'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Job Summary:
We are seeking a meticulous and highly skilled Compliance Analyst to join our team in Delhi. This role is crucial for ensuring our organizational practices strictly adhere to a multitude of regulatory frameworks including ISO 27001, SOC (specify type, e.g., SOC 2), GDPR, PCI DSS, HIPAA, and other relevant regional, national, and international standards. The Compliance Analyst will be responsible for conducting internal audits, managing compliance documentation, assessing third-party risks, and preparing comprehensive responses to RFIs/RFPs, contributing significantly to our robust compliance posture.
Key Responsibilities:
Regulatory Frameworks:
- Align and meticulously maintain organizational practices in accordance with a broad spectrum of regulatory frameworks, including ISO 27001, SOC (specify type, e.g., SOC 2), GDPR, and other relevant regional, national, and international standards.
- Conduct regular and thorough internal audits to assess and ensure ongoing compliance with multiple regulatory frameworks and internal policies, identifying areas for improvement.
Compliance Documentation and Reporting:
- Develop, meticulously maintain, and update comprehensive compliance records, certifications, and audit reports.
- Generate clear, concise, and accurate compliance reports for internal leadership, external auditors, and other stakeholders as required.
Third-Party Risk Management:
- Assess and continuously monitor the compliance of third-party vendors and service providers with relevant regulatory and organizational standards.
- Conduct thorough risk evaluations and implement robust vendor due diligence processes to identify and mitigate potential compliance risks.
PCI DSS and HIPAA Compliance:
- Ensure the organization's ongoing compliance with Payment Card Industry Data Security Standard (PCI DSS) through regular audits, development and maintenance of relevant policies, and performance of gap analyses.
- Implement and monitor effective security controls to protect cardholder data, ensuring adherence to PCI DSS requirements.
- Develop, implement, and maintain HIPAA compliance programs, with a strong focus on ensuring the confidentiality, integrity, and availability of Protected Health Information (PHI).
- Ensure strict adherence to risk mitigation strategies related to PHI.
RFI/RFP Management:
- Prepare and submit accurate and comprehensive responses to Requests for Information (RFIs) and Requests for Proposal (RFPs), ensuring complete alignment with PCI DSS, HIPAA, and other applicable organizational policies and standards.
- Maintain a well-organized and up-to-date repository of all compliance documentation to facilitate efficient and accurate responses to customer and stakeholder inquiries.
- Develop and implement internal compliance policies and procedures.
- Stay updated on evolving regulatory requirements and industry best practices.
- Provide guidance and training to internal teams on compliance matters.
Required Skills and Qualifications:
- 3-6 years of experience in a dedicated compliance or audit role.
- Demonstrated experience aligning organizational practices with ISO 27001, SOC (specify type, e.g., SOC 2), and GDPR.
- Proven experience in conducting internal audits and assessing compliance with multiple regulatory frameworks.
- Strong ability to develop, maintain, and update comprehensive compliance records, certifications, and audit reports.
- Experience in third-party risk management, including vendor assessment and due diligence processes.
- In-depth knowledge and hands-on experience ensuring PCI DSS compliance, including audits, policy development, and control implementation.
- Solid experience in developing, implementing, and maintaining HIPAA compliance programs, with a focus on PHI.
- Proven ability to prepare accurate and comprehensive responses to RFIs and RFPs related to security and compliance.
- Excellent written and verbal communication skills, with the ability to convey complex compliance concepts clearly.
- Strong analytical and problem-solving skills, with meticulous attention to detail.
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}