Specialist, Information Security & Privacy
Mindtickle is hiring a Specialist, Information Security & Privacy to support the development and implementation of information security and privacy strategies, leveraging expertise in Python, AWS, and Machine Learning to ensure the security and integrity of their AI-powered revenue enablement platform.
Who we are
Mindtickle is the leading AI-powered revenue enablement platform that combines on-the-job learning and deal execution to drive behavior change and get more revenue per rep. Mindtickle is recognized as a market leader by top industry analysts and is ranked by G2 as the #1 sales onboarding and training product.
Our commitment to innovation has also earned us the "AI-based Sales Solution of the Year" award in the 8th annual AI Breakthrough Awards program ( PR Newswire) , and a Gold Stevie Award for Sales and Customer Service ( Mindtickle )- recognition of our dedication to both product excellence and outstanding customer support.
Job Snapshot Mindtickle is hiring a Specialist, Information Security and Privacy to join our Information Security and Privacy team in Pune. This role sits at the intersection of compliance, technical security, and intelligent automation — and it is designed for someone who understands that good security is not just about policy, but about building systems that make compliance self-evident.
You will own the operational backbone of our compliance programme across SOC 2 Type II, ISO 27001, GDPR, and HIPAA — managing controls, preparing for audits, and working directly with engineering teams on vulnerability remediation. Alongside this, you will gradually build automated compliance workflows: Python-based applications and AI-assisted agents that collect audit evidence, surface control gaps, and keep stakeholders proactively informed — reducing manual effort and enabling the team to stay ahead of its obligations at scale.
If you are someone who is equally comfortable reading a security advisory as you are writing a Python script, and who believes that compliance should be a living, automated system rather than an annual scramble, this role offers rare breadth and long-term impact.
This role reports to the Senior Manager, Information Security and Privacy.
What’s in it for you?
Compliance operations and audit readiness
Own and manage controls across SOC 2 Type II, ISO 27001, GDPR, and HIPAA frameworks, maintaining an up-to-date control landscape and evidence inventory.
Coordinate and support external audits end-to-end — from audit scoping and evidence preparation to auditor walkthroughs and post-audit remediation tracking.
Manage compliance tracking across Google Workspace (Sheets, Drive, Docs, Gmail) — maintaining structured control registers, evidence repositories, and policy documentation.
Send and track corrective action communications to control owners, following up through resolution and maintaining a clear audit trail.
Conduct periodic internal compliance reviews and produce structured reports for leadership.
Technical security and vulnerability management
Participate in Vulnerability Assessment and Penetration Testing (VAPT) cycles — reviewing findings, contextualising t
Posted June 5, 2026