Ensuring information security compliance with external and internal requirements and mitigating risk commensurate with the organization's risk tolerance.
Provide/Develop awareness activities including analytics and support to internal function.
Develop and report monthly and metrics to management on regularly basis for Information Security Risk.
Ensures and support that the organization's leadership, staff, policies, processes, practices, and technologies provide ongoing maturity measurement related cybersecurity and all information security activities.
Qualification :
BS/MS degree in Computer Engineering, Computer Science, Software Engineering, or related technical field or equivalent practical experience.
2-3 years of experience in cybersecurity, information security or risk management or related field.
Experience with GRC or Information security tools, data analytic and some programming skill, etc.
Experience with OT security (optional)
Knowledge of common information security management frameworks, such as ISO/IEC 27001, ISO/IEC 20000, CIS, and NIST.
