6412 - IT Security Manager

Key Responsibilities:

1. Develop and Implement Security Policies: Design, implement, and maintain IT security policies and procedures in alignment with industry standards and regulatory requirements.
2. Risk Assessment and Management: Conduct regular risk assessments to identify potential vulnerabilities and develop mitigation strategies. Ensure that risk management practices are integrated into all aspects of the organization.
3. Incident Response: Lead the response to security incidents, including investigation, containment, eradication, and recovery. Develop and maintain incident response plans and conduct regular drills.
4. Security Awareness Training: Develop and deliver security awareness training programs for employees to promote a culture of security and ensure adherence to security policies and procedures.
5. Compliance Management: Ensure compliance with relevant regulations and standards, such as GDPR, ISO 27001, and other applicable frameworks. Prepare for and manage external audits and assessments.
6. Monitoring and Reporting: Implement and manage security monitoring tools to detect and respond to threats in real time. Prepare and present regular reports on security status, incidents, and improvements to senior management.
7. Collaboration: Work closely with IT teams, management, and external partners to ensure that security measures are integrated into all projects and operations. Provide guidance and support on security-related matters.
8. Continuous Improvement: Stay up-to-date with the latest security trends, threats, and technologies. Continuously improve security practices and recommend enhancements to existing systems and processes.

Job Requirements:

1. 8+ years of experience in IT infrastructure and networking, out of which 3+ years focused on IT security.
2. IT security management experience and exposure in a large-scale manufacturing environment.
3. Experience in ISO 27001 certification is an added advantage.
4. Security-related certification is an added advantage.
5. Proficient and proven experience working with diverse teams of business users, IT technical team, consultants on all phases of the software development life cycle.
6. Hands-on, motivated, and proactive individual who is good at self-learning and has a desire to continuously learn.
7. Excellent written and oral communication skills in English.
8. Excellent interpersonal skills, result-oriented, strong sense of responsibility, and attention to detail.
9. Bachelor's degree in Computer Science, IT, Engineering, Technology, or related discipline.