Job Description

JD : Cybersecurity Engineer, Governance & Assurance

Location : Bangalore, India

About Circles

Founded in 2014, Circles is a global technology company that\'s reimagining the telco industry with its SaaS platform, Circles X, and helping operators launch and operate successful brands.

Today, Circles is partnering operators in 13 countries to deliver delightful digital experiences to millions of people through our businesses.

With Circles.Life, our digital lifestyle brand, we empower and delight customers across the world by offering digital experiences that go beyond traditional telco services.

With Circles X, our digital telco technology empowers operators to launch digital telco brands from anywhere in the world. Built for operators by an operator, Circles X powers both Circles.Life and our partner operators\' digital telco brands.

Circles is backed by global investors such as Sequoia, Warburg Pincus, EDBI and Founders Fund - renowned institutions with a track record of backing industry-shaking innovators.

Mission

Our mission in Circles is to become a world-class cybersecurity function by cultivating security as job zero across the organisation. This means security is enforced as an integral component across every facet of our business globally, whereby:

• Security is second nature;
• Security is in the DNA of everything we do; and
• Cultivating and maintaining a Security conscious culture

The Role

As a team member of Cyber Governance & Assurance vertical within Information & Cybersecurity Function, primarily responsible to ensure that Circles.Life and its global offices are always maintaining robust, sustainable and adequate governance practices and compliance.

• Develop, mature and operationalise cybersecurity framework, policies, procedures, guidelines and baseline standards within the Group.
• Champion and ensure cybersecurity best practices are embedded within new initiatives, ongoing change management and evaluate the security impact of the initiatives.
• Identify, risk assess and prioritize various information, data assets across the Enterprise.
• Ensure organisational crown jewels are adequately protected in accordance with regulatory and data protection regulations such as ISO27701, PCI-DSS, Market specific Data Protection regulations including PDPA, GDPR.
• To ensure organisational crown jewels are adequately protected in accordance with regulatory and data protection regulations such as ISO27701, PCI-DSS, Market specific Data Protection regulations including PDPA, GDPR.
• Drive internal Risk Assessment including 3rd Party Due Diligence (3PDD) reviews, cybersecurity assurance activities, as well as audit readiness reviews and drive timely resolution of potential gaps.
• Provide advisory services on information and cybersecurity matters for internal stakeholders as laid out in subsequent sections.
• Drive cybersecurity awareness within the Group, formulating learning curriculum, rolling out training modules ensuring completion remains above agreed metrics.
• Proactively support in organisational roadmap towards maintaining relevant credentials including ISO27001 compliance and establishing SOC2 compliance report.

Key Stakeholders

• Verticals within Information & Cybersecurity
• Engineering
• Marketing
• Customer Happiness
• Operations
• Government Affairs and Public Policy
• Finance and Legal
• People & Culture

You Offer

• Hold a Degree in Information Technology, Cyber Security or comparable qualification.
• To have 2+ years of professional experience in Audit, Assurance, Governance, Management Consulting or ability to port skills across these functional responsibilities.
• To assist in cybersecurity governance and assurance initiatives in relation to SaaS based Telco platform delivering B2B and B2C products.
• Excellent written and oral communication skills, confident in having meaningful conversation with stakeholders at multiple levels within the Group.
• Prior experience, knowledge in the following is a certain plus:

• Telco industry.
• Cloud Infrastructure and Security, DevSecOps, Microservices architecture, Container security.
• Industry Standards such as ISO 27001, NIST, COBIT, PCI-DSS, MTCS.
• Cherish continuous learning and demonstrate it with one or more professional certifications such as CRISC, CISA, CGEIT, CDPSE, CDPSE, CSX-P, CISSP or equivalent.

We Offer

• Fabulous opportunity to work with dynamic individuals and teams in a fast-paced environment.
• Exposure to deepen as well as broaden expertise in the domain that strongly aligns with business mission.
• A career progression to match your aspirations and potential.
• Attractive compensation, perks and benefits.

To all recruitment agencies: Circles will only acknowledge resumes shared by recruitment agencies if selected in our preferred supplier partnership program. Please do not forward resumes to our jobs alias, Circles.Life employees or any other company location. Circles will not be held accountable for any fees related to unsolicited resumes not uploaded via our ATS.

Circles.Life is committed to a diverse and inclusive workplace. We are an equal opportunity employer and do not discriminate on the basis of race, national origin, gender, disability or age.

Circles.Life