Location: Bangalore, India
Job Description
The role is focused on:
· Contribute to the ongoing development of information security and general compliance (HR, environmental, etc.) systems, policies, and procedures through implementation, maintenance, and identification of gaps or non-compliance.
· Assisting with the development, implementation, and improvement of the Morae Enterprise Governance Risk & Compliance processes.
· Ensuring Morae Global policies, applicable standards, customer requirements and best practices are being followed.
· Supporting the delivery of information security projects and initiatives like the internal, external and client audits.
· Represent Morae Global in a professional and productive way while delivering the best in service to our clients and during interactions with both clients and suppliers when required.
· Supporting the wider information security team on providing a responsive and pragmatic approach to day-to-day security issues and broader strategic initiatives.
This is of course whilst developing your functional skills. You will gain an operational support insight into the management and on-going development of an information security management system, which is supporting the delivery of services to the world’s largest institutions.
The ideal candidate will be a highly motivated self-starter with a desire to enhance own information security knowledge.
Key Responsibilities
· Ensure security and compliance documents are controlled, reviewed and updated in line with various contractual and regulatory requirements.
· Support with information security and compliances training and awareness activities.
· Deliver related security communication across the organisation as required.
· Capturing evidence to support audit and compliance requirements.
· Refine and maintain security dashboards and reports to support the production of security metrics and monthly reporting.
· Initiate continuous improvement ideas and suggestions to increase efficiencies.
· Actively participate in wider, internal and external information security initiatives.
Technical Skills
· Experience of the security processes associated with technology
· Experience of working in a technology environment
· A broad awareness of privacy and security technical controls
· Experience of, or demonstrable interest in implementing GRC solutions and activities based on risk assessments.
Non-Technical Skills
· Familiarity with information security and compliance best practices across the breadth of the IT and information security spectrum
· A good understanding of key Compliance, IT and Information Security principles
· A keen interest in security and an understanding of the need for the Confidentiality, Integrity and Availability of information and information systems to be maintained
· Strong written and oral communication skills (Business language is English).
· Ability to influence at all levels, through translating security issues into business language
Preferred Qualifications & Experience
· Bachelor’s degree or equivalent with relevant work experience.
· Recognised security certifications would be beneficial.
· ISO/IEC 27001:2013 and/or SOC2 experience would be advantageous for the role.
· Excellent English-language communication skills.