Security and Compliance Officer

Công ty Trách Nhiệm Hữu Hạn CODE88

Mức lương: Thỏa thuận Kinh nghiệm: 5 năm Nơi làm việc: Tp Hồ Chí Minh Trình độ: Đại học Đã hết hạn

Nộp đơn Lưu việc làm

Mô tả công việc

The Security and Compliance officer act as the point person in regular internal and external security audit of the company. This includes regulatory compliances of Pinnacle and ISO audit of Code88.
Responsibilities:
1. Data Protection
- Work with Network Security engineers to ensure that best practices and custom configurations are applied to the data leakage protection of the company
- Ensures that the data protection of the company meets the requirements of regulatory compliance entities
- Enhance the confidentiality, integrity, and availability of data
2. Cyber Security
- Document, investigate, and report cybersecurity compliance issues and incidents, where necessary
- Arranging penetration tests and vulnerability testing to be conducted by Network Security Engineers
- Provide guidance and recommendation for security gaps and vulnerability detected in both Operations and Platform systems
- Ensures vulnerabilities and security gaps are addressed as soon as applicable
- Maintains records of accepted vulnerabilities as approved in routine checks
3. Information Security Management System
- Work with all asset and document owners to ensure that the existing policies and procedures are up to date and reviewed regularly
- Recommend improvements to the standards base on best practices
- Develop and manage the frameworks, processes, tools, and consultancy necessary for IT to properly manage risk and to make risk-based decisions to IT activities
4. Regulatory Compliance
- Ensure overall IT compliance with regulatory requirements through proactive planning and communication, ownership, and relationships
- Recommend changes to the existing company standards to improve or apply best practices
- Routinely plan and execute internal audit of the IT Engineering and Operations to ensure that all policies and procedures are observed
- Conduct internal security risk assessments and security compliance audits
- Work with Security and Compliance Team Leader to ensure that the IT team is ready and compliant with all requirements for external audits
- Participate in external audits
- Communicate the results of audits effectively. Including OFIs, recommendations from the auditors, and all that affects the security and compliance of the company

Yêu cầu công việc

Skills & Qualifications:
- High level of comfort in communicating effectively across internal and external organizations
- Analytical and problem-solving skills, as well as excellent judgment and self-motivation
- A good team player and keen learner, with commitment to the security industry
- Ability to think methodically and attention to detail
- Any security-related certifications such as CISSP, CCSP, CISA is a plus
Knowledge & Experience:
- 5+ years of Security Compliance program monitoring and reporting
- 5+ years of experience working in an operations environment, driving improvements resulting in measurable business impact
- 2+ years of experience in regulatory compliance and ISO audits
- Experience supporting enterprise-wide Security Compliance programs designed to anticipate, assess, and minimize control gaps and audit findings

Phúc lợi công việc

1. BONUSES & REWARDS
• Competitive Salary
• 13th Month Salary
• Performance Bonus
• Employee of the quarter award
• Employee of the year award
• Years of service award
2. TRAINING & DEVELOPMENT
• In-house: Technical, Soft skills, and English/communication skills training
• Overseas: Technical training and certifications
• Full reimbursement for international technical certification obtained
• Global career opportunity
3. ANNUAL PAID LEAVES
• Vacation Leave: 14 days per year
• Medical Leave: 8 days per year
• 1 extra seniority day for every 2 years of service
• 1 Birthday Paid Leave
4. HEALTHCARE
• Annual routine check-up
• Comprehensive Insurance: Social/Health/Personal
• Premium healthcare insurance
5. WELLNESS AND LEISURE ACTIVITIES
• Annual company trip for team building
• Sports activities: organized football players for inter-company matches; organized bowling and badminton activities
• Music band activities, Karaoke & Play-station time every week
• Year-end party
• Celebrations for monthly birthdays, anniversaries, Christmas, New Year, and other special events
6. PERKS
• Fruit days twice a month
• Unlimited snacks & beverages
• Friendly and collaborative environment