Compliance Officer
Rogers Capital Technology Services Ltd is looking for a Compliance Officer to work in its Customer Service Department.
If you are agile and have a pioneering mind-set, join a winning team so that we can evolve together.
Qualifications & Experience
- Education Bachelor’s degree in Information Security IT Risk Compliance Law or related field Experience
- 1 to 3 years of experience in: Information security compliance IT audit / risk Governance Risk & Compliance (GRC)
- Experience in a technology services IT outsourcing or consulting environment is highly preferred
- Certifications (Preferred) ISO 27001 Foundation / Lead Implementer CISA / CRISC (or working towards)
- Any SOC 2 / IT audit exposure is a plus
- Technical & Functional Skills Understanding of: ISO 27001 controls and ISMS concepts
- Basic cybersecurity principles
- Risk and compliance processes
- Experience with: Audit documentation and evidence collection
- Strong skills in documentation Excel and reporting Soft Skills
- Strong attention to detail and organization
- Good written and verbal communication (important for client interactions)
- Ability to manage multiple deadlines (audits client requests reviews)
- Proactive and structured approach to work Key Competencies
- Compliance and governance mindset Client-centric approach Accountability and follow-through Continuous learning and adaptability.
Key Responsibilities
1. Compliance & Framework Support Assist in maintaining compliance with: ISO 27001 (ISMS)
-Data protection laws (e.g. Mauritius Data Protection Act GDPR where relevant)
-Support alignment with client security and compliance requirements Monitor changes in regulatory and industry standards
2. ISMS & Documentation Management Maintain and update ISMS documentation including: Policies procedures and standards Risk assessments and treatment plans
-Ensure proper document control versioning and approvals
-Support certification and surveillance audits
3. Risk Management Support Assist in performing information security risk assessments
-Maintain the risk register and track remediation actions
-Follow up with system owners on risk treatment plans
-Support third-party/vendor risk assessments especially for service providers
4. Audit & Client Assurance Support internal and external audits (ISO 27001 client audits)
-Prepare and organize audit evidence and documentation
-Respond to client security questionnaires (RFPs due diligence requests)
-Track audit findings and ensure closure of corrective actions
5. Compliance Monitoring & Reporting Monitor adherence to internal security policies and standards
-Assist in preparing compliance dashboards and reports for management
6.Track key metrics (KPIs/KRIs) related to compliance and risk Escalate non-compliance issues to the ISO.