Infosec Analyst

About Leegality: We're India's very first Document Infrastructure Platform. Our mission? To completely transform how businesses handle paperwork, contracts, and getting digital consent.We make critical paperwork flows faster, way more innovative, and completely compliant for Indian businesses. Over 2,000 companies, from huge players like HDFC and SBI Cards to super fast-growing ones like Razorpay and Cars24, trust us with their document workflows.Beyond our core platform, we've launched "Deal Collaboration" (making contract negotiation a breeze) and "ConsentIn" (for easy, DPDP-compliant consent collection).Basically, we're building the go-to execution layer for all modern paperwork. If that sounds exciting, come join usCurious about our impact? Check out our customer success stories here:Our Culture:At Leegality, we're all about trust, owning our work, transparency, and having a blast while building something meaningful.These aren't just buzzwords; our team proved it by giving us an amazing 97 on the eNPS survey for FY 2023-24 (that's the highest among over 175 startups).We're always working to help our team grow and stay motivated. We offer cool perks like flexible hours, hybrid work, and bi-annual appraisals to make sure everyone has an awesome work environment.If our culture vibes with you, keep reading the job description below and hit that apply buttonLocation: HybridRole Brief As Information Security Analyst you will be responsible for managing third party risk management, assisting the Infosec team in implementing ISMS related activities and protecting systems and assets from external and internal threats.Leegality is an ISO 27001 certified Company. At Leegality you will - Facilitate assurance-related requirements. Have wider-than-usual exposure to regulatory compliance. Implement best-in-class security practices. Have the opportunity to advance security domain knowledge at a rapid pace. Directly report to Information Management and advance your leadership skillsKey Responsibilities: Understanding the Leegality product and its features. End-to-end ownership of responding to client security assessment questionnaires and Information Security Assurance Requests. Keeping the track of security evidence and updating them periodically. Collaborate with relevant teams to plan and develop work program timelines, risk assessments and other planning documents Performing vendor risk management. Evaluating the security of a product or service provider prior onboarding. Assisting Infosec team in maintenance of ISMS. Ensure technology and information risks are effectively identified, assessed, controlled, managed, reported, and timely closure of Assurance action Assist in deploying proper information systems, resources, and controls to maximize efficiencies and minimize risk Demonstrate and apply a thorough understanding of complex information systems, strong project management skills, and use of current technology and tools to enhance the effectiveness of deliverables and services Build strong relationships with all stakeholders to drive continuous improvement on Technology Risk/Project governance processes Ensure business continuity, disaster recovery and stress testing controls are defined, documented, and conducted regularly Assist InfoSec team in managing the organization's Operational Risk Assurance & Controls Testing Plan. Assist InfoSec Manager in day-to-day compliance activities to maintain the company’sISO 27001:2022, ISO 27017, ISO 27018, ISO 22301 certification and SOC 2 Type 2 Compliancy. Communication skills to develop clear protocols, inform management about potential risk issues, and relay information about policy changes effectivelyDesired Skills and Experience: Minimum 2 to 3 years of experience in core Information Security domain, preferably in the BFSI or B2B IT sectors Certifications like ISO 27001 LA, CISA, CISSP will be an added advantage Hands-on experience with multiple External & Client InfoSec Audits.Our Hiring Process: You will be shortlisted based on your profile On being shortlisted, you would be contacted for the interview process. We further have 2 rounds of interviews. Your final CTC would be decided on the basis of your skills, experience and final assessment.Apply directly through our career page: For more information about us please visit our: Our Company and Culture: Our Website: Our LinkedIn Page:y/