Manager - Technology Standards & Policies

Job Responsibilities:

• Information Security & Compliance
  • Lead PCI-DSS compliance initiatives across all applications, ensuring compliance.
  • Conduct software compliance assessments for designated publishers and manage remediation efforts.
  • Implement and maintain the internal information classification policy for IT documentation.
  • Oversee the implementation and management of third-party access control systems.
• Policy Development & Management
  • Develop, review, and update technology standards and policies in alignment with ISO27001, PCI-DSS and other technology standards requirements.
  • Design and implement information classification frameworks for IT documentation.
  • Coordinate with stakeholders to ensure policy adoption and compliance.
  • Monitor and report on policy compliance metrics.
• Stakeholder Management
  • Ensure effective communication and engagement with internal and external parties on standards and policies adoption, changes and enforcement.
  • Manage relationships with third-party vendors regarding access control and compliance.
  • Collaborate with internal and external auditors on related assessments.

Job Requirements:

• Bachelor’s Degree in Information Technology, Computer Science, or related field.
• Professional certifications in Information Security, IT Governance, or related areas (e.g., PCIDSS, ISO, CISSP, CISM etc.).
• Minimum 5 years of experience in IT compliance and standards management.
• Strong understanding of PCI-DSS and ISO27001 requirements and implementation.
• Proficiency in software compliance assessment and management.
• Experience with third-party access control systems and vendor management.
• Experience with developing policies and procedures from scratch.

*Based at Wisma Genting, Kuala Lumpur.