Information Security And Compliance Manager Jobs

·Melakukan manajemen kerentanan (vulnerability management)

·Melakukan review, analisis, memberikan saran dan rekomendasi terhadap kondisi tata kelola keamanan informasi

·Melakukan tindak lanjut dan diskusi dengan tim terkait dalam proses pembaruan area governance

·Melakukan pencatatan/registrasi terkait insiden keamanan

·Melakukan pemantauan dan tindak lanjut/follow up ke tim terkait mengenai status penanganan insiden keamanan

·Menyiapkan laporan insiden secara high-level untuk manajemen dan pemangku kepentingan terkait

Coordinate with different department leaders to ensure the organization-wide understanding and adherence to IT & Cybersecurity standards and regulatory requirements.

At least 3-5 years of experience in data security compliance or PDPA or GDPR

Excellent communication skills, both written and verbal, with the ability to communicate complex compliance matters to non-technical stakeholders.

Certified Information Privacy Professional/Manager (CIPM) or Certified Information Privacy Technologist (CIPT), Certified Data Privacy Solutions Engineer (CDPSE) is an added advantage

Previous experience in a similar role in a multinational organisation.

Proven experience in conducting cross border data security reviews and data disclosure review.

5-7 years of physical security and crisis or emergency management experience gained in a corporate environment.

Knowledge of industry standards for crisis management and business continuity and operational risk management (ISO 22301, BS11200, ISO31000).

Strong understanding of crisis management and incident response.

Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarised in the full job offer.

Work with leadership teams to enhance crisis preparedness and manage emergency response in the Southeast Asia region (circa 60%).

Experience in managing the response to significant disruptive events.

Flexible working hours and remote work culture with free co-working space services.

Maintain Ask InfoSec Bot on Flock

Assist information security team members in doing each of their respective work

Ability to do analysis on issues, proposals, and communication material

Good ability in spoken and written bahasa and English

Ability to identify with employees, understand their understanding on context, and tailored training materials

Oversee the information security programs including data protection, risk management, and compliance testing.

Collect, analyze, and prepare reports required for senior management, regulators, and other relevant stakeholders.

Manage compliance testing and monitoring of current and future regulatory obligations, and other regulatory matters as required.

Improve existing compliance programs and processes.

Develop, review, and modify information security and privacy policies.

Design and execute audit procedures to assess and measure company compliance with its security policies and procedures.