Job Description:
About the Role :
We are looking for an IT Security Executive to support the organization’s information security operations, compliance monitoring, and control effectiveness. The role will focus on maintaining security controls aligned to ISO 27001 and SOC 2 Type II requirements, supporting audits, and assisting with day-to-day security governance activities.
Responsibilities :
Support implementation and monitoring of information security controls aligned with ISO 27001 ISMS requirements.
Assist with SOC 2 Type II control evidence collection, validation, and audit support.
Perform access reviews, privileged access checks, and user provisioning monitoring.
Track vulnerabilities, patching status, and remediation follow-ups.
Support incident reporting, investigation, escalation, and closure documentation.
Maintain security logs, policy records, compliance documents, and audit evidence.
Coordinate with internal teams for security awareness, policy adherence, and control testing.
Support internal and external audits related to ISO 27001, SOC 2 Type II, and related compliance requirements.
Qualifications :
3 to 5 years of experience in IT security, information security, or compliance support.
Strong understanding of ISO 27001 controls, ISMS processes, and audit readiness.
Working knowledge of SOC 2 Type II requirements, evidence collection, and operational controls.
Experience in access management, vulnerability management, incident response, and documentation.
Good communication, coordination, and reporting skills.
Preferred Skills :
Exposure to ITGC, internal audit, risk assessments, or control testing.
Familiarity with security tools, reporting dashboards, and compliance tracking.
Certification or training in ISO 27001, SOC 2, or related information security areas.
Ability to work across IT, operations, compliance, and business teams.
Good to Have :
ISO 27001 LA/LI, CISA, CEH, or Security+ certifications( anyone or more)
Knowledge of GDPR or data privacy.