IT Risk and Security Manager

Job Search   >   Audit / Risk Management / Compliance   >   IT Risk and Security Manager
0
at
Categories
Tags

Technology | Singapore | SGD 180,000 per annum | 25 Mar 2021

IT Risk and Security Manager

(21030_WL)

Specialisation: Technology

Email Wai Ling
Location: Singapore
Salary: SGD 180,000 per annum
Type: Permanent
Posted On: 25th March 2021

Client Background & Role Summary:

Our client is one of the top Consumer Goods & Manufacturing conglomerate Fortune Global 500 company looking for a IT Senior Manager Risk and Security Management reporting to Deputy CIO.

Key Responsibilities:

Strategy, Governance, Risk & Compliance

  • Perform enterprise-wide IT and OT risk assessment, determine risk postures and maturity, and benchmark against industry peers.
  • Define enterprise security strategy and framework (identify-protect-detect-respond-recover) to guide the development of IT/OT security capabilities to achieve the desired level of security objectives on availability, integrity and confidentiality.
  • Establish global security governance structure, committee, authority and responsibilities, standards and guidelines.
  • Establish global security roadmap and initiatives to achieve the desired level of security maturity and capabilities across people, process and technology:
    • Formulate, implement and ensure compliance of IT security policies, controls, processes and procedures for all IT/OT asset types (applications, infrastructure, data etc.).
    • Define IT/OT security technology architecture and ensure integration, interoperability and visibility on the state of security.
    • Build and enhance people awareness on information security.
    • Determine and manage budget for IT security program.
  • Work with internal and external auditors to facilitate IT audits, compliance and resolution.

Security Project Implementation

  • Plan, prioritize and implement security roadmap and initiatives based on business objectives and risk postures.
  • Apply the IT/OT security architecture and standards to guide the development of security technology investment globally.
  • Identify and deploy the appropriate cyber security solutions and technologies to ensure security resilience (i.e., identify-protect-detect-respond-recover).
  • Perform assessment and manage procurement process to select the best-fit partners/solutions.
  • Organize, govern and lead the deployment of security solutions and technologies globally.
  • Oversee the development and enforcement of enterprise-wide security policies, processes and procedures.
  • Implement employee security awareness, communication and training program across the group.

Security Monitoring & Operations

  • Establish a security operation centre to provide on-going security monitoring and response based on threat intelligence, detection and log analysis.
  • Analyse and respond to incident, perform threat hunting, trouble-shooting, investigation and reporting.
  • Perform forensic investigation and discoveries on malicious user activities and behaviour.
  • Conduct internal and external penetration testing to identify vulnerability and weaknesses.
  • Safeguard IT/OT assets by detecting and responding to potential and actual security problems.
  • Work with IT/OT practitioners to recover from security breaches.

Requirements:

  • Minimally a Degree in Computer Science, Computer Engineering or IT related fields and have at least 10-15 years of relevant work experience in IT /OT risk and security management.
  • Well versed in risk and security best practices and supported by security certifications such as CISSP, CISA, CISM, CRISC etc.
  • Experienced in establishing an IT Risk and Security function in a global MNC environment preferably in agribusiness and consumer goods industries.
  • Well-versed in security governance and architecture across IT/OT environment including end point, network, on-prem and cloud hosting environment.
  • Ability to work with cross-functional, multi-disciplined team to formulate, institute and monitor security policies and procedures.
  • Hands on project implementation experience in leading security solutions and technologies.
  • Possess strong leadership qualities with proven ability to build a team and develop the required security capabilities.
  • Possess good interpersonal and communication skills to collaborate with global teams with diverse cultural background.
  • Ability to communicate in Chinese.
  • Able to travel as and when required.

If you are interested, kindly email your updated resume to Wai Ling at wailing.goh@mindmerge.com.my or click “Apply Now”. Regretfully, only shortlisted candidates will be contacted. Thank you!