Job Seeker Reactivate Your Account
Thank you, this account has been Deactivated.
Do you want to Reactivate your account?
No
Yes
Sorry, unable to apply, please Upload CV Attachment, or update your JobNet Profile to at least 55% of completion.
UPLOAD CV
UPDATE PROFILE

Information Security Risk Audit Compliance Manager

Ooredoo Myanmar

Information Security Risk Audit Compliance Manager

Ooredoo Myanmar
Recruiter active 13 hours ago The recruiter at this company was last active reviewing applications.
Myanmar - Yangon
Full Time
Verified This job has been verified by the company as a real job vacancy.
17 Sep 2020

Experience level

Manager

Job Function

Legal, Risk and Compliance

Min Education Level

Bachelor Degree

Job Description

A. PURPOSE OF THE ROLE 

This role is responsible in identifying & associated with Information Communications Technology. Role includes identifying, assessing, treating & mitigating risks associated to Ooredoo Myanmars' daily operations. And also advise to Ooredoo Myanmar Management when it comes to ISRM Matters both operational, strategic and long term views.

 

B. ROLE ACCOUNTABILITIES

  •  Development of Information Security Framework which outlines Company Security Objectives, Code of Ethics, Roles and Responsibilities, Risk Management and methodology, Incident Management, and among others to ensure implementation of the information security Goals
  •  Performs Information Security Architecture review to ensure communication over IT and Mobile/Telco network are conducted in a secure manner.
  •  Enforcement on Application Security and Software Development Life-cycle (SDLC).
  •  Enforce the relevant mandatory security controls and various gating points before a project/system is allowed to go live (e.g. risk assessment, security design, security testing, etc.) alongside Security MS Partner.
  •  Manage Penetration Testing and Vulnerability assessments (e.g., Definition of RFP, Scope of Work, Deliverables, ensure project completion based on agreed scope, etc.) alongside Security Partner.
  •  Support Company Threat and Vulnerability Management – Monitors IT threats that are reported externally (e.g., SANS, US-CERT etc.) and discovered internally and coordinates the timely communications and remediation.
  •  Support Risk Management - Risk analysis, Assessments and Testing. Coordinates with various IT and Business units and ensures that IT Risks are managed and documented.
  •  Participate in critical projects Go/No-Go decision and ensure that all critical requirements (e.g., closure of critical security issues, ensure availability monitoring, etc.) on security, functionality and process are considered.
  • Manages the Security MS Partner day to day activities, KPI and SLA’s.
  • Conducts weekly Security working group meeting including follows plus conducts monthly Security Governance Meetings with Management. And report to senior management on security plans (security projects, security technologies etc)
  • Prepare Information Security report as required by external party such Ministry of Transports and Communications and other Government requirements. 

Open To

Repatriate
Male/Female

Job Requirements

EXPERIENCE AND QUALIFICATIONS

  • Bachelor Degree in computer engineer or IS or Equivalent Qualification etc.
  • 12 +years of working experience in ISRAC/Telecom/Banking Industry
  • Good understanding of Security Operations Management, systems and applications
  • Good knowledge in Security standard ISO 22301 & ISO 27001, BS 7799 etc
  • Other qualification preferred, CISSP, CISM, CRISC,CISA, BCCE, AMBCI,CWNA
  • Excellent communications skills
  • Some Audit experience

COMPETENCIES

Technical Competencies

Cyber Security

IS Governance

IS Risk Management

IS Compliance & Audit

Telecom Market & Industry Knowledge

Digital Technology Knowledge

 

Leadership Competencies

Develops Talents

Global Understanding & Perspective

Business Insights

 

This position is Myanmar national only.

Only eligible applicants will be contacted directly by the Ooredoo Myanmar Talent Acquisition Team. Candidates who do not meet the requirements will be kept in our database for any future vacancies.

What We Can Offer

Benefits

- Attractive Quarterly Bonus Plan
- Ferry, Phone & Meal Allowances
- Medical & Health Insurance Plan

Highlights

- Multi-international Working Standards & Culture
- Fun Working Environments
- Internal Hiring & Referral Program

Career Opportunities

- Career Growth Opportunities
- Training Provided
- Employee Performance Management Process

About Our Company

Ooredoo, the mobile telecom operator bringing crystal clear voice calls and fast internet to Myanmar, announced the availability of its life-enriching services in August 2014. In June 2013 Ooredoo was awarded a license to operate in Myanmar. Ooredoo launched the first 4G experience in Myanmar in May 2016.

Ooredoo Myanmar offers a wide range of life-enriching, exciting and customer-friendly mobile communication services through its next generation network. These services provide a platform for human growth and empowerment and are designed to help people achieve their full potential and businesses run more efficiently. Our commitment is “Enriching people’s lives” and we are passionate about the ability of our technology to enable human growth in the communities we operate in. We are a community-focused business so we have a responsibility to our customers to help contribute to the social and economic development of the communities we operate within.

Apply for this job

OR

Experience level

Manager

Job Function

Legal, Risk and Compliance

Min Education Level

Bachelor Degree

Share with a Friend

Candidate CV Attachment

ADD PRIVATE CANDIDATE
Upload Profile Picture
Upload CV
Auto Fill CV
Save time on data-entry.
Education / Qualifications
Add
Cancel
Delete
Save
Work Experience
Add
Cancel
Delete
Save
Languages used
Add
Cancel
Delete
Save
Skills achieved
Add
Cancel
Save
References
Add
Cancel
Delete
Save
CV Attachments (Upload CV here)
Add
Cancel
Delete
Save
Cancel
Add
Next