Job Description
Main duties and responsibilities:
· Establishment and management of company-wide (Group) information security management system (ISO27001)
· Manage the organization’s information security department.
· Analyze existing information security posture and establish detailed improvement plans.
· Develop or maintain and publish up-to-date information security policies, processes and standards.
· Ensure all software, technology, information security policies, processes and guidelines adhere to local legislation and legal frameworks.
· Manage all audit work and enquiries involving Information and Cyber Security across the Group.
Job Requirements:
· Bachelor’s degree in computer / information technology / information security related field or equivalent experience.
· At least 5 years of corporate information security related experience.
· Industry security certification (ISMS/ISO27001 auditor, CISA, CISSP, etc)
· Experience in privacy law (eg GDPR, PDPA), network, cloud technology (eg AWS) and IT audits
· Good communication skills in English
· Good communication skills in Korean will be an added advantage
