Head of Information Security
TIKI Corporation
Hồ Chí Minh, Vietnam
6 ngày trước

Phúc Lợi

  • Máy tính xách tay
  • Thưởng
  • Chăm sóc sức khỏe
  • Tăng lương
  • Chế độ nghỉ phép
  • Chế độ tập thể dục
  • Mô Tả Công Việc

    Tiki.vn is one of the most trusted e-commerce platforms in Vietnam. Our information system is composed of various components.

    From front web store that handle millions of product view daily, to back-office systems that help automate warehouse management, order processing, third-

    party logistics providers integration, etc.

    We are seeking an experienced Head of Security with technical depth in security and engineering, hiring and mentoring. This position will be primarily responsible for running applications to improve the protection of information assets.

    The Head of Security need to have proficiency across multiple security domains, such as Threat Management, Cloud Security, Network Security, Database Security, Application Security, Penetration Testing.

    Key Responsibilities

    The key responsibilities of a Head of Information Security are

    Working with the Director of Infrastructure to provide leadership and direction for the Security team and to provide strategic oversight of the function.

    Managing security programs and supervise security departments.

    Drafting and implementing Information Security policies throughout the company.

    Supporting the design, implementation and management of the Authority's information, systems and infrastructure; connecting organizational requirements with security goals.

    Ensuring compliance with government policy and guidance for appropriate or mandated standards, legislation and regulations.

    Ensuring the Information Security Policy is understood and followed in the whole company.

    Managing the IT Security workstream of initiatives, in order to improve information security within the company.

    Completing regular security scans; observing and implementing any required actions, as well as, annual penetration tests.

    Building and managing a new Information Security risk management process.

  • Managing incident response and conducting investigations to understand the source of security breaches, assessing and containing damage and devising measures to protect against future breaches;
  • Ensuring that security vulnerabilities are raised to internal teams & 3rd party (when needed) suppliers and remediated according to agreed timescales.

    Maintaining and continuously refining response plans, whilst managing potential security breaches.

    Evaluating new cybersecurity threats and IT trends and developing effective security controls.

    Identifying gaps or areas for improvement; doing necessary research on cybersecurity-related tools and equipment; and ordering them as needed

    Innovating and introducing new technology recommendations for Information Security.

    Preparing financial forecasts and budgets for security operations.

    Controlling budgets for security operations and monitor expenses

    Preparing written reports, papers, presentations, statistical summaries, và strategy documents as requested.

    Preparing technical reports for executive management.

    Hiring, reviewing, and firing employees.

    Providing leadership, training and guidance to staff members

    Supervising staff as assigned in the performance of the job duties.

    Developing and delivering a programme of training to improve staff awareness of information security

    Attending meetings, professional seminars, or conferences to keep abreast of changes in executive legislative directives or new technologies impacting security operations.

    Yêu Cầu Công Việc

    The ideal candidate would meet the majority of the following criteria :

    Qualifications :

    Bachelor's or Master's degree in Information Technology, Cyber Security.

    Prior experience working as the CIO or an equivalent management position; a minimum of 8 years' experience in IT.

    Experience in setting up security assurance systems for banks, or technology enterprises.

    CISSP and ISACA certification are preferred

    Skills :

    Being analytical and having good problem-solving skills

    Having long-term viewpoints of the development of the security system

    Having leadership skills, and the capability to determine, and implement strategies for development.

    Be fluent in spoken and written English

    Being able to work well either independently or in a team.

    Having good negotiation and communication skills

    Being positive, responsible, enthusiastic, passionate, and being able to handle work pressure

    Having good presentation skills

    Nộp đơn
    Thêm vào ưa thích
    Loại bỏ khỏi mục ưa thích
    Nộp đơn
    Email của tôi
    Bằng cách nhấp vào "Tiếp tục", tôi đồng ý với neuvoo để xử lý dữ liệu của tôi và gửi cho tôi thông báo qua email, như được nêu chi tiết trong Chính sách bảo mật của neuvoo. Tôi có thể rút lại sự đồng ý của tôi hoặc hủy đăng ký bất cứ lúc nào.
    Tiếp tục
    Mẫu đăng ký