Cyber Risk Management - Digital Bank
Malaysia
SeaMoney
SeaMoney is a leading digital payments and financial services provider in Southeast Asia. Our offerings include mobile services, payment processing, credit offerings, and related digital financial services and products. These are available in...Job Description:
- Develop Bank’s Information Security related policies and ensure the compliance with the policies, applicable laws and statutory regulations.
- Participate as incident response team on cyber security incident handling, damage assessment and corrective measures. Review the incident reports submitted to regulators.
- Conduct gap analysis of new regulations and Bank's established policies, processes, guidelines to ensure compliance.
- Perform independent review of cyber risks and identify areas for improvement, e.g. network architecture design, firewall/network devices configurations, data loss prevention rules and vulnerability assessment/penetration test findings.
- Conduct cyber risk awareness training.
- Coordinate the internal and external audit projects.
Requirements:
- Bachelor's degree in IT, computing, Information Systems or any related domains.
- 5 to 10 years of experience in any of these disciplines: Cyber security, technology risk management, audit and compliance in technology areas
- Sound knowledge in technology risk regulatory requirements (e.g. BNM Risk Management in Technology, data security requirements from PDPA, etc) and industry standards such as CIS, NIST, ISO 27001/2.
- Extensive experience on CSIRT, network security, IPS/IDS/firewall, DLP tools and risk assessment of vulnerability assessment & penetration test findings
- Possess strong oral and written communication skills and capable of engaging senior stakeholders.
- Clear analytical thought process and good understanding of emerging technologies developments and risk management frameworks.
- Professional certification such as CISSP/CISM/CEH would be advantageous.
Tags: CEH CISM CISSP Compliance CSIRT Firewalls IDS Incident response IPS ISO 27001 Network security NIST Risk assessment Risk management
Region:
Asia/Pacific
Country:
Malaysia
Job stats:
14
0
0
Category:
Compliance Jobs
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs