Senior-Specialist Information Security Protection

Responsibilities :•Establish a plan and execution of information security operations and projects that align with bank policy and strategy.•Develop and maintaining roadmaps for vulnerability management programs and co-op with related parties to close the gaps.•Work with internal stakeholders across the business to identify, assess, report, track, and remediate risks and support the development of risk mitigation strategies.•Own, maintain, and update information security document e.g., guideline, baseline, internal processes.•Take a part in groups or project to ensure the solution are in line with security.•Ensure all security operation in compliance in Bank policy or ISO27001 and implemented.• Actively work closely with 2nd line department or business partner to identify and mitigate risk in an acceptable level.•Proactive maintain and report responsible team KPIs.•Provide risk base advice or support that align with IT and related department.Qualification :•Bachelor’s degree in computer engineering, Computer Science, Information Technology, or any related fields.•At least 7 years’ experience in Information Security or related fields.•Demonstrated experience in team and project management.•Experience leading in vulnerability management and mitigation solution.•Professional certifications such as CISSP, CISM, CISA would be an advantage.•Good communication and presentation skill•Proven in depth knowledge of technical skills in information security.• Excellent in communication and presentation skill.