Job Title: - Cyber Security Compliance Lead
We are looking for a Cyber Security Compliance Lead to join our security team, who will be responsible for driving security compliance initiatives (SOC 2, HIPPA, ISO 27001, etc.), leading compliance strategy, and overseeing security governance while collaborating with the VAPT and technical teams to ensure compliance alignment across applications, systems, and infrastructure.
Job Description:
Qualysec Technologies is hiring a Cyber Security Compliance Lead to drive and manage the organization’s cybersecurity compliance and governance initiatives. The role involves implementing and maintaining compliance programs aligned with global standards such as SOC 2, ISO 27001, and other regulatory frameworks while ensuring audit readiness and risk management.
The candidate will work closely with VAPT and technical teams to ensure security controls are properly implemented, documented, and compliant with industry standards. The role also includes identifying compliance gaps, leading remediation efforts, and strengthening overall security governance processes.
About Us:
Qualysec Technologies is a cybersecurity company specializing in Web & Mobile Penetration Testing, Source Code Review, IoT, and Cloud Security, helping organizations strengthen their security posture.
Since 2020, we’ve delivered security consulting to global clients across Finance, Government, Healthcare, Insurance, and emerging tech sectors like AI/ML, IoT, and Blockchain. Our expert team leverages modern methodologies to protect critical assets.
We foster a growth mindset, enable fast career progression, encourage open feedback, and support continuous skill development.
Qualysec – Securing systems, building careers.
Qualification:- Bachelor’s degree in Cybersecurity, Information Security, Computer Science, or related field.
Experience:- 3 to 5 years of experience in information security compliance, governance, or cybersecurity domain.
Location:- Bhubaneswar
Job Type:- Full Time
Responsibilities
· Lead and manage cybersecurity compliance programs including SOC 2, ISO 27001, GDPR, HIPAA, and related frameworks
· Develop and maintain security policies, governance frameworks, compliance documentation, and audit readiness processes
· Conduct internal/external audits, risk assessments, vendor assessments, and compliance gap remediation activities
· Collaborate with VAPT, DevOps, and infrastructure teams to ensure effective implementation of security controls
· Monitor regulatory updates, improve compliance tracking/reporting, mentor junior team members, and support client security assurance requirements
Skills Required
· Strong expertise in Governance, Risk, and Compliance (GRC) with hands-on experience in security governance and compliance management
· Deep understanding of frameworks including SOC 2, ISO 27001/27002, GDPR, HIPAA, NIST, and HITRUST
· Good knowledge of penetration testing, vulnerability assessments, OWASP Top 10, MITRE ATT&CK, SANS, CVSS, and secure development practices
· Experience in implementing compliance programs, audit management, risk assessments, remediation tracking, and security documentation
· Strong understanding of cloud and infrastructure security, access control models, and excellent communication and presentation skills.
Benefits:
- Competitive salary with performance-based growth and variable bonuses
- Exposure to global compliance frameworks, enterprise security environments, and advanced cybersecurity governance initiatives
- Continuous learning opportunities
- Employee benefits including Paid Time Off, Leave Encashment, Provident Fund (PF), On-time Salary, and Lunch Provided
- Collaborative work culture with strong career growth, leadership opportunities, and hands-on exposure to VAPT, cloud, and infrastructure security teams
Work Location: In person
