OFFICER, INFORMATION SECURITY GOVERNANCE
Job Summary
To ensure the organization’s information security governance framework and policies are effectively designed, implemented, and maintained. This role will focus on enhancing the overall security posture of the organization by aligning security practices with regulatory requirements, industry standards, and internal policies.
Job Description
• Analysing security metrics and trends and preparing detailed reports.
• Leading incident response efforts and managing security incidents to mitigate impacts.
• Collaborating with various departments to ensure seamless integration of security measures across the organization.
• Staying up to date with the latest security threats, vulnerabilities, and industry best practices.
• Developing and implementing security awareness programs to educate employees on best practices, monitoring their training progress, and ensuring that all staff are well-informed about the latest security protocols and potential threats.
• Maintaining a centralized documentation system, ensuring all policies, procedures, and controls are up-to-date and compliant.
• Supporting and participating in various ad-hoc projects and tasks within the organization, ensuring alignment with overall security objectives.
Note:
• Scope of work will be revised depending on the management needs or request. Others related duties as and when assigned by the superior from time to time
Education
• Bachelor’s degree in computer science, Information Technology, or a related field.
• Minimum 3-5 years of experience in information security, with a proven track record of conducting ISMS audits and implementing security measures.
Skills
• Strong understanding of information security frameworks, such as ISO 27001, NIST, and COBIT.
• Proficiency in using security tools and technologies, such as vulnerability scanners, and incident response management.
• Excellent analytical and problem-solving skills, with the ability to identify and mitigate security risks.
• Effective communication and collaboration skills to work across different departments and stakeholders.
• Proven track record of successfully managing security-related projects, including the implementation of new security technologies, policies, and procedures.