Information Security GRC Associate / Specialist
Salary undisclosed
Apply on
Original
Simplified
Are you ready to get ahead in your career?
1 Perform regular policy, process and standard reviews for information security
2 Conduct 3rd party security risks as part of the due diligence process, record and manage the risks.
3 Update and monitor the security compliance of 3rd party and integrate this into existing security processes.
4 Review the risk register and quarterly update the status to the Enterprise Risk Management team.
5 Prepare control assessment reports relating to the implementation of information security controls in Maxis based on published policies, processes and standards.
6 Conduct and assist with the implementation of security certification, audits and compliance to PCI/DSS, ISO 27001 and NIST frameworks across Maxis.
7 Be able to provide advisory for compliance and information security controls across multiple security framework such as ISO 2700x, PCI, CSA, CIS, OWASP and NIST standards.
8 Support the education and training requirements related to security controls in the areas of information security such as application security, network security, database security, password management and other general security content.
9 Assist in other applicable tasks within the department scope assign by the Head of CyberSecurity.
What’s next?
- We want to empower you to turn your ambitions into achievements.
- We thrive in inclusiveness, diversity and embrace close collaborations for you to create impact for yourself and others.
- Together, we aim to bring the best of technology to help people, businesses and the nation to be ahead in a changing world.
- To realise our vision to become Malaysia’s leading converged solutions company, we are looking for a new talent to innovate and grow with us in a culture that values commitment, performance and possibilities.
1 Perform regular policy, process and standard reviews for information security
2 Conduct 3rd party security risks as part of the due diligence process, record and manage the risks.
3 Update and monitor the security compliance of 3rd party and integrate this into existing security processes.
4 Review the risk register and quarterly update the status to the Enterprise Risk Management team.
5 Prepare control assessment reports relating to the implementation of information security controls in Maxis based on published policies, processes and standards.
6 Conduct and assist with the implementation of security certification, audits and compliance to PCI/DSS, ISO 27001 and NIST frameworks across Maxis.
7 Be able to provide advisory for compliance and information security controls across multiple security framework such as ISO 2700x, PCI, CSA, CIS, OWASP and NIST standards.
8 Support the education and training requirements related to security controls in the areas of information security such as application security, network security, database security, password management and other general security content.
9 Assist in other applicable tasks within the department scope assign by the Head of CyberSecurity.
What’s next?
- Once you’ve applied online, our team will carefully review your application. Due to a high volume of applications, we appreciate your patience to allow for a fair and timely review process.
- Should you be shortlisted for the role, we will send you an invitation via email for a digital interview. You can also check on your application status by logging into your candidate account.
Similar Jobs
