the ability to identify root causes and develop practical solutions.
    • Ability to work independently and as part of a team in a fast-paced, dynamic environment.
    • Attention to detail and a commitment to delivering high-quality work.
    • Join our team and be at the forefront of ensuring cybersecurity compliance for our clients, safeguarding their sensitive data and critical assets against emerging threats.