ISMS Specialist

Role: ISMS Specialist

Experience: 2-3+ Years

Location: Bangalore

Notice Period: Immediately or 15 days less(30 days will not be consider)

Job Description:

Experience range: 2-3 yrs or more

The ISMS Specialist will be responsible for implementing, maintaining, and improving clients’ Information Security Management Systems (ISMS) aligned with ISO/IEC 27001 and related standards. The role requires strong consulting experience, including leading client engagements, assessing compliance posture, and delivering strategic and technical security recommendations.

Key Responsibilities:

ISMS Implementation & Maintenance

Develop, implement, and manage Information Security Management Systems (ISMS) aligned with ISO/IEC 27001 and related frameworks (e.g., NIST, SOC 2, GDPR).

Conduct gap assessments, risk assessments, and internal audits for clients.

Define and document ISMS policies, procedures, and controls.

Support clients in achieving and maintaining ISO/IEC 27001 certification.

Consulting & Advisory

Lead client engagements to assess and improve their cybersecurity posture.

Advise risk treatment plans, corrective actions, and compliance with readiness.

Provide expertise on data protection, regulatory requirements, and security governance.

Support pre-sales activities by developing proposals, presentations, and SOWs.

Governance, Risk, and Compliance (GRC)

Establish and monitor key security metrics and risk indicators.

Work with cross-functional teams to integrate ISMS into business processes.

Support audits (internal and external) and coordinate responses to findings.

Develop training and awareness programs on information security best practices.

Continuous Improvement

Identify areas of improvement in ISMS processes and tools.

Stay current with emerging security threats, technologies, and compliance standards.

Contribute to knowledge sharing, methodology development, and team mentoring.

Additional Information:

Mandatory Skills - Internal Audit, Risk Assessment, Good English Communication, incident and change management

Nice to have skills - Strong analytical and problem-solving skills.x Ability to translate technical issues into business language. Project management and client engagement experience. Excellent report writing and presentation skills. 3–6 years in ISMS implementation, auditing, or information security governance.

Interview Mode - In Person Interview

Work Model - Hybrid Model