Job Title: Data Privacy Auditor / Information Security Compliance Specialist
Location: Pune
Contract Duration: 6 Months (Possible Full-Time Hire After 6 Months)
Priority: Urgent
Required Skills: NESA, ISO 27001, NIST, GDPR, PCI-DSS, Internal Information Security Policies
Record ID: 1817

Job Description:
We are looking for a Data Privacy Auditor with strong GDPR and information security compliance experience. The role involves conducting a comprehensive review of applications, APIs, and infrastructure to ensure adherence to internal security policies and global regulatory frameworks.

Key Responsibilities:

• Conduct end-to-end security compliance reviews of applications, APIs, and associated systems

• Evaluate system configurations, access controls, data flows, encryption methods, and deployment environments

• Review software development and change management processes for secure coding and deployment practices

• Assess compliance with NESA, ISO 27001, NIST, GDPR, PCI-DSS, and internal security policies

• Identify areas of non-compliance, security gaps, control weaknesses, and potential risks

• Provide prioritized, practical remediation recommendations

• Collaborate with IT, development, and application teams to validate findings and clarify technical details

• Produce a detailed audit report summarizing assessment results, compliance status, and risk ratings

• Convert findings into actionable remediation items and track progress with stakeholders