Cybersecurity risk and compliance framework and management:
- Identify, highlight and remediate information security risk in Company
Policy, Standards and Processes:
- Comply with Company’s Information Security Policy, Regulations, Standards, and Process
- Provide feedback to enhance the current policies, regulations, standards and processes where necessary
- Communicate and ensure all staff understands and comply with the Information Security Policy, Regulations, Standards and Processes
Security operation & administration:
- Apply new security standards/technique guidle to Company
- Ensure that the Information Security Strategy and Plans are implemented as planned.
- Proposing of technological solutions/technology to ensure information security in order to improve the current security status of the information system. Coordinate with project members to implement the roadmap.
- Implement/control and/or maintain security solutions/devices/tools as WAF, Firewall, IPS, PIM, DLP, vulnerabilities management, Encryption, 2-factor auth, ...
- Control approves the request/changes related to security, control activities of IT security: implementing, operating, vulnerabilities management
- Contribute to the IT Security Dash Board for Management
- Training IT security awareness.
Area of Information Security Specialization:
- Provide the appropriate guidance and advisory in the area of specialization
- Be able to contribute to the Bank in terms of documentation, transfer of ideas and implementing the plans in the area of specialization