Head, Cyber Security Operation and Defense Center TH - Thailand - CIMB Group

คำอธิบาย

Job Descriptions:

• Lead on project implementation, direct design of security systems, direct design of security monitoring and alert, continuously improve information security controls, processes and operational procedures related to information security policy and standard.
• Track, manage to resolution the closure of security risks including review plans and monitor progress or remedial actions
• Ensure that cyber drills and cyber incident response planning are in place and tested.
• Ensure continued compliance with laws and applicable regulations.
• Support periodic security audits.
• Conduct security awareness testing.
• Manage, employees and third parties involved in IT security.
• Manage the SOC team to maintain and deliver appropriate services
• Oversee the delivery of all SOC services in the service portfolio such as Real Time Security Monitoring, Threat Intelligence and Research, and Security Incident Response and Investigation activities
• Develop SOC service metrics; implement and monitor controls to ensure appropriate service levels are maintained
• Provide thought leadership and attends industry events
• Maintain knowledge of relevant regulations, compliance requirements and policies that may have direct or indirect impact upon the SOC and its services
• Vulnerability management, vulnerability scan, vulnerability report and consult about vulnerability issue.
• Hardening management, create standard of hardening guideline for all of platforms, manage hardening report
• HPID management. Service accounts management.
• Manage Security Operation report and SOC report.

Qualifications:

• Master Degree in Computer Science, Engineering, Information Systems or equivalent 
• Minimum 8 years in IT Security Operation, Compliance and Governance plus experience working in or closely with IT Audit and IT Risk management
• Knowledge of Security Framework and Concepts, Compliance, Risk and Regulations, PCI DSS, COBIT
• Experience in performing comprehensive and authoritative technical analysis of the security readiness and compliance of applications

Professional Qualifications

• Certified Information Security Manager (CISM), issued by ISACA
• Certified Information Systems Auditor (CISA), issued by ISACA
• Certified Information Systems Security Professional (CISSP), offered by (ISC)2.
• Other Security or Audit certifications e.g.  CEH, ISMS, COBIT5 are preferred. 

Functional skills

• Understand the IT threat landscape for the industry.
• The ability to quantify the risks different IT architectures, and then communicate to other executives how to manage that risk.
• The ability to work with data scientists to detect and respond to threats.
• The ability to oversee pen testing to find vulnerabilities in all elements of a security system, understand security vulnerabilities and remediation
• Disaster recovery, including detecting an intrusion, isolating it and neutralizing it before it can cause further damage.
• Data and information management, including classification, retention and destruction. It also means keeping corporate and personal data both private and secure while needed, and destroyed when it is no longer needed.
• Digital forensics, which means finding out what allowed an intrusion to occur so it can be prevented in the future.
• In-depth experience in deploying SIEM, Security Analytics, SOAR, Threat Hunting solutions.
• Knowledge of all applicable laws and compliance frameworks to enforce compliance.

Personal skills

• Highly result oriented and can work independently
• Good analytical, technical, written and verbal communication skills and strong presentation and organizational skills
• Ability to exercise discretion and independent judgment in applying established techniques, procedures or standards
• Good Communication and presentation skills, to be both the subject matter expert and advocate for risk management in the executive suite.
• Ability to perform Security Planning and strategic management including Supervisory and management of IT Security Team
• Good Leadership, collaboration and conflict resolution skills
• Strong knowledge and experience in managing departmental profit and loss
• Action oriented and driven to achieve results in a positive manner, displaying ethical behavior, integrity, and building trust at all times