Bachelor's Degree in Information Security, Information Systems, Computer Science or related disciplines.
DUTIES AND RESPONSIBILITES
Implementing new ETLjobs or changing existing jobs for new data requirements.
Lead the cybersecurity team to support and operate cybersecurity defensive systems to defend cyber-attack and safeguard the organization's data.
Review cybersecurity controls for technology projects to ensure compliance of IT security policy and meet relevant regulatory requirements.
Creating and updating IT security policies, standards, control baselines and control processes relating to information security and ensuring adequate implementation.
Develop and support security tools and scripts to enhance the efficiency of vulnerability scanning and server hardening.
Keep abreast of the latest cyber threat landscape; evaluate the potential impact to the organization.
Collaborate with industry for threat intelligence sharing and analysis cyber threat intelligence.
Manage IT security-related projects from kick-off to production roll-out
Manage IT security compliance before Go-Live of any IT any project.
Perform risk control self-assessment for cybersecurity risk.
Providing information security training, awareness, and guidance to all employees.
Driving and educating the Product and Technology teams to adhere to security requirements during product development and deployment.
Assist in manage, investigate, and respond to information security and cybersecurity incidents.
Work with IT teams to support and oversee IT security controls for the organization.
Closely work with CKHH Group for IT Security compliance matters
Serve as an internal expert of cybersecurity-related subject matters.
Support change control process related to IT security.
Manage IT audits and remediate audit issues reported by internal and external audits.
QUALIFICATIONS AND REQUIREMENTS
Bachelor's Degree in Information Security, Information Systems, Computer Science or related disciplines.
10+ years of working experience in IT security operation, technology risk management information security compliance & audits; preferably in telecom industry or technology vendor.
At least 3 years of experience in managing Information Security team.
Experience with ISO 27001/2013 implementation
Hands on experience on managing cybersecurity systems such as Firewall, Web Proxy, WAF, SIEM.
Working knowledge of Vulnerability Assessment and Penetration Testing tools
Familiar with well-known security frameworks, standards such as the ISO 27XX, OWASP, NIST, etc.
Professional qualifications such as CISSP, CISM, CISA, CEH or relevant certifications.
Good command of written and spoken English.
Strong process-oriented mindset problem-solving ability and have excellent communication skills.
Strong abilities to work both independently and collaboratively