Job Title

Information Security & Compliance Engineer – Job DescriptionJob Title: Information Security & Compliance EngineerExperience: 4–6 YearsLocation: Bengaluru – Hybrid (3 Days WFO)About ConvinConvin is a Conversation Intelligence platform built by IIT Delhi alumni to transform sales, collections, and customer experience. With our proprietary AI and automation, we help enterprises analyze conversations, drive insights, improve conversions, and deliver exceptional customer experiences.We’re trusted by leading brands like Urban Company, Physics Wallah, ICICI Lombard, SBI Life, , Bajaj and Niva Bupa, Aditya Birla Group Etc. across industries such as EdTech, FinTech, HealthTech, Hospitality, Travel, and BPO.Highlights:Raised $6.5M in Series-A (2024) and $2.1M seed funding (2022)Featured in LinkedIn’s Top Startups listRanked Top 20 Software Companies in India by G2Best Speech & Conversation Analytics Company at CX & DCX SummitsAbout the RoleWe are looking for an Information Security & Compliance Engineer who can effectively bridge the gap between security operations and regulatory compliance. You will play a key role in managing security tools, driving compliance programs across multiple frameworks, and ensuring adherence to global data protection regulations.This role requires hands-on experience in security operations, compliance frameworks, vulnerability management, and customer-facing security assessments.What You’ll DoManage and respond to customer security questionnaires, RFPs, and third-party assessmentsMaintain a centralized repository of security responses and supporting documentationLead implementation and maintenance of compliance frameworks such as ISO 27001, ISO 27701, ISO 20000-1, and SOC 2 (Type I & II)Manage end-to-end audit cycles, including coordination with auditors and remediation trackingDevelop and maintain security and privacy policies, procedures, and documentationEnsure compliance with global privacy regulations including GDPR, DPDPA, and CPRA/CCPAMaintain RoPA, DPIAs, and support DSARs and breach notification processesManage security tools such as SentinelOne EDR, MDM solutions, and Zscaler (ZIA)Monitor security alerts and respond to incidents in a timely mannerCoordinate end-to-end VAPT engagements with external vendorsTrack vulnerability remediation and maintain a vulnerability registerGenerate reports on security posture, risk, and remediation progressSupport cloud security practices across AWS, Azure, or GCP environmentsCollaborate with Engineering, DevOps, and Product teams to implement security controlsRequired Skills4–6 years of experience in Information Security or related rolesStrong hands-on experience with ISO 27001 and SOC 2 implementationWorking knowledge of GDPR and DPDPA (mandatory)Experience with SentinelOne EDR and Zscaler (ZIA)Familiarity with MDM solutions such as Intune or JamfUnderstanding of cloud security fundamentals (AWS, Azure, or GCP)Experience managing VAPT lifecycle and vulnerability remediationStrong written and verbal communication skillsAbility to work with both technical and non-technical stakeholdersGood to HaveCertifications such as ISO 27001 Lead Implementer/Auditor, CISA, CISSP, CCSP, CIPM/CIPPExperience with ISO 27701 or ISO 20000-1Familiarity with GRC tools such as Vanta, Drata, or OneTrustExperience in vendor risk managementUnderstanding of Zero Trust, SASE/SSE frameworksFamiliarity with vulnerability tools like Jira, ServiceNow, Qualys, or TenableKnowledge of OWASP Top 10, CVEs, and CVSS scoringWhat We ValueStrong ownership of security and compliance processesAbility to manage audits and handle customer-facing security discussionsAttention to detail in documentation and compliance trackingProblem-solving mindset with focus on risk mitigationContinuous improvement in security posture and processesInterview ProcessHere’s how we hire at Convin:Application Review – Our People & Culture team will connect within 4–5 days if your profile fits.Initial Catch-Up – A quick conversation to check role fit.IQ Round – Assessing problem-solving and analytical skills.Assignment / Case Study – Practical exercise + discussion.Final Leadership Round – Interaction with our founders/leadership team.Crack it, and you’re in!Perks & BenefitsLearning & Upskilling – Reimbursement of ₹1,000 per month (up to ₹12,000 per year) towards books or courses, work-related or otherwise.Wellness & Leisure Allowance – ₹24,000/year (claimable as ₹6,000 quarterly or ₹24,000 annually) for personal travel, retreats, or gym memberships.Comprehensive Insurance – Health insurance of ₹5,00,000 (self & family) + accident coverage of ₹25,00,000.Friday Treats – Weekly snacks for in-office employees.Friday Fun & Wellness – Bi-monthly yoga, health check-ups, learning sessions, and cultural activities.Quarterly Team Outings – Relax, connect, and grow together.