Senior Process and Compliance Analyst
Mumbai, India
Applications have closed
QAD, Inc.
QAD is a provider of flexible, cloud-based enterprise resource software and services for global manufacturers. Use innovative ERP, MRP, supply chain and lean manufacturing solutions to manage your business.Company Description
QAD is building a world-class SaaS company, and we are growing. We are looking for talented individuals who want to join us on our mission to help solve relevant real-world problems in manufacturing and the supply chain.
We are a virtual first company and your primary work experience will be virtual / working from your home. Occasional travel to a physical office may be required to enhance working relationships, collaboration, design, strategy and alignment.
Job Description
The Senior Process and Compliance Analyst will Manage process & compliance activities to implement and maintain industry best compliance and security frameworks like ISO, CSA, SSAE18 SOC, NIST, FDA, NIS, TISAX etc. Focus is to drive consistency across QAD in maintaining compliance controls and in maintaining applicable regulatory compliance requirements in the areas of Information Security, Service Management, Risk Management, Business Continuity Management, Privacy Management, Quality Management System, etc.
Performs gap analysis for compliance standards upgrades and guides functional teams in implementing required controls, and in updating policy and procedures.
Conducts internal compliance audits and demonstrates controls during external compliance assessments.
Note: The role requires the person to work in between 11 am to 11 pm (any 9 hour shift)
Responsibilities:
Compliance Management:
Manages and conducts internal process and security compliance audits
Manages and participates in external compliance audits and presents evidence and controls
Manages customer audit requests and coordinates with the global teams in gathering and presenting evidence
Documents audit observations/findings and follows-up with the impacted parties for closure of the audit findings
Performs gap analysis for certification upgrades and implements updates
Keeps track of changes to regulatory requirements
Process/Policy Management:
Ensures that process and policy documents meet the compliance control requirements
Works with respective business teams to implement missing controls, and assist the teams to update policy/process documents
Maintains compliance related registers like Risk, Continuous Improvements, etc.
Delivers training as required to the global teams on various compliance frameworks
Assists business functions in performing business impact analysis and in maintaining business continuity plans
Security/Quality/Risk assessment Questionnaires response:
Works with the global business functions in responding to third party questionnaires
Continuous Learning:
Proactively develops skill and knowledge on security and compliance standards and frameworks
Stays attuned to changes in industry compliance and regulatory requirements
Qualifications
Education/Certification: Bachelor in Engineering, Computer Science, IT, ISO 27001, ISO 20000 Lead Auditor Certifications are preferred (or achieved within 12 months)
Experience: 5+ years of Industry Experience that includes Compliance, Service and Security Managements, Cybersecurity best practice, etc.
Familiarity with industry leading compliance frameworks (e.g. CSA STAR, SSAE18 SOC 1 / SOC 2, ISO 27001, ISO 20000, ISO 9001, FDA, NIST, NIS 2, TISAX, etc.)
Exposure to compliance audit process
Process training delivery
Computer skills:
Knowledge of System/Network security and business operations
Knowledge on Project Management methodology, training material preparation and spreadsheets are preferred
Good business procedure writing skill
Other knowledge or skills: :
Analytical and Problem Solving ability
Customer service skills and proven ability to perform in fast-paced environment
Good communication skills and ability to handle sensitive matters with tact and diplomacy
Able to work independently
Capable of exercising judgment and discretion while utilizing company policies and practices to determine appropriate actions.
Additional Information
- Your health and well being are important to us at QAD. We provide programs that help you strike a healthy work-life balance.
- Opportunity to join a growing business, launching into its next phase of expansion and transformation.
- Collaborative culture of smart and hard-working people who support one another to get the job done.
- An atmosphere of growth and opportunity, where idea-sharing is always prioritized over level or hierarchy.
- Compensation packages based on experience and desired skill set
About QAD:
QAD Inc. is a leading provider of adaptive, cloud-based enterprise software and services for global manufacturing companies. Global manufacturers face ever-increasing disruption caused by technology-driven innovation and changing consumer preferences. In order to survive and thrive, manufacturers must be able to innovate and change business models at unprecedented rates of speed. QAD calls these companies Adaptive Manufacturing Enterprises. QAD solutions help customers in the automotive, life sciences, packaging, consumer products, food and beverage, high tech and industrial manufacturing industries rapidly adapt to change and innovate for competitive advantage.
QAD is committed to ensuring that every employee feels they work in an environment that values their contributions, respects their unique perspectives and provides opportunities for growth regardless of background. QAD’s DEI program is driving higher levels of diversity, equity and inclusion so that employees can bring their whole self to work.
We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Cloud Compliance Computer Science Industrial ISO 27001 Network security NIST Privacy Risk assessment Risk management SaaS SOC SOC 1 SOC 2 Strategy TISAX
Perks/benefits: Career development Competitive pay Equity Home office stipend Startup environment
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open CISA-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs