Role: Engineer II, Cybersecurity Governance
Standard Title: Engineer II, Security Engineering
Location: Bangalore, India
About Us
Founded in 2014, Circles is a global technology company reimagining the telco industry with its innovative SaaS platform, empowering telco operators worldwide to effortlessly launch innovative digital brands or refresh existing ones, accelerating their transformation into techcos.
Today, Circles partners with leading telco operators across multiple countries and continents, including KDDI Corporation, Etisalat Group (e&), AT&T, and Telkomsel, creating blueprints for future telco and digital experiences enjoyed by millions of consumers globally.
Besides its SaaS business, Circles operates three other distinct businesses:
- Circles.Life : A wholly-owned digital lifestyle telco brand based in Singapore, Circles.Life is powered by Circles SaaS platform and pioneering go-to-market strategies. It is the digital market leader in Singapore and has won numerous awards for marketing, customer service, and innovative product offerings beyond connectivity.
- Circles Aspire : A global provider of Communications Platform-as-a-Service (CPaaS) solutions. Its cloud-based Experience Cloud platform enables enterprises, service providers and developers to deliver and scale mobile, messaging, IoT, and connectivity services worldwide.
- Jetpac : Specializing in travel tech solutions, Jetpac provides seamless eSIM roaming for over 200 destinations and innovative travel lifestyle products, redefining connectivity for digital travelers. Jetpac was awarded Travel eSIM of the Year.
Circles is backed by renowned global investors, including Peak XV Partners (formerly Sequoia), Warburg Pincus, Founders Fund, and EDBI (the investment arm of the Singapore Economic Development Board), with a track record of backing industry challengers.
Mission
Our mission in Circles is to become a world-class cybersecurity function by cultivating security as job zero across the organisation. This means security is enforced as an integral component across every facet of our business globally, whereby:
Security is second nature; Security is in the DNA of everything we do; and Cultivating and maintaining a Security conscious culture
The Role
As a team member of Cyber Governance & Assurance vertical within Information & Cybersecurity Function, primarily responsible to ensure that Circles & its global offices are always maintaining robust, sustainable and adequate governance practices and compliance as follows.
Develop, mature and operationalize cybersecurity framework, policies, procedures, guidelines and baseline standards within the Group.
Ensure cybersecurity best practices are embedded within new initiatives, ongoing change management and evaluate the security impact of the initiatives.
Ensure organizational crown jewels are adequately protected in accordance with regulatory and data protection regulations such as ISO27701, PCI-DSS, Market specific Data Protection regulations including PDPA, GDPR.
Develop data privacy and protection framework, enhance existing policies and work programs to align with expectation of relevant data privacy laws.
Identify, risk assess and prioritize various information, data assets across the Enterprise.
Support the day-to-day functioning of the Data Privacy Office by:
o Serving as a point of contact within group on issues related to data privacy;
o Performing privacy impact assessments, maintain records of processing activities; Serving as subject matter expert to stakeholders on privacy matters
o Participate in investigation of data privacy incidents;
Drive internal Risk Assessment including 3rd Party Due Diligence (3PDD) reviews, cybersecurity assurance activities, as well as audit readiness reviews and drive timely resolution of potential gaps.
Provide advisory services on information, privacy and cybersecurity matters for internal stakeholders as laid out in subsequent sections.
Drive cybersecurity and privacy awareness within the Group, formulating learning curriculum, rolling out training modules ensuring completion remains above agreed metrics. Devise focused training across staff who are involved in data handling and processing.
Promote a culture of Security, data privacy and compliance across group
Proactively support in organizational roadmap towards maintaining relevant credentials including ISO27001 compliance, DPTM, APEC CBPR and establishing SOC2 compliance report.
You
Hold a Degree in Information Technology, Cyber Security or comparable qualification.
To have 2+ years of professional experience in Audit, Assurance, Governance, Management Consulting or ability to port skills across these functional responsibilities.
Assist in cybersecurity, data governance and assurance initiatives in relation to SaaS based Telco platform delivering B2B and B2C products.
Excellent written and oral communication skills, confident in having meaningful conversation with stakeholders at multiple levels within the Group.
Prior experience, knowledge in the following is a certain plus:
o Big 4, Tier 2 Consulting Firms, Telco industry.
o Cloud Infrastructure and Security, DevSecOps, Microservices architecture, Container security.
o Industry Standards such as ISO 27001, ISO 27701, NIST, COBIT, PCI-DSS, MTCS.
o Global, Regional data privacy regulations such as GDPR, PDPA, PDPO.
Cherish continuous learning and demonstrate it with one or more professional certifications such as CRISC, CISA, CGEIT, CDPSE, CDPSE, CSX-P, CISSP, Diploma in Data Protection or equivalent.
Key Stakeholders
Verticals within Information & Cybersecurity Engineering Growth and Marketing Customer Happiness Operations Government Affairs and Public Policy Finance and Legal People & Culture
To all recruitment agencies: Circles will only acknowledge resumes shared by recruitment agencies if selected in our preferred supplier partnership program.
Please do not forward resumes to our jobs alias, Circles employees or any other company location. Circles will not be held accountable for any fees related to unsolicited resumes not uploaded via our ATS.
Circles is committed to a diverse and inclusive workplace. We are an equal opportunity employer and do not discriminate on the basis of race, national origin, gender, disability or age.
