Senior Information Security Specialist

Senior Information Security Specialist JD
(Youll be the shield behind secure systems) Experience Required: 3-5 years Location: Bangalore, Hybrid Department: Compliance Reporting to: Global DPO About Us Augnito isthe next gen Voice AI powering the healthcare industry Augnito empowers medical professionals and streamlined clinical workflows with cloud-based, AI speech recognition that offers ergonomic data entry with 99% accuracy, without the need for voice profile training, from any device, anywhere From the outset, Augnito was built in close partnership with clinicians, using human-centered design, to create an AI natural language processing engine to fit your needs not the other way around As a result, Augnito offers excellent support for a wide variety of clinical vocabulary and workflows and can halve your clinical reporting and admin time, increase revenue, prevent physician burnout, eliminate transcription waiting delays, and enable you to focus your energy on patient care not documentation Augnito is currently deployed at 300+ hospitals and health systems and has a growing presence in 20+ countries, including the US, UK and Canada Role Overview: We are looking for a detail-oriented and proactive Information Security Associate to assist in maintaining and improving our core compliance and information security standards You will support the implementation and monitoring of ISO 27001: , SOC 2, and HIPAA requirements, working closely with internal SPOCs, external auditors, and the senior InfoSec team Key Responsibilities: Lead the implementation, continuous improvement, and certification of ISO 27001, SOC 2, HIPAA, ADHICS, and GDPR frameworks Conduct risk assessments and maintain a comprehensive ISMS Define and review security policies, SOPs, and compliance matrices Interface with global clients and regulators to address InfoSec requirements, security posture, and data processing controls Oversee responses to client RFPs, DDQs, and third-party security reviews Supervise execution of VAPT, access reviews, incident response simulations, and audit closures Draft standardized responses for client RFPs and security assessments Help gather security documentation and artifacts for client due diligence Guide junior team members in operational compliance tasks Drive cost optimization across security tools and services Maintain reusable templates, trackers, and compliance artifacts for audits Plan for future frameworks like ISO4 India DPDP Act, and industry-specific certifications Advise on regional compliance nuances pertaining to SFDA, DOH and the like Requirements: 35 years of hands-on InfoSec experience, including leading audits and certifications Deep knowledge of ISO 27001: , SOC 2, HIPAA, and ADHICS frameworks Familiarity with GDPR and other international data privacy laws Strong stakeholder and vendor management skills ISO 27001: Lead Implementer or Auditor certification is mandatory Good to Have: Experience in healthcare or AI-based SaaS/tech Proficiency in cloud security, data flow mapping, and regional data laws Ability to work independently in a high-growth environment Augnito India Pvt Ltd is an equal opportunities employer We are committed to providing equal opportunities throughout employment, including in the recruitment, training and development of employees (including promotion, transfers, assignments and beliefs) Augnito will not tolerate any act of discrimination in the workplace including but not limited to: Gender, Gender identity, National or ethnic origins, Marital or Domestic Partnership status, Pregnancy Status, Carers responsibilities, Sexual orientation, Race, Color, Religious belief, Disability, Age, Any other grounds of discrimination In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Augnito will be based on merit, qualifications, and abilities Our objective is to attract job applications and applications for development from the best possible candi and to retain the best people In accordance with Augnitos data retention policy, candi details are retained in our database for a period of five years This allows us to reach out to candi in the future for any relevant opportunities within the organization