Process and Compliance Analyst

The Process and Compliance Analyst is a key contributor to driving operational excellence, regulatory compliance, and continuous improvement across the organization. This role sits at the intersection of process improvement, regulatory compliance, and risk management, with a specific focus on supporting Lean Six Sigma methodologies and ensuring adherence to international standards such as ISO 27001, ISO 9001, and other relevant Information Security Management System (ISMS) frameworks. The successful candidate will be responsible for analyzing and optimizing business processes, identifying control gaps, coordinating audits, and supporting implementation of compliance programs across departments. This is a highly collaborative role that requires strong analytical skills, attention to detail, knowledge of industry standards, and the ability to influence teams and stakeholders. Key Responsibilities 1. Process Analysis & Improvement Analyze and map business processes across various departments to identify inefficiencies, redundancies, and control weaknesses. Apply Lean Six Sigma tools such as DMAIC, value stream mapping, root cause analysis, and 5 Whys to streamline processes and improve performance. Work closely with process owners and functional teams to develop standard operating procedures (SOPs) and process documentation. Lead or support process improvement initiatives that enhance compliance, reduce risk, and align with organizational goals. Maintain a repository of business processes, workflows, and policies, ensuring version control and accessibility. 2. Compliance Monitoring & Audit Readiness Support and coordinate internal and external ISO audits, ensuring timely provision of documentation and evidence. Monitor compliance with key standards such as ISO 27001 (Information Security), ISO 9001 (Quality Management), and relevant data protection or industry-specific regulations. Conduct internal compliance reviews and gap assessments, identifying areas of non-conformance and driving corrective actions. Track audit findings, non-conformities, and observations, working with teams to ensure timely resolution and continuous improvement. Prepare detailed audit reports, dashboards, and compliance metrics for management review. 3. ISMS and Quality Management Support Collaborate with Information Security and Quality Assurance teams to maintain the Information Security Management System (ISMS) and Quality Management System (QMS). Assist in the creation and maintenance of information security policies, risk registers, incident response procedures, and other ISMS documentation. Ensure ongoing awareness and training programs related to ISO standards, information security, and quality assurance. Participate in risk assessments, control testing, and business continuity planning exercises. 4. Policy and Procedure Management Develop, review, and update policies, standards, and procedures to reflect current practices, regulations, and business objectives. Ensure policies are clearly communicated, accessible to relevant stakeholders, and aligned with international best practices. Promote a culture of compliance and operational discipline by supporting policy enforcement and awareness initiatives. 5. Reporting and Documentation Create and maintain detailed documentation including process maps, risk registers, control matrices, audit logs, and performance dashboards. Prepare regular reports on compliance status, audit readiness, process performance, and risk mitigation activities. Provide insights and recommendations to senior management on opportunities for process improvements and compliance optimization. 6. Stakeholder Engagement and Training Act as a liaison between compliance, process owners, IT, operations, and audit teams to ensure alignment and collaboration. Deliver training sessions and workshops on Lean Six Sigma tools, ISMS protocols, and ISO requirements. Foster an environment of continuous improvement, accountability, and regulatory awareness across the organization. The process and compliance analyst will support dedicated to the delivery project managers in all process documentation and improvement initiatives Qualifications and Requirements Education Bachelor’s degree in Business Administration, Engineering, Information Systems, Quality Management, or a related field. Master’s degree or advanced training in compliance, quality, or process management is a plus. Certifications Lean Six Sigma Yellow, Green Belt or Black Belt certification is required. Certification in ISO 27001, ISO 9001, or internal auditing (e.g., IRCA, PECB, or BSI Certified Auditor) is highly preferred. Additional certifications such as CISA, CISM, ISO 22301 (Business Continuity), or COBIT are advantageous. Experience Minimum of 5–7 years of experience in a compliance, process improvement, internal audit, or risk management role. Strong understanding of ISO standards (27001, 9001), regulatory frameworks, and ISMS/QMS implementation. Experience in developing and delivering Lean Six Sigma training or supporting internal certification programs is desirable. Prior experience working in regulated environments (e.g., financial services, healthcare, manufacturing, or IT) is a strong asset. Technical Skills Proficiency in process mapping tools (e.g., Visio, Lucidchart), document control systems, and audit software. Strong Microsoft Office skills (Word, Excel, PowerPoint, Outlook); familiarity with compliance management platforms and risk assessment tools. Comfortable working with data to generate insights, KPIs, and compliance dashboards. Knowledge of information security principles, data classification, incident response, and access control mechanisms.