Job Description

He / She reports to ISMS Manager and is responsible for supporting all security governance related activities in B2B Commerce.

1. Responsibilities of Policy and Compliance Executive in security role:
1. Support ISMS Manager to coordinate and review IT security governance operations.
2. Develop IT Security policies and guidelines that apply across B2B Commerce.
3. Develop IT security checklists to be followed as per the approved IT security policies / procedures / guidelines.
4. Develop and implement IT security governance procedures.
5. Prepare all IT security reports on behalf of the ISMS Manager.
6. Develop, implement and monitor ongoing reporting mechanisms for IT security practices to support compliance and highlight areas of exposure.
7. Support the IT Security Risk Management Process for B2B Commerce and help select controls and risk mitigation measures for the same.
8. Monitor ongoing compliance with IT Security policies, procedures and guidelines.
9. Evaluate ongoing changes in IT asset base and resultant IT security implications.
10. Monitor and analyse the aggregated centralized IT system logs and outsourced security operations and immediately report any issue to the ISMS Manager.
11. Monitor the IT security status at B2B Commerce.
12. Monitor remediation status of all identified IT security issues as per approved schedule.
13. Design IT Security Training and delivery schedule together with HR and develop IT Security Training Materials.
14. Assist ISMS Manager to deliver IT security awareness training at B2B Commerce.
15. Stand in as the focal point for IT security governance when the ISMS Manager is unavailable.
2. Task list:
1. Carry out IT security governance review monthly and when required.
2. Develop IT Security policies and guidelines that apply across B2B Commerce.
3. Develop IT security checklists to be followed as per the approved IT security policies / procedures / guidelines.
4. Develop and implement IT security governance procedures.
5. Prepare all IT security reports on behalf of ISMS Manager.
6. Review identified IT security risks and breaches upon identification/occurrence to ensure the organisation’s IT assets and digital information are appropriately secured.
7. Deliver IT security awareness training at B2B Commerce.

Job Requirements

• Bachelor's degree in computer technology, information systems, or a related field
• Possess at least 3-4 years of working experience related to information security practices
• MUST possess good understanding on ISO/IEC 27001:2013
• Good knowledge of IT and network architecture
• Access control management skills
• Strong communication and interpersonal skills
• Ability to educate technical and non-technical staff on computer security
• Knowledge on cybersecurity standards/frameworks
• Experience with antivirus systems, firewalls, data centres, and software updates
• Strong analytical and problem-solving skills

Skills