6412 - IT Security Manager

• Develop and Implement Security Policies: Design, implement, and maintain IT security policies and procedures in alignment with industry standards and regulatory requirements.
• Risk Assessment and Management: Conduct regular risk assessments to identify potential vulnerabilities and develop mitigation strategies. Ensure that risk management practices are integrated into all aspects of the organization.
• Incident Response: Lead the response to security incidents, including investigation, containment, eradication, and recovery. Develop and maintain incident response plans and conduct regular drills.
• Security Awareness Training: Develop and deliver security awareness training programs for employees to promote a culture of security and ensure adherence to security policies and procedures.
• Compliance Management: Ensure compliance with relevant regulations and standards, such as GDPR, ISO 27001, and other applicable frameworks. Prepare for and manage external audits and assessments.
• Monitoring and Reporting: Implement and manage security monitoring tools to detect and respond to threats in real time. Prepare and present regular reports on security status, incidents, and improvements to senior management.
• Collaboration: Work closely with IT teams, management, and external partners to ensure that security measures are integrated into all projects and operations. Provide guidance and support on security-related matters.
• Continuous Improvement: Stay up-to-date with the latest security trends, threats, and technologies. Continuously improve security practices and recommend enhancements to existing systems and processes.

Job Requirement:

• 8+ years of experience in IT infrastructure and networking, out of which 3+ years focused on IT security.
• IT security management experience and exposure in a large-scale manufacturing environment.
• Experience in ISO 27001 certification is an added advantage.
• Security-related certification is an added advantage.
• Proficient and proven experience working with diverse teams of business users, IT technical team, consultants on all phases of the software development life cycle.
• Hands-on, motivated, and proactive individual who is good at self-learning and desire to continuously learn.
• Excellent written and oral communication skills in English.
• Excellent interpersonal skill, result-oriented, strong sense of responsibility and attention to details.
• Bachelor's degree in Computer Science, IT, Engineering, Technology or related discipline.