Mô tả công việc
- Leads the design, implementation, operation and maintenance of the Information Security Management System based on the ISO/IEC 27000 series standards, including certification against ISO/IEC 27001 where applicable
- Offering an internal management consultancy advice and practical assistance on information security risk and control matters throughout the organization and promoting the commercial advantages of managing information security risks more efficiently and effectively
- Leads or commissions the preparation and authorizes the implementation of necessary information security policies, standards, procedures and guidelines, in conjunction with the Security Committee
- Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations
- Leads or commissions suitable information security awareness, training, educational activities, security risk assessments and controls selection activities
- Leads or commissions activities relating to contingency planning, business continuity management and IT disaster recovery in conjunction with relevant functions and third parties
- Routine line management and leadership of staff within the Information Security Management function
- Leadership and strategic direction for the function, ranging from planning and budgeting to motivational and promotional activities expounding the value of information security
- Liaison with and offers strategic direction to related governance functions (such as Physical Security/Facilities, Risk Management, IT, HR, Legal and Compliance) plus senior and middle managers throughout the organization as necessary, on information security matters such as routine security activities plus emerging security risks and control technologies.
Yêu cầu công việc
- Bachelor’s (or above) degree in the field of computer science or information systems.
- Good written, oral communication skills and interpersonal skills
- Ability to conduct and direct research into IT issues and products as required.
- Highly self-motivated and directed.
- Keen attention to detail.
- Proven analytical, evaluative, and problem-solving abilities.
- Ability to effectively prioritize and execute tasks in a high-pressure environment..
- At least 4 years of full-time work experience in information security management and/or related functions (such as IT audit and IT Risk Management).
- Information security management qualifications such as CISSP or CISM or implemented ISO 27001
- Absolutely trustworthy with high standards of personal integrity (demonstrated by an unblemished career history, complete lack of criminal convictions etc.), and willing to undergo vetting and/or personality assessments to verify this if necessary
- Hands-on team leadership and management experience
- Typically, a background in technical IT roles such as IT architecture, development or operations, with a clear and abiding interest in information security
- Detailed and effective written communication skills for documenting the features tested and bugs found
- Highly organized, detail oriented, extremely responsive and able to prioritize a large number of tasks
- Self-motivated, works well independently and with others.
- Sitting for extended periods of time.
- Occasional evening and weekend work to meet deadlines.
Quyền lợi được hưởng
- Having chances to get attractive company bonus every month/year
- Company trip once a year + Joining party
- Salary and position is reviewed 1 time a year
- Bonus by individual ability and company’s performance.
- Social insurance, health insurance, unemployment insurance and other benefits
- Dynamic and sociable working environment.
Công ty Cổ phần Chứng khoán Thành Phố Hồ Chí Minh
Quận 1, Hồ Chí Minh
>500 nhân viên
Công ty Cổ phần Chứng khoán Thành phố Hồ Chí Minh (HSC) là công ty chứng khoán chuyên nghiệp có uy tín và được đánh giá tốt nhất ở Việt Nam. Công ty cung cấp cho khách hàng tổ chức và cá nhân các dịch vụ tài chính, các dịch vụ tư vấn đầu tư chuyên nghiệp, toàn diện dựa trên những nghiên cứu có cơ sở vững chắc và đáng tin cậy. HSC đã đạt được những thành công đáng ghi nhận trong việc kết nối doanh nghiệp với nhà đầu tư cũng như tạo dựng được các mối quan hệ đối tác lâu dài bền vững. [...]