Job Title: Subject Matter Expert - Information Security & Data Privacy

Location: Hyderabad, India

Job Description:

We are seeking a highly skilled and experienced Subject Matter Expert (SME) in Information
Security and Data Privacy to join our team in Hyderabad. The ideal candidate will have deep
knowledge and hands-on experience with ISO 27001, SOC 1, SOC 2, HIPAA/HiTrust, and
data privacy regulations. As an SME, you will play a critical role in guiding our organization
through compliance, risk management, and the implementation of robust security
frameworks.

Key Responsibilities:

- Serve as the primary expert for ISO 27001, SOC 1, SOC 2, HIPAA/HiTrust, and global data
privacy regulations, including GDPR and CCPA.
- Lead the implementation, maintenance, and continuous improvement of the ISO 27001
Information Security Management System (ISMS).
- Provide strategic guidance on compliance with SOC 1 and SOC 2 reporting requirements,
ensuring audits are conducted efficiently and successfully.
- Oversee HIPAA/HiTrust compliance initiatives, including the development and execution of
policies, procedures, and risk assessments.
- Advise on data privacy best practices, ensuring adherence to applicable laws and
regulations.
- Collaborate with cross-functional teams to identify and mitigate risks associated with
information security and data privacy.
- Conduct regular internal audits and assessments to ensure compliance with security
standards and frameworks.
- Provide training and mentorship to internal teams on security and privacy requirements.
- Stay updated on the latest industry trends, regulatory changes, and emerging threats to
proactively address compliance and security challenges.

Qualifications:

- Bachelor's or Master’s degree in Computer Science, Information Security, or a related field.

- 4-5 years of experience in Information Security, Risk Management, or Data Privacy roles.
- Strong expertise in ISO 27001, SOC 1, SOC 2, HIPAA, HiTrust, and data privacy regulations
like GDPR and CCPA.
- Proven experience in implementing and managing ISO 27001 ISMS.
- Familiarity with security frameworks such as NIST, COBIT, or CIS Controls.
- Excellent understanding of risk assessment methodologies and control implementation.
- Certifications such as CISSP, CISA, CISM, ISO 27001 Lead Implementer/Auditor, or HiTrust
Practitioner are highly desirable.
- Strong analytical, problem-solving, and project management skills that should go hand in
hand with your Cybersecurity knowledge.
- Exceptional communication skills with the ability to convey complex security concepts to
non-technical stakeholders.

Preferred Skills:

- Experience knowing/working with cloud environments (AWS, Azure, or Google Cloud) and
associated security controls.
- Knowledge of vendor risk management and third-party security assessments.
- Hands-on experience with compliance tools and GRC platforms.

Why Join Us?

- Be part of a dynamic and forward-thinking team in the heart of Hyderabad.

- Work on challenging projects that make a significant impact on organizational security.
- Competitive salary and benefits package.
- Opportunities for professional growth

How to Apply:

Please send your updated resume and a cover letter detailing your experience and
qualifications to [email protected] with the subject line: Subject Matter Expert -
Information Security & Data Privacy.

We look forward to having you join our team!