Information Security Director
Công ty Cổ phần VInpearl
Văn phòng Symphony, Đường Chu Huy Mân, Khu đô thị Vinhomes Riverside, Long Biên, Hà Nội
Hết hạn
Xóa tin
Chi tiết tuyển dụng
Mức lương:
Thỏa thuận
Khu vực:
Hà Nội
Chức vụ:
Nhân viên
Hình thức làm việc:
Toàn thời gian
Lĩnh vực:
Khác
Mô tả công việc
The Information Security Director
is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior executives, IT team members, and external stakeholders to manage and mitigate security risks.
Key Responsibilities:
1. Strategy & Planning:
• Develop and implement a comprehensive information security strategy and program.
• Establish security policies, procedures, and standards to protect company assets.
• Lead risk assessment and management processes, including threat modeling and vulnerability assessments.
2. Leadership & Management:
• Manage a high-performing information security function
• Provide guidance and mentorship to IT members
• Coordinate with other departments to ensure alignment with security policies and objectives.
3. Compliance & Governance:
• Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS).
• Oversee the development and implementation of information security policies and procedures.
• Conduct regular audits and assessments to ensure ongoing compliance.
4. Incident Response & Management:
• Develop and oversee incident response planning and execution.
• Lead the response to security breaches and incidents, including forensic analysis and remediation.
• Communicate with relevant stakeholders during incidents, including executive management and, when necessary, external parties.
5. Education & Awareness:
• Promote security awareness across the organization.
• Develop and deliver training programs to educate employees on security best practices and policies.
6. Technical Oversight:
• Stay abreast of the latest security technologies, threats, and trends.
• Oversee the implementation and management of security technologies and solutions (e.g., firewalls, intrusion detection/prevention systems, endpoint protection).
7. Vendor Management:
• Manage relationships with external vendors and service providers.
• Assess and select security vendors to ensure they meet the company's security requirements.
• Negotiate contracts and service level agreements to maximize value and security benefits.
• Oversee vendor performance and ensure compliance with contractual obligations.
is responsible for establishing and maintaining the enterprise vision, strategy, and program to ensure information assets and technologies are adequately protected. The DIRECTOR will lead the Information Security function, working closely with other senior executives, IT team members, and external stakeholders to manage and mitigate security risks.
Key Responsibilities:
1. Strategy & Planning:
• Develop and implement a comprehensive information security strategy and program.
• Establish security policies, procedures, and standards to protect company assets.
• Lead risk assessment and management processes, including threat modeling and vulnerability assessments.
2. Leadership & Management:
• Manage a high-performing information security function
• Provide guidance and mentorship to IT members
• Coordinate with other departments to ensure alignment with security policies and objectives.
3. Compliance & Governance:
• Ensure compliance with relevant laws, regulations, and industry standards (e.g., GDPR, HIPAA, PCI-DSS).
• Oversee the development and implementation of information security policies and procedures.
• Conduct regular audits and assessments to ensure ongoing compliance.
4. Incident Response & Management:
• Develop and oversee incident response planning and execution.
• Lead the response to security breaches and incidents, including forensic analysis and remediation.
• Communicate with relevant stakeholders during incidents, including executive management and, when necessary, external parties.
5. Education & Awareness:
• Promote security awareness across the organization.
• Develop and deliver training programs to educate employees on security best practices and policies.
6. Technical Oversight:
• Stay abreast of the latest security technologies, threats, and trends.
• Oversee the implementation and management of security technologies and solutions (e.g., firewalls, intrusion detection/prevention systems, endpoint protection).
7. Vendor Management:
• Manage relationships with external vendors and service providers.
• Assess and select security vendors to ensure they meet the company's security requirements.
• Negotiate contracts and service level agreements to maximize value and security benefits.
• Oversee vendor performance and ensure compliance with contractual obligations.
Quyền lợi được hưởng
Khám sức khỏe định kì
,#Công ty cấp phát laptop và các công cụ cần thiết
,#Có cơ hội được mua các sản phẩm/ dịch vụ của Cty với giá ưu đãi
,#Công ty cấp phát laptop và các công cụ cần thiết
,#Có cơ hội được mua các sản phẩm/ dịch vụ của Cty với giá ưu đãi
Yêu cầu kỹ năng
Cyber Risk Management, Application Security Assessment, Information Risk Management, IT Security
-
Nhân Viên Chăm Sóc Khách Hàng Thu Nhập Từ 10 - 12 Triệu CÔNG TY CỔ PHẦN DƯỢC PHẨM HỔ CÁP 10 - 12 Triệu
-
Marketing Team Leader/ Trưởng Nhóm Marketing- ( Ngành May Mặc)- Thu Nhập 15- 18 Triệu/ Tháng- Tại Thanh Trì, Hà Nội CÔNG TY TNHH SPORTS PLUS QUỐC TẾ 15 - 18 Triệu