Work closely with application teams in the corporate office and Business Units (BUs) to roll out application code scanning tools, ensuring software security and web application integrity.
Oversee a streamlined CI/CD pipeline, providing visibility across multiple units and maintaining version control.
Assess information security risks for BUs and conduct onsite evaluations for overseas units to identify potential vulnerabilities, delivering assurance and recommendations.
Support BUs in requesting security exceptions when they do not adhere to company policies.
Regularly monitor compliance with risk management strategies, ensuring BUs meet the necessary standards.
Ensure prompt reporting and escalation of risks as needed.
Design and implement ongoing security awareness initiatives in the corporate office and BUs.
Requirements:
Bachelor's degree in a relevant IT field such as Computer Science or Engineering, along with applicable professional certifications.
3–5 years of IT audit experience with regional or global exposure.
Preferred certifications include CISSP, CISA, CISM, etc.
Strong understanding of contemporary security tools, cloud infrastructures, hardening practices, cryptography, application testing, and relevant legal and industry standards.
Excellent written and verbal communication skills in English; knowledge of additional languages is an advantage.
Strong interpersonal skills with the ability to navigate conflicting priorities effectively.
Availability for overseas travel for onsite security assessments.
Tags for this job:
Industry
Human Resources Management
Job Function
Information Technology>IT System Management
Information Technology>Security Specialist / Risk Management