Compliance & Audit Lead

ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it , our most valuable asset is our people. Here you'll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers and consumers, worldwide. ZSers drive impact by bringing a client first mentality to each and every engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their business. Bring your curiosity for learning; bold ideas; courage an d passion to drive life-changing impact to ZS.
Our most valuable asset is our people .
At ZS we honor the visible and invisible elements of our identities, personal experiences and belief systems-the ones that comprise us as individuals, shape who we are and
make us unique. We believe your personal interests, identities, and desire to learn are part of your success here. Learn more about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about.
We are seeking a dynamic IT Compliance & Audit Lead to join our Governance, Risk & Compliance (GRC) team in Pune. This role will be pivotal in driving the implementation and evolution of ZS's Continuous Compliance Monitoring (CCM) program. The ideal candidate will bring hands-on technical security expertise, a strong audit and risk management mindset, and the ability to collaborate across technical and business stakeholders.
What you'll do:

• Lead the development and execution of ZS's Continuous Compliance Monitoring (CCM) program across infrastructure, applications, and third-party vendors
• Collaborate cross-functionally with internal security, privacy, engineering, and operations teams to drive remediation and maturity of compliance gaps
• Serve as SME for security audits, helping interpret and implement compliance controls (e.g., ISO 27001, SOC 2 Type 2, NIST CSF, HIPAA, ESG reporting frameworks)
• Design and implement automated compliance checks and control testing routines aligned with risk appetite and audit requirements
• Conduct and support internal and external audits, including pre-audit readiness assessments, evidence collection, and issue remediation oversight
• Contribute to enterprise risk assessments, security profiling, and threat modeling to improve ZS's security posture
• Drive security incident post-mortems and track audit findings to closure with technical leads and business owners
• Assist in the maintenance and enhancement of security policies, procedures, and standards to reflect evolving risk and regulatory requirements
• Create training and awareness content related to policy adoption, audit preparedness, and security control responsibilities
• Provide metrics and executive-level reporting on compliance posture, audit outcomes, and CCM maturity
• Serve as a technical consultant in areas such as SIEM tuning, bounty hunting initiatives, and threat intelligence integration

What you'll bring:

• Bachelor's degree in Computer Science, Information Systems, or a related field
• 4+ years of hands-on experience in Information Security, Audit, Compliance, or GRC roles with technical depth
• Proven experience implementing or maturing compliance frameworks like ISO 27001, SOC 2 Type 2, HIPAA, NIST CSF, etc.
• Strong understanding of security tooling and architecture, including:
• SIEM platforms (e.g., Splunk, Sentinel, QRadar)
• Threat modeling and profiling tools
• Vulnerability management platforms
• Cloud security configurations (AWS, Azure, GCP)
• Experience with bug bounty programs or threat hunting initiatives is a plus
• Excellent communication skills; ability to articulate risk and compliance requirements to technical and non-technical stakeholders
• Certifications preferred: CISA, CISSP, CRISC, CISM, ISO Lead Auditor/Implementer, CEH

Perks & Benefits:
ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empowers you to thrive as an individual and global team member.
We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections.
Travel:
Travel is a requirement at ZS for client facing ZSers; business needs of your project and client are the priority. While some projects may be local, all client-facing ZSers should be prepared to travel as needed. Travel provides opportunities to strengthen client relationships, gain diverse experiences, and enhance professional growth by working in different environments and cultures.
Considering applying?
At ZS, we're building a diverse and inclusive company where people bring their passions to inspire life-changing impact and deliver better outcomes for all. We are most interested in finding the best candidate for the job and recognize the value that candidates with all backgrounds, including non-traditional ones, bring. If you are interested in joining us, we encourage you to apply even if you don't meet 100% of the requirements listed above.
ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law.
To Complete Your Application:
Candidates must possess or be able to obtain work authorization for their intended country of employment.An on-line application, including a full set of transcripts (official or unofficial), is required to be considered.
NO AGENCY CALLS, PLEASE.
Find Out More At:
www.zs.com