Information Security Auditor

Title: Information Security Auditor

Experience: 4 - 6 Years

Location: Bengaluru

Mandatory Skills: Auditing (ISO 27001), SOC2, HIPAA, Cloud Experience (AWS OR GCP)

We’re looking for an Information Security Audito r to help ensure Nextiva meets global security and privacy standards. In this role, you’ll work closely with teams across the company to assess controls, conduct audits, and support compliance with industry regulations.

What You’ll

• DoAssess Nextiva’s compliance with security frameworks and privacy regulations (SOC 2, ISO 27001, GDPR, etc
• Plan and perform internal security and privacy audits
• Identify control gaps, document findings, and drive remediation with internal teams
• Support external audits by collecting evidence and coordinating with stakeholders
• Review and help improve security and privacy policies and procedures
• Monitor controls such as user access, firewalls, and third-party vendors
• Stay current on evolving security, privacy, and regulatory requirements
• Use AI and automation tools to improve audit planning, documentation, and reporting

What You Bring

• Bachelor’s degree in IT or related field (or equivalent experience)
• 4–6 years of experience in IT security, IT audit, or software development
• Strong understanding of IT infrastructure, cloud (AWS/GCP), networking, IAM, SIEM, and security tools
• Knowledge of security and privacy standards (SOC 2, ISO 27001, NIST, PCI-DSS, HIPAA, GDPR, CPRA, etc)
• Security certifications are a plus (CISSP, CISM, CCSP, Security)
• Strong analytical, communication, and organizational skills
• Ability to collaborate across teams and manage multiple priorities

Why Join Nextiva

• Work on global security and compliance initiatives
• Collaborate with diverse technical and business teams
• Grow your skills across security, privacy, and audit domains
• Make a real impact on protecting customers and the business