Senior Security & Compliance Analyst - Energy Exemplar

Key Responsibilities

• Develop, implement, and maintain the organization’s information security and compliance framework aligned with ISO 27001, NIST, and industry best practices.
• Conduct regular risk assessments, vulnerability analyses, and security audits for on‑premise and AWS cloud environments.
• Lead incident response activities, root‑cause investigations, and post‑mortem reporting to continuously improve security posture.
• Collaborate with engineering, product, and legal teams to embed security controls into development lifecycles and contractual obligations.
• Prepare and present compliance reports, audit evidence, and executive briefings for internal and external stakeholders.

Requirements

• 5+ years of experience in information security, compliance, or risk management, preferably in a technology‑focused organization.
• Hands‑on experience with ISO 27001 implementation, GRC tools, and cloud security (AWS).
• Strong knowledge of security frameworks (NIST, CIS) and ability to translate them into actionable controls.
• Proven track record of leading security audits, incident response, and continuous improvement initiatives.
• Excellent communication skills and ability to influence cross‑functional teams.