Information Security Compliance Analyst

  • Post Date: 2020-10-06
  • Apply Before: 2020-11-05
  • Job Level: Executive - Senior
  • Min Year of Experience: 4
  • Min Qualification: Bachelor Degree
  • Based In: Bayan Lepas , Penang
Job Description
Responsibilities :

  • Design and implement security compliance program using appropriate industry frameworks, tools and techniques.
  • Assist process / control owners with the design / implementation of controls and related documentation (e.g., policies, procedures, narratives, and matrices)
  • Perform cyber security control assessments and proactively identify control gaps and opportunities for improvement.
  • Assist with remediation of control deficiencies and gaps identified during the audit process.
  • Assist with cyber security training and awareness initiatives.
  • Maintain and update information security policies and control framework and assess compliance to requirements set forth.
  • Facilitate third party attestations, audits, and certification efforts for the organization.
Required Qualifications

  • 4+ years of experience in a cyber security operations / compliance role.
  • Experience in security risk management, controls assessment, or audit.
  • Understanding of information security and security governance, risk and compliance frameworks, methodologies and practices including NIST, SOC 2, ISO 27001, PCI DSS.
  • Familiarity with security compliance vendors and tools.
Desired Qualifications :

  • Automation and GRC tech implementation experience.
  • Knowledge of, or experience working with, Cloud technologies / environments is a plus.
  • Prior experience as a Big4 / IS Consulting firm auditor preferred.