4 - 6 years of experience in IT security. Certifications: ISO 27001, ITIL Preferred:- CISSP, CISA, CISM Excellent documentation and communication skills. Key Job responsibilities: Understanding and knowledge of industry standards and industry frameworks (e.g. ISO 27001, PCI, NIST). Understanding of security and privacy laws and regulations (e.g. IT Act, HIPAA, GLBA). Able to assess, develop, and implement information security programs, including organizational design and key processes. Experience in ISO 27001 readiness and implementation. Perform risk assessment related to IT security and plan risk mitigation.