A glimpse of what you’ll do:

• Reporting to Group Information Security Office .
• Lead in information security risk advisory for projects.
• Collaborate with Business Project Sponsors and solutions architect to review the system architecture and system security to identity IT security risks.
• Assess risk mitigation measures and provide effective challenge and propose viable alternatives if required;
• Conduct thematic review on information security and cybersecurity controls to provide security assurance for information systems.
• Establish and maintain application system risk assessment processes, procedures and checklists.
• Assist Group CISO with yearly review of information system risk assessment methodologies and processes.

What you’ll need:

• Bachelor's Degree in Computer Science, IT, or equivalent fields
• At least 5 years of experience in IT security, information security and cybersecurity.
• Good working knowledge with network, application and platform security technologies and cybersecurity architecture.
• Good working knowledge on security baseline standards for standard platform operating systems, databases, and network technologies.
• Good working knowledge of common SDLC models (such as waterfall model and agile), security-by-design framework, and security management frameworks such as ISO/IEC 27001, NIST Cybersecurity Framework.
• Good knowledge in IOT security, Cloud computing security.
• Self-motivated with strong interpersonal and stakeholder management skills.
• Good written and communication skills.
• CISSP, CISA, CRISC and /or OSCP advantageous.

Benefits

• AL: up to 21 days
• ML: 14 days
• Flexibenefit: $660 per year
• Bonuses: total package ranging from 14-15 months

Interested applicants: kindly submit your resume to [email protected]