Quality Analyst - Security, Compliance & Data Governance

About the Role -

We are hiring a detail-oriented Quality Analyst specializing in Security, Compliance, and Data Governance QA.

The ideal candidate will be responsible for validating, auditing, and ensuring adherence to secure engineering practices across applications, APIs, data workflows, and AI systems.

This is a QA-focused role — not implementation — with strong emphasis on testing, verification, reporting, and compliance validation.

⸻

Key Responsibilities -

• Validate applications against OWASP Top 10 and review SAST/DAST/IAST security scan results.
• Perform QA on dependency vulnerabilities and ensure secure key/secret management.
• Verify compliance with ISO 27001, SOC 2 controls, data retention, backups, and disaster recovery processes.
• Test access control workflows, SSL/TLS configurations, MFA, IP restrictions, and audit logging.
• Conduct AI model security QA, including prompt-injection testing, sensitive-data masking checks, and output monitoring.
• Validate email security (SPF/DKIM/DMARC), malware scanning, and secure document-processing pipelines.
• Maintain QA reports, compliance documentation, and assist during internal/external audits.

⸻

Required Skills & Competencies -

Technical Expertise -

• Strong understanding of application security basics.

• Familiarity with OWASP Top 10, secure coding concepts, and common vulnerabilities.

• Hands-on experience with SAST/DAST tools, vulnerability scanners, and QA tools.

• Understanding of ISO 27001, SOC 2, and general data governance principles.

• Awareness of AI model risks, data exposure risks, and prompt injection issues.

• Knowledge of email security, malware scanning, and sandbox validation.

Soft Skills -

• High attention to detail.

• Strong analytical and documentation skills.

• Ability to collaborate with engineering, DevOps, and security teams.

• Proactive in identifying risks and inconsistencies.

• Process-oriented mindset with structured QA thinking.

⸻

Nice-to-Have Skills

• Experience with cloud environments (AWS/GCP/Azure).

• Basic understanding of DevSecOps workflows.

• Familiarity with SIEM tools and audit-log analytics.

• Exposure to AI/ML systems from a QA perspective.

⸻

What We Offer

• A critical role shaping secure and compliant delivery processes.

• Opportunity to work with cutting-edge AI and security systems.

• Fast-paced environment with ownership and autonomy.

• Growth opportunities into Security Analyst or Compliance Lead roles.

Job Type: Full-time

Pay: ₹5,000.00 - ₹10,000.00 per month

Benefits:

• Flexible schedule
• Work from home

Work Location: Remote