Information Security and Compliance Analyst

Rightpoint, a Genpact company (NYSE: G) is a global experience leader. Over 500 employees work with clients end-to-end, from defining and enabling vision to ensuring ongoing market relevance. Our diverse teams lead with empathy, data and creativity—always in service of the experience. From whiteboard to roll-out, we help our clients embed experience across their operations from front to back office to accelerate digital transformation through a human-centric lens. Are you someone who wants to create change in the way business is done? Do you want to work with inspired and like-minded intrapreneurs? Us too! We take our work very seriously, but we have fun doing it. And we’re searching for passionate, talented people to join the Rightpoint team. Our Commitment to You No matter who you are, where you come from, who you love, what you believe, or what you get excited about, we bring people together to make phenomenal work. That's what makes us Rightpoint!Job Title: Information Security and Compliance Analyst                                                       Location: India  IntroductionReporting to the IT Security and Compliance lead, the person in this role will support our Information Security Management System and be instrumental in driving and organizing our ongoing SOX and ISO 27001 compliance efforts. This person will help analyze and track vulnerability findings and conduct vulnerability management efforts. The Ideal candidate will have exceptional written communication skills and the ability to manage complex documentation and audit requests. We are looking for a person with a passion for ensuring security best practices are followed consistently across the organization. What You’ll Be Doing and the Impact You’ll Make: 

• Coordinate and track SOX and ISO 27001 compliance efforts, including control reviews, evidence collection, process documentation, and internal readiness assessments
• Organize and conduct comprehensive searches to determine the applicability of data security policies to client contracts
• Serve as the point of contact for auditors and internal stakeholders during compliance reviews, ensuring clear and timely communication
• Maintain and organize a central repository of compliance documentation, policies, and procedures with a high standard of clarity and accuracy
• Review, triage, and analyze vulnerability findings from internal scans and external tools; prioritize and categorize based on risk and potential business impact.
• Work closely with IT and application owners to coordinate remediation efforts, follow up on open vulnerabilities, and ensure timely resolution
• Assist in developing security policies, procedures, and user guidance aligned with industry best practices
• Generate concise and meaningful reports and dashboards for internal leadership and auditors
• Track exceptions, manage control gaps, and help drive risk mitigation strategies
• Contribute to security awareness and training efforts by preparing clear documentation and guidance materials

 What We’d Love to See:

• 3+ years of experience in information security, IT compliance, or related roles
• Demonstrated experience supporting or managing SOX, ISO 27001 or similar compliance activities
• Familiarity with vulnerability management tools
• Outstanding written communication skills, especially in drafting audit responses, procedures, and internal documentation
• Meticulous attention to detail, with a strong ability to manage and organize complex deadline-driven tasks
• Comfortable working independently in a remote or distributed team environment.

 Preferred Qualifications 

• Certifications such as CISA, ISO 27001 Implementation, CISSP, or Security+
• Experience working with compliance frameworks such as NIST, GDPR, or SOC 2
• Prior experience in a multinational or regulated environment.
• Familiarity with project tracking tools (e.g. JIRA, Confluence, SharePoint).
• This is a global role requiring frequent flexibility for meetings with US-based colleagues.
• Role may include occasional after-hours (or before-hours) support during incidents or critical remediation windows.

   Work Environment and Expectations

• This is a global role requiring frequent flexibility for meetings with US-based colleagues 
• Role may include occasional after-hours (or before-hours) support during incidents or critical remediation windows 

Required Education:  Bachelor's Degree in Computer Science, MIS, or related field. Benefits and Perks at Rightpoint    

• 30 Paid leaves 
• Public Holidays 
• Casual and open office environment 
• Flexible Work Schedule 
• Family medical insurance 
• Life insurance 
• Accidental Insurance 
• Regular Cultural & Social Events including Diwali Party, Team Parties, Team outings, etc. 
• Continuous Training, Certifications, and Learning Opportunities First-hand experience dealing with security incidents. 

EEO Statement     Rightpoint, a Genpact Company, is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. We are committed to creating a dynamic work environment that values diversity and inclusion, respect and integrity, customer focus, and innovation.