Information Security Analyst

We’re pushing the boundaries of Insurance Technology

INSTANDA is the worlds first no code platform for Insurance. A pioneering Insurtech, we’re revolutionising the insurance industry by offering insurers a versatile tool to create, manage, and distribute digital insurance products. Our innovative technology empowers insurance carriers to adapt swiftly to market demands and navigate the evolving landscape. Our Technology is consistently recognised as the best policy administration platform for innovative insurers, winning awards in both the UK and US.

INSTANDA has grown significantly in recent years and we are now a team of 200+ employees with partnerships that operate worldwide. We’re continuing to grow our business and our Information Security team is at the forefront of our growth plans.

Follow us to learn more: Instanda.com hiringnearme.org LinkedIn hiringnearme.org Twitter hiringnearme.org YouTube

The Role:

In this newly created role, the Information Security Analyst will report directly to the CISO and be responsible for administering Information Security Projects and Program,  Security Governance, Risk, and Compliance (GRC) , customer security-related due diligence demands (existing and prospective), and Third-Party Risk Management (TPRM). This role demands a motivated, detail-oriented professional who thrives in a rapidly changing environment and can work collaboratively with diverse global teams.

This role is fully remote, based in India. You must be eligible to live and work in India without the need for sponsorship.

Our excellent benefits are listed below.

The assessment process will be:

• HR screen – 30 minutes
• Technical interview – 60 minutes
• Competency interview – 45 minutes

** As part of the application process, you will be required to answer competency questions to support your application for this position. **

What you will do:

You will work closely with internal teams (Information Security, All CTO sub-teams, Internal IT, People Operations, Procurement, Legal, Sales & Pre-Sales, Account Management and Client Success) to oversee and analyse security operations and security engineering information feeds provided by a third-party security manager service provider, shaping our strategic security posture.

Responsibilities will include:

• Organising and coordinating information security initiatives by developing detailed project plans, timelines, and budgets. Engaging with key stakeholders, allocate resources, and track performance, to ensure projects are completed on time, within scope and budget.
• Developing, implementing, and maintaining security policies, standards, guidelines, and procedures to ensure ongoing compliance with relevant frameworks (e.g., ISO 27001, SOC 2, PCI DSS).
• Overseeing third-party security risk management processes, including vendor due diligence, contract reviews, and ongoing monitoring.
• Coordinating with internal teams and external stakeholders to ensure transparency and trust in our security practices.
• Investigating potential incidents, coordinate incident response activities, and ensure appropriate remediation steps are taken.
• Maintaining up-to-date documentation of security processes, controls, and risk mitigation measures.
• Providing security awareness training and guidance to internal teams globally.

Requirements

Essential Experience:

• Minimum of 5 years of relevant work experience, including IT-related project management, information security, GRC, TPRM, or related areas.
• Strong understanding of common security frameworks and standards (ISO 27001, SOC 2, PCI DSS, NIST).
• Familiarity with TPRM best practices and vendor risk management platforms.
• Experience with security operations tools (e.g., SIEM, vulnerability scanners, endpoint protection).
• Bachelor’s degree (or higher) in Information Technology, Cybersecurity, Computer Science, or a related field.
• Demonstrated efficiency in project and task management, with the ability to multitask and prioritize effectively in a dynamic environment.
• Working knowledge of commonly used IT, security, GRC and project management platforms (e.g., Jira, Confluence, Trustero, Omnea, Qualys, MS Defender, ServiceNow GRC, Archer, OneTrust, Vanta, Drata, etc.).
• Quick learner capable of adapting to new technologies and processes.
• Strong communication skills for cross-functional collaboration and client interactions.
• Team player with a dynamic, entrepreneurial mindset who thrives in a fast-paced, growth-oriented environment.

Benefits

• Competitive salary package 
• Generous 28 days annual leave, plus bank holidays.
• One Dynamic Day per month on top of your holiday allowance to spend time doing the things you want to do or simply catching up with life admin.
• All employees are included in the company discretionary bonus scheme.
• Annual individual learning & development allowance of INR100,000
• Free access to LinkedIn learning and Microsoft ESI learning platforms

INSTANDA partners with a local Employer of Record (EOR) entity to manage salary and benefits for our India based employees. Benefits are country-specific but generally include medical, vision, and dental insurance and more.

Additional Information:

Our company was built by looking at the world through a different lens and our culture today reflects that by encouraging you to be yourself, speak your mind, and share your opinions. We want people who want to push themselves, be part of something great, and be prepared to challenge if they think there is a better way. Collaboration sits at the heart of how we operate, it has fueled our growth enormously and our aim to be ‘world class’.                                                                                                                                  

INSTANDA is fueled by Diversity & Inclusion. Different views are advantages, combining our different backgrounds, experiences, and expertise makes us savvier problem solvers and drives better results. INSTANDA is an equal opportunity employer and encourages applications from everybody, regardless of race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

We want everyone to be the best they can be throughout our recruitment process. Our goal is to foster an inclusive and accessible workplace where everyone has the opportunity to be successful. If you require any additional adjustments please let us know. Visit instanda.com/careers for more information

INSTANDA has an in-house recruitment team, which focuses on sourcing great candidates directly.  INSTANDA does not accept unsolicited resumes from agency or search firm recruiters.  Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired.  When we do use agencies, we have a PSL in place, so please do not contact managers directly.