SOC 2 Compliance & Infrastructure Security Specialist

Experience: 5+ Years
Location: Hyderabad
Work Mode: Work from Office (WFO) – Full-time
Department: Engineering
Reporting To: CTO

Description:
We are seeking an experienced individual to assist our company in maintaining SOC 2 compliance using Drata, along with strengthening our overall infrastructure and system-level security especially within the Indian operational context.ClicTechnologies is a remote-first software company that provides marketing solutions through modern digital platforms. We’ve already achieved SOC 2 certification and now require a security specialist who can manage ongoing compliance and lead core infrastructure security processes.

Responsibilities:

• Maintain and optimize Drata to ensure continuous SOC 2 compliance.
• Ensure documentation and Drata compliance tasks are up to date in preparation for our upcoming SOC 2 audit.
• Update and implement security policies and controls aligned with evolving global and Indian regulatory frameworks (e.g., CERT-In guidelines).
• Lead and implement infrastructure-level security processes, including:
• Server hardening (Linux/Windows)
• Access control and user management across cloud platforms (AWS, GCP, Azure)
• Firewall, VPN, and endpoint security management
• Backup and recovery strategies
• Patch management and vulnerability scanning
• Collaborate with IT/DevOps teams to embed security-by-design practices into infrastructure and deployment pipelines.
• Establish and document repeatable security processes (SOPs) tailored for remote and distributed teams, especially in India.
• Proactively monitor systems for security risks and compliance gaps; remediate issues promptly.
• Provide ongoing security awareness training to team members.
• Assist in evidence collection and documentation for audits.
• Serve as the point of contact for any security-related escalations in India.

Requirements:

• Proven experience with SOC 2 compliance maintenance using platforms like Drata.
• Solid hands-on experience in infrastructure security, server hardening, and cloud security management.
• Familiarity with Indian IT regulations and security standards (e.g., CERT-In, IT Act 2000 amendments, RBI/IRDAI guidelines if applicable).
• Strong understanding of security controls, risk management, and compliance frameworks (e.g., ISO 27001, NIST).
• Experience creating and maintaining security SOPs and documentation.
• Previous experience in remote-first or globally distributed tech companies.
• Excellent communication and collaboration skills.

Job Types: Full-time, Permanent

Benefits:

• Flexible schedule
• Paid sick time
• Paid time off
• Provident Fund

Work Location: In person