Information Security Consultant-Star Health Insurance

Intellect-Minds
Gurugram, Haryana

Quick apply

Job details

Permanent
₹50,000 - ₹70,000 a month

Qualifications

Vulnerability assessment
Cloud architecture
PCI
CISSP
Disaster recovery
SOX
Information security
Master's degree
CISM
Analysis skills
Compliance management
Bachelor's degree
NIST standards
TOGAF
ISO 27001
B.E.
Communication skills
SDLC

Full job description

Information Security Auditor – Star Health Insurance

Position: Information Security Auditor
Experience: 5–7 Years
Location: Gurugram
Employment Type: Permanent
Work Mode: Onsite
Department: IT Infrastructure
Reporting To: IT Infrastructure Lead
Budget: Up to ₹70,000 PM (Excluded Margin)

About the Role

We are seeking an experienced Information Security Auditor to join the IT Infrastructure team at Star Health Insurance. The ideal candidate will be responsible for evaluating IT systems, security controls, compliance frameworks, and operational processes to ensure strong governance, risk mitigation, and regulatory compliance across the organization.

The role requires hands-on experience in information security audits, IT risk assessments, compliance management, and implementation of industry-standard security frameworks.

Key Responsibilities

Conduct information security audits across infrastructure, applications, networks, and operational environments.
Assess the effectiveness of IT security controls and identify security gaps, risks, and vulnerabilities.
Review and evaluate compliance with frameworks such as ISO 27001, ISO 23001, ITGC, PCI DSS, SOX, HIPAA, and NIST.
Collaborate with cross-functional teams to implement and improve cybersecurity policies, standards, and procedures.
Evaluate organizational readiness for incident response, disaster recovery, and business continuity management.
Perform risk assessments and recommend corrective and preventive actions.
Identify non-conformities and provide remediation recommendations for audit findings.
Ensure audits are executed with minimal disruption to day-to-day IT operations.
Review logical access controls, SDLC processes, data center operations, and network security controls.
Prepare detailed audit reports and present findings to senior leadership and stakeholders.
Support internal and external compliance audits and governance initiatives.
Maintain audit documentation, evidence records, and compliance reports.

Required Skills & ExpertiseTechnical Skills

Strong understanding of Information Security Governance, Risk & Compliance (GRC)
Hands-on experience with:
ISO 27001:2022
ISO 23001
ITGC
PCI DSS
SOX
HIPAA
NIST Framework
Knowledge of:
Risk Management
Disaster Recovery & Business Continuity Planning
Network Security
Access Management
Vulnerability Assessment
Security Controls Testing
Understanding of IT infrastructure, cloud environments, and enterprise security architecture
Experience working with IT Security, Infrastructure, and Business teams

Preferred Certifications

Candidates with any of the following certifications will be preferred:

CISSP
CISA
CISM
ISO 27001:2022 Lead Implementer
TOGAF

Soft Skills

Strong analytical and problem-solving abilities
Excellent communication and stakeholder management skills
Strong documentation and reporting skills
Ability to work independently and manage multiple priorities
Ability to perform effectively under pressure during security incidents or outages

Educational Qualifications

UG: B.Tech / B.E.
PG: Any Postgraduate Degree

Selection Process

Initial Screening
Technical Interview
Final Approval by STAR Team
Mandatory Background Verification (BGV)

Pay: ₹50,000.00 - ₹70,000.00 per month

Work Location: In person

Quick apply

Jobseeker tools

Employer Tools

Browse

Stay Connected