head of Information Security compliance & assuranceeTeam Workforce Pte Ltd

Job Description :Head of Information Security Compliance & AssuranceReporting to Mynt's Chief Information Security Officer, the Head of Information Security Programs & Assurance is a crucial leadership role within Mynt Information Security Group Job Description : Head of Information Security Compliance & Assurance Reporting to Mynt's Chief Information Security Officer, the Head of Information Security Programs & Assurance is a crucial leadership role within Mynt Information Security Group that oversees all security programs, compliance, and assurance functions. This position is responsible for proactively identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the company. Responsibilities & Deliverables Provides team direction and establishes individual goals and objectives. Coach and mentor staff and ensure their goals are met. Provides reporting on the current status of the information security program to senior business and technical leaders Develops and enhances an information security control assessment framework based on appropriate information security industry standards to measure the efficiency and effectiveness of the program controls Provides subject matter expertise on the management of information security related audit, compliance and certifications engagements for the organization Facilitates the information security risk assessment process, including the reporting and oversight of treatment efforts to address findings Provides leadership, direction and guidance in assessing and evaluating information security risks and monitors compliance with security standards and appropriate policies Works with Internal Audit and outside consultants as appropriate on required security assessments and audits Plans and facilitates Company PCI assessment engagements and committee level status reporting Manage and oversee identity & access management, 3rd party security management, vulnerability management, vulnerability assessment, audit, compliance & certification initiatives. Required Experience 10+ years of information security experience in any combination of risk management, information security or information technology leadership with 3 years of direct managerial experience. Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management and data protection Excellent communication (verbal and written) and customer service skills. Strong interpersonal, communication, and presentation skills applicable to a wide audience including senior and executive management Excellent organization/project planning, time management, and change management skills across multiple functional groups and departments Bachelor's degree in Computer Science or related field, or equivalent work experience CISSP, CRISC, CISA, CISM or other relevant certifications preferred
Monster

Philippines
Permanent
Full-time