The Technology Operations team is responsible for ensuring deployment of solutions & operations in the areas of Security Operation needs for the organization. All IT systems must be deployed and governed complying to organization expectation and managed throughout its lifecycle. Roles & Responsibilities
- Technical owner for security solution being endorsed and deployed by the organization.
- Develop, drive and constantly enhance security governance to identify gaps and risk throughout the solution lifecycle covering different layers of security controls.
- Able to define and describe security roadmap and their associated security risk based on established risk assessment framework to stakeholders.
- Maintain, comply, assess and improve cyber security posture of platforms in-line with evolving practices.
- Work cross-functionally across various team e.g Architecture, Cyber Security, Procurement, Applications & Digital team
- Provide advisory to the augmented team in strengthening security controls.
- Providing proper governance and management of security solutions in current
- Review & optimize spend of technology contracts in each area to improve business efficiency
- Lead commercial & service related discussion
- Comfortable at engaging and communicating with Directors & MD's in Technology & Business areas
- Degree in Computer Science, Computer Engineering, Software Engineering or related discipline
- 10 - 15 years' experience in the capacity of information security, preferably in a regulated environment.
- Strong understanding of security technology domains which includes strategic planning, application security by design, Vendor and Contract Management, IT Audit, IT Governance, Risk Management and Business Continuity Planning.
- Proficient in Risk Management concept and practices
- Ability to lead change, and to adapt quickly to changing priorities.
- Strong customer service focus and experience working with both end users and senior leadership
- Functional knowledge of Cloud platforms - Azure, AWS, GCP
- Relevant certification such as CISSP, CSSLP, CISA, SANS, Microsoft, ITIL, would be advantages