Experience Inc. Jobs

Job Information

Ivalua Senior Security Analyst in PUNE, India

Apply NowSenior Security Analyst at Ivalua (View all jobs)

Pune, Maharashtra - India

A “Magic Quadrant” leader, Ivalua’s solutions work in a complex global economy. Our innovative Source-to-Pay solutions include automating customized workflows to source, contract, request, procure, receive, and pay for goods and services across the enterprise, refining the procurement lifecycle while reducing cost and risk of spending on indirect goods, direct goods and services, and improving supplier collaboration.

All companies want the best and brightest. At Ivalua, we also want team members who have a global point of view and who bring customer-focused enthusiasm and ambition to the table. We are a company of doers, of problem solvers, of figure-it-outers. We have fun and we work hard. This is a truly global company with a diverse team of contributors and a set of core values that people can feel every day across all our offices.

About the Team:

Ivalua’s InfoSec team is looking for a Senior Analyst to support its various governance, risk, and compliance programs. Reporting directly to the InfoSec GRC Manager, you will be part of the InfoSec team and will work closely with multiple departments including R&D, IT, Legal, HR, operational, and sales teams to support existing processes and implement necessary controls to address internal business objectives, meet customer needs, and satisfy external audit requirements. In this context, your main responsibilities are:


  • Perform Information Security Risk Assessments against industry standard security frameworks (ISO 27005 and NIST 800-30) and maintain Ivalua’s information security risk register

  • Support the enterprise wide Business Continuity Plan and Business Impact Analysis efforts

  • Provide support for implementing security standards, performing self-assessments and coordinating related external audits, including ISO 27001, SOC 2, NIST 800-53, HIPAA, SOX ITGC and PCI DSS

  • Update and maintain internal and customer-facing security and compliance documentation including our overall information security policy for continual improvement and changes in requirements, regulations and/or new business initiatives

  • Facilitate and respond to supplier security assessments, customer audit needs and prospect security questions

  • Attend customer meetings during the pre-sales and post-deployment phase to brief them on security controls and Ivalua's posture

  • Help track and manage vulnerabilities identified through penetration testing or vulnerability scanning and follow-up their remediation effectively and accurately

  • Identify gaps and conflicts in existing processes, develop solutions with different teams and work to constantly improve our position and compliance status on security

  • Evaluate new and evolving security and compliance requirements and develop / enhance guidance and reference documents for internal teams

Skills You Need to Succeed:

  • Experience as an IT Security, Risk and Compliance Consultant in a consulting firm

  • Demonstrated success working in multiple frameworks, supporting one or more types of compliance and regulatory frameworks, controls, and best practices (e.g. SOX ITGC, GDPR, NIST 800-53, HIPAA, FedRAMP, ISO 27001, PCI DSS)

  • Ability and experience working closely with both technical and non-technical, cross-functional stakeholders

  • Knowledge of the world of software publishing and / or Saas

  • Desire to work in a fast-paced, highly dynamic work environment

Preferred Educational Qualification:

Bachelor’s degree in Information Systems, Security, Technology or similar field of interest

Watch the Ivalua Video: https://vimeo.com/363634218

Join Ivalua today and procure a great future for your career!