Do you have keen interest in the area of Cyber Security work? We have an opportunity in the area of Governance, Risk and Compliance ( GRC ) and we are looking for someone to plan and implement policies, procedures, standards, and controls to govern the protection of corporate information systems, networks, and data of the organization.
Bachelor's Degree in Computer Science, Engineering, Information Technology or other related disciplines;
Minimum 2 years of relevant working experience in cybersecurity solutions such as Security Configuration Management, GRC, DLP;
Familiar with multiple aspects of technologies, cloud, application, infrastructure, networks;
Demonstrated working knowledge of technology processes, security policies, standards, controls, and risk measurements;
Proven record in identification, investigation and resolution of potential IT security risks, controls and process gaps;
Ability to work with cross-functional, multi-disciplined team to formulate, institute and monitor security policies and procedures;
Excellent communication skills and emotional intelligence to influence key decisions, mediate conflicts and build consensus;
Ability to work in a fast-paced environment and meet deadlines;
Able to work independently and in a team.
Security certifications such as CIPP, CISA, CSIR, CISSP or ISO27001 Lead Auditor;
Experience with cloud computing or have cloud solution provider certification such as Azure.
Perform cybersecurity and compliance assessments on new and existing systems, processes, technology;
Work closely with the various cross-functional teams to establish, formulate, institute and monitor the security policies, standards and procedures in line with the organization's IT risk and control directions;
Support internal and external audit process for relevant compliance concerns including IT General, Application and Process Controls;
Participate in disaster recovery and business continuity planning;
Ensure all compliance and security control functions are performed timely and orderly;
Track, monitor and valid security-related and risk issues, provide an action plan to rectify the issues and prevent recurrence;
Work with Global IT, business and vendors to provide guidance and support to ensure compliance to the existing security framework;
Proactively conduct regular gap assessments and highlight any risk or concern;
Stay relevant to the latest IT and information security trends and encourage the adoption of best practices in the organization;
Assist on other cybersecurity projects implementations required by the organization.