JOB DESCRIPTION

• Manage the Information Security and Quality Management team deliverables.
• Carries out supervisory responsibilities in accordance to the organization’s policies and applicable laws.
• Responsible for implementing and maintenance the Information Security Management System (ISMS) and Quality Management System (QMS), including audit program and renewal of certification.
• Responsible for spearheading the ISMS and QMS awareness program including Personal Data Protection Act (PDPA) and Banking Secrecy.
• Report to Information Security and Quality Management Committee on audit findings & security/quality control effectiveness on regular basis.
• Conduct Risk Management activities and maintain risk register, also ensure all risk are addressed within stipulated timeline.
• Establish, review and improve ISMS and QMS policies and procedures in collaboration with all other departments.
• Ensure Changes are managed as per change management procedure and evaluate information security and quality impacts on each change executed. Also, act as a change manager.
• Conduct Incident Management coordination and review within customer stipulated timeline.
• Ensure IT Security are maintained as per requirements from the Financial Service Institute (FSI) security regulatory body.
• Keep updated with current security practices and new vulnerabilities via Security forum and ensure the organization is protected accordingly.

JOB REQUIREMENT

• Minimum 8 year experience in managing IT security, Risk Management, ISO27001 & ISO9001.
• Familiar with FMEA (Failure Modes and Effects Analysis) and Audit management.
• Familiar with BNM (Bank Negara Malaysia), CIS (Center for Internet Security) and PCI Data Security Standard.
• Able to Multitask and work under pressure.
• Well organized and structured.
• Excellent in spoken and written English.