Manager Information Security & Assurance (Audit)

• Manage information security and assurance team • Recommend, and review the implementation of security controls for IT projects • Ensure the organization has adequate people, processes, and technologies in place to manage its data assets • Developing, implementing and enforce security policies, performing security audits, and ensuring compliance with regulatory requirements. • Collaborate with teams to design and implement security controls and respond to security incidents. • Engage and provide support to local Technology Governance to ensure alignment of information security program with business priorities and objectives • Review and remediate issues identified from penetration testing, technical reviews, and audit. • Promote security awareness and maintain documentation of security policies and procedures. • Review and manage user access. • Lead and manage PCIDSS certification assessment. • Manage the planning and implementation of other security initiatives in meeting the regulatory, business and operation requirements Review, and where necessary develop information security framework, policies, standards, guidelines and procedures. 2. Review, identify and address gaps in existing controls with regulatory and internal requirements. 3. Review, and address issues identified from penetration testing, technical reviews, and audit. 4. Establish, and implement processes and controls to maintain oversight on outsourced IT Security and Disaster Recovery functions. 5. Recommend, and review the implementation of security controls for IT projects 6. Review and approve/reject IT RFCs, as a member of PAMB Change Advisory Board member.