Applications are invited for all candidates to fill the Manager (Information Security and Compliance) Job Post at Hutchison Telecommunications Lanka (Private) Limited
Manager — Information Security & Compliance
Key Responsibilities
Implementing new ETLjobs or changing existing jobs for new data requirements.
Lead cyber security team to support and operate cyber security defensive systems to defend cyber-attack and safeguard organization's data.
Review cyber security controls for technology projects to ensure compliance of IT security policy and meet relevant regulatory requirements.
Creating and updating IT security policies, standards, control baselines and control processes relating to information security and ensuring adequate implementation.
Develop and support security tools and scripts to enhance the efficiency of vulnerability scanning and server hardening.
Keep abreast of the latest cyber threat landscape; evaluate the potential impact to the organization.
Collaborate with industry for threat intelligence sharing and analyze of cyber threat intelligence.
Manage IT security related projects from kick off to production roll out
Manage IT security compliance before Go-Live of any IT any pr0ect
Perform risk control self-assessment for cyber security risk.
Providing information security training, awareness, and guidance to all employees.
Driving and educating the Product and Technology teams to adhere to security requirements during product development and deployment.
Assist in manage, investigate, and respond information security and cyber security incidents
Work with IT teams to support and oversee IT security controls for the organization.
Closely work with CKHH Group for IT Security compliance matters
Serve as an internal expert of cyber security related subject matters.
Support change control process related to IT security.
Manage IT audits and remediate audit issues reported by internal and external audits.
Qualifications and Experience
Bachelors Degree in Information Security, Information Systems, Computer Science or related disciplines.
10+ years of working experience in IT security operation, technology risk management, information security compliance & audits preferably in telecom industry or technology vendor.
At least 3 years of experience in managing Information Security team.
Experience with ISO 27001/2013 implementation
Hands on experience on managing cyber security systems such as Firewall, Web Proxy, WAF, SIEM
Working know edge of Vulnerability Assessment and Penetration Testing tools
Familiar with well-known security frameworks, standards such as the ISO 27XX OWASP, NIST, etc
Professional qualifications such as CISSP, CISM, CISA CEH or relevant certifications
Good command of written and spoken English.
Strong process-oriented mind-set, problem-solving ability and have excellent communication skills.
Strong abilities to work both independently and collaboratively
Please forward your resume within 7 days to the address/email below. Please mention the position you apply on the subject line of the email or top left hand corner of the envelope.
Human Resources Division
Hutchison Telecommunications Lanka (Pvt) Ltd,
No 234, Galle Road,
Colombo 04
Email: vacancies@hutchison.lk
Closing Date : 21/11/2019
