16 July 2024

We are seeking a Business Information Security Officer Centre of Excellence with expertise in providing guidance and support to various Business Units (BUs). It ensures prioritization and delivery of necessary security tasks for designated BUs, while actively communicating updates and highlighting critical issues to relevant stakeholders.

Mandatory Skill(s)

  • Possess at least one of the following certifications: CISSP, CCSP, CRISC, or CISM;
  • Bachelor's Degree with at least 3+ years of relevant experience;
  • Strong understanding of cloud infrastructure, including cloud security best practices and technologies;
  • In-depth knowledge of information security principles, standards, and best practices;
  • Experience with security frameworks such as ISO 27001, NIST, CIS Controls;
  • Proficiency in identifying, assessing, and mitigating information security risks;
  • Experience in investigating and managing security incidents;
  • Understanding of regulatory requirements related to information security and data protection ;
  • Knowledge of driving adoption of best practices to strengthen security posture;
  • Expertise in providing security consultancy for technology solutions;
  • Commitment to continuous improvement of security strategies and initiative;

Desirable Skill(s)

  • Experience in leading cross-functional teams and managing security projects;
  • Experience in managing relationships with security vendors and service providers;
  • Proficiency in using security information and event management (SIEM) tools.

.

Responsibilities

  • Provide essential support to designated Business Units (BUs) for security tasks;
  • Assist in governing the security KRIs for the designated BUs, ensuring alignment with the BUs' risk tolerance levels;
  • Manage risks to maintain alignment with established risk tolerance thresholds;
  • Collaborate closely with designated Business Units to address security-related concerns and implement effective risk management strategies;
  • Monitor and report on the status of security KRIs to relevant stakeholders within the organization;
  • Participate in security assessments and audits as required to ensure compliance with internal;
  • Support the investigation and management of security incidents within designated BUs, ensuring timely communication to relevant stakeholders as necessary;
  • Facilitate the security exception process for designated BUs, ensuring comprehensive documentation of business justifications, associated risks, existing mitigation controls (if applicable), and securing relevant approvals;
  • Provide support in conducting security assessments for technology solutions within designated BUs.

If you are interested in this role, click on the “Apply to this job” button below or you could also write in with your CV to Pallavi Sharma at pallavi.s@sciente.com quoting the job title.

Pallavi Sharma
Technology Recruitment Specialist (APAC)
Let’s connect via

Apply to this Job