Job Description:
- Drive / conduct general security assessment for business stream, internal system tooling (ERP, low code development tools), external integration (API integration, system to system integration etc)
- Development of digital forensics mechanism & tooling (focus in data trailing, transaction audit trail, SIEM, alerting) in collaboration with cyber security team
- Creating comprehensive report, stakeholder communication & ensuring the remediation process related to security vulnerabilities completely remediated
- Maintaining Business Stream documentation updated in relevant to cyber, information security & fraud risks
- Managed & ensuring Information Security Awareness Program executed with good deliverables (both workshop session & regular awareness campaign)
- Maintain & develop information security related SOPs / Policies to ensure our security posture meet their key results
- Managed & development of the ISO 27001 program (Retaining certification & culture maturity fit)
- Drive strategy & Organization development for Information Security Governance team to help CIS department in achieving their goals
- Assisting / Be a project manager to all CIS department main projects (Decided depends on criticality of the project / directly delegated by CISs HOD)
Job Requirements:
- Bachelor&aposs degree in any fields, preferably technology / finance related
- Minimum 4 years of experience in Anti Fraud / Cyber Fraud /Management Information System / Data Analyst / Data Science / Business Operation / System Analyst / Security Analyst / SOC analyst / Information Security Governance / IT Governance Risk & Compliance
- Skill in SQL & Data query technologies (Preferred)
- Understanding the principles of Information security, Anti Bribery, Corruption, Fraud activities
- Excellent analytical & problem solving skills
- Strong attention to detail and ability to work under tight deadlines
- Strong or minimum have basic business acumen
- Effective communication and interpersonal skills to collaborate with cross-functional teams.
- Strong knowledge in Role Based Access Control & Audit Trail mechanism
- Strong knowledge in Information Security Compliance (ISO 27001 / UU PDP / ISO 27001 / SOC2 etc)
- Understand / solid knowledge / hands-on in various Cyber Security tooling & data security standards (API security, Threat intelligence tools, DLP technologies, SIEM, Burpsuite, kali linux)
Evermos is committed to providing an inclusive environment where equal opportunities are available to all applicants regardless of race, color, religion, gender, national origin, disability, age, genetic information, marital status, pregnancy, or related condition. We will not tolerate discrimination or harassment based on any of these characteristics.
We also emphasize the importance of diversity in all aspects of employment including recruitment, hiring, promotions, training, and organization operations.
