Overview
Job Title: Audit & Compliance Specialist
Experience: 5-8 Years
Certifications Required: ISO 27001 Lead Auditor (Mandatory)
Job Summary:
We are seeking an experienced and proactive Audit & Compliance Specialist to lead and manage internal audits, client audits, and RCSA (Risk Control Self-Assessment) exercises. This role will act as a key liaison between internal stakeholders, subject matter experts (SMEs), and external/internal auditors to ensure timely, accurate, and complete delivery of audit responses and evidence.
Key Responsibilities:
– Coordinate and manage internal audits, client audits, and RCSA assessments from planning through closure.
– Work closely with auditors to understand assessment scope and requirements.
– Collaborate with internal stakeholders and SMEs to gather relevant responses and evidence.
– Review and validate responses to ensure alignment with auditor requirements before packaging and submission.
-Maintain a well-organized and secure repository of evidence and supporting documents for audits and compliance checks.
– Draft and maintain clear documentation, trackers, and status reports for all ongoing audit and compliance initiatives.
– Manage audit timelines, delivery schedules, and ensure commitments are met across teams.
– Support in developing corrective action plans for audit findings and track closure.
– Mentor and guide junior resources assisting in audit and compliance projects.
Required Skills & Qualifications:
– ISO 27001 Lead Auditor certification is mandatory.
– Understanding of Information Security concepts, controls, and frameworks (e.g., ISO 27001, NIST).
– Proven experience handling internal audits, client audits, and RCSA processes.
– Strong analytical and problem-solving skills to validate audit responses.
– Proficient in MS Excel, Word, and PowerPoint for documentation, reporting, and presentations.
– Exceptional verbal and written communication skills for interacting with clients, auditors, and internal teams.
– Highly organized with the ability to store, manage, and retrieve evidence efficiently.
– Demonstrated maturity and capability to handle complex and time-sensitive situations.
– Ability to work both independently and as part of a team in a fast-paced, cross-functional environment.
Nice to Have:
– Exposure to client-facing security audits.
– Experience working in regulated industries such as BFSI, Banks or IT Services.
– Knowledge of Power BI