Security GRC Specialist

Orange provides your personalized go-to pool of strategy planners, creatives, and technologists for your brand and campaign that aren't part of your daily routine. Strategic managers, content specialists, conceptual creatives, producers, SEO experts, product managers, and others are among the impact players who are held match-fit for your brand.

About The Job:

We are looking for an expertise in security governance frameworks.Strong skills in risk assessment and compliance monitoring.Proven experience in designing and implementing GRC processes.

Job Descriptions

• Perform regular security assessment and audit of the product and the enterprise
• Develop and continuously improve security policies and procedures,
• Design, plan, develop and deploy security awareness program
• Evaluate applicable government regulations and security standards, and plan the implementation in the company
• Drive security initiatives together with compliance and other technology team
• Create daily and monthly reports
• Collaborate with others security team to resolve security, issue, incident, awareness,
• Participate in PCI DSS and ISO 27001 audit
  
  

• Minimum 3 year’s experience in Information Security,
• Computer science/engineering bachelor degree from reputable university
• Good communication skill, able to explain technical language to business users,
• Team player, able to work together with peers in the technology team and other employees,
• Experienced in assessing application development and security process
• Experienced with financial technology applicable government regulations,
• Have a good knowledge in ISO 27001 and PCI DSS requirements
• Understand with the concept cloud security
• Good in written, verbal communication and presentation skills
• Desired Certifications: CISA, ISO 27001 LA, CISSP, CISM, CRISC