🎯
Full-Time Opportunity: This is a permanent, full-time position with a competitive package and real career growth potential.
Job Description
- Create, review and update the Group IT Security Policies, Standards, Procedures, Guidelines, checklist and assessment requirements related to Cloud Security
- Will be used by Regional & Overseas Units
- Comply to all local regulators’ requirements and industry best practise are captured and adhere to.
- Ensure that cloud security policies and assessment questions are aligned with industry best practices (e.g. ISO 27001, NIST, CSA STAR, SOC 2) and regulatory requirements (e.g.BNM RMiT, MAS, OJK, HKMA)
- Regularly review and update cloud security policies to address emerging threats and changes in the regulatory landscape.
- Perform comprehensive cloud security assessments for new and existing cloud projects, encompassing both private and public cloud solutions.
- Review evidence provided by solution provider and third parties such as SOC 2 reports, CSA STAR certifications, attestation reports, and pene...