Job Description
- Plan, conduct and monitor organization processes and use internal audit to ensure the ISMS implemented.
- Deeply involved in project and business activities to identify and address the information security issues and risks.
- Conduct security risk assessment and review of new technology and business solution to provide security suggestion and guidance to meet the security best practice and regulatory requirement
- Connect with the central security team and all local departments to update the ISMS policies and other documentations.
- Maintain visibility into regional and market level regulatory requirements for consideration in policies, procedures and standards.
- Work with Legal/Compliance and Data Protection functions in the country in the interpretation of regulatory requirements and compliance.
- Collect and analyze the security measurement data, identify the non-compliance issues to prepare the Security Report
Qualifications
- 5+ years of relevant work experience
- Bachelor degree in computer science ,Information Security, Telecommunication or related field
- Solid knowledge and understanding of information security frameworks, e.g. ISO 27001
- Comprehensive IT knowledge regarding Systems and Information Security and strong motivation
- Strong knowledge in application security, API security, penetration test and cloud security
- Experienced in IT security in manufacturing domain
- Multiple project management skill
- Self-motivation as a subject matter expert
- Good communication skills in English (Oral & Written).
- Self-confident, communication/influence skills, presentation Skills, team player
- Security certification required, e.g. CISSP, CISA, CISP, SO27001 IA/LA
- Data Protection certification is a plus CIPP/E, CIPP/A, CIPM
$ads={2}
$ads={1}