This role will drive the governance and compliance roles within Technology department, by establishing the appropriate information technology and information security policy frameworks, driving compliance and best practice standards, and ensuring that risk management is well managed and enshrined within Technology department across functions. This role will also improve Technology Services; manage the Business Continuity program for Information Technology, ensuring that TECH services are available to the business and customers in the event of any unforeseen disruption, within the agreed service levels, including:
Policy & Governance Framework
Custodian of Technology and Security policies and process governance frameworks across functions.
Manage Technology and Security policy framework, including creation, review, update, awareness and monitoring of policies.
Keep up-to-date with regulations and guidelines affecting information technology and information security, and continuously update TECH’s policies, standards and procedures.
Administration and management of Information Technology and Information Security processes.
Risk & Audit Management
Manage TECH risks and practices within Technology department; including Risk Control Self Assessments (RCSA) and IT risk registers, across functions.
Track and report on TECH audit and risk findings, including managing TECH management forums for discussion and reporting of these findings.
Business Continuity Planning
Manage the Business Continuity Program (including IT Business Impact Analysis) within TECH, across the functions.
Maintain up-to-date disaster recovery plans and ensure recovery procedures are effective for restoration of key TECH systems and therefore resumption of critical business processes.
Manage Disaster Recovery and backup testing schedules, reporting and remedial actions.
Training Skill
Organize sharing sessions for providing guidance to TECH and driving technology best practices (ISO/IEC 27001:2013, ISO 9001:2015), while enshrining these with the TECH policies and practices.
Job Requirement
Education: College / University
Experience: - 1.5+ years’ working experience - Prior experience working in Assurance/Compliance Assessments or IT Governance or Internal Audit (ISO 9001 and ISO 27001) is advantage
Foreign Language: English (Intermediate level)
Computer: Proficiency in Excel, Word, PowerPoint
Soft skills: Strong negotiation skills to communicate and discuss with stakeholders