You are here
Information Security Assistant Manager
- Excellent Career Advancement Potential
- Global Working Environment
About Our Client
Our client is a leading Global Auto firm extending its profitable global business over the past 100 years with office cross America, Asia, Europe, etc.
It is also recognized for its innovative, dynamic working environment, passion for its brands and customers and as a place where talented people are inspired and challenged to release their full potential.
Due to rapid growth in Asia, it is now seeking exceptional talent to join its IT team.
Works with business/IT to identify security requirements, using methods that may include risk and business impact assessments
Develops/supports to develop strategies and plans to achieve security requirements and address identified risks
Monitors and maintains security tools/solutions, provides metrics to ensure information security controls can meet business requirements.
Performs control and vulnerability assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommends remedial action
Reports to Information Security management concerning residual risk, vulnerabilitys and other security exposures, including misuse of information assets and noncompliance
Plays an advisory role in application development, to assess security requirements and controls and ensure that security controls are implemented as planned
Collaborates on critical IT projects to ensure that security issues are addressed throughout the project life cycle
Assists in the development of security architecture and security policies, principles and standards
Develops security processes and procedures and supporting service-level agreements (SLAs) to ensure that security controls are managed and maintained
Defines security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems
Participates in security investigations and compliance reviews as requested by internal or external auditors. Assists with the resolution of negative audit findings reported by Company internal or external auditors whenever needed.
Security incident monitoring and handling
Researches, evaluates, designs, tests, recommends and plans the implementation of new or updated information security technologies
The Successful Applicant
Minimum seven years Information Technology experience with a minimum of five years Information Security experience.
Bachelor's degree in information systems, or equivalent work experience.
Certifications from a recognized IT Security or Audit certification. CISSP/CISM/CISA perferred.
In-depth knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls.
Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans.
Experience with common information security management frameworks, such as ISO27001.
Proficiency in performing risk, business impact, control and vulnerability assessments.
Strong understanding of business applications, including enterprise resource planning (ERP) and financial systems.
Excellent security technologies on AV/FW/IDS/auti-hacking/VM/RM/compliance/audit.
Experience in developing, documenting and maintaining security policies, processes, procedures and standards.
Hands on experiences in data loss prevention including design, implementation, maintenance, support, is highly preferred.
Fluent in English, written and oral.
What's on Offer
Global working environment, stock option, booming industry