Responsibilities :
- Conduct Corporate Information Security Awareness Program & Measurement
- Conduct daily basis information security operational
- Conduct and run regular training sessions for staff on information security awareness and procedures.
- Conduct periodic security audits of the company’s technology infrastructure
- Ensure the strategy and implementation of information security in accordance with the needs & applicable regulations
- Develop an information security framework and architecture in accordance with the Company’s needs
- Develop and maintain policies, standards, and procedures that support the information security framework in accordance with best practices and applicable regulations
- Develop and maintain policies, standards, and procedures security across an organization
- Actively identify, analyze, measure, provide control recommendations, and monitor follow-up on risk control & information security
- Review, analyze, and present data about security incidents
- Carry out regular evaluations of the implementation of security management policies, standards and procedures as company needs
- Up-to-date with New Security System, Standard, protocol, authentication & product
Requirements :
- Bachelor’s degree in Computer Science, Information Security, Telecommunication, Informatics Engineering or related field.
- Proven to implement information security standards in organizations for more than 3 years
- Industry-recognized certifications in Information Security such as cloud security, CISSP, CCSP or equivalent.
- Familiar and able to implement various best practices & regulations for IT Security & Cyber Security such as ISO 27000, CIS, NIST, GDPR, etc
- Deep knowledge of security technologies, security protocols, firewalls, encryption, and other technical aspects of securing sensitive information.
- Strong understanding of common security vulnerabilities, attack vectors, and mitigation strategies.
- Excellent in Analytical skill and communication skills, with the ability to convey complex technical concepts to both technical and non-technical audiences.
- Strong problem-solving skills and attention to detail.
- Ability to work collaboratively with technology and business teams to assess risk and stay abreast of the latest cybersecurity threats
- A commitment to staying up to date with the evolving cybersecurity landscape.
