Information Security Manager

Information Security Manager

Oneaston Pte Ltd
2-5 years
Not Specified

Job Description

Information Security Manager

OneAston specializes in the implementation and development of technology for financial institutions. We are looking for motivated professionals to join our fast growing and successful organizations to forge a career in the growing wealth management technology sector.
We experienced 80% growth last year and are rapidly expanding our consultancy teams worldwide, setting footprints across Asia Pacific, Europe, and North Americas. We are now one of the fastest growing financial IT services company, that offers its clients with the best innovative and tech expertise to bring their projects to success. In line with our expansion plan, we are looking for creative, entrepreneurial, and tech-driven individuals who are looking to develop their career to join our talented team.
Positive Thinking Company is a worldwide group, dealing mainly with IT technologies, present in 20 countries (Europe, Asia - Pacific, Americas) counting with 3000 employees and a consolidated turnover of 330 M USD. The company is aiming to become certified ISO 27001:2013 for several entities/countries, starting this year with Philippines, Singapore, India, USA and France. It will be extended to other European location next year. To achieve this goal, the company seeks a new manager in charge of Information Security at corporate level.
The candidate will be an advocate for the company’s total information security needs and will be responsible for the development and delivery of a comprehensive information security strategy to optimize the security posture of the group. He will lead the development and implementation of a security program that leverages collaborations and subsidiaries-wide resources, facilitates information security governance, advises senior leadership on security direction and resource investments, and designs appropriate policies to manage information security risk. The complexity of this position requires a leadership approach that is engaging, imaginative, and collaborative, with a sophisticated ability to work with other leaders to set the best balance between security strategies and other priorities at the group level.
Key responsibilities:
Group and Program Leadership

• Responsible for the strategic leadership of the Group’s information security program, with the aim of ISO 27001:2013 certification for some entities
• Provides guidance and counsel to the CIO and key members, working closely with senior administration, leaders, and the group’s community in defining objectives for information security, while building relationships and goodwill. Work with group’s leaders to oversee the formation and operations of a company-wide information security organization that is organized toward a common goal in information security
• Promotes collaborative, empowered working environments across the group, removing barriers and realizing possibilities
• Involved in security awareness and communication program towards group coworkers
• Will act as main contact with ISO 27001 auditors and guide them during the audits
• Manages institution-wide information security governance processes, chair the Information Security Advisory Committee and lead Information Security Liaisons in the establishment of an information security program and project priorities
• Establish annual and long-range security and compliance goals, define security strategies, metrics, reporting mechanisms and program services; and create maturity models and a roadmap for continual program improvements
• Stays abreast of information security issues and regulatory changes affecting the group’s companies, participate in national policies and practices discussions, and communicate to group’s companies on a regular basis about those topics. Engage in professional development to maintain continual growth in professional skills and knowledge essential to the position
• Represents the company on committees and boards associated with the domain
Policy, Compliance and Audit

• Leads the development and implementation of effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislations and legal interpretation
• Leads efforts to internally assess, evaluate and make recommendations to management regarding the adequacy of the security controls for the group’s information and technology systems
• Works with Internal Audit, and boards offices and outside consultants as appropriate on required security assessments and audits
• Coordinates and track all information technology and security related audits including scope of audits, timelines, auditing agencies and outcomes. Work with auditors as appropriate to keep audit focus in scope, maintain excellent relationships with audit entities and provide a consistent perspective that continually puts the institution in its best light. Provide guidance, evaluation, and advocacy on audit responses
Risk Management and Incident Response

• Keeps abreast of security incidents and act as primary control point during significant information security incidents
• Convenes Ad Hoc Security Committee as appropriate and provide leadership for breach response and notification actions for the Group.
• Develops, implements, and administers technical security standards, as well as a suite of security services and tools to address and mitigate security risk.
• Provides leadership, direction and guidance in assessing and evaluating information security risks and monitor compliance with security standards and appropriate policies.
• Examines impacts of new technologies on the group’s overall information security. Establish processes to review implementation of new technologies to ensure security compliance.

Required qualifications & attributes:

• Bachelor's/College Degree in Computer Science or any technology-related field
• Minimum of 2 years of experience in the security domain
• Certified as ISO 27001 auditor is ideal
• Willing to work on mid-shift from 1pm to 10pm

What you'll get:
Competitive salary:
We appreciate our employees and we make sure they know it.
Benefits: We offer each individual employee and their family a health care package.
Training and Learning: Milestones KPIs with supported training and learning programs and skill development for professional development.
Open Paid Time-Off: Work-life balance is important. We believe in giving our employees time to truly relax and recharge.
Paid Maternity and Parental Leave: To keep our employees and their families healthy.
People-Centred Culture: Our employees are our most valuable resource and the heart of our organization.
Minimal Bureaucracy: An entrepreneurial environment of ownership and accountability allows you to get work done.
Convenience: Our office is located in MOA Complex, Pasay City.
If you are ready for the challenges, please send in your CV here or you can reach Flo thru email at [Confidential Information]

OneAston specialises in the implementation and development of technology for financial institutions. We are looking for motivated professionals to join our fast growing and successful organizations to forge a career in the growing wealth management technology sector.

We experienced 80% growth last year and are rapidly expanding our consultancy teams worldwide, setting footprints across Asia Pacific, Europe and North Americas. We are now one of the fastest growing financial IT services company, that offers its clients with the best innovative and tech expertise to bring their projects to success. In line with our expansion plan, we are looking for creative, entrepreneurial and tech-driven individuals who are looking to develop their career to join our talented team.

About Recruiter

10

Followers

12

Active jobs

Functions : IT, IT/Software Development - Other

Industries : IT/Computers - Software

Skills/Roles I hire for: Java, Javascript, Java J2ee, Sql, Qa, Eclipse, Html, Software Development, Phyton, Linux

level Hiring For: Junior Level, Mid Level, High Level, Top Management

Seasoned HR Manager, with in depth knowledge of end-to-end HR facets.

Similar Jobs