• Coordinate with Project Manager / Consultant to develop processes, compliance documentation requirements for ISO27001, GDPR, HIPAA, PCI- DSS, SOC1 & SOC2 etc
• Conduct Risk assessment. Responsible for assessments, gap analysis (against standards and benchmarks), risk mitigation strategy development and implementation.
• Responsibility in drafting and editing technical documentation related to ISO 27001, GDPR, HIPAA, PCI- DSS, SOC1 & SOC2 etc. When creating, updating, and enhancing the documentation, He / She will adhere to format, content, styles guidelines, considering quality and accuracy.
• Co-ordinating with PM / Consultant in implementing all the activities which need to take place considering ISO27001, GDPR, HIPAA, PCI- DSS, SOC1 & SOC2 etc in place.
• Formulate Business Continuity and Disaster Recovery plans.
• Consulting to clients on various standards such as ISO27001/ ISO20000 / PCI DSS / HIPAA, etc.
• Develop policies and procedures as required by different standards.
• Audit the IT Setup and processes of clients based on standards such as ISO27001 / PCI DSS / ISO20000/HIPAA, GDPR, SOC, SOX, etc.
• Conduct Information Risk Management.