IT Security Expert

• Develop and implement research-driven, function-specific security solutions aligning with IT strategies and business unit needs.
• Study global standards for professional development in security techniques and adhere to guidelines for applications within each function.
• Communicate implementation plans and resource strategies for IT security programs/projects to stakeholders.
• Research, deploy, and manage security solutions to safeguard services and data within respective functions.
• Implement technical measures to control security risks in IT projects and activities.
• Provide training, technical support, and consulting on IT security solutions.
• Design and implement comprehensive IT security solutions aligned with IT strategies.
• Execute security consulting activities and serve as a high-level consultant on orientation, methodology, and professional issues.
• Orient IT systems according to applicable security standards and make decisions on IT security designs.
• Develop and enforce security techniques, standards, and guidelines to meet international standards.
• Participate as a senior technical expert in implementing approved strategies and other IT projects.
• Directly manage projects within the IT security program, ensuring adherence to standards.
• Advise on project implementation activities and IT security programs, reporting to stakeholders.
• Develop a maturity roadmap and continually improve security requirements throughout the IT system lifecycle.
• Organize the development of security protection layers, providing high-level support for security-related activities.
• Conduct periodic or ad-hoc penetration testing to identify system weaknesses.
• Ensure integration of security requirements in IT software developments before going live.
• Successfully complete security projects/initiatives on schedule.
• Manage, supervise, and advise on the implementation of IT security programs across subsidiaries.

JOB REQUIREMENTS
Educational Qualifications:Bottom of Form

• Undergraduate degrees in the fields of IT, coding, computer science, information systems, business administration, or related professions

Expertise:

• Minimum 8 years of specialized expertise and project management experience.
• High-level understanding of ANBM architecture, with particularly in-depth knowledge in one or more areas.
• Proficient in international IT security standards (ISO 27001, PCI-DSS), ITIL.
• Hands-on experience with one or more cloud service providers.
• Deep understanding of cloud service architecture, emphasizing cloud security.
• Solid grasp of modern information security methods and standards, especially in cloud environments.
• Knowledge and experience in supporting Identity and Access Management (IAM), security operations, and threat response.
• Practiced in modern DevSecOps with automation.
• Ability to automate repetitive tasks with scripting skills in Bash/PowerShell/Python.
• Proficient in network security, system security, application and virus/malware security, and secure encryption.
• In-depth understanding of architecture, security technology, and integration.
• Good knowledge of penetration testing with OWASP standards and the ability to detect and exploit vulnerabilities, including network attacks.
• Preferred experience in ISO 27000/PCI-DSS implementation.
• Possession of PMP/Agile certification.