• Experience requirements: Minimum 6 years of experience in IT compliance role.
• Ensuring that IT systems and processes are compliant with relevant information security and IT service management standards, such as ISO 27001, ISO 20000, ISR and ITIL.
• To document and review all IT standards policies and procedures related to ITSMS (IT Service Management System) and ISMS (Information security management system).
• Conducting risk assessments to identify potential IT security/ service risks and weaknesses in IT processes and working with the teams to implement appropriate controls to mitigate those risks.
• To involve and engage in all IT Internal & External audits conducted to identify non-compliance issues and develop remediation plans to address them.
• Developing and delivering training and awareness programs to educate employees on information security and IT service management best practices and ensuring that employees understand their responsibilities for maintaining compliance.
• To define, measure and report IT security/service compliance-related metrics to measure the effectiveness of IT controls.
• Coordinate with process owners to ensure the implementation and maintenance of internal IT process controls comply with documented standards.
• Coordinate with process owners to respond with remediation plan for any internal control deficiencies identified either directly as part of the monitoring process or through the formal auditing process.
• Knowledge of GRC tool to automate audit findings resolution/ remediation activities, Risk management, and policy lifecycle reviews.

Required Skills