Job Description
Apply now
Job Title:  Information Security Analyst/Engineer
Posting Start Date:  5/11/26
Job Description: 

PRIME FUNCTION

We are looking for an Information Security Analyst/Engineer to support our Information Security Management System (ISMS) and Governance, Risk & Compliance (GRC) activities. This role is ideal for freshers or early-career professionals interested in information security, risk management, and compliance frameworks.

JOB DESCRIPTION / RESPONSIBILITIES

  • Assist in maintaining ISO 27001:2022 documentation policies, procedures, SOPs, and records.
  • Support risk assessments, risk treatment tracking, and updating the risk register.
  • Help with internal audits, evidence collection, and preparing audit documentation.
  • Coordinate security awareness and training activities.
  • Support third-party/vendor risk assessments and basic due diligence.
  • Track compliance tasks such as policy reviews, backup checks, access reviews, etc.
  • Prepare basic reports and dashboards for management review.
  • Assist in mapping and maintaining controls across frameworks such as ISO 27001 (basic understanding sufficient).

AUTHORITY

JOB SPECIFICATION / COMPETENCY

  • Bachelor’s degree in Computer Science, IT, Information Security, or related fields.
  • Experience- 0-2 years. 
  • Basic understanding of information security principles (CIA triad, access control, secure configurations).
  • Good communication skills and ability to create clear documentation.
  • Familiarity with ISO 27001 fundamentals (even at a high level).
  • Strong analytical skills and attention to detail.
  • Proficiency in MS Office (Word, Excel, PowerPoint).

 

Good to Have (Optional)

  • ISO 27001 Foundation / Internal Auditor training
  • Internship or academic project in Cybersecurity or Compliance.

Soft Skills

  • Good documentation and reporting skills.
  • Ability to work in teams and follow structured processes.
  • Willingness to learn and grow in Information Security & Compliance.

PERFORMANCE MEASURES

  • ISMS Documentation Management
  • Risk Management Internal Audit Support 
  • Compliance Tracking & Reviews
  • Security Awareness & Training
  • Vendor / Third-Party Risk Management
  • Reporting & Dashboarding
  • Control Mapping (ISO 27001)
  • Process Adherence 

Skills

Competencies
Apply now