Epicareer Might not Working Properly
Learn More

Director, IT Security | TNG

Salary undisclosed

Apply on


Original
Simplified

We fuel the ideas and ambitions of our people with an environment built on Our DNA of Love, Entrepreneurship, Agility, and Passion – LEAP

We are a culture that empowers everyone to innovate and create solutions that will leave a positive impact on our communities and our nation, Touch ‘n Go will always be here to inspire our talents to grow as leaders and innovators giving you the power to make a difference.

What would you do?

  • Provide leadership, direction and guidance in assessing and evaluating IT security risks and monitor compliance with IT security standards and appropriate policies.
  • Analyse and establish information security requirements for new initiatives, security assets.
  • Manage IT Security, identity, access and key management unit for day-to-day operations and projects
  • Promote awareness programs and advise business and operating units at all levels on security issues, best practices, and vulnerabilities.
  • Defines, creates, modifies and implements Company’s IT Security policies, procedure and implementation guidelines; oversees their dissemination and makes recommendations for changes and improvements.
  • Overall understanding of organization Data Centre Infrastructure, network and other related security assets
  • Maintain a current understanding the IT threat landscape for the industry;
  • Manage and monitor security team for day-to-day security governance and compliance related activities
  • Leads cross-functional teams in implementing IT security solutions throughout the organization
  • Manage vulnerability testing, risk analyses and security assessment
  • Manage security-related incidents and provide executive summary after post-event analysis
  • Work closely with relevant stakeholders to resolve IT security issues and establish IT security standards
  • Recommend security procedures for security call centers, operations centers, domains, asset classification systems, system acquisition, system development, system maintenance, access control, program models, or reporting tools.
  • Analyze and evaluate security operations to identify risks or opportunities for improvement
  • Manage identity & information access management for on-premise data centre, cloud-based systems and endpoint security.
  • Work with internal teams and/or external vendors to determine permissions and access rights.
  • Review and endorsed key injection for new, maintenance, access key and registration of readers.

Other Tasks

  • Oversees operations of ID Management section
  • Oversees operations of Key Management section
  • Collaborate with relevant stakeholders to ensure Company’s employees are:
  • aware of cybersecurity issues
  • are trained in good cybersecurity practices, and
  • are practicing safe/secure data collection, data transfers and storage, and use of social media, mobile devices, and apps, among others.
  • Responsible for other special assignment such as managing new Request for Proposal (RFP), Policy & Process Improvement, Ad-hoc projects/tasks and related duties specified by superior

Accountability

  • Ensure all IT Security policies and procedures are adhered to accordingly at all time.
  • Ensure all documentation release is accurate and complete, and in accordance with the department policies and procedures.
  • Document and maintain IT Security policies, procedures and work instructions.
  • Document and maintain ID Management policies, procedures and work instructions.
  • Document and maintain Key Management policies, procedures and work instructions.

Who should join us?

  • Bachelor Degree in Computer Science, Information Technology or related fields.
  • At least 12 years work related experience with at least 5 years in IT Security Management
  • Candidates with certification in information security (CISSP, CSSLP, CCFP, CISM, etc.) or comparable work experience will be given preference.
  • Solid information security and risk assessment experience.
  • Practices and methods of IT strategy, security architecture
  • Firewall and Intrusion detection/prevention protocols
  • Secure coding practices, ethical hacking and threat modelling
  • TCP/IP, computer networking, routing and switching
  • Network security architecture development and definition
  • Knowledge of third-party auditing and cloud risk assessment methodologies
  • Excellent oral and written communication skills
  • Excellent analytical skills
  • Work collaboratively
  • Fast learner and self-starter

Professional Qualification and/or Regulatory, Licensing Requirements:

  • Windows and Linux Operating Systems

Our Perks & Benefits:

  • Hybrid, Flexi hours and home workplace subsidy.
  • e-Wallet meal allowance.
  • Unlimited office pantry fruits, snacks and drinks.
  • Mobile and broadband subscription reimbursement.
  • Flexibility to opt dependents coverage (spouse, child, parents or parents-in-law) for outpatient medical benefits.
  • Additional leave including family leave and paid care leave to care for family members.
  • Medical coverage including dental, optometrist, mental care, maternity, registered Traditional Chinese Medicine (“TCM”) and Chiropractic.
  • Corporate membership discount and many more to explore.

We believe that you have what it takes to fit into the Touch ‘n Go family and help revolutionize the Fintech industry by paving the way to a cashless society. If you're ready to take the next step, apply now!

Touch ‘n Go is an organization that strives to provide Equal Opportunity Employment, based on merit, qualifications, capabilities, and caliber. It is Touch ‘n Go’s policy to not discriminate based on age, race, religion, colour or other personal status, identity or characteristics. Fair Opportunity is Our Value and Practice. Please advise us of any accommodations you may need by e-mailing: [email protected]

Note: Only shortlisted candidates will be contacted.