Client Questionnaires & Audit Manager Information Security & Risk Management

Location: Bangalore

Experience: 8-12 Years

Department: Information Security Team (CISO Office)

About the Role

We are seeking an experienced Client Questionnaires & Audit Manager to join our Information Security team.

This role is critical in managing client security questionnaires, coordinating audits, and ensuring compliance with industry standards and regulations.

The successful candidate will be a self-starter with strong security knowledge and excellent communication skills, capable of managing multiple projects in a fast-paced environment.

Key Responsibilities

Client Security Questionnaires

- Establish and maintain a repository of standardized security questionnaire responses.

- Manage timely and accurate responses to client security questionnaires.

- Collaborate with internal teams (IT, Legal, InfoSec) to gather documentation for client inquiries.

- Serve as primary point of contact for clients regarding security-related inquiries.

Audit Coordination & Management

- Lead and coordinate client and internal audits for compliance assessment (ISO 27001, HIPAA, etc.

- Serve as liaison between organization and external auditors/clients.

- Prepare comprehensive evidence packages for security audits.

- Collaborate with teams to design mitigation strategies for identified risks.

- Work with control owners to create and implement corrective action plans.

Contract & Insurance Management

- Create security terms and conditions for contract inclusion.

- Review MSA security terms and provide feedback to legal team.

- Respond to cyber insurance questionnaires based on implemented controls and certifications.

Process Improvement & Stakeholder Engagement

- Identify opportunities to improve efficiency of questionnaire responses and audit processes.

- Develop templates and workflows to streamline client questionnaire completion.

- Engage with clients and third-party auditors regarding organizational security posture.

- Communicate effectively with internal stakeholders and senior leadership.

- Provide recommendations to management for security practice improvements.

Required Qualifications

Experience & Education

- 10+ years of experience in information security with audit management focus.

- Bachelor's degree in Information Security, Cybersecurity, Computer Science, Engineering, or related field (or equivalent work experience).

Certifications (Preferred)

- CISA, CRISC, CISM, or CISSP certification (Any one).

Core Competencies

- Proven experience responding to security questionnaires and managing client audits.

- Experience managing third-party audits and internal audit processes.

- Excellent project management and organizational skills.

- Ability to handle multiple audits and client requests simultaneously.

- Advanced verbal and written communication skills.

- Self-motivated learner with strong organizational abilities.

What We Offer

- Opportunity to work directly with CISO office.

- Cross-functional collaboration across IT, Legal, and Compliance teams.

- Strategic role in organizational security posture.

- Fast-paced, dynamic work environment.

- Professional development and growth opportunities.

Ready to take your Information Security career to the next level?

If you have the experience and passion for audit management and client relations in the cybersecurity space, we'd love to hear from you.