Chief Information Security Officer
Current✓ Lead Compliance, Certification & Audit activities pertaining to Information Security.✓ Develop and implement a strategic, long-term information security strategy and roadmap to ensure that MobilityOne’s information services and assets are adequately protected as per company’s risk appetite.✓ Identify, evaluate and report on information security risks, practices and projects to the C-Suite and the GRC Steering Committee, and provide expertise on security standards, regulations and best practices (e.g., SOC II, PCI, ISO 27001, NIST, CIS, Bank Negara Malaysia etc.).✓ Develop, mentor, and manage a high performing staff of information security professionals.✓ Ensure that the security management program is in compliance with applicable laws, regulations, and contractual requirements.✓ Act as the champion for the enterprise information security program and foster a security-aware culture.✓ Oversee the evaluation, selection and implementation of information security solutions that are innovative, cost-effective, and minimally disruptive.✓ Partner with enterprise architects, infrastructure, and applications teams to ensure that technologies are developed and maintained according to security policies and regulations.✓ Build and oversee enterprise-wide strategic and tactical programs for:• Incident and Breach Management, IAM, Architecture and Engineering, Operations, Assessments, GRC, DevSecOps✓ Develop business metrics to measure the effectiveness of the security management program✓ Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action to maintain acceptable cyber risk posture.✓ Liaise with the law enforcement and other advisory bodies as applicable by Bank Negara Malaysia to ensure that the organization maintains a strong security posture.✓ Oversee and lead the creation, communication and implementation of a process for managing vendor risk and other third-party risk.