전체 채용정보

고객사에 기밀을 요하는 포지션은 본 란에 게재되지 않습니다.

APAC Lead InfoSec Analyst
글로벌 메이저 게임사
중간관리자급(과장) 영어
직무 개요
Lead Information Security Risk and Governance projects in the APAC region, aimed at implementing existing processes and best practices, but adapting to the APAC business, technological, cultural, regulatory and legal requirements.
Perform assessments on our Information Assets and Third Parties, aimed at reducing organizational risk from an Information Security perspective, and communicate to IT and business stakeholders on status
Maintain working relationships with business partners to understand business processes, and the impact of implementing security controls in their ability to do business
  • - Support the maintenance of an Enterprise Information Security Risk Register, with focus on risks originated in the region
  • - Lead Information Security Risk Management process improvement initiatives and deliver on improvement tasks assigned
  • - Establish and maintain regular written and in-person communications pertinent to Information Security Risk Management and Governance activities
  • - In partnership with Governance, examine incoming requests for exceptions to security control requirements and draft recommendations that include requisite mitigation strategies, seek approval, and maintain a registry of the exceptions and residual risk

경력 요건
Bachelor’s degree in Computer Science, Information Systems, other related field; or equivalent work experience
  • - 5+ years of information security experience in a corporate or consulting environment, or
  • - 7+ years delivering IT solutions to business functions, which must include Information Security experience
  • - Any one or more of the following preferred
    •  Certified Information Systems Security Professional (CISSP) from ISC2 ISACA CGEIT, CRISC, CISM or CISA certification
  • - Working knowledge of common information security management frameworks and practices such as National Institute of Standards and Technology (NIST) CIS Critical Controls ISO/IEC 270xx
  • - Strong understanding of security requirements, frameworks, templates, assessments, process maps, data flows Demonstrated experience with data governance and regulatory security requirements
  • - Versed in project management procedures and concepts
  • - Knowledgeable in a diverse set of technical skills, such as IT infrastructure, operating systems
  • - Understanding of logging, monitoring, and reporting key performance indicators (KPI) and development of continuous improvement plans
  • - Excellent oral/written communication in English and in another Asian language (Korean, Japanese, or Chinese preferred)
  • - Ability to work with minimum direction and as part of a team to achieve desired objectives and project results
  • - Ability to interface effectively and decisively with all levels of management, departments and outside vendors

처우
- Negotiable

제출 기한
- ASAP

제출 서류 및 기타
- 국/영문 이력서 및 자기소개서

담당 컨설턴트
- 이재환 / 02-2016-6694 / jhlee@vpeople.co.kr