Information Security Officer - (GRC)

2 Months ago • All levels

Job Summary

Job Description

The Information Security Officer role focuses on governance, risk, and compliance within Jumio's security function. Responsibilities include developing and maintaining frameworks, conducting risk assessments, managing security policies, and preparing compliance reports. The role also involves leading internal and external audits, collaborating with various teams, and providing training. The officer will be responsible for customer security audits and responding to questionnaires. The role requires strong information security knowledge, experience with SOC 2, ISO 27001, and PCI DSS. The individual will be expected to communicate effectively and provide updates to different levels of audiences. The role demands contemporary information security concepts, best practices, and strategies. Experience with risk management and compliance is essential to ensure operational efficiency and meet regulatory requirements. This position requires skills in collaboration and stakeholder engagement. The candidate will be responsible for providing regular compliance and risk reports for senior leadership, highlighting key risk areas, trends, and performance against key compliance metrics.
Must have:
  • Demonstrate contemporary information security concepts and best practices.
  • Expert level managing SOC 2 and ISO 27001
  • Excellent communication skills in English (written and verbal).
Good to have:
  • CISSP, CISM, or CRISC certification
  • Consulting experience

Job Details

Role Purpose :  

The  Information Security Officer operates within the governance, risk & compliance service provided by Jumio’s security function through the GRC team. 

The role acts as the security interface between the Information security  strategic and process-based activities and other critical teams, like Engineering, Machine Learning, Product , Sales,HR and Legal. 

Role Value : 

The role holder reports into the GRC Lead and they need to positively influence other members of the security team as well as other departments across Jumio. 

Example Responsibilities :

Governance & Risk Management:

  • Develop, implement, and maintain governance, risk management, and compliance frameworks as per organization needs and policies aligned with industry best practices.
  • Conduct regular risk assessments to identify, evaluate, and prioritize risks across the organization, ensuring timely mitigation actions are implemented.
  • Lead risk reviews with business stakeholders and senior management to ensure risks are effectively managed and mitigated.
  • Shape the strategy and direction of our security operating model, helping focus on utilising the right skill sets on the most appropriate subjects. 

Compliance & Regulatory Requirements:

  • Support the ISMS operation and associated independent security certification activities for SOC2, ISO 27001 and PCI DSS. 
  • Management of security policies and processes, to ensure operational efficiency, meeting regulatory compliance, and support for regional demands. 
  • Create and manage a business continuity program for Jumio product offerings.

Control Assessment & Reporting:

  • Prepare regular compliance and risk reports for senior leadership, highlighting key risk areas, trends, and performance against key compliance metrics.
  • Ensure documentation is maintained for all key GRC activities, including risk registers, audit logs, and quarterly compliance status reports.

Internal & External Audits:

  • Planning and execution of external and internal audit activities as required. 
  • Assisting fellow Jumio’s in understanding and pragmatically responding to security audit findings.

Collaboration & Stakeholder Engagement:

  • Work closely with business teams (e.g.,Legal, HR, Product, Engineering, IT , ML) to ensure alignment on risk management and compliance initiatives.
  • Delivery high-frequency communications regarding progress on security programs.  

Training 

  • Annual information security training course design and implementation.
  • New ideas for ongoing security culture improvements

Continuous Improvement:

  • Support the implementation of a GRC platform or enhance existing systems to streamline risk and compliance management.
  • Continuously evaluate and improve the organization's GRC processes and tools, leveraging industry best practices, automation, and innovative solutions.

Customer Assurance 

  • Assist and lead multiple customer security audits.
  • Respond to customers' security questionnaires.

Experience and Qualifications :

  • A strong passion for information security and a proactive approach to improving the organisation's security posture.
  • Ability to demonstrate contemporary information security concepts, best practices and strategies.
  • Expert level of managing SOC 2, and ISO 27001, this is essential; knowledge of PCI DSS would also be beneficial.  
  • In-depth understanding and hands-on experience of how information security can impact an organisation; you can give examples and explain both positive and negative impacts. 
  • Comfortable providing high quality updates to various levels and global audiences, including video. 
  • A bachelor's degree in information systems or equivalent work experience; an M.B.A. or M.S. in information security is preferred.
  • Excellent communication skills in English both written and verbal.

Great to have Experience and Qualifications :

  • CISSP, CISM, or CRISC certification
  • (Internal) Consulting experience 

Key Characteristics and Attitudes :

In a recent global survey these attributes were valued by Jumios in all locations and functions - we firmly believe in hiring for attitude as well as skill. 

