IT Security and Compliance Officer

Position: IT Security and Compliance Officer

Location: Remote

Experience: 5+ Years

Key Responsibilities:

• Design, implement, and maintain security architecture and policies for the job portal.
• Ensure compliance with CERT-IN guidelines, GIGW 3.0, and other government frameworks.
• Conduct vulnerability assessments, risk audits, and penetration testing with internal or third-party teams.
• Monitor access logs, analyse security events, and implement mitigation procedures.
• Develop and test incident response and data breach plans.
• Collaborate with DevOps and development teams to ensure secure SDLC practices.
• Lead documentation efforts for compliance reports, access control, and audit readiness.
• Act as the point of contact for the Mizoram Youth Commission for all security-related issues.

Required Skills & Experience:

• Minimum 5 years of experience in cybersecurity, IT governance, or compliance roles.
• Hands-on experience with:
• Web application security
• Data privacy laws
• Role-based access control (RBAC)
• SIEM, IDS/IPS, and endpoint protection
• Experience working on public-sector / e-Governance platforms is a big plus.
• Strong understanding of ISO 27001, NIST, and OWASP guidelines.
• Ability to independently handle CERT-IN audits and prepare security documentation.

Preferred Certifications

• CEH, CISSP, CISM, or ISO 27001 LA
• Familiarity with cloud security (AWS/Azure)

Education:

• Bachelor's or Master’s in Computer Science, Cybersecurity, Information Technology, or a related discipline. - masters are preferable