Các Phúc Lợi Dành Cho Bạn
13rd salary and performance bonus
Healthcare Package
Oversea Outing Company trip
Mô Tả Công Việc
(*) JOB SUMMARY:
Execute and support GRC information security functions follow cybersecurity framework or adherence to standards, completion of risk assessments on internal processes, customer requirements and third parties, and identification and maintenance of risks as they go through the Risk Management lifecycle
(*) ACCOUNTABILITIES:
1. GRC Security
- Security policies review and supporting procedures/ processes follow cybersecurity framework or adherence to standards
- Work closely with IT teams or other departments to implement controls on security practices
- Internal and external audits
- Assist with operating IT Risk assessments (organizational, business process, third party, etc.)
- Co-operate security assessments (application, vulnerability, audit)
- Coordinate written responses from customers and prospects on Information Security controls and regulatory compliance
- Develop security compliance or routine reports
- Assist in investigative and remediation efforts in case of security and compliance breaches
- Promote security awareness and cultivate employees’ adherence to information security practices
2. Project Management
- Define the scope of system and objective relate to IT Security
- Assist to assesses the risks of various solutions and prioritizes competing business demands
- Act as the bridge between stakeholders and development team to clarify
Xem toàn bộ Mô Tả Công Việc
Execute and support GRC information security functions follow cybersecurity framework or adherence to standards, completion of risk assessments on internal processes, customer requirements and third parties, and identification and maintenance of risks as they go through the Risk Management lifecycle
(*) ACCOUNTABILITIES:
1. GRC Security
- Security policies review and supporting procedures/ processes follow cybersecurity framework or adherence to standards
- Work closely with IT teams or other departments to implement controls on security practices
- Internal and external audits
- Assist with operating IT Risk assessments (organizational, business process, third party, etc.)
- Co-operate security assessments (application, vulnerability, audit)
- Coordinate written responses from customers and prospects on Information Security controls and regulatory compliance
- Develop security compliance or routine reports
- Assist in investigative and remediation efforts in case of security and compliance breaches
- Promote security awareness and cultivate employees’ adherence to information security practices
2. Project Management
- Define the scope of system and objective relate to IT Security
- Assist to assesses the risks of various solutions and prioritizes competing business demands
- Act as the bridge between stakeholders and development team to clarify
Yêu Cầu Công Việc
(*) QUALIFICATION & PERSON SPECIFICATION:
1. Qualification
- University graduation in Computer Science or computer-related field
- 03+ years of experience in IT Security, IT Risk Management, Compliance, or related field
2. Abilities/Skills:
Knowledge, skills, and experience:
- Knowledge of information security risk management frameworks and compliance practices
- Ability to develop security standards and guidelines based on best practices and industry standards
- Understanding of common security standards and regulations relating to the financial services industry (e.g. PCI DSS, GLBA, FDIC, SOX, SSAE18) and information security frameworks (NIST, CIS, ISO2700x, etc.)
Soft-skills and attributes:
- Ability to maintain a high level of discretion and confidentiality
- Ability to work independently, proactively under high pressure with good problem solving skills
- Ability to interact with all levels
- Be proactive, initiative, flexible, conscientious, responsible, honest and prudent
- Hard-working and ready to work in pressure environment to meet deadline
- Good verbal and written communication skills in both English and Vietnamese
- Good presentation skills
- Good teamwork skills
1. Qualification
- University graduation in Computer Science or computer-related field
- 03+ years of experience in IT Security, IT Risk Management, Compliance, or related field
2. Abilities/Skills:
Knowledge, skills, and experience:
- Knowledge of information security risk management frameworks and compliance practices
- Ability to develop security standards and guidelines based on best practices and industry standards
- Understanding of common security standards and regulations relating to the financial services industry (e.g. PCI DSS, GLBA, FDIC, SOX, SSAE18) and information security frameworks (NIST, CIS, ISO2700x, etc.)
Soft-skills and attributes:
- Ability to maintain a high level of discretion and confidentiality
- Ability to work independently, proactively under high pressure with good problem solving skills
- Ability to interact with all levels
- Be proactive, initiative, flexible, conscientious, responsible, honest and prudent
- Hard-working and ready to work in pressure environment to meet deadline
- Good verbal and written communication skills in both English and Vietnamese
- Good presentation skills
- Good teamwork skills
Địa Điểm Làm Việc
33 Mạc Đĩnh Chi, P. Đa Kao, Quận 1