  • Friendly and supportive
  • Adaptable and flexible
  • Articulate and persuasive
  • High IQ and EQ
  • Curious and coachable
  • Commercially Aware
  • Resilient and tenacious
  • Big picture and the detail

Jumio Values:

IDEAL: Integrity, Diversity, Empowerment, Accountability, Leading Innovation

Equal Opportunities:

Jumio is a collaboration of people with different ideas, strengths, interests and cultures. We welcome applications and colleagues from all backgrounds and of all statuses.

About Jumio:

Jumio is a B2B technology company dedicated to eradicating online identity fraud, money laundering and other financial crimes to help make the internet safer. We leverage AI, biometrics, machine learning, liveness detection and automation to create solutions that are trusted by leading brands worldwide and respected by industry thought leaders. 

Jumio is the leading provider of online identity verification, eKYC and AML solutions. With a global footprint, we’re expanding the team to meet strong client demand across a range of industries including Financial Services, Travel, Sharing Economy, Fintech, Gaming, and others.

Applicant Data Privacy

We will only use your personal information in connection with Jumio’s application, recruitment, and hiring processes, as described in Jumio’s Applicant Privacy Notice. If you have any questions or comments, please send an email to privacy@jumio.com.

Similar Jobs

Marvell - Software Applications Engineer (Customer Solution Group)

Marvell

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Blue wire software - Delivery Driver

Blue wire software

Corpus Christi, Texas, United States (On-Site)
3 Weeks ago
room8 - 3D Vehicles Artist, Middle/Senior

room8

Ukraine (On-Site)
3 Months ago
Illumina - Senior Software Engineer - Cybersecurity

Illumina

San Diego, California, United States (On-Site)
1 Month ago
Cadence - Senior Principal Verification Engineer

Cadence

Montreal, Quebec, Canada (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Rippling - Senior Detection and Response Engineer

Rippling

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Marsh McLennan - Trainee Insurance Client Manager

Marsh McLennan

Leeds, England, United Kingdom (Hybrid)
1 Month ago
Guardian - Platform Migration Lead

Guardian

Bethlehem, Pennsylvania, United States (Hybrid)
2 Months ago
Cubic corporation - IT Project Manager

Cubic corporation

Hyderabad, Telangana, India (On-Site)
2 Weeks ago
Cred - People Business Partner

Cred

Bengaluru, Karnataka, India (On-Site)
1 Month ago
Palo Alto Networks - Purchasing Analyst

Palo Alto Networks

Bengaluru, Karnataka, India (On-Site)
2 Months ago
505 Games - Senior Software Engineer - Technical Business Unit

505 Games

Milan, Lombardy, Italy (Remote)
1 Year ago
Axon - Manager, Go-to-Market Readiness

Axon

San Francisco, California, United States (On-Site)
2 Months ago
Applied materials  - Electrical Design Engineer

Applied materials

Bengaluru, Karnataka, India (On-Site)
2 Months ago
PwC - IN-Associate ServiceNow CSM

PwC

Mumbai, Maharashtra, India (On-Site)
1 Year ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Capgemini - ANAPLAN Consultant

Capgemini

India (On-Site)
1 Month ago
Haleon - Sr Manager - Digital, Data & Analytics - Procurement

Haleon

Bengaluru, Karnataka, India (On-Site)
1 Month ago
caliogo - Staff QA Engineer

caliogo

Hyderabad, Telangana, India (On-Site)
4 Months ago
Netomi - Senior Implementation Consultant

Netomi

Gurugram, India (Remote)
2 Months ago
Springer Group - Salesforce/ CRM Training and Support Specialist

Springer Group

New Delhi, Delhi, India (Hybrid)
1 Month ago
Capgemini - UiPath Developer

Capgemini

India (On-Site)
1 Month ago
Braves Technologies - Digital Marketing Manager

Braves Technologies

Pune, Maharashtra, India (On-Site)
11 Months ago
GlobalStep - Vice President – Marketing

GlobalStep

Pune, Maharashtra, India (On-Site)
1 Month ago
programming hub  - Senior Game Developer

programming hub

Navi Mumbai, Maharashtra, India (On-Site)
1 Year ago
Capgemini - Datacom Developer

Capgemini

Chennai, Tamil Nadu, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Jaipur, Rajasthan, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

Bengaluru, Karnataka, India (On-Site)

India (Remote)

Bengaluru, Karnataka, India (On-Site)

Malaysia (Remote)

Bengaluru, Karnataka, India (On-Site)

View All Jobs

Get notified when new jobs are added by Jumio

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug