Information Security Manager (VCO205/W)

Home / Job Opportunity / Information Security Manager

Responsibilities:

  • Act as a subject matter expert on Information Security, and Data Privacy Regulation like GDPR and CCPA.
  • Lead a small team of Information Security Engineers in all aspects related to information security and data privacy.
  • Establish and review policies, guidelines, procedures in information security and data privacy area.
  • Work with legal team and external counsels on the compliance of data privacy area.
  • Research and evaluate latest security threats & technology solutions, and latest development on data privacy regulations.
  • Liaise with IT management to ensure alignment of business, technical and security/privacy requirements.
  • Review IT initiatives on technology risk perspective and establish & implement remediating security controls.
  • Provide governance and support over security tools including firewall, end point protection, vulnerability management, MDM, log management, and web application penetration tools etc.
  • Conduct or manage information security assessments include vulnerability scanning independent penetration test on corporate infrastructure and e-commerce websites.
  • Work with IT operation to monitor and report suspicious activity.
  • Manage and coordinate security incident response, handling and investigation process.
  • Promote information security awareness across the corporation

Requirements:

  • Bachelor Degree graduates in Computing related disciplines
  • Preferably with at least one of the relevant qualifications such as CISM, CISSP, CISA or other security related qualifications
  • Minimum 3 years relevant experience in information security management
  • Proven experience in formulating and executing IT governance and compliance initiatives, like ISO27001, GDPR and CCPA
  • Knowledge of PCI-DSS, and experience in handling with IT Audit will be advantage
  • Good communication & interpersonal skills across different levels
  • Ability to work as a good team player with minimum supervision
  • Less experiences will be considered as Information Security Engineer

This site uses cookies to store information on your computer.

Some of these cookies are essential, while others help us to improve your experience by providing insights into how the site is being used. For more detailed information about the cookies we use, please see our Cookie Policy.