Crisil - Audit & Compliance Specialist

Job Title: Audit & Compliance Specialist

Experience: 5-8 Years

Certifications Required: ISO 27001 Lead Auditor (Mandatory)

Job Summary:

We are seeking an experienced and proactive Audit & Compliance Specialist to lead and manage internal audits, client audits, and RCSA (Risk Control Self-Assessment) exercises. This role will act as a key liaison between internal stakeholders, subject matter experts (SMEs), and external/internal auditors to ensure timely, accurate, and complete delivery of audit responses and evidence.

Key Responsibilities:

- Coordinate and manage internal audits, client audits, and RCSA assessments from planning through closure.

- Work closely with auditors to understand assessment scope and requirements.

- Collaborate with internal stakeholders and SMEs to gather relevant responses and evidence.

- Review and validate responses to ensure alignment with auditor requirements before packaging and submission.

-Maintain a well-organized and secure repository of evidence and supporting documents for audits and compliance checks.

- Draft and maintain clear documentation, trackers, and status reports for all ongoing audit and compliance initiatives.

- Manage audit timelines, delivery schedules, and ensure commitments are met across teams.

- Support in developing corrective action plans for audit findings and track closure.

- Mentor and guide junior resources assisting in audit and compliance projects.

Required Skills & Qualifications:

- ISO 27001 Lead Auditor certification is mandatory.

- Understanding of Information Security concepts, controls, and frameworks (e.g., ISO 27001, NIST).

- Proven experience handling internal audits, client audits, and RCSA processes.

- Strong analytical and problem-solving skills to validate audit responses.

- Proficient in MS Excel, Word, and PowerPoint for documentation, reporting, and presentations.

- Exceptional verbal and written communication skills for interacting with clients, auditors, and internal teams.

- Highly organized with the ability to store, manage, and retrieve evidence efficiently.

- Demonstrated maturity and capability to handle complex and time-sensitive situations.

- Ability to work both independently and as part of a team in a fast-paced, cross-functional environment.

Nice to Have:

- Exposure to client-facing security audits.

- Experience working in regulated industries such as BFSI, Banks or IT Services.

- Knowledge of Power BI