#

Senior Security Analyst / 1 month ago

Banaglore

Max salary 12 lak / Year
Application ends: July 1, 2025

Job Description:

Position Summary

The Senior Security Analyst will be responsible for identifying, analyzing, and mitigating cybersecurity threats to protect the organization's information assets. This role demands strong technical expertise, experience in compliance and audits, and a proactive approach to risk management across complex, hybrid (on-premises and cloud) environments. The Senior Security Analyst will also lead and support internal and external audits, ensuring continuous compliance with industry standards and regulatory requirements.
Key Responsibilities
  • Monitor, triage, and analyze security alerts, events, and logs to detect potential threats such as viruses, exploits, and malicious activities.
  •  Conduct comprehensive security assessments and risk analyses for systems, applications, and infrastructure.
  • Provide expert guidance in the development, implementation, and maintenance of security policies, standards, and procedures.
  •  Perform vulnerability assessments and develop and oversee remediation plans.
  • Stay current with cybersecurity trends, threats, and regulatory developments to enhance organizational security practices.
  • Assist in the development and implementation of security frameworks and standards including ISO 27001, PCI DSS, SOC 2, ISO 9001, and privacy regulations.
  •  Establish and maintain consistent processes for responding to security assurance and audit requests.
  •  Lead or assist in gathering evidence, documenting controls, and supporting internal and external audits (e.g., PCI DSS, SOC 2, ISO 27001, ISO 9001).
  •  Deliver security awareness training initiatives focused on regulatory compliance and industry best practices.
  • Collaborate with IT, cloud, and application teams to ensure the effectiveness of security controls across on-premises, AWS, and Azure environments.
  •  Operate and manage key security tools and technologies such as SIEM platforms, endpoint protection, and email security solutions.
Qualifications
Required Qualifications
  • Minimum of 3 years of experience in Information Security Governance, Risk, and Compliance (GRC) or a closely related information security role.
  • Proven experience working within large, complex organizational environments and engaging with clients and auditors.
  •  Practical experience with the development, implementation, and auditing of security frameworks and standards such as ISO 27001, ISO 9001, PCI DSS, SOC 2, HIPAA, and privacy laws.
  • Strong background in gathering audit/compliance evidence and managing audit processes.
  • Expertise in operating and managing security technologies including SIEM, endpoint protection, and email security tools.
  • Solid understanding of IT infrastructure security, both on-premises and in cloud environments (AWS and Azure).
  • Experience in designing and delivering Security Awareness Training programs with a compliance focus.
Preferred Qualifications
  • Industry certifications such as:
  • ISO 27001/9001 Lead Auditor
  • Certified Ethical Hacker (CEH)
  • Certified Incident Handler (GCIH or equivalent)

Share Profile

Interested in this Job?

Take the next step in your career.
Register now and apply for your dream job!

Register Now