We are representing our client, a global technology service provider firm, look for a IT Security Manager (Cyber Security) to complement the existing team.
Responsibilities
- Review and development of security framework, information security policies, processes / procedures and guidelines on an ongoing basis.
- Establish compliance with these policies / procedures through ongoing security reviews and audits, not limited to log analysis and security assessment of customer ICT systems
- Conduct security risk management exercise
- Conduct table-top exercises
- Conduct vulnerability assessment, coordinate penetration tests activities
- Conduct information security awareness training
- Responsible for the development and management of customer’s security incident response plan.
- Lead and support customer in the matters of security incident resolution and response.
- Be the point-of-contact/customer liaison to assist and advise customer for ICT security related matters
- Project managed the activities and deliverables during the implementation phase.
Requirements
- Bachelor’s Degree in Computer Science or equivalent discipline.
- 4-7 years experience in the area of security audit, compliance and security governance:
- Strong understanding of information security principles, ISO 27001 and PCI Security Standard is preferred
- Good working knowledge of security risk management, security governance framework and compliance (IT Security Audit / log review), technical vulnerability management (Vulnerability Assessment, Penetration testing), application security, security technologies (system hardening, IDS/IPS, firewall), security incident response and security assessment.
- Customer-focused with good interpersonal skills
- Team player with leadership qualities
- Strong Project management skill
- Possess relevant security certifications: CISSP/CISM/GCIH