Job Opportunity for Associate, Information Security at Room to Read in Global Office Asia – Main – New Delhi

by |Published

Room to Read

**Job Title:** Associate, Information Security

 

**Job Location:** Global Office Asia – Main – New Delhi

 

**About Room to Read:**

 

Founded in 2000, Room to Read is a non-profit organization dedicated to creating a world free from illiteracy and gender inequality through education.  They work in historically low-income communities to develop literacy skills and a habit of reading in children, and support girls in building life skills for success.  Room to Read collaborates with governments and other partners to achieve positive outcomes at scale, having benefited over 45 million children across 24 countries.

 

**Job Overview:**

 

This role focuses on security compliance management as an individual contributor.  The Associate will identify and address security gaps, develop and implement security policies, conduct risk assessments, and support internal and external audits.  Collaboration with cross-functional stakeholders is crucial to balancing compliance with efficient security solutions. This position reports to the Senior Director, Global Technology.

 

**Duties & Responsibilities:**

 

* Identify security gaps across various technology domains (applications, cloud, IT services, helpdesk) and conduct detailed assessments with country officers.

* Draft and articulate information and cybersecurity policies, advising management and users on implementation.

* Develop and maintain processes across the enterprise (cloud, network, on-prem infrastructure) to mitigate IT risks.

* Implement and maintain standards like ISO 27001, BCMS, NIST, PCI DSS, etc.

* Demonstrate a strong understanding of IT control frameworks and IT Governance, Risk, and Compliance (GRC), particularly regarding SOC2 Type I and Type II.

* Participate in internal/external risk assessments and remediation.

* Manage end-to-end risk remediation planning, resolution, and monitoring, including Technology Continuity Management planning and testing.

* Collaborate with senior business and IT leaders to resolve complex risk issues.

* Identify and mitigate IT security risks associated with vendors, donors, and external stakeholders.

* Identify, evaluate, and manage application security risks.

 

 

**Qualifications and Desired Skills:**

 

* 5-7 years of relevant experience in IT Security & GRC in multiple capacities.

* Bachelor’s degree in IT, Computer Science, Cybersecurity, or equivalent experience.

* Certifications like ISO 27001, CISA, CRISC, CISM are advantageous.

* Understanding of cloud security standards (Azure/AWS/GCP).

* Excellent written and spoken English.

* Strong research, analytical, and critical thinking skills.

* Excellent documentation, oral and written communication, and interpersonal skills.

* Ability to work independently and as part of a team.

 

 

To apply for this job please visit osv-rtr.wd5.myworkdayjobs.com.

You may also like