Security Engineer

About the Role

The applicant will have a strong background in IT Information and Cyber Security Manager with a strong understanding and at least 2 years’ experience with Public, Private and hybrid cloud.

Responsibilities

• Information and Cyber Security Manager involved in performing IT Security Risk Assessment.
• Information Security Due diligence on Third Party.
• Review of Tech Obsolescence Risk.
• Supporting the businesses as the subject matter expert on all IT Security matters, to ensure risks are highlighted for business evaluation and decision making on a timely manner.

Qualifications

• Bachelor’s degree in Computer science, Information Technology, or a related field is required.

Required Skills

• At least 5 years of experience in Information Security and risk related work preferable in large organization especially banking environment.
• Deep understanding of threat modeling and risk management principles and best practices, and able to explain it in a structured and easy-to-understand manner.
• Strong understanding of the Banking industry IS policy and standards, regulatory and industry trends, good practices in providing practical and appropriate recommendation, resolution, and remediation options to the businesses.
• Strong relationship building, stakeholder management, communication, presentation and influencing skills with both technical and non-technical staff.
• Experience in managing senior business stakeholders.
• Demonstrate the strong motivation and capabilities to drive initiatives and changes.
• Proactive and strong team leader and player with minimal supervision.
• Excellent analytical and problem-solving skills. Ability to simplify complex issues such as risk matters, workflows, and business processes, and develops effective solutions.
• Experience in industry standards and requirements such as ISO 27001, MAS TRM, NIST, CCM.
• Industry certifications issued by organizations such as ISC2, ISACA, SANS, Microsoft, CISCO, AWS, etc.