Manager – Information Security (GRC)

Manager/

About the Role:

Manager/

You will lead the GRC program, collaborate with cross-functional global stakeholders, manage compliance projects, track key security metrics, oversee budgets, and provide leadership reporting to senior executives.

Key Responsibilities:

Governance, Risk & Compliance (GRC):

• Lead Mobileum’s global

  ISO 27001 ISMS implementation efforts

  by developing and implementing

  Security

  Policies and Procedures

  ; and maintain audit readiness across all business functions and multiple geographies.
• Design, implement, and manage the

  ITGC effectiveness monitoring program

  aligned with internal policies and the ISO 27001 ISMS framework.
• Develop, maintain, and execute

  ITGC test procedures

  applicable enterprise wide.
• Conduct and manage

  risk assessments

  , track risk remediation, and maintain a comprehensive risk register.
• Collaborate closely with the Data Protection Officer (DPO) to support privacy compliance.
• Maintain detailed

  compliance documentation

  and evidence to support audit and certification activities.
• Maintain, track, and analyse

  security and compliance metrics

  , providing insights to improve program effectiveness.
• Perform

  Internal Audits

  and liaise with

  external auditors

  and certification bodies, ensuring smooth audit execution.
• Drive continual improvement initiatives based on audit findings, risk assessments, and stakeholder feedback.
• Perform other

  Information Security activities or undertake projects

  as assigned by senior management to support Mobileum’s evolving security posture.

PMO & Program Management:

• Lead planning, coordination, and execution of

  Information Security initiatives

  , ensuring projects are delivered on time, within scope, and budget.
• Manage the

  security GRC budget

  , including forecasting and expense tracking.
• Develop and maintain

  security metrics dashboards

  to provide ongoing visibility into control effectiveness, risk posture, and compliance status.
• Provide regular

  leadership reporting

  , including executive summaries, status updates, risk highlight reports, and project progress reviews.
• Coordinate cross-functional project teams and external partners to ensure successful delivery of compliance and risk mitigation activities.

People Leadership & Stakeholder Management:

• Lead, mentor, and develop a high-performing GRC team, fostering a culture of accountability and continuous improvement.
• Engage and influence stakeholders across IT, Engineering, Coud Ops, Legal, HR, and Business functions to embed security governance practices.
• Facilitate communication and collaboration between technical teams, business owners, and leadership.

Communication & Influence:

• Translate complex security and compliance topics into clear, business-relevant language for diverse audiences.
• Represent the GRC function in executive meetings, steering committees, and cross-functional governance forums.
• Champion a culture of compliance and risk awareness across the organization.

Qualifications:

• 7–12 years

  of experience in Information Security with a strong focus on GRC, risk management, and ITGC.
• Proven experience managing ISO 27001 ISMS programs and internal/external audits.
• Strong program and project management skills, with budget management experience.
• Demonstrated leadership in managing teams and cross-functional stakeholder relationships.
• Deep knowledge of information security frameworks and standards (ISO 27001, NIST, SOC 2).
• Excellent communication and interpersonal skills.
• Relevant certifications such as:

• ISO 27001 Lead Auditor (LA) or Lead Implementer (LI)

• CISSP / CISM / CISA /CIPP-E

• PMP

  or related project management certification

Preferred Qualifications:

• Familiarity with data privacy regulations like

  GDPR, CCPA

  .
• Exposure to global or distributed IT environments.

Work Experience:

Educational Background:

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Information Technology, or related discipline preferred.

Location: