Country InfoSec Lead

Phra Khanong, Thailand

Applications have closed

Ninja Van

Ninja Van is Southeast Asia’s leading logistics provider, with the highest service coverage over 6 countries in the region. Experience the joy of hassle-free deliveries by shipping with Ninja Van today.

View company page

Ninja Van is a tech-enabled logistics company on a mission to provide hassle-free delivery services for businesses of all sizes across Southeast Asia. Launched in 2014, we started operations in Singapore and have become the region's largest and fastest growing last-mile logistics company, partnering with over 35,000 merchants and delivering more than 1,000 parcels every minute across six countries. 
At our core, we are a technology company that is disrupting a massive industry with cutting-edge software and operational concepts. Powered by algorithm-based optimisation, dynamic routing, end-to-end tracking and a data-driven approach, we provide best-of-class delivery services that delight both the shippers and end customers. But we are just getting started! We have much room for improvement and many ideas that will further shape the industry.
You will be responsible for setting up our location information security capabilities, while advising the country management on information security issues.

What you will do

  • Manage delivery of Group Information Security tools and capabilities locally
  • Support CISO in managing the delivery of global programs, KPIs and KRIs
  • Run local security training programs
  • Communicate and ensure implementation of group IS policies, procedures and processes locally. 
  • Adapt security procedures as per local needs where required
  • Qualify local Security Incidents and co-ordinate incident response with Group IS
  • Lead and/or participate in post Incident Reviews
  • Support local business in Security Architecture decisions by working in liaison with Group Information Security
  • Manage resolution of vulnerabilities or issues detected in local IT/Tech Infrastructure
  • Reduce the information security risk by identifying the root cause and working with local/group stakeholders to take corrective actions
  • Support Local Team with questions related to regulatory compliance and IT/InfoSec audits.

What you will need

  • Bachelors in Information Security / STEM (science, technology, engineering and mathematics) degree
  • At least 6+ years of experience in IT/Information Security
  • Experience in leading IT security, attestation and assurance audits globally
  • Professional security related qualification (e.g. CISM, CISA, CRISC.) will be favorable although not mandatory
  • Knowledge of attestation standards (SOC 1. SOC 2, IT SOX etc.)
  • Knowledge of ISO 27001, NIST CSFExcellent written and verbal communication skills and ability to escalate timely to management.
  • High degree of attention to detail and discipline in tracking and managing the closure of identified vulnerabilities and issues arising from audit
  • Effective influencing and negotiating skills and demonstrated sensitivity to working and interacting with senior stakeholders
Submit a job applicationBy applying to the job, you acknowledge that you have read, understood and agreed to our Privacy Policy Notice (the “Notice”) and consent to the collection, use and/or disclosure of your personal data by Ninja Logistics Pte Ltd (the “Company”) for the purposes set out in the Notice. In the event that your job application or personal data was received from any third party pursuant to the purposes set out in the Notice, you warrant that such third party has been duly authorised by you to disclose your personal data to us for the purposes set out in the the Notice. 

Tags: Audits CISA CISM Compliance CRISC Incident response ISO 27001 KPIs Mathematics NIST Privacy SOC 1 SOC 2 STEM Vulnerabilities

Region: Asia/Pacific
Country: Thailand
Job stats:  5  0  0
Category: Leadership Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.