IT Security Governance Specialist

An exciting IT Security Governance Specialist job has just become available at the nation’s largest financial services group. You will be responsible for the group’s IT policies and standards across all businesses.

About the IT Security Governance Specialist Role:
You will be responsible for the various IT governance, risk and compliance aspects of the business.

Key Responsibilities:

• Propose and update the Group IT Security Policies and Standards including Regional and Overseas Units in ensuring that all local regulators’ requirements and industry best practises are captured and adhered to
• Develop Regional IT Security Governance processes to align with the Bank’s strategy and aspirations
• Justify and assess IT Risk associated with project in ensuring Confidentiality, Integrity and Availability risks are mitigated to an acceptable level
• Enforce and proactively provide IT security consultancy/advisory services on policies, standards and best practices across the Group
• Interpret regional countries regulatory compliance and enforce based on Intra-Outsourcing arrangements
• Enable the security assessment exercise is conducted and remediated in a timely manner
• Promote IT Security Processes by conducting IT Security Governance awareness programme to all project and MSS teams
• Evaluate change and firewall request to guarantee conformance to the Bank’s policies and standard
• Safeguard information system assets by identifying and solving potential and actual security problems

The successful IT Security Governance Specialist is a high-potential and motivated individual who goes the extra miles to make a difference while working closely with the business.

Key Requirements:

• Professional qualifications with at least a Bachelor's Degree in Computer Science majoring in Security or Network or Computer System
• Knowledge in information security, specifically in compliance assessment, policy development, and industry standard frameworks such as ISO 27001, PCI-DSS, NIST, CIS, etc., preferably gained in the Financial Services sector; experience in service continuity would also be desirable
• Knowledge in regional FSI regulator’s requirements and guidelines such as MAS, BI, BSP, BNM RMIT, PBOC, HKMA, etc.
• Knowledge of network components and related protocols, security products/solutions/concept; the incumbent should also have a sound understanding of the vulnerabilities in operating systems, databases and major applications and must possess the necessary knowledge to mitigate these vulnerabilities
• Experience in designing enterprise and specific operational level security policies, standards and processes (like email and internet policy, password management process, etc.)
• Experience in handling training classes. Possess strong presentation and negotiation skills
• Strong written and verbal communication skills in English in order to clearly disseminate security messages and practices to all staff, for contributing to security policy and process documentation and present ideas in business-friendly language
• Experience liaising with various stakeholders

This renowned financial services institution has an outstanding reputation in its field and great value is placed on training and development. The scope of the offer, the size of business, the freedom and autonomy to drive your career forward all add up to a great place to work.

If you have what it takes, is passionate and want to elevate yourself into senior management, this is an excellent opportunity to work with an industry leader that is constantly breaking new ground. Great career opportunities await the right person in this exciting IT Security Governance Specialist role.

Apply today or email me at eugene.lim@robertwalters.com.my to discuss this new opportunity.