Information Security & Compliance Senior Analyst (JR0021624)

Jawatan Kosong Information Security & Compliance Senior Analyst (JR0021624) di [SYARIKAT]

KETERANGAN JAWATAN KOSONG

This role will be responsible for ensuring internal systems and processes are compliant with information security standards; providing consultation and awareness of information security requirements;  monitoring, managing and closing information security compliance issues. The responsibilities include identification, evaluation and interpretation of standards, regulatory, statutory and member security requirements, control deficiencies and information security risks.

Duties and responsibilities

• Review and revise policies in Capital A and its subsidiaries where information security is concerned. Map Capital A requirements and standards/regulatory requirements across the company’s information security framework to identify overlapping requirements and compliance efficiencies.
• Track enterprise compliance across multiple security frameworks and maintain up-to-date records of requirements and corresponding mitigating controls.
• Participate and facilitate audit and assessment activities to ensure compliance with information security requirements.
• Identify and analyze internal and external information security requirements in order to provide relevant and suitable standard or best practice and solutions to fulfill requirements. 
• Provide consultation, education, and awareness on information security requirements to various levels of management and Allstars.
• Analyze management and technical controls to ensure specific security and compliance requirements are met through verification of documented processes, procedures and standards in order to validate maintenance of secure configurations.
• Monitor third-party risk assessments and assist in performing internal risk assessments.
• Collaborate on IT projects to ensure that security policy/risk issues are addressed throughout the project life cycle.
• Monitor and facilitate entitlements review process to ensure compliance.
• Develop key performance metrics to track and ensure compliance with established policies and standards.
• Support development and reviews of security policies, processes and procedures and support service-level agreements to ensure that security controls are managed and maintained.
• Participate in the development of information security awareness training in conjunction with other members of the GRC.

Requirements:

• Bachelor’s Degree in Information Technology, or Business with IT, Computer Science, or equivalent
• Minimum 5 years experience in Information Security/IT Compliance or related fields
• Minimum 2 years experience in participating/conducting IT/Information Security audits or assessments
• Relevant industry certification is an advantage (ISO 27001, CISA, CISSP, CGEIT, etc)
• Working knowledge in common IT/information security related regulations or standards, especially ISO 27001 and PCI-DSS
• Ability to develop, review and maintain documentation
• Strong communication (spoken and written), interpersonal, and conflict resolution skills. Ability to establish and maintain rapport with stakeholders is highly desired.
• Strong analytical and critical thinking skills
• Result oriented, high level of attention to detail, self-starter and motivator, ability to multitask and adjust to shifting priorities.

We are all different – one talent to another – that is how we rely on our differences. At AirAsia, you will be treated fairly and given all chances to be your best.We are committed to creating a diverse work environment and are proud to be an equal opportunity employer.

Search Firm Representatives – AirAsia does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place.

Maklumat Tambahan Jawatan Kosong

Tahap Pekerjaan : Senior Executive
Kelayakan : Computer/Information Technology, IT-Network/Sys/DB Admin
Pengalaman Kerja : 5 years
Jenis Kerja : Full-Time
Pengkhususan Kerja : Computer/Information Technology, IT-Network/Sys/DB Admin / 508, 193

Maklumat Syarikat Majikan, [SYARIKAT]

Find your career destination with AirAsia! 

It all starts here. 20 years ago, a dream took flight – shaping and forever changing the travel industry in Asia. The idea was simple – make flying affordable for everyone.

We started off as just an airline, but today we are now something much, much more. From a network of gateways and getaways, our businesses now include making logistics and banking more accessible (Teleport, BigPay), linking farms with businesses (airasia grocer), and offering online tech education and entrepreneurship (Redbeat Academy). airasia Super App, our one-stop travel, e-commerce and fintech platform, offers more than 15 lines of products — from travel to lifestyle to finance, there is something on airasia Super App for everyone.

Wait no more and visit our career page and be part of our Allstars family.

Maklumat Tambahan Syarikat [SYARIKAT]

Saiz Syarikat : More than 5000 Employees
Masa Pemprosesan Permohonan : 11 days
Industri : Aerospace / Aviation / Airline
Elaun dan Lain-lain : Dental, Education support, Medical, Loans, Sports (e.g. Gym), Vision, Regular hours, Mondays – Fridays, Casual (e.g. T-shirts), Travel benefits
Lokasi : Selangor
Lamar Sekarang!