Responsibilties:
- Performing security testing for our own software products and web applications
- Work with the application team in the corporate office and Business Units to deploy the application code scanning tool.
- Ensure software codes are secure and web applications are not vulnerable to attacks.
- Manage an efficient CI/CD pipeline while offering multi-unit visibility requires version control.
- Review information security risk assessment and perform onsite security assessment on oversea BUs, aim to identify potential security risks, provide assurance and recommendation.
- Monitor and review regularly compliance with risk management strategies and practices that BUs’ activities and processes are meeting required standards.
Requirements:
- Bachelor degree in IT discipline
- At least 2 years IT audit experience
- Relevant professional certifications CISSP, CISA, CISM would be an advantage
- knowledge in IT security tools, cloud-based systems and certification management, applications testing and practices, as well as current and relevant legal legislations and industry standards
- Good command of both written and spoken English with Additional language proficiency an advantage
- Strong people skills who can juggle conflicting priorities and agenda
- Overseas travel might be required for onsite security assessment