Strategy & Architecturea. Develop, implement and manage the core IT architecture that supports the strategic goals of the MIMS in a timely, secure and cost-effective manner. Use of recognised frameworks (e.g. COBIT, ITIL)b. Devise and refine IT policies and systems to support company and departmental strategiesc. Identify operational efficiencies and new technologies that will support business growth2. Business Systems and Processesa. Work with colleagues in process mapping and make recommendations on re-engineering priorities to facilitate automation and process optimization.b. Working with the department heads to define the functional specifications that support the business goals and turn them into technical specifications for IT requirements (systems, hardware, software).c. Knowledge management: use of IT to capture, analyse and share data on key performance indicators.3. User supporta. Manage the delivery of our IT and telephony services, either directly or through monitoring of established KPI's with service providers, including both Application and user/desktop support.b. Vendor management (including software licences): work with colleagues in procurement in securing value for money, taking into account security, inter-operability and service requirements.4. Business continuity/ Disaster recoverya. Maintain the highest levels of IT security, both on site and remote, ensuring uninterrupted business continuityb. Establish robust information and cybersecurity systems and process in accordance with recognised standards (e.g. ISO 27001, 27002, GDPR)5. Risk analysis and managementa. To identify, manage and control potential risks associated with the IT operations.b. Managing risk assessments and develop protocols for staff to reduce and manage risks appropriately.

• Responsible for Group IT security policy Formulation and implementation • Promote the Security Awareness of the group• In charge of the Information Security Office• Establish ISO27001 for the group• Help in all the personal data privacy certification across the region• In charge of the Group IT Security Office to manage all IT security related issue.• Establish the regional security team for development of IT security awareness, IT security infrastructure, IT policy.• Conducted penetration testing for all group’s products• Involved in technical discussions with dev teams and all infrastructure team.• Help to establish the ISMS & ISO implementation in the organization.• Formulate the ISO27001 implementation Plan for the company• Direct and guide the security office to carry out risk-based assessment for the company.• Propose, evaluate and implement the LogRhythm• Setup regional Incident response team to take care of the security incident• Establish cybersecurity education programme to improve the security awareness of all colleagues• Setup Red Team and prepare guidelines and strategy for the penetration test.• Setup the security compliance team to carry out the security compliance for different applications and infrastructure.• Implement company-wide IT-audit framework using COBIT for yearly IT-Audit for different offices.• Setup the cloud security framework using from CIS controls to ensure all cloud-based application meet the corporate standard.• Change the endpoint security solutions from Sophos to using DNS-filtering tools Umbrella and Windows internal firewall for better protection of endpoint.• Implement the Carbon Black for servers in order to monitor all malicious traffic.• Standardize the patch management practice by implementing Altera.

Regional IT management of Group Infrastructure TeamIT Security in-charge for the groupIT Project management for business related application like Teams, Joget BPMNBusiness dashboard and data warehousing development for business.

IT audit formulation and coordinationAssist in IT strategy formulationmanage help desk and it audit teamSharepoint developmentFocal point for change management

Data centre management

Data centre operation