Role: Information Security Engineer

Location: Gurugram

Experience: 6 - 8 yeas

Fulltime - Hybrid

L2 Information Security & Compliance Analyst

Key Responsibilities

Perform security control testing and validation to assess effectiveness of implemented controls.
Assist in the maintenance and continual improvement of the Information Security Management System (ISMS) as per ISO/IEC 27001 standards.
Support PCI DSS compliance activities, including evidence collection, gap assessments, and remediation tracking.
Conduct and support internal and external security audits, including audit readiness preparation and follow-up on observations.
Perform risk assessments to identify, evaluate, and mitigate security risks across processes, applications, and infrastructure.
Support compliance operations by monitoring adherence to regulatory and industry standards (ISO 27001, PCI DSS, RBI/CERT-In guidelines, etc.).
Track, report, and follow up on audit findings, risks, and compliance issues with relevant stakeholders.
Collaborate with cross-functional teams (IT, operations, business units) to ensure security requirements are integrated into processes and projects.
Contribute to security awareness initiatives and promote a culture of security compliance.

Required Skills & Qualifications

Bachelors degree in computer science, Information Security, or related field.
56 years of hands-on experience in information security, risk, and compliance.
Working knowledge of ISO 27001, PCI DSS, and related frameworks.
Experience with security audits, control testing, and compliance monitoring.
Strong understanding of security risk management concepts (Confidentiality, Integrity, Availability).
Good knowledge of regulatory and industry standards (RBI, CERT-In, NIST, etc. preferred).
Strong analytical, documentation, and reporting skills.
Excellent communication and stakeholder management abilities.

Preferred Certifications: -

Apply now via LinkedIn Easy Apply or share your resume at naveena@intellistaff.in

Information Security Engineer