Information Technology Compliance Manager
Current1. Security Policy Development: Design, develop, and update IT security policies in alignment with industry standards and applicable regulations. 2. Security Risk Evaluation: Regularly conduct security risk assessments to identify potential vulnerabilities and devise effective mitigation strategies. 3. Compliance Oversight: Ensure adherence to all IT security policies and procedures in accordance with company standards and regulations. 4. Security Audit Execution: Manage… Show more 1. Security Policy Development: Design, develop, and update IT security policies in alignment with industry standards and applicable regulations. 2. Security Risk Evaluation: Regularly conduct security risk assessments to identify potential vulnerabilities and devise effective mitigation strategies. 3. Compliance Oversight: Ensure adherence to all IT security policies and procedures in accordance with company standards and regulations. 4. Security Audit Execution: Manage and coordinate internal and external security audits to examine compliance and identify improvement opportunities. 5. Training and Security Awareness: Administer training programs and awareness initiatives for employees to enhance understanding of IT security. 6. Incident Security Handling: Respond to and manage security incidents, as well as design emergency response plans. 7. Data Privacy Policy Management: Ensure compliance with data privacy regulations and engage in high-security data management. 8. Security Control Implementation Oversight: Confirm the implementation and maintenance of security controls such as firewalls, antivirus, and encryption. 9. Collaboration with IT Teams: Collaborate with IT teams to ensure the application of security standards across all layers of IT infrastructure. 10. Monitoring and Security Event Analysis: Oversee security logs, analyze security events, and take necessary actions.11. Compliance Reporting: Prepare periodic reports on compliance levels and recommend improvement measures.12. Security Certification and License Management: Ensure the company holds all necessary security certifications and licenses. 13. Communication with External Entities: Interact with external auditors, security agencies, and regulators to stay engaged with the latest developments.14. Technology Advancement Monitoring: Stay abreast of the latest technological advancements and implement relevant security policies. Show less