Information Security Analyst – Compliance & Risk Management

Overview Company Overview : Zones – First Choice for IT. Zones is a Global Solution Provider of end-to-end IT solutions with an unmatched supply chain. Zones, a Minority Business Enterprise (MBE) with over 35 years in business, specializes in Digital Workplace, Cloud & Data Center, Networking, Security, and Managed / Professional / Staffing services. Operating in more than 120 countries, Zones partners with Microsoft, Apple, Cisco, Lenovo, Adobe, and more to build digital infrastructures that change how business operates.

Position Overview As the Information Security Analyst - Compliance & Risk Management, you will analyze management and technical controls to ensure compliance with security requirements. This includes mapping regulatory and security requirements across the information security framework, tracking enterprise compliance across multiple security frameworks, assisting internal teams for internal and external assessments and audits, collaborating on IT projects to address security policy and risk issues, and developing key performance metrics to track and ensure compliance with policies and standards.

Responsibilities

Analyze management and technical controls to ensure specific security and compliance requirements are met.

Map regulatory and security requirements across the information security framework.

Track enterprise compliance across multiple security frameworks including ISO27001, 27701, SOC2, GDPR, and PCI-DSS; maintain up-to-date records of requirements and mitigating controls.

Assist internal teams with readiness for internal / external assessments and audits against industry standards; review programs / documentation for conformance.

Collaborate on critical IT projects to ensure security policy and risk issues are addressed throughout the project life cycle.

Develop key performance metrics to track and ensure compliance with established policies and standards.

Qualifications / What you will bring to the team

5-7 years of information security experience.

Experience with ISO 27001, SOC 2, and PCI-DSS compliance.

Strong communication skills (verbal and written).

Ability to meet deadlines and work under pressure.

Experience of working in US-based multinational organizations is a plus.

Security certifications such as CISSP / CISA, ISO27001.

Extensive experience auditing vendors / service providers / partners for security compliance.

Experience working with Engineering teams (system admin, network admin, security admin, application teams) to effectively communicate compliance requirements.

Bachelor’s degree in Computer Science or Information Technology.

Benefits Zones offers a comprehensive Benefits package. At Zones, we are committed to fostering an inclusive and diverse workplace where every team member is valued and supported. We offer life insurance, optional health insurance, and retirement benefits in line with Company policy. Employees also enjoy additional perks such as the Voluntary Pension Scheme, EOBI, complimentary meals, and access to our in-house gym.

Equal Opportunity We take pride in being an equal opportunity employer and remain dedicated to maintaining a workplace free from discrimination of any kind. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability.

Job timings 08 : 00 PM to 05 : 00 AM (Pk time)

#J-18808-Ljbffr