Security and Compliance Analyst

Description:

Nakisa is seeking a detail-oriented, proactive, and technically curious Security and Compliance Analyst to support our growing global security and compliance initiatives. This role is central to maintaining and enhancing Nakisa’s compliance posture with recognized standards such as SOC 1, SOC 2, ISO/IEC 27001 , and data privacy regulations.

You’ll work closely with internal teams and external auditors to manage evidence collection, track audit deliverables, and maintain robust documentation. You’ll also assist with RFPs/RFIs from prospective clients and contribute to internal security improvement projects. A strong interest and understanding of Artificial Intelligence (AI) , particularly its implications on compliance and security, is essential.

This is an excellent opportunity for someone looking to launch or grow a career in information security and compliance in a fast-paced SaaS environment that is deeply invested in cloud technology, AI , and process excellence .

Key Responsibilities:

• Coordinate and manage tasks related to Nakisa’s security and compliance programs, including SOC 1, SOC 2, and ISO 27001 audits.
• Collaborate with internal stakeholders and external auditors to collect, organize, and validate audit evidence and documentation.
• Drive and support continuous improvement of internal processes, controls, and compliance documentation.
• Assist in completing security and compliance sections of RFPs, RFIs, and due diligence questionnaires from prospects and clients.
• Contribute to internal information security projects and process improvements.
• Ensure documentation and policies are accurate, up-to-date, and aligned with industry standards.
• Monitor and follow up on compliance deadlines, audit deliverables, and remediation actions.
• Stay informed on evolving security frameworks, regulatory requirements, and AI-related security practices.
• Educate employees on security awareness topics and best practices through training, content creation, or internal communications.
  
  

Qualifications:

• Bachelor’s degree in information security, Cybersecurity, Information Systems, Computer Science, or a related field—or equivalent hands-on experience.
• Solid knowledge of industry standards and frameworks, such as:
• SOC 1 / SOC 2 (Type I & II), ISO/IEC 27001 & 27017, CIS Controls, Data protection regulations (GDPR, PIPEDA, CCPA, etc.)
• Strong reporting and documentation skills:
• Proficiency in generating audit reports, compliance documentation, and RFP/RFI responses
• Skilled in Excel, Word, PowerPoint, and PDF tools for structured reporting and evidence tracking
• Experience with compliance audits, security questionnaires, or risk assessments
• Basic technical knowledge of cloud environments (AWS, Azure, GCP), access controls, encryption, and security operations
• Exceptional attention to detail, with the ability to identify gaps, maintain precision, and meet deadlines
• Strong verbal and written communication skills, comfortable working cross-functionally with internal teams, auditors, and clients
• Demonstrated interest and foundational knowledge in Artificial Intelligence, especially its impact on cybersecurity and compliance
  
  

Preferred:

• 3+ years of relevant work experience in security compliance, audit, or GRC functions
• Exposure to internal controls testing, risk registers, or information security policies
• Certifications (or active pursuit) such as:
• Certified in Cybersecurity (ISC² CC), ISO 27001 Lead Implementer or Foundations, CISA etc.
  
  

Why Nakisa?

💻 Flexibility : Hybrid work model with one day a week from home or four days a month from home.

🌴 Time off : Three weeks of vacation to start, generous sick leave, one personal day, and maternity or paternity leave.

🩺 Health and wellness : Comprehensive IPD and OPD coverage plus life insurance.

💰 Financial security : Three bonuses a year, including annual and festive bonuses.

🎉 Social perks : Team events, outdoor lunches or dinners, birthday celebrations, annual gatherings, giveaways, and more.

🚀 Career growth : Mentorship, education assistance up to PKR 100,000 per year, and reimbursement of job-related professional dues.

🤝 Culture : Supportive, values-driven teams with leaders who care.

🚀 Make your impact at Nakisa.

If building enterprise-grade, privacy-first AI excites you, apply today and help shape the future of enterprise software.

• Location: Mega Tower Gulberg, Lahore
• Hiring process: AI-powered screening, Recruiter conversation, hiring manager interview, and a panel or skills assessment depending on the role
• Not a perfect match: Apply anyway. Potential and drive matter here
  
  

Apply today.