The position exists in order to assist and support manager in developing internal control framework and auditing program within the organisation, and also responsible for the IT and access right related framework and practice.
〝Design and implement a system administrator guideline.
Administrate internal existing system access control.
Monitor and audit external system access control.〝
Compliance/Security Policy and Procedures:
Evaluates and updates policies, procedures, and standards to ensure alignment with applicable security control requirements.
Partner with IT Department:
〝Assist IT department in designing and implementing processes, tools and systems to identify, assess, measure, and monitor security risks.
Monitor the timely implementation of the IT environment set-up, and assist the development.
Assist in coordinating with IT department to prevent and detect system-related risk.
Promote information security culture:
Assist in promoting information security culture within the organization.