Information Security Management

We are hiring forBusiness Information Security Officer who will be responsible for driving information security efforts within the business unit or functional area.

Mandatory Skill Set:

• Serve as a point of contactfor BISOs. providing guidance and support to various BUs;
• Ability to prioritize and provide necessary support on the security tasks for designated BUs;
• Offer regular updates or flag outstanding important issues to relevant stakeholders;
• Standardize information security process across BUS/countries. driving the adoption of best practices;
• Bridge gap between local technology or business team with GIS. able to articulate security risks to local teams and contribute back any feedback to GIS;
• Drive the learning culture within the information security team to accelerate skills and knowledge of the information security community.

Desired Skill Set:

• Possess at least one of the following certification CISSP. CCSP. CRISC. or CISM;
• Understand Cloud Infrastructure.

Responsibilities:

• Facilitate the investigation and management of security incidents for designated BUs and communicate to relevant stakeholders;
• Ensure clear documentation of the business justifications, risks, the existing mitigation controls (if any) and relevant approvals are in place;
• Support security assessment for technology solutions for designated BUs;
• Offer expertiseto BUs with the help of Group Information Security (GIS) Subject Matter Expert (SME);
• Collaborate with enterprise risk management to conduct risk assessments and support the development of risk treatment plans for the BUs;
• Facilitate the local implementation of group information security initiative for the designated BUs;
• Assist with the security awareness programs for designated BUs to enforce security culture and understand the information security solutions in BUs;
• Help to developthe Business Information Security Officer (BISO) framework / handbook outlining BISOs roles and responsibilities. This standardizes practice across the organization;
• Establish and maintain BISO community to share insights or discussion of findings from audits, incidents, or latest security trend with each BUs to facilitate cross-learning and capture lessons teamed;
• Gather input or recommendations with regards to Group Information Security (GIS) functions and programs from BISOs across various countries/markets. Compile the feedback and contribute to GIS for continuous improvement of the Security Operation Model;
• Collaborate with security teams to develop and implement tailored security awareness programs for business units and devise a structured professional development pathway for BISOs.

Should you be interested in this career opportunity, please send in your updated resume to [Confidential Information] at the earliest.

When you apply, you voluntarily consent to the disclosure, collection and use of your personal data for employment/recruitment and related purposes in accordance with the SCIENTE Group Privacy Policy, a copy of which is published at SCIENTE's website (https://www.sciente.com/privacy-policy).

Confidentiality is assured, and only shortlisted candidates will be notified for interviews.