Postúlate en Kit Empleo: kitempleo.cl/empleo/1adid5
Overview
Infosys Chile is looking for a Compliance Program Analyst. Your role will be to support the ATE Compliance Program by understanding client compliance standards and helping teams apply them. The focus is on validating that controls are designed and operating effectively across ITGC, ISP, and QMS domains, testing controls, reviewing evidence, facilitating audits, supporting escalations, and contributing to control design discussions to ensure standards are understood, applied, and met. You will also support Quality Management System (QMS) testing for Global and Territory-specific controls and collaborate with IT product teams, security, risk management, QMS resource owners, and auditors to stay compliant and audit-ready.
Your main activities will be: ITGC control testing and validation (primary focus). You will develop a deep understanding of PwC's Information Security Policy (ISP) and Controls Standard and help teams apply requirements across environments. You will test and validate ITGC controls across domains such as Access Controls, System Development and Change Management, Cyber Security and Data Protection, Service Management, and Resilience, and you will validate controls across Identity and Access Management, Change Management, Cyber Security operations, Database and Network controls, and Resilience. You will validate application penetration testing evidence, conduct compliance checks against ISP and relevant standards, document test results, and escalate gaps to the Compliance Program Lead (CPL).
QMS testing — Global and Territory-specific controls Engage in QMS control testing for global and territory-specific controls, validate that controls are designed and operating effectively, and ensure evidence is complete and audit-ready. Facilitate evidence delivery to auditors and QMS program owners as needed.
Audit facilitation and evidence management Facilitate internal and external audits (SOC 2, ISO 27001, 7216, and internal control reviews) on behalf of the CPL. Collect, review, validate, and manage audit evidence; maintain audit-ready repositories; support walkthroughs and access reviews; and serve as a point of contact during audits.
Inquiries,
escalations, and control design support Field compliance inquiries, interpret and apply ISP, ITGC, and QMS standards, and escalate complex issues to the CPL with recommended paths forward.
Remediation support and continuous monitoring Document remediation plans, track progress through closure, validate remediation effectiveness, and monitor controls between audit cycles. Flag potential risks early and escalate as needed.
Stakeholder engagement and communication Act as a knowledgeable point of contact for IT, security, risk management, product teams, and QMS owners; communicate clearly to various audiences; support compliance education and track training completions.
Reporting, metrics, and data-driven insights Prepare status reports for the CPL and senior management; maintain dashboards and use metrics to evaluate control testing coverage and program effectiveness.
Policy, procedure, and access review support Assist the CPL in maintaining ISP and QMS policies and procedures; coordinate quarterly and ad-hoc access reviews.
Candidate core competencies
- ITGC control testing and validation: validate IT General Controls across access management, change management, operations, and security domains with precision.
- QMS control testing: validate Global and Territory QMS controls, review evidence for completeness and accuracy, and identify gaps.
- Standards expertise: understand PwC's ISP and Controls Standard and help teams apply them correctly.
- Complex problem solving: identify root causes and develop recommendations under ambiguity; escalate effectively.
- Strong communication: translate complex standards into clear guidance for technical teams and leadership.
- Stakeholder management: build trust, manage inquiries,
and coordinate across jurisdictions.
- Coordination and organization: manage multiple audits, testing cycles, and deadlines.
- Collaboration: work across IT, security, risk, product, QMS, and audit teams.
- Attention to detail, Proactivity, Adaptability, Learning orientation, Analytical thinking
Technical skills
- Proficiency in SOC 2, ISO 27001, 7216, and ISP control frameworks.
- Experience with ITGC and QMS testing methodologies (walkthroughs, sampling, re-performance, inspection).
- Familiarity with vulnerability scanning tools, penetration testing evidence review, and security monitoring.
- Proficient in Microsoft Office, evidence management platforms, GRC tools, and compliance reporting/dashboards.
- Understanding of access control systems, identity management, encryption standards, and change management workflows.
- Familiarity with Integral and Territory-specific regulatory and quality management requirements.
Certifications (preferred)
- CISA (Certified Information Systems Auditor) – strongly preferred.
- CRISC (Certified in Risk and Information Systems Control).
- ISO 42001 or QMS-related certifications.
- ITGC-specific training or certifications.
- English fluency and 5 years of experience in similar roles; hybrid work modality.
About Us
Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 50 countries to navigate their digital transformation. With over four decades of experience in managing the systems and workings of global enterprises, we steer our clients through their digital journey. We do it by enabling the enterprise with an AI-powered core and agile digital at scale. Our learning agenda drives continuous improvement through building digital skills and ideas from our innovation ecosystem.
EEO
Infosys provides equal employment opportunities to applicants and employees without regard to race, color, sex, gender identity, sexual orientation, religious practices and observances, national origin, pregnancy, childbirth, or related medical conditions, or disability.
#J-18808-Ljbffr
Postúlate en Kit Empleo: kitempleo.cl/empleo/1adid5
📌 Compliance Program Analystst (Chile)
🏢 Infosys
📍 Chile