Compliance & Security Certification Specialist

Role Summary

The Compliance & Security Certification Specialist will play a key role in driving our TX-RAMP and FedRAMP readiness efforts. Working closely with our U.S.-based compliance, engineering, and operations teams, this role will ensure our cloud environment, policies, and documentation meet the stringent requirements of U.S. government security standards.

You'll serve as the bridge between our engineering teams in India and compliance officers in the U.S., ensuring that every control, process, and assessment aligns with frameworks like NIST 800-53, ISO 27001, SOC 2, and CIS benchmarks.Key Responsibilities

• Assist in achieving TX-RAMP and FedRAMP readiness and certification by coordinating documentation, evidence collection, and audit preparation.
• Develop, review, and maintain security and compliance documentation including policies, procedures, and control matrices.
• Support implementation of security controls aligned with frameworks such as NIST SP 800-53, ISO 27001, SOC 2, and CIS benchmarks.
• Conduct risk assessments, gap analyses, and control evaluations to identify non-compliance areas and propose remediation plans.
• Collaborate with DevOps and cloud engineering teams to ensure technical configurations and security controls meet compliance requirements.
• Partner with U.S. compliance, security, and legal teams to ensure consistency of global policies and adherence to U.S. government standards.
• Monitor ongoing compliance posture through continuous control testing, evidence gathering, and audit trail maintenance.
• Stay current with evolving TX-RAMP, FedRAMP, and ISO compliance updates, and recommend necessary process adjustments.
• Prepare internal teams for third-party or agency-led audits, including documentation walkthroughs and evidence readiness.

Required Qualifications & Skills

• Bachelor's degree in Computer Science, Information Security, or a related field.
• 3+ years of experience in IT compliance, cybersecurity governance, or cloud security.
• Strong working knowledge of:
• NIST 800-53
• ISO/IEC 27001
• SOC 2 Trust Services Criteria
• CIS Controls / CIS Benchmarks
• Familiarity with cloud platforms (AWS, Azure, GCP) and their compliance toolsets.
• Experience in documenting and implementing security controls, risk assessments, and audit evidence.
• Excellent analytical thinking, attention to detail, and documentation skills.
• Strong written and verbal communication skills with the ability to collaborate across time zones and cultures.

Preferred Qualifications

• Hands-on experience with TX-RAMP, FedRAMP, StateRAMP, or similar U.S. government security programs.
• Prior involvement in achieving SOC 2 Type II or ISO 27001 certification for a SaaS or cloud services company.
• Experience working in or with U.S.-based cloud/SaaS organizations.
• Certifications such as:
• CISA (Certified Information Systems Auditor)
• CISSP (Certified Information Systems Security Professional)
• ISO 27001 Lead Implementer / Lead Auditor
• CCSK (Certificate of Cloud Security Knowledge)

Soft Skills

• Exceptional communication and stakeholder management across global teams.
• Strong analytical mindset and problem-solving ability.
• Ability to balance structure with agility in a fast-paced environment.
• Self-driven, detail-oriented, and able to work independently with minimal supervision.
• Cultural awareness and collaboration skills in an international team setting.

Work Setup

• Location: India (Bangalore, Hyderabad, Chennai, Pune, or Remote)
• Type: Full-Time / Contract
• Schedule: Flexible hours with overlap for U.S. collaboration

Job Type: Full-time

Pay: ₹284, ₹1,076,652.93 per year

Work Location: Remote