Role Profile
Key Accountabilities
* Policy, Compliance and Audit: Develop and implement effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and security frameworks. Internally assess and evaluate the risk. Report to Global CISO on security project status, risk, and improvement plans. Work on required security assessments and audits. Coordinate and track all information technology and security-related audits including scope of audits, timelines, auditing agencies, and outcomes.
* Risk Management and Incident Response: Keep abreast of security incidents and act as CISO support during significant information security incidents.
* Security Support: Provide security support on projects for IT and business areas, ensuring best practices. Convene Ad Hoc Security Committee as appropriate and provide leadership for breach response and notification actions for the Group. Support in assessing and evaluating information security risks and monitor compliance with security standards and appropriate policies. Examine impacts of new technologies on the Group's overall information security and establish processes to review implementation of new technologies to ensure security compliance.
Person Profile
Experience and Specific Requirements
* Bachelor's degree in Information Science, Computer Science, Engineering, or related field.
* More than 10 years of experience in IT program and service management, with at least 5 years of experience in IT Project Management.
* Basic technical knowledge that allows high-level problem diagnosis and technical staff supervision (basic database knowledge, programming, operating systems, IT architecture, etc.).
* Strong IT security and policy experience.
* Good knowledge of the company's key processes and procedures.
Key Relationships
* Global IT
* Regional IT
* Competence Center Responsible
* CISO and IT heads
* External Service Providers
#J-18808-Ljbffr