Computer Science Graduates, Postgraduates Vacancy at Meesho

Overview:

Meesho is hiring an experienced Associate Compliance Manager at their Bangalore location. As Associate Compliance Manager, to join our team, you’ll drive security policies, procedures and assess risks in Meesho’s internal and external environments (including third parties). You’ll handle the audit and compliance of various security standards within the organisation. You’ll implement and ensure adherence to security policies and procedures. As part of the Security Compliance team, you’ll own and be accountable for the overall Information Security framework and program of the organisation.

The complete details of this job are as follows:

Roles and Responsibilities:

• Lead and own security compliance and certification charter end to end
• Define, rollout and enforce Information security policies and procedures
• Define and enforce data privacy and data protection compliances/laws/regulations such as Indian DPDP, etc.
• Work with 3rd party vendors to ensure third party security
• Ensure compliance with IT Act, e-Commerce guidelines pertaining to cryptography, information security and data privacy
• Ensure timely information security awareness to the users
• Be responsible for information security risk management and privacy impact assessments
• Be responsible for ensuring adequate data protection agreements and information security agreements
• Participate in compliance programs, review company policies, and advise management on possible risks
• Coordinate internal and external audit-related activities
• Follow up with internal stakeholders to gather the necessary evidence to be presented during audits
• Develop, implement and maintain internal audit policies and procedures in accordance with local regulations, legal requirements, ISO 27001, SOC 2 and any other standard that the company opts to follow
• Audit and monitor data, systems, and processes for compliance with policies and laws
• Contribute to planning and executing information security awareness programs
• Prepare for and participate in process-led internal, external and vendor audits, at planned intervals
• Provide suitable reporting on whether the management systems conform to agreed standards such as ISO 27001 or SOC 2 as applicable
• Plan and complete ad-hoc audits as required (Vendor Audits)Produce reports for all audits undertaken

What you will need

• Educational Qualification: Bachelor’s/Master’s degree in Computer Science or a related technical field
• 4-7 years of experience working in information security or compliance
• Prior experience in the Startup industry and knowledge of the regulatory compliances like PCI DSS, ISO 27001 Lead Auditor Lead Implementer, Vendor Review is required
• Hands-on approach in solving complex security problems
• Experience with Cyber Security & Risk Management frameworks like ISO27001, NIST, Cyber Kill Chain, MITRE ATT&CK, or other relevant frameworks
• Working knowledge of Cloud environments like AWS & GCP , is beneficial
• Experience in implementing information security standards across the org
• Good understanding of the compliance standards and lifecycle
• Excellent stakeholder management and project planning skills required
• Excellent verbal and written communication skills and good analytical skills Certifications such as ISO, CISM, CISSP, CISA, CCSP, etc., are a plus

Disclaimer: The Recruitment Information provided above is for informational purposes only. The above Recruitment Information has been taken from the official site of the Organisation. We do not provide any Recruitment guarantee. Recruitment is to be done as per the official recruitment process of the company or organization posted the recruitment Vacancy. We don’t charge any fee for providing this Job Information. Neither the Author nor Studycafe and its Affiliates accepts any liabilities for any loss or damage of any kind arising out of any information in this article nor for any actions taken in reliance thereon.