- Drive IT regulatory guideline gap analysis assessments and collect the evidence required to satisfy the requirements.
- Work closely with stakeholders from different countries and communicate the IT risk and governance assessment framework, approach, and results effectively.
- Understand technology risk and information security management best practices/principles and able to articulate the information security risks to your stakeholders.
- Good with writing risk statement, inherent risk, residual risk, actionable remediation plan, compensating controls and performing root cause analysis.
- Drive information security awareness training completion, initiatives, communications, and monthly phishing training exercise.
x
